| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
| |
Signed-off-by: Xiangyu Chen <xiangyu.chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
Add support of redirect option for curl, the
linuxcontainers.org sometimes redirect to
other mirror site such like us.lxd.images.canonical.com,
this would cause the lxc-download script report
download failed.
Reproduce and verified on following command:
lxc-create -t download -n test -- --dist archlinux --release current --arch arm64
Signed-off-by: Xiangyu Chen <xiangyu.chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
| |
Rather than using virtual-runc (which choses between the old docker and
opencontainer variants), use the newly added
VIRTUAL-RUNTIME_container-runtime variable, which allows switching
betwen runc and crun.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
| |
To make it simpler to vary the container runtime and the
networking infrastructure to be used with podman, we use
the recently introduced VIRTUAL-RUNTIME variables that
control these values.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping docker to version v23.0.1-34-gbfc8e1ae36, which comprises the following commits:
2337258d28 libnet/networkdb: fix nil-dereference panic in test
d6d48dd95d Upgrade to golangci-lint v1.51.2
c4b655830d Migrate away from things deprecated in Go 1.20
c6bf777eae d/l/awslogs: fix ineffective Add in test
da10937926 daemon: handle EISDIR error from runtime
938ed9a1ed distribution/xfer: make off-by-one error a feature
ca712d6947 Fix loop-closure bugs in tests
2c55b264f7 Upgrade containerd/fifo to v1.1.0
8fd038fb71 dependency: bump go.etcd.io/bbolt to v1.3.7
87a1517f8f vendor: golang.org/x/net v0.7.0
d15010643c vendor: golang.org/x/text v0.7.0
0727310950 vendor: golang.org/x/sys v0.5.0
b8c448ef24 Revert "apparmor: Check if apparmor_parser is available"
a3f5319563 vendor: github.com/containerd/containerd v1.6.18
52d667794f [23.0] update containerd binary to v1.6.18
11715a05ca update to go1.19.6
962c238c17 libnet/networkdb: use atomics for stats counters
20d05e235e libnetwork/networkdb: make go test -race ./libnetwork/networkdb pass
c2d69d06b0 api/s/r/swarm: log backend errors at Debug level
7c09feb58c libnetwork: check DNS loopback with user DNS opts
6c2637be11 Do not log connection info before the connection exists
4002fa877b vendor: update buildkit to latest v0.10
Bumping docker-cli to version v23.0.1-2-g1ab7665be, which comprises the following commits:
1810e922a docs: drop dated comments about graphdrivers
27b19a6ac ci: fix branch filter pattern
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping moby to version v23.0.1-34-gbfc8e1ae36, which comprises the following commits:
2337258d28 libnet/networkdb: fix nil-dereference panic in test
d6d48dd95d Upgrade to golangci-lint v1.51.2
c4b655830d Migrate away from things deprecated in Go 1.20
c6bf777eae d/l/awslogs: fix ineffective Add in test
da10937926 daemon: handle EISDIR error from runtime
938ed9a1ed distribution/xfer: make off-by-one error a feature
ca712d6947 Fix loop-closure bugs in tests
2c55b264f7 Upgrade containerd/fifo to v1.1.0
8fd038fb71 dependency: bump go.etcd.io/bbolt to v1.3.7
87a1517f8f vendor: golang.org/x/net v0.7.0
d15010643c vendor: golang.org/x/text v0.7.0
0727310950 vendor: golang.org/x/sys v0.5.0
b8c448ef24 Revert "apparmor: Check if apparmor_parser is available"
a3f5319563 vendor: github.com/containerd/containerd v1.6.18
52d667794f [23.0] update containerd binary to v1.6.18
11715a05ca update to go1.19.6
962c238c17 libnet/networkdb: use atomics for stats counters
20d05e235e libnetwork/networkdb: make go test -race ./libnetwork/networkdb pass
c2d69d06b0 api/s/r/swarm: log backend errors at Debug level
7c09feb58c libnetwork: check DNS loopback with user DNS opts
6c2637be11 Do not log connection info before the connection exists
4002fa877b vendor: update buildkit to latest v0.10
Bumping docker-cli to version v23.0.1-2-g1ab7665be, which comprises the following commits:
1810e922a docs: drop dated comments about graphdrivers
27b19a6ac ci: fix branch filter pattern
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping crun to version 1.8.1-3-ga09ab72, which comprises the following commits:
11d1baf build(deps): bump actions/upload-artifact from 2 to 3
f8a096b NEWS: tag 1.8.1
4748543 utils: drop magic number 4096
b022227 utils: use mempage size buffer to read /proc/mounts
2da0773 linux: always use direct mapping
6cdf51c container: delete cgroup on errors
fba646e cgroup: rmdir the entire systemd scope
3221684 crun.1.md: fix typo
31bcf8f crun.1.md: fix markup
5007784 build: delete .version file on make clean
46fbeee cgroup: reset systemd unit if start fails
7e7a4db cgroup: do not add default dependencies
4bd4c4e test: run codespell on the correct directory
8b46c45 src: run codespell
b841b71 Support passing an attribute to change the mount_context_type
2ca4233 test: fix path for crictl
ce66b2e Revert "Support passing an attribute to change the mount_context_type"
87b69c3 Support passing an attribute to change the mount_context_type
d23a94a krun: create /dev/sev as part of the OCI configuration
84092f6 handlers: add hook for exec
83f3ab2 handlers: rename exec_func to run_func
93a8e2f krun: always allow /dev/kvm
675e87c handlers: update uses modify_oci_configuration
1efd61a update: move json parsing to container
c9b230a handlers: provide cleanup function
bd22751 handlers: move cookie data under the same struct
71bf884 handlers: add new hook to modify the OCI configuration
b3e167d crun: set handler for all commands
f0f7b8c handlers: initialize handler in the parent process
cfec5ce NEWS: tag 1.8
957796e libcrun: remove unused intprops.h
8363deb linux: move PR_SET_DUMPABLE after userns creation
83de960 dist: do not include binary tests
188e0ce nix: add gcrypt dependency
f7c715d nix: remove protobuf dependency
765161c nix: refactor same command line
98898d2 nix: update image to nixos/nix:2.12.0
bcae634 Add support for ppc64le
9b287dd README.md: add CodeQL badge
ed7598d README.md: drop lgtm badges
1a61b4d utils: shrink read buffer if necessary
2a5cc1d nix: update packages
7d9fa03 tests, centos8-build: add safe.directory /crun
822ca4a utils: add utils to access /proc/$PID/fd/$FD paths
0554b0a utils: change initial size for buffer
742e8fc utils: reallocate only if needed
4e379c6 cgroup: support cpuset mounted with noprefix
58166e6 linux: set PR_SET_DUMPABLE
908bfc4 linux: mount cgroup ro on /sys bind mount fallback
cd1cf0b linux: add two new arguments to get_bind_mount
b84bde9 linux: mount the source cgroup if cgroupns=host
03d2969 linux: refactor out helper function
75f5c1a linux: fix error message
234d77c linux: precreate devices on the host
f23cd15 utils: add functions to read overflow IDs
85767be linux: remove duplicate slash
1e29136 linux: generalize fsopen_mount
a186e8a linux: add dirfd argument to get_bind_mount
7e42a18 linux: add infra to send devices mounts
a6c9453 linux: generalize receive_mounts
b0fe2e4 linux: refactor code in a separate function
05f1298 contrib, seccomp-notify-plugin: free args on error to prevent leak
a34dd94 cri-o,test: skip failing test unrelated to crun
78cf10f crun: fix clang format
278b9b4 src/crun.c: fix build without dlfcn.h
0ebf4e7 build(deps): bump uraimo/run-on-arch-action from 2.3.0 to 2.5.0
4832ca4 Don't clone self from read-only mount
9df7442 tests, wasmedge: copy libraries under /usr/lib64
2044720 tests, wasmedge-build: install which
6f0d03c tests, crio: skip checkpoint/restore tests
d406a97 tests, centos9-build: add safe.directory /crun
81b4ba0 tests, cri-o: add criu-libs rpm
ca41c80 cloned_binary: use cleanup_close
e1c3906 tests, cri-o: update go to 1.19
a83001b cgroups v1: fix legacy mode mount.
26fe138 utils: fix applying AppArmor profile
1cfaf54 tests: disable some CRI-O failing tests
5e3ef32 crun: write setgroups=deny when mapping a single uid/gid
da84be0 github: fix cri-o CI on cgroupv2
cdf7864 tests: disable test that requires io.bfq.weight
c54fc6f github: fix running on cgroupv2
0356bf4 NEWS: tag 1.7.2
d389308 criu: hardcode to libcriu version 2
3880f04 cgroup: always enable controller
258c237 crun: fix compile time check for CRIU
6ce11e8 copr: enable wasmedge on all active envs
ada59b2 tests: fix podman tests
d068462 NEWS: tag 1.7.1
9893e99 utils: Improve debug message
db08071 linux: include terminal \0 when copying mapping
67f58c6 utils: fix creating default userns
5689bd1 krun: disable libkrun's collection of env vars
6b8da56 krun: copy the OCI configuration file
92db973 configure.ac: do not link libcriu dynamically
f6a5109 criu: add check at runtime for the version
8c3fc12 criu: load libcriu dynamically
b3189ef src: run make clang-format
be6c22c fix timestamp format, tv_usec is microsecond not nanosecond
ff95309 copr: enable wasmedge on epel9
40f66c0 seccomp: initialize libgcrypt
9bff00a Add setlinebuf() when --debug and --log=file: are used.
cb6ae27 handlers: set selinux/apparmor profile
0efbe56 utils: change AppArmor profile for the current proc
f1f286a utils: change SELinux label for the current proc
a1cd1a6 handlers: use only the handler name if needed
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
| |
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
| |
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
| |
The aardvark-dns is an optional runtime dependency of the netavark.
This recipe introduces the aardvark-dns, so it can be integrated
to netavark.
Signed-off-by: Vasileios Anagnostopoulos <vasileios.anagnostopoulos@siemens.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
| |
Signed-off-by: Vasileios Anagnostopoulos <vasileios.anagnostopoulos@siemens.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
| |
The recipe is generated via cargo-bitbake. Modifications are done
in netavark.inc to allow re-genrating the recipe for future updates.
Signed-off-by: Pascal Bach <pascal.bach@siemens.com>
Signed-off-by: Vasileios Anagnostopoulos <vasileios.anagnostopoulos@siemens.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
| |
lxc-test-apparmor-mount and lxc-test-get_item related to apparmor,
since the lxc-test-apparmor has been already skipped, so also skip
those two cases.
Signed-off-by: Xiangyu Chen <xiangyu.chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
We drop our backported patch, since it is now part of the upstream
project.
We also drop {LINKSHARED} from the build, as with the updated buildah
and golang version bumps in oe-core, we get the following build error:
| # github.com/containers/buildah/cmd/buildah
| type:*crypto/elliptic.nistCurve[*crypto/internal/nistec.P384Point]: unreachable sym in relocation: crypto/elliptic.(*nistCurve[*crypto/internal/nistec.P384Point]).Add
| type:*crypto/elliptic.nistCurve[*crypto/internal/nistec.P384Point]: unreachable sym in relocation: crypto/elliptic.(*nistCurve[*crypto/internal/nistec.P384Point]).Add
It is unclear what the linked shared flag was providing in our build,
and we are generally ok with statically linked go applications. So we
drop the flag until a compelling reason exists to debug the linking
failure.
Bumping buildah to version v1.29.1-1-g7fa17a842, which comprises the following commits:
faf0d4fcb [release-1.29] Bump to Buildah v1.29.1
7d5ff3012 Update to c/image 5.24.1
94b723cb5 Bump to v1.29.0
c9cbc6d7d tests: improve build-with-network-test
5e3f26de2 Bump c/storagev1.45.3, c/imagev5.24.0, c/commonv0.51.0
b70fb1765 build(deps): bump github.com/onsi/gomega from 1.25.0 to 1.26.0
fe0256d38 Flake 3710 has been closed. Reenable the test.
f9ef51cbb [CI:DOCS] Fix two diversity issues in a tutorial
3ef898e41 build(deps): bump github.com/fsouza/go-dockerclient from 1.9.2 to 1.9.3
0d87e38b6 vendor in latests containers/(storage, common, image)
15bdd2aad fix bud-multiple-platform-with-base-as-default-arg flake
ac7458e70 stage_executor: while mounting stages use freshly built stage
e1cfcb240 build(deps): bump github.com/fsouza/go-dockerclient from 1.9.0 to 1.9.2
d1c82c29a build(deps): bump github.com/onsi/gomega from 1.24.2 to 1.25.0
4dec25346 vendor in latests containers/(storage, common, image, ocicyrpt)
c0f6c6b7a [Itests: change the runtime-flag test for crun
186b30168 [CI:DOCS] README: drop sudo
1950ab687 Fix multi-arch manifest-list build timeouts
d106e425a Cirrus: Update VM Images
67ab55bbb bud: Consolidate multiple synthetic LABEL instructions
9fced965e build, secret: allow realtive mountpoints wrt to work dir
938c03556 fixed squash documentation
59da1a7f7 build(deps): bump github.com/containerd/containerd from 1.6.14 to 1.6.15
4952862a2 Correct minor comment
820fafc88 Vendor in latest containers/(common, image, storage)
a75b263f7 system tests: remove unhelpful assertions
356668389 buildah: add prune command and expose CleanCacheMount API
a5e177586 vendor: bump c/storage to a747b27
60be7f250 Add support for --group-add to buildah from
00d8d94cb build(deps): bump actions/stale from 6 to 7
e33bb8678 Add documentation for buildah build --pull=missing
5828918bc build(deps): bump github.com/containerd/containerd from 1.6.12 to 1.6.14
4aa28f6a7 build(deps): bump github.com/docker/docker
7a4702ae2 parse: default ignorefile must not point to symlink outside context
67c2e4de5 buildah: wrap network setup errors
d9578d32c build, mount: allow realtive mountpoints wrt to work dir
57a77073a Update to F37 CI VM Images, re-enable prior-fedora
798a250d4 Update vendor or containers/(image, storage, common)
ca96c3678 build(deps): bump golang.org/x/crypto from 0.3.0 to 0.4.0
e0054a03d Update contact information
e5cc78c43 build(deps): bump golang.org/x/term from 0.2.0 to 0.3.0
46eea3158 Replace io/ioutil calls with os calls
0183471b9 [skip-ci] GHA/Cirrus-cron: Fix execution order
8428bc87b Vendor in containers/common
e60c4d7e5 build(deps): bump golang.org/x/sys from 0.2.0 to 0.3.0
ffed85036 remote-cache: support multiple sources and destinations
a1698cde6 Update c/storage after https://github.com/containers/storage/pull/1436
025a8df51 util.SortMounts(): make the returned order more stable
5e792e97b version: Bump to 1.29.0-dev
498b45770 [CI:BUILD] Cirrus: Migrate OSX task to M1
94560581d Update vendor of containers/(common, storage, image)
e6eb05f75 mount=type=cache: seperate cache parent on host for each user
20dd347b9 Fix installation instructions for Gentoo Linux
e162302df build(deps): bump github.com/containerd/containerd from 1.6.9 to 1.6.10
1cfb5eafb GHA: Reuse both cirrus rerun and check workflows
5bd5a4f9d Vendor in latest containers/(common,image,storage)
8e4979e81 build(deps): bump github.com/onsi/gomega from 1.24.0 to 1.24.1
3d755b5eb copier.Put(): clear up os/syscall mode bit confusion
1a18ab341 build(deps): bump golang.org/x/sys from 0.1.0 to 0.2.0
646c28290 Use TypeBind consistently to name bind/nullfs mounts
d4c661a77 Add no-new-privileges flag
1f372c08a Update vendor of containers/(common, image, storage)
b2054360a imagebuildah:build with --all-platforms must honor args for base images
a17238891 codespell code
217b2d524 Expand args and env when using --all-platforms
c554e5330 build(deps): bump github.com/onsi/gomega from 1.23.0 to 1.24.0
ed3707765 GHA: Simplify Cirrus-Cron check slightly
1091222b2 Stop using ubi8
cec864147 remove unnecessary (hence misleading) rmi
ffb00243f chroot: fix mounting of ro bind mounts
a237085fe executor: honor default ARG value while eval base name
481b3cc95 userns: add arbitrary steps/stage to --userns=auto test
dc733f1d2 Don't set allow.mount in the vnet jail on Freebsd
e867db39b copier: Preserve file flags when copying archives on FreeBSD
bf4420f25 Remove quiet flag, so that it works in podman-remote
8b1a490bd test: fix preserve rootfs with --mount for podman-remote
b24449990 test: fix prune logic for cache-from after adding content summary
4290ab5af vendor in latest containers/(storage, common, image)
1d0dd78c3 Fix RUN --mount=type=bind,from=<stage> not preserving rootfs of stage
7aa34b86f Define and use a safe, reliable test image
87e379d5b Fix word missing in Container Tools Guide
57f370d9d Makefile: Use $(MAKE) to start sub-makes in install.tools
3223610ff imagebuildah: pull cache from remote repo after adding content summary
f9693d0a5 Makefile: Fix install on FreeBSD
835668715 Ensure the cache volume locks are unlocked on all paths
0d7414703 Vendor in latest containers/(common,storage)
60382209e Simplify the interface of GetCacheMount and getCacheMount
8f955f801 Fix cache locks with multiple mounts
bdd62ef87 Remove calls to Lockfile.Locked()
cfa10d16c Maintain cache mount locks as lock objects instead of paths
ffb2f27a8 test: cleaning cache must not clean lockfiles
6838cbc81 run: honor lockfiles for multiple --mount instruction
f2e0af5c4 mount,cache: lockfiles must not be part of users cache content
6fa774ddc Update vendor containers/(common,image,storage)
bdb549478 [CI:BUILD] copr: buildah rpm should depend on containers-common-extra
eb9f3648b pr-should-include-tests: allow specfile, golangci
da214d6d4 build(deps): bump dawidd6/action-send-mail from 3.7.0 to 3.7.1
5baed90cd build(deps): bump github.com/docker/docker
82431441a build(deps): bump github.com/fsouza/go-dockerclient from 1.8.3 to 1.9.0
9226bd312 Update vendor containers/(common,image,storage)
26a29674a build(deps): bump actions/upload-artifact from 2 to 3
cadd801fc build(deps): bump actions/checkout from 2 to 3
8ec69a9ad build(deps): bump actions/stale from 1 to 6
356ab96d7 build(deps): bump dawidd6/action-send-mail from 2.2.2 to 3.7.0
27032ea0f build(deps): bump tim-actions/get-pr-commits from 1.1.0 to 1.2.0
5038a0dae sshagent: LockOSThread before setting SocketLabel
4f272ee49 Update tests for error message changes
788fddb1d Update c/image after https://github.com/containers/image/pull/1299
f232da006 Fix ident for dependabot gha block
acc230dc3 build(deps): bump github.com/containers/ocicrypt from 1.1.5 to 1.1.6
dc81652ff Fix man pages to match latest cobra settings
7260a4b0d build(deps): bump github.com/spf13/cobra from 1.5.0 to 1.6.0
fba8daf13 build(deps): bump github.com/onsi/gomega from 1.20.2 to 1.22.1
df8f0fa88 test: retrofit 'bud with undefined build arg directory'
9d43eb95e imagebuildah: warnOnUnsetBuildArgs while processing stages from executor
1a2af6864 Update contrib/buildahimage/Containerfile
e1c7a5df1 Cirrus CI add flavor parameter
b5c86a8e0 Correction - `FLAVOR` not `FLAVOUR`
f5fc96e79 Changed build argument from `RELEASE` to `FLAVOUR`
36afa3530 Combine buildahimage Containerfiles
472c46f98 bud.bats refactoring: $TEST_SCRATCH_DIR, part 2 of 2
ca65736da bud.bats refactoring: $TEST_SCRATCH_DIR, part 1 of 2
2adbe2a58 System test cleanup: document, clarify, fix
bf0a6e073 test: removing unneeded/expensive COPY
94ea37767 test: warning behaviour for unset/set TARGETOS,TARGETARCH,TARGETPLATFORM
eae3415b1 Bump to v1.28.1-dev
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
skopeo rdepends on it, and skopeo has been extended to native and
nativesdk, so container-host-config needs also be extended.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
The /etc/containers/policy.json[1] file is used to specify verification
policy. For now, we can see it's used by both cri-o and skopeo. To avoid
conflict, we use container-host-config to provide this file and make both
skopeo and cri-o depend on it.
[1] https://github.com/containers/image/blob/main/docs/containers-policy.json.5.md
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
* don't export CGO_CFLAGS/CGO_CXXFLAGS like the previous version
didn't before:
https://git.yoctoproject.org/meta-virtualization/commit/?id=aceed7bf95cc8a42c8f470d8edf3c6f03d49da00
* both docker-moby and docker-ce have the same issue as shown with
qemuarm build:
docker-moby: http://errors.yoctoproject.org/Errors/Details/690021/
docker-ce: http://errors.yoctoproject.org/Errors/Details/690020/
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The old crio.conf file can cause cri-o start failure. The error
message is as below.
validating runtime config: runtime validation: failed to \
translate monitor fields for runtime runc: cgroupfs manager \
conmon cgroup should be 'pod' or empty
Use new crio.conf file to solve this issue. The file is generated
by 'crio --config="" config --default' command, as indicated in
the old crio.conf file.
With this config file update, the crio.service can now start correctly.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
crio.service now reports the following error messages:
level=error msg="Writing clean shutdown supported file: \
open /var/lib/crio/clean.shutdown.supported: no such file or directory"
level=error msg="Failed to sync parent directory of clean \
shutdown file: open /var/lib/crio: no such file or directory"
Create /var/lib/crio to avoid such error message.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
| |
For cri-o, libselinux is optional, this can be seen from
its Makefile. So let's make selinux optional by using PACKAGECONFIG,
whose default value is determined by the DISTRO_FEATURES. In this
way, meta-selinux dependency is not necessary.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
libseccomp is not in oe-core. There's no need to check
meta-security any more.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
Instead of providing storage and registries configuration files
in this package, we inherit container-host which will provide a
common definition of these configs.
This allows multiple packages to ensure that the configuration
files are present, and not conflict in their installation.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This is a configuration only recipe that produces a package which
installs some common configuration files.
In this introduction we have both registries.conf and storage.conf.
Packages that require these files should RDEPEND on this package
(or inherit container-host.bbclass) and the files will be installed.
If conflicting requirements for these global configuration files
arise, they can be resolved through additions to this recipe, or by
providing a higher priority version of the .conf files.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping cri-o to version v1.25.2-11-g1a6bb9c9b, which comprises the following commits:
32d1cb665 mocks: update with new c/storage mocks
fb2753ee2 bump c/storage to fix map leak
3a9449924 Make storage unmount less strict
63f413530 Inject release-notes branch from GitHub actions
7037d1568 ResourceStore: delete entries after they're used
dfff7e6b4 ci-verify: Run get-scripts only on main branch
51d3621c2 Fix GitHub actions CI
aba30569c version: bump to 1.25.2
2845bb5f5 Update c/storage to v1.44.0
c431b53ca Use containerd v1.7.0-beta.0
36c4d1bc2 Bump conmon-rs to v0.4.0
dc9a6b1a8 version: bump to 1.25.1
2863b7d6e Fix lint CI on `main`
e7e849359 config: translate monitor fields when printing config
9edf0c5c7 workloads: fix whitespace
bea0f973d template: fix whitespace and comments in runtimes table
aa329a1e3 Update config README
556d85231 Allow complete Runtimes config to change
9dc1a70b4 Add basic integration tests for runtime reload
7fcef1dbd Add notes on runtime reload support to documentation
d51a01ad3 Reload runtime configs on reload
f06c01231 Invert conditional check in ValidateDefaultRuntime
7ef8fac1a Move default runtime validation to its own function
23081649b config: do not remove runc if different default runtime
b6b835512 use AddInheritableCapabilities
4e4749a27 config: add field AddInheritableCapabilities
24feb7778 server: return already created ID for duplicated requests
e2cce29fc resourcestore: add test for stages
7e7a8d923 server: update stages according to progress with resource creation
b15581620 resource store: return stage when a watcher is requested
398964d9e resource store: introduce stages
706f920f9 cli: fix some inconsistencies in the help text
ebc644a68 Update runc to v1.1.4
a05ddfb4a Fix lint CI
f253c4b7c test: add checkpoint/restore tests
b033570b3 test: do not hard code CNI location
15ec8f36c Provide support for checkpoint and restore
f06e5c8d5 vendor: bump conmon-rs to latest main
7076f72ab oci: add --systemd-cgroup to all runtime commands
f09c1d31b oci: refactor runtime command handling
08ce6edce oci: take ExecCmd
4f5ca801b Update golangci-lint, config and timeout
db3b399a8 server: add container GID to additional groups
b3f970d0f build(deps): bump google.golang.org/grpc from 1.48.0 to 1.49.0
f68121a5b build(deps): bump github.com/containers/kubensmnt from 1.1.3 to 1.2.0
cd90ce156 Bump Kubernetes to v1.25.0
3ba908fdd build(deps): bump github.com/containers/kubensmnt from 1.1.2 to 1.1.3
b241c32d8 Adding annotations for image and sandbox name.
9ef68e8e7 Fix bundle e2e tests
45966c89c build(deps): bump github.com/container-orchestrated-devices/container-device-interface
4b6936f8f bump cri-api to k8s 1.25 rc0
e27f28868 build(deps): bump github.com/urfave/cli/v2 from 2.11.1 to 2.11.2
1ecd63643 build(deps): bump github.com/containers/podman/v4
10069a178 build(deps): bump github.com/containerd/containerd from 1.6.6 to 1.6.8
4b10ed79f build(deps): bump github.com/prometheus/client_golang
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
We drop a patch that is now part of the release.
Bumping skopeo to version v1.11.0-39-g95680f3c, which comprises the following commits:
643a2359 Update c/image after https://github.com/containers/image/pull/1816
2c6e15b5 Run codespell on codebase
df708d16 [CI:DOCS] Disable dependabot
2acac8a6 Update module golang.org/x/term to v0.5.0
f9e2c676 Update golang.org/x/exp digest to 46f607a
47c7902e Remove unnecessary blank lines
c1a57ca1 Pre-allocate an array
2a7b1327 Simplify a condition
e7ab33e6 Rename a variable to avoid an underscore
e90c381a Add missing comment punctuation
70c06b4a Fix, or remove, comments using lint syntax
9137ac56 Simplify an increment
efc6e837 Reformat import statements
a8b9e4e3 Use %w when wrapping errors
99215e40 Remove a duplicate word
afa031e8 Use net/netip.Addr instead of net.IP
891ba3d4 s/interface{}/any/g
f2b3a9c0 Use golang.org/x/exp
f1a6d427 Use strings.Cut
22955d05 go mod tidy -go=1.18
007f01c6 [CI:BUILD] enable debuginfo for el8 copr builds
036bf598 [CI:BUILD] copr: fix el8 build and enable debuginfo
f9406bb0 Cirrus: Use human-readable CI VM Images
b41b85ab Update module gopkg.in/yaml.v2 to v3
d2fbec35 Add unit tests for tlsVerifyConfig's yaml.Unmarshaler
9e24a195 [CI:DOCS] Fix up language in README
cc958d3e Move to v1.11.1-dev
9d036f30 Bump to v1.11.0
83bcd136 [CI:DOCS] Format manual page documents
afbdaf8e Update module github.com/containers/common to v0.51.0
c9114248 Update module github.com/containers/image/v5 to v5.24.0
0fad1193 Add (skopeo generate-sigstore-key)
48b9d94c Update c/image after https://github.com/containers/image/pull/1810
80e3fd10 Touch up conscious language issues
9f04dfde Partially fix removal of temporary data in (make test-system)
36c480f6 Don't affect $XDG_RUNTIME_DIR of Podman starting the registry
850bc49d Update module github.com/containers/storage to v1.45.3
a98c1372 Fix storage.conf setup in test-system
19815502 Fix (test-integration), in a container without CI
67a8bef6 Cirrus: Fix c/image CI testing
63da8390 Bump github.com/containers/ocicrypt from 1.1.6 to 1.1.7
1fac61ef Cirrus: Add a common intra-test reset function
292962d3 Fix unnecessary use of podman in CI test
e239f32a Cirrus: Update to F37 CI VM Images
ee804858 Cirrus: Remove redundant package install attempt
0698e82b fix(deps): update module github.com/containers/storage to v1.45.1
bb1ac893 Add support for Fulcio and Rekor, and --sign-by-sigstore=param-file
03b5bdec Update c/image after https://github.com/containers/image/pull/1787
1133a2a3 fix(deps): update module github.com/containers/storage to v1.45.0
d0cf39d8 Cirrus: Skip OSX CI on release-branches
f17eafe8 Correctly use the stdout parameter in some places
58bccf38 fix(deps): update module golang.org/x/term to v0.4.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping runc to version v1.1.4-20-gc6781d10, which comprises the following commits:
f6e2cd3b nsexec: Check for errors in write_log()
9233b3d0 tests/int: test for /dev/null owner regression
fa722c1d libcontainer: skip chown of /dev/null caused by fd redirection
53ceeeab Explicitly pin busybox and debian downloads
3b6625c6 tests/integration/get-images.sh: fix busybox.tar.xz URL
b8ebeece tests: replace local hello world bundle with busybox bundle
e9f8fd32 [1.1] Vagrantfile.fedora: upgrade Fedora to 37
e6a8287c ci: shellcheck: update to 0.8.0, fix/suppress new warnings
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping runc to version v1.1.4-20-gc6781d10, which comprises the following commits:
f6e2cd3b nsexec: Check for errors in write_log()
9233b3d0 tests/int: test for /dev/null owner regression
fa722c1d libcontainer: skip chown of /dev/null caused by fd redirection
53ceeeab Explicitly pin busybox and debian downloads
3b6625c6 tests/integration/get-images.sh: fix busybox.tar.xz URL
b8ebeece tests: replace local hello world bundle with busybox bundle
e9f8fd32 [1.1] Vagrantfile.fedora: upgrade Fedora to 37
e6a8287c ci: shellcheck: update to 0.8.0, fix/suppress new warnings
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping podman-tui to version v0.7.0-68-g907b4d6, which comprises the following commits:
80431f0 Bump golang.org/x/crypto from 0.5.0 to 0.6.0
dc402ba Bump github.com/docker/docker
1fb79aa Bump github.com/rs/zerolog from 1.28.0 to 1.29.0
b1fe3c4 Bump github.com/containerd/containerd from 1.6.8 to 1.6.12
197f356 Bump github.com/sylabs/sif/v2 from 2.8.0 to 2.8.1
7f43ecc Bump github.com/docker/docker
1fdbb8d Bump golang.org/x/crypto from 0.4.0 to 0.5.0
6941d4b Bump github.com/navidys/tvxwidgets from 0.2.0 to 0.3.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
We adjust FILES to pickup new systemd utilities, but otherwise the
recipe is unchanged.
Bumping libpod to version v4.4.1-6-g73f52c051, which comprises the following commits:
84521f52d Update to c/image 5.24.1
8e5eb9a79 events + container inspect test: RHEL fixes
65c412383 Bump to v4.4.2-dev
34e8f3933 Bump to v4.4.1
7431f3d00 Update release notes for Podman 4.4.1
68a58c9a1 kube play: do not teardown unconditionally on error
a1cc3733b Resolve symlink path for qemu directory if possible
c3d781de0 events: document journald identifiers
52ae4a2c4 Quadlet: exit 0 when there are no files to process
1ee04fcc7 Cleanup podman-systemd.unit file
f3ea36100 Install podman-systemd.unit man page, make quadlet discoverable
2b7ea6442 Add missing return after errors
1d76a166c oci: bind mount /sys with --userns=(auto|pod:)
20d31a0a6 docs: specify order preference for FROM
590186e0d Cirrus: Fix & remove GraphQL API tests
7407ccdc3 test: adapt test to work on cgroupv1
c2971a66a make hack/markdown-preprocess parallel-safe
322802e40 Fix default handling of pids-limit
6ce1a11b7 system tests: fix volume exec/noexec test
e2a40dfa2 Bump to v4.4.1-dev
3443f453e Bump to v4.4.0
f42972714 Final release notes for v4.4.0
c927ad03b Emergency fix for RHEL8 gating tests
ef4e7b8c7 Do not mount /dev/tty into rootless containers
bbaa54258 Fixes port collision issue on use of --publish-all
c3566cda4 Fix usage of absolute windows paths with --image-path
9eb960707 fix #17244: use /etc/timezone where `timedatectl` is missing on Linux
5c94568e9 podman-events: document verbose create events
45b00b648 Making gvproxy.exe optional for building Windows installer
63f964c08 Add gvproxy to Windows packages
579c5dc80 Match VT device paths to be blocked from mounting exactly
605079dc8 Clean up more language for inclusiveness
f4bf448d8 Set runAsNonRoot=true in gen kube
45b9e17d7 quadlet: Add device support for .volume files
92bae973c fix: running check error when podman is default in wsl
edb7779cd fix: don't output "ago" when container is currently up and running
6870dae23 journald: podman logs only show logs for current user
cd4590908 journald: podman events only show events for current user
097ca6056 Add (podman {image,manifest} push --sign-by-sigstore=param-file.yaml)
916ea3e5d DB: make loading container states optional
de84be54e ps: do not sync container
3a65466ba Allow --device-cgroup-rule to be passed in by docker API
36875c265 [v4.4] Bump to Buildah v1.29.0
8ff381f45 Bump to v4.4.0-dev
dc3dfce94 Bump to v4.4.0-RC3
425da01d4 Create release notes for v4.4.0
300904a84 Cirrus: Update operating branch
9904fbed3 fix APIv2 python attach test flake
9d1c153cf ps: query health check in batch mode
fda62b2d8 make example volume import, not import volume
623ad2a63 Correct output when inspecting containers created with --ipc
2db468204 Vendor containers/(storage, image, common, buildah)
c4aae9b47 Get correct username in pod when using --userns=keep-id
6f519c9bd ps: get network data in batch mode
795708f8b build(deps): bump github.com/onsi/gomega from 1.25.0 to 1.26.0
4ed46c984 add hack/perf for comparing two container engines
b7ab889a7 systems: retrofit dns options test to honor other search domains
5925fe1a5 ps: do not create copy of container config
e2c44c3d4 libpod: set search domain independently of nameservers
06241077c libpod,netavark: correctly populate /etc/resolv.conf with custom dns server
366e1686a podman: relay custom DNS servers to network stack
2b650e37c (fix) mount_program is in storage.options.overlay
b29313811 Change example target to default in doc
86699954b network create: do not allow `default` as name
3ae84fe0a kube-play: add support for HostPID in podSpec
d0794ab9e build(deps): bump github.com/docker/docker
ca91cf416 Let's see if #14653 is fixed or not
8f7886515 Add support for podman build --group-add
f65d79f4c vendor in latests containers/(storage, common, build, image)
7be8ff564 unskip network update test
b5bfc2654 do not install swagger by default
2ad938ec6 pasta: skip "Local forwarder, IPv4" test
3db8ef37d add testbindings Makefile target
5ad72a234 update CI images to include pasta
f07aa2add [CI:DOCS] Add CNI deprecation notices to documentation
07d297ca3 Cirrus: preserve podman-server logs
4faa139b7 waitPidStop: reduce sleep time to 10ms
fd42c1dcb StopContainer: return if cleanup process changed state
e0f671007 StopSignal: add a comment
ac47d0719 StopContainer: small refactor
e8b35a8c2 waitPidStop: simplify code
51836aa47 e2e tests: reenable long-skipped build test
36510f60d Add openssh-clients to podmanimage
0bd51f6c8 Reworks Windows smoke test to tunnel through interactive session.
b5a6f3f91 fix bud-multiple-platform-with-base-as-default-arg flake
ef3f09879 Remove ReservedAnnotations from kube generate specification
6d3858b21 e2e: update test/README.md
17b5bd758 e2e: use isRootless() instead of rootless.IsRootless()
bfc5f07d9 Cleanup documentation on --userns=auto
120d16b61 Bump to v4.4.0-dev
24cc02a64 Bump to v4.4.0-rc2
ddf8e4989 Vendor in latest c/common
dc2bd0857 sig-proxy system test: bump timeout
193b2a836 build(deps): bump github.com/containernetworking/plugins
a581d2a04 rootless: rename auth-scripts to preexec-hooks
bdf100179 Docs: version-check updates
79865c290 commit: use libimage code to parse changes
bdc323cbf [CI:DOCS] Remove experimental mac tutorial
8db2b4b73 man: Document the interaction between --systemd and --privileged
70057c8b4 Make rootless privileged containers share the same tty devices as rootfull ones
067442b57 container kill: handle stopped/exited container
a218960bc Vendor in latest containers/(image,ocicrypt)
6f919af78 add a comment to container removal
5ac5aaa72 Vendor in latest containers/storage
daf747f16 Cirrus: Run machine tests on PR merge
4bb69abd5 fix flake in kube system test
9a206fdc9 kube play: complete container spec
a02a10f3f E2E Tests: Use inspect instead of actual data to avoid UDP flake
c2b36beb4 Use containers/storage/pkg/regexp in place of regexp
c433982d1 Vendor in latest containers/storage
11835d5d0 Cirrus: Support using updated/latest NV/AV in PRs
d9bf3f129 Limit replica count to 1 when deploying from kubernetes YAML
1ab833fb7 Set StoppedByUser earlier in the process of stopping
6ab883448 podman-play system test: refactor
470b68077 Bump to v4.4.0-dev
d8774a93c Bump to v4.4.0-RC1
882cd17f8 network: add support for podman network update and --network-dns-server
d2fb6cf05 service container: less verbose error logs
b10a906b5 Quadlet Kube - add support for PublishPort key
ad12d61c6 e2e: fix systemd_activate_test
758f20e20 Compile regex on demand not in init
3e2b9a28d [docker compat] Don't overwrite the NetworkMode if containers.conf overrides netns.
5b1bdf949 E2E Test: Play Kube set deadline to connection to avoid hangs
f4c81b0aa Only prevent VTs to be mounted inside privileged systemd containers
a5ce3b3cd e2e: fix play_kube_test
81a3f7cb8 Updated error message for supported VolumeSource types
2bf94b764 Introduce pkg retry logic in win installer task
db0323639 logformatter: include base SHA, with history link
37ade6be1 Network tests: ping redhat.com, not podman.io
2d8225cd4 cobra: move engine shutdown to Execute
35d2f61ec Updated options for QEMU on Windows hosts
28f13a74b Update Mac installer to use gvproxy v0.5.0
4cf06fe7e podman: podman rm -f doesn't leave processes
494db3e16 oci: check for valid PID before kill(pid, 0)
cf364703f linux: add /sys/fs/cgroup if /sys is a bind mount
1bd3d32c5 Quadlet: Add support for ConfigMap key in Kube section
4a7a45f97 remove service container _after_ pods
07cc49efd Kube Play - allow setting and overriding published host ports
9fe86ec7f oci: terminate all container processes on cleanup
6dd1d48fd Update win-sshproxy to 0.5.0 gvisor tag
e332b6246 Vendor in latest containers/common
92cdad031 Fix a potential defer logic error around locking
a7f53932a logformatter: nicer formatting for bats failures
ee3380e6b logformatter: refactor verbose line-print
e82045f73 e2e tests: stop using UBI images
6038200fe k8s-file: podman logs --until --follow exit after time
767947ab8 journald: podman logs --until --follow exit after time
c674b3dd8 journald: seek to time when --since is used
5f032256d podman logs: journald fix --since and --follow
7826e1ced Preprocess files in UTF-8 mode
4587e7fdb Bump golang.org/x/tools from 0.4.0 to 0.5.0 in /test/tools
eea78ec7b Vendor in latest containers/(common, image, storage)
54afda22b Switch to C based msi hooks for win installer
710eeb340 hack/bats: improve usage message
d7ac11005 hack/bats: add --remote option
1a2e54ce6 hack/bats: fix root/rootless logic
d0c89e90b Describe copy volume options
bfdffb5b6 Support sig-proxy for podman-remote attach and start
6886e80b4 libpod: fix race condition rm'ing stopping containers
fb73121c4 e2e: fix run_volume_test
86965f758 Add support for Windows ARM64
f9e8e8cfd Add shared --compress to man pages
df02cb51e Add container error message to ContainerState
d92bfd244 Man page checker: require canonical name in SEE ALSO
2a16e0484 system df: improve json output code
03c7f47aa kube play: fix the error logic with --quiet
9f0a37cd4 System tests: quadlet network test
e47964417 Fix: List container with volume filter
cd3492304 adding -dryrun flag
347d5372e Quadlet Container: Add support for EnvironmentFile and EnvironmentHost
68fbebfac Kube Play: use passthrough as the default log-driver if service-container is set
635c00840 System tests: add missing cleanup
8e77f4c99 System tests: fix unquoted question marks
16b595c32 Build and use a newer systemd image
a061d793d Quadlet Network - Fix the name of the required network service
3ebb822e2 System Test Quadlet - Volume dependency test did not test the dependency
a741299ef fix `podman system connection - tcp` flake
1d3fd5383 vendor: bump c/storage to a747b27
598b93722 Fix instructions about setting storage driver on command-line
18b21b89c Test README - point users to hack/bats
2000c4c80 System test: quadlet kube basic test
479052afa Fixed `podman update --pids-limit`
553df8748 podman-remote,bindings: trim context path correctly when its emptydir
9f5f092f1 Quadlet Doc: Add section for .kube files
200f86ede e2e: fix containers_conf_test
0c94f6185 Allow '/' to prefix container names to match Docker
0c6805880 Remove references to qcow2
1635db474 Fix typos in man page regarding transient storage mode.
85ceb7fb5 make: Use PYTHON var for .install.pre-commit
338b28393 Add containers.conf read-only flag support
d27ebf2ee Explain that relabeling/chowning of volumes can take along time
45b180c1f events: support "die" filter
1e84e1a8d infra/abi: refactor ContainerRm
3808067ff When in transient store mode, use rundir for bundlepath
0179aa245 quadlet: Support Type=oneshot container files
236f0cc50 hacks/bats: keep QUADLET env var in test env
97f9d625a New system tests for conflicting options
bfec23c36 Vendor in latest containers/(buildah, image, common)
24b1e81c5 Output Size and Reclaimable in human form for json output
4724fa307 podman service: close duplicated /dev/null fd
8e05caef6 ginkgo tests: apply ginkgolinter fixes
3e48d74c8 Add support for hostPath and configMap subpath usage
3ac5d1009 export: use io.Writer instead of file
1bac16096 rootless: always create userns with euid != 0
90719d38f rootless: inhibit copy mapping for euid != 0
02555d166 pkg/domain/infra/abi: introduce `type containerWrapper`
987c8e3a7 vendor: bump to buildah ca578b290144 and use new cache API
0cf36684c quadlet: Handle booleans that have defaults better
dd428af89 quadlet: Rename parser.LookupBoolean to LookupBooleanWithDefault
ddeb9592c Add podman-clean-transient.service service
80de85081 Stop recording annotations set to false
9187df5b2 Unify --noheading and -n to be consistent on all commands
2bbeba70b pkg/domain/infra/abi: add `getContainers`
ae706e61b Update vendor of containters/(common, image)
24ab178fb specfile: Drop user-add depedency from quadlet subpackage.
e9243f904 quadlet: Default BINDIR to /usr/bin if tag not specified
d974a79e2 Quadlet: add network support
070b69205 Add comment for jsonMarshal command
d1496afb5 Always allow pushing from containers-storage
0bc3d3579 libpod: move NetNS into state db instead of extra bucket
80878f20b Add initial system tests for quadlets
20b10574d quadlet: Add --user option
4fa65ad0d libpod: remove CNI word were no longer applicable
1424f0958 libpod: fix header length in http attach with logs
12d058400 podman-kube@ template: use `podman kube`
3868d2d82 build(deps): bump github.com/docker/docker
f4d0496b5 wait: add --ignore option
461726a3f qudlet: Respect $PODMAN env var for podman binary
a4a647c0b e2e: Add assert-key-is-regex check to quadlet e2e testsuite
84f3ad356 e2e: Add some assert to quadlet test to make sure testcases are sane
97f63da67 remove unmapped ports from inspect port bindings
fa4b34618 update podman-network-create for clarity
3718ac8e9 Vendor in latest containers/common with default capabilities
f0a8c0bd9 pkg/rootless: Change error text ...
290019c48 rootless: add cli validator
71f96c2e6 rootless: define LIBEXECPODMAN
14ee8faff doc: fix documentation for idmapped mounts
dcbf7b448 bump golangci-lint to v1.50.1
b1bb84637 build(deps): bump github.com/onsi/gomega from 1.24.1 to 1.24.2
89939dea9 [CI:DOCS] podman-mount: s/umount/unmount/
46b7d8d1e create/pull --help: list pull policies
bddd3f5b5 Network Create: Add --ignore flag to support idempotent script
866426a93 Make qemu security model none
fdcc2257d libpod: use OCI idmappings for mounts
4a5581ce0 stop reporting errors removing containers that don't exist
80405a2a5 test: added test from wait endpoint with to long label
fd92a6807 quadlet: Default VolatileTmp to off
b4d90b2eb build(deps): bump github.com/ulikunitz/xz from 0.5.10 to 0.5.11
f155a4e78 docs/options/ipc: fix list syntax
b3c7c1872 Docs: Add dedicated DOWNLOAD doc w/ links to bins
f825481a4 Make a consistently-named windows installer
45a40bf58 checkpoint restore: fix --ignore-static-ip/mac
95cc7e052 add support for subpath in play kube for named volumes
364ed81b4 build(deps): bump golang.org/x/net from 0.2.0 to 0.4.0
59118b42b golangci-lint: remove three deprecated linters
08741496d parse-localbenchmarks: separate standard deviation
bf66b6ac7 build(deps): bump golang.org/x/term from 0.2.0 to 0.3.0
7bd1dbb75 podman play kube support container startup probe
43e307b84 Add podman buildx version support
7c6873b23 Cirrus: Collect benchmarks on machine instances
b361a42e6 Cirrus: Remove escape codes from log files
59ce7cf1c [CI:DOCS] Clarify secret target behavior
fe3d3256e Fix typo on network docs
9f6cf50d5 podman-remote build add --volume support
2dde30b93 remote: allow --http-proxy for remote clients
2f29639bd Cleanup kube play workloads if error happens
1ed982753 health check: ignore dependencies of transient systemd units/timers
04ea8eade fix: event read from syslog
db4d01871 Fixes secret (un)marshaling for kube play.
7665bbc12 Remove 'you' from man pages
1bfaf5194 build(deps): bump golang.org/x/tools from 0.3.0 to 0.4.0 in /test/tools
97c56eef6 [CI:DOCS] test/README.md: run tests with podman-remote
8b87665f2 e2e: keeps the http_proxy value
9b702460e Makefile: Add podman-mac-helper to darwin client zip
c7b936a41 test/e2e: enable "podman run with ipam none driver" for nv
45f8b1ca9 [skip-ci] GHA/Cirrus-cron: Fix execution order
4fa307f14 kube sdnotify: run proxies for the lifespan of the service
7d16c2b69 Update containers common package
75f421571 podman manpage: Use man-page links instead of file names
86f4bd4f5 e2e: fix e2e tests in proxy environment
4134a3723 Fix test
28774f18c disable healthchecks automatically on non systemd systems
1ea00ebda Quadlet Kube: Add support for userns flag
07a386835 [CI:DOCS] Add warning about --opts,o with mount's -o
93d2ec148 Add podman system prune --external
f1dbfda80 Add some tests for transient store
e74b3f24e runtime: In transient_store mode, move bolt_state.db to rundir
25d9af8f4 runtime: Handle the transient store options
56115d5e5 libpod: Move the creation of TmpDir to an earlier time
c9961e18c network create: support "-o parent=XXX" for ipvlan
2f5025a2d compat API: allow MacAddress on container config
a55413c80 Quadlet Kube: Add support for relative path for YAML file
8c3af7186 notify k8s system test: move sending message into exec
a651cdfbc runtime: do not chown idmapped volumes
f3c5b0f9d quadlet: Drop ExecStartPre=rm %t/%N.cid
d61618ad4 Quadlet Kube: Set SyslogIdentifier if was not set
eaab4b99a Add a FreeBSD cross build to the cirrus alt build task
39b6ccb38 Add completion for --init-ctr
af86b4f62 Fix handling of readonly containers when defined in kube.yaml
98a1b551f Build cross-compilation fixes
6ed8dc17c libpod: Track healthcheck API changes in healthcheck_unsupported.go
16cf34dc3 quadlet: Use same default capability set as podman run
b34ab8b5f quadlet: Drop --pull=never
098ad52ec quadlet: Change default of ReadOnly to no
1c3fddfaf quadlet: Change RunInit default to no
d19ea6a60 quadlet: Change NoNewPrivileges default to false
a93a390b8 test: podman run with checkpoint image
f4401567c Enable 'podman run' for checkpoint images
3a362462c test: Add tests for checkpoint images
bdd5f8245 CI setup: simplify environment passthrough code
10e020c65 Init containers should not be restarted
c83efd0f0 Update c/storage after https://github.com/containers/storage/pull/1436
486790f61 Set the latest release explicitly
d19e1526d add friendly comment
1d84f0adb fix an overriding logic and load config problem
2b6cf1d07 Update the issue templates
2862ecf28 Update vendor of containers/(image, buildah)
1c1a8d33f [CI:DOCS] Skip windows-smoke when not useful
190bab553 [CI:DOCS] Remove broken gate-container docs
bb10095ec OWNERS: add Jason T. Greene
68d41c68d hack/podmansnoop: print arguments
009f5ec67 Improve atomicity of VM state persistence on Windows
052174891 [CI:BUILD] copr: enable podman-restart.service on rpm installation
54ef7f98d macos: pkg: Use -arm64 suffix instead of -aarch64
fe548dd0b linux: Add -linux suffix to podman-remote-static binaries
d22395007 linux: Build amd64 and arm64 podman-remote-static binaries
71f92d263 container create: add inspect data to event
d2ac99d65 Allow manual override of install location
f17479c71 Run codespell on code
cb96eac45 Add missing parameters for checkpoint/restore endpoint
d16129330 Add support for startup healthchecks
2df0d9da9 Add information on metrics to the `network create` docs
96c208efb Introduce podman machine os commands
32d80378e Document that ignoreRootFS depends on export/import
1d031bf3b Document ignoreVolumes in checkpoint/restore endpoint
279a4ac77 Remove leaveRunning from swagger restore endpoint
07940764c libpod: Add checks to avoid nil pointer dereference if network setup fails
dce7b3a5b Address golangci-lint issues
3eeb50d48 Bump golang version to 1.18
fbbef79c8 Documenting Hyper-V QEMU acceleration settings
9a6b70155 Kube Play: fix the handling of the optional field of SecretVolumeSource
35b46a420 Update Vendor of containers/(common, image, buildah)
75f6a1d59 Fix swapped NetInput/-Output stats
f06869168 libpod: Use O_CLOEXEC for descriptors returned by (*Container).openDirectory
fad50a9f2 chore: Fix MD for Troubleshooting Guide link in GitHub Issue Template
64a450c51 test/tools: rebuild when files are changed
2ddf1c5cb ginkgo tests: apply ginkgolinter fixes
c7827957a ginkgo: restructure install work flow
ce7d4bbc7 Fix manpage emphasis
5d26628df specgen: support CDI devices from containers.conf
7eb11e7bb vendor: update containers/common
6502b1faa pkg/trust: Take the default policy path from c/common/pkg/config
ba522e8f3 Add validate-in-container target
3bb9ed4f0 Adding encryption decryption feature
e2fa94e8a container restart: clean up healthcheck state
a4ba5f449 Add support for podman-remote manifest annotate
3084ed468 Quadlet: Add support for .kube files
fb429dbe3 Update vendor of containers/(buildah, common, storage, image)
a891199b9 specgen: honor user namespace value
a575111ad [CI:DOCS] Migrate OSX Cross to M1
285d6c9ba quadlet: Rework uid/gid remapping
f5a43eea2 GHA: Fix cirrus re-run workflow for other repos.
50d72bc63 ssh system test: skip until it becomes a test
e7eed5aa9 shell completion: fix hard coded network drivers
504fcbbf9 libpod: Report network setup errors properly on FreeBSD
dd4d212b0 E2E Tests: change the registry for the search test to avoid authentication
1498f924b pkginstaller: install podman-mac-helper by default
a1b32866c Fix language. Mostly spelling a -> an
caa2dfe01 podman machine: Propagate SSL_CERT_FILE and SSL_CERT_DIR to systemd environment.
72966a32c [CI:DOCS] Fix spelling and typos
ae8a5a892 Modify man page of "--pids-limit" option to correct a default value.
f950b1511 Update docs/source/markdown/podman-remote.1.md
a9094a78a Update pkg/bindings/connection.go
b6850e772 Add more documentation on UID/GID Mappings with --userns=keep-id
0d270ae38 support podman-remote to connect tcpURL with proxy
607cd39e1 Removing the RawInput from the API output
14ef6a91b fix port issues for CONTAINER_HOST
34020b353 CI: Package versions: run in the 'main' step
db34c913b build(deps): bump github.com/rootless-containers/rootlesskit
4c1294ccb pkg/domain: Make checkExecPreserveFDs platform-specific
58869dcc3 e2e tests: fix restart race
7c1ad8a58 Fix podman --noout to suppress all output
9610d4c7b remove pod if creation has failed
f36b3bc81 pkg/rootless: Implement rootless.IsFdInherited on FreeBSD
21f6902ec Fix more podman-logs flakes
1a839a96d healthcheck system tests: try to fix flake
36f8dfaa0 libpod: treat ESRCH from /proc/PID/cgroup as ENOENT
021a23b34 GHA: Configure workflows for reuse
c7073b5fc compat,build: handle docker's preconfigured cacheTo,cacheFrom
dceaa7603 docs: deprecate pasta network name
a9852aa8f utils: Enable cgroup utils for FreeBSD
e5f7fbcbe pkg/specgen: Disable kube play tests on FreeBSD
978c52850 libpod/lock: Fix build and tests for SHM locks on FreeBSD
3371c9d25 podman cp: fix copying with "." suffix
f0dba82bb pkginstaller: bump Qemu to version 7.1.0
f6da2b060 specgen,wasm: switch to crun-wasm wherever applicable
2b4068a03 vendor: bump c/common to v0.50.2-0.20221111184705-791b83e1cdf1
1c79b01f6 libpod: Make unit test for statToPercent Linux only
95bb6efff Update vendor of containers/storage
69d737ef1 fix connection usage with containers.conf
dd98e3cc6 Add --quiet and --no-info flags to podman machine start
00b2bc9b6 Add hidden podman manifest inspect -v option
05c48402b Bump github.com/onsi/gomega from 1.24.0 to 1.24.1
836ca6c00 Add podman volume create -d short option for driver
5df00c6f7 Vendor in latest containers/(common,image,storage)
bc77c034f Add podman system events alias to podman events
ae9a2d26d Fix search_test to return correct version of alpine
75fdbea63 Bump golang.org/x/tools from 0.1.12 to 0.3.0 in /test/tools
329b053cf GHA: Fix undefined secret env. var.
d60c27c9d Release notes for 4.3.1
a13a59a70 GHA: Fix make_email-body script reference
f049fef85 Add release keys to README
dca407d46 GHA: Fix typo setting output parameter
fcfb7d292 GHA: Fix typo.
db439dd23 New tool, docs/version-check
c0a9c6ebc Formalize our compare-against-docker mechanism
a2c43d434 Add restart-sec for container service files
4513fde80 test/tools: bump module to go 1.17
440807210 contrib/cirrus/check_go_changes.sh: ignore test/tools/vendor
9f9bf6fb4 Bump github.com/coreos/go-systemd/v22 from 22.4.0 to 22.5.0
a1323d31d Bump golang.org/x/term from 0.1.0 to 0.2.0
8b8ce8d53 Bump golang.org/x/sys from 0.1.0 to 0.2.0
fa2b4aeef Bump github.com/container-orchestrated-devices/container-device-interface
69ed903b2 build(deps): bump golang.org/x/tools from 0.1.12 to 0.2.0 in /test/tools
d95684676 libpod: Add FreeBSD support in packageVersion
d9aceadea Allow podman manigest push --purge|-p as alias for --rm
b5ee4de8c [CI:DOCS] Add performance tutorial
cfa651f80 [CI:DOCS] Fix build targets in build_osx.md.
3e08f8535 fix --format {{json .}} output to match docker
f807b6784 remote: fix manifest add --annotation
314cba259 Skip test if `--events-backend` is necessary with podman-remote
1c8196a9a kube play: update the handling of PersistentVolumeClaim
616fca9ff system tests: fix a system test in proxy environment
85ae935af Use single unqualified search registry on Windows
cb8c9af5d test/system: Add, use tcp_port_probe() to check for listeners rather than binds
348c3f283 test/system: Add tests for pasta(1) connectivity
b3cf83684 test/system: Move network-related helpers to helpers.network.bash
ea4f168b3 test/system: Use procfs to find bound ports, with optional address and protocol
7e3d04fbc test/system: Use port_is_free() from wait_for_port()
aa47e05ae libpod: Add pasta networking mode
6dd508b8e More log-flake work
3ebcfdbbc Fix test flakes caused by improper podman-logs
919678d2f fix incorrect systemd booted check
0334d8d61 Cirrus: Add tests for GHA scripts
66d857cdd GHA: Update scripts to pass shellcheck
d17b7d852 Cirrus: Shellcheck github-action scripts
2ee40287e Cirrus: shellcheck support for github-action scripts
462ce32e6 GHA: Fix cirrus-cron scripts
d5031946a Makefile: don't install to tmpfiles.d on FreeBSD
85f4d3717 Make sure we can build and read each line of docker py's api client
cdb00332d Docker compat build api - make sure only one line appears per flush
efbad590d Run codespell on code
571833d56 Update vendor of containers/(image, storage, common)
049a5d82f Allow namespace path network option for pods.
f3195c930 Cirrus: Never skip running Windows Cross task
35523d560 GHA: Auto. re-run failed cirrus-cron builds once
3a85d537b GHA: Migrate inline script to file
980d5b362 GHA: Simplify script reference
417490128 test/e2e: do not use apk in builds
3fee351c3 remove container/pod id file along with container/pod
442df2967 Cirrus: Synchronize windows image
274d0f495 Add --insecure,--tls-verify,--verbose flags to podman manifest inspect
cac4919bf runtime: add check for valid pod systemd cgroup
d7e70c748 CI: set and verify DESIRED_NETWORK (netavark, cni)
6ec2bcb68 [CI:DOCS] troubleshooting: document keep-id options
f95ff4f46 Man pages: refactor common options: --security-opt
853072455 Cirrus: Guarantee CNI testing w/o nv/av present
fd9de876f Cirrus: temp. disable all Ubuntu testing
ecd1927b4 Cirrus: Update to F37beta
56fae7dd0 buildah bud tests: better handling of remote
7ec743fe7 quadlet: Warn in generator if using short names
884350d99 Add Windows Smoke Testing
f6c74324b Add podman kube apply command
d1f3dd9e5 docs: offer advice on installing test dependencies
8e55abafd Fix documentation on read-only-tmpfs
b8acdb34c version bump to 4.4.0-dev
b8e03ab44 deps: bump go-criu to v6
fc65d72c3 Makefile: Add cross build targets for freebsd
e23444fbc pkg/machine: Make this build on FreeBSD/arm64
3279342ff pkg/rctl: Remove unused cgo dependency
d76bf4cb5 man pages: assorted underscore fixes
bb78ba19e Upgrade GitHub actions packages from v2 to v3
0d505f20f vendor github.com/godbus/dbus/v5@4b691ce
b20ef9c34 [CI:DOCS] fix --tmpdir typos
9003cdbf6 Do not report that /usr/share/containers/storage.conf has been edited.
71f0c9f33 Eval symlinks on XDG_RUNTIME_DIR
3ad5827b2 hack/podmansnoop
83313c547 rootless: support keep-id with one mapping
5dad34212 rootless: add argument to GetConfiguredMappings
6fe64591d Update vendor containers/(common,storage,buildah,image)
f355900d3 Fix deadlock between 'podman ps' and 'container inspect' commands
59299b519 Add information about where the libpod/boltdb database lives
320ce8c9f Consolidate the dependencies for the IsTerminal() API
871172e6f Ensure that StartAndAttach locks while sending signals
d50a55233 ginkgo testing: fix podman usernamespace join
f0f12658d Test runners: nuke podman from $PATH before tests
3e6637a3b volumes: Fix idmap not working for volumes
237d41f3f FIXME: Temporary workaround for ubi8 CI breakage
11e4c0403 System tests: teardown: clean up volumes
a141c9ac2 update api versions on docs.podman.io
fdc9ca076 system tests: runlabel: use podman-under-test
05bdc7294 system tests: podman network create: use random port
f0ba2d89e sig-proxy test: bump timeout
0ce234425 play kube: Allow the user to import the contents of a tar file into a volume
bac907abf Clarify the docs on DropCapability
33eb45c47 quadlet tests: Disable kmsg logging while testing
b07ba2441 quadlet: Support multiple Network=
8716de2ac quadlet: Add support for Network=...
721922fa7 Fix manpage for podman run --network option
6042ca7fd quadlet: Add support for AddDevice=
f6f65f49d quadlet: Add support for setting seccomp profile
a9f0957c2 quadlet: Allow multiple elements on each Add/DropCaps line
af67f15bc quadlet: Embed the correct binary name in the generated comment
2b0d9cd94 quadlet: Drop the SocketActivated key
d7e248dcf quadlet: Switch log-driver to passthrough
998f834b0 quadlet: Change ReadOnly to default to enabled
0de98b1b6 quadlet tests: Run the tests even for (exected) failed tests
8d41c7d2e quadlet tests: Fix handling of stderr checks
5c3a22e8c Remove unused script file
c4ebe9e2a notifyproxy: fix container watcher
221cfc687 container/pod id file: truncate instead of throwing an error
b7f05cef0 quadlet: Use the new podman create volume --ignore
734c435e0 Add podman volume create --ignore
4966f509b logcollector: include aardvark-dns
6a9c7a580 build(deps): bump github.com/stretchr/testify from 1.8.0 to 1.8.1
e081d22b0 build(deps): bump github.com/BurntSushi/toml from 1.2.0 to 1.2.1
622638b72 docs: generate systemd: point to kube template
c1de4d3ce docs: kube play: mention restart policy
0572e5972 Fixes: 15858 (podman system reset --force destroy machine)
7a9c14d62 fix search flake
4e29ce2ba use cached containers.conf
6c7ae378c adding regex support to the ancestor ps filter function
e5032a8de Fix `system df` issues with `-f` and `-v`
c9c2f644d markdown-preprocess: cross-reference where opts are used
77f8eaa73 Default qemu flags for Windows amd64
e16800e8b build(deps): bump golang.org/x/text from 0.3.8 to 0.4.0
d70ffdaeb Update main to reflect v4.3.0 release
b8c24bbb4 build(deps): bump github.com/docker/docker
b4374f2bd move quadlet packages into pkg/systemd
34235b272 system df: fix image-size calculations
34ee37b91 Add man page for quadlet
84ed9bd5e Fix small typo
120a77e39 testimage: add iproute2 & socat, for pasta networking
30e66d600 Set up minikube for k8s testing
0a6d8b94c Makefile: don't install systemd generator binaries on FreeBSD
cadb64d32 [CI:BUILD] copr: podman rpm should depend on containers-common-extra
02bb7c2cf Podman image: Set default_sysctls to empty for rootless containers
234b2230e Don't use github.com/docker/distribution
9e6b37ec1 libpod: Add support for 'podman top' on FreeBSD
21081355a libpod: Factor out jail name construction from stats_freebsd.go
b82b27cc4 pkg/util: Add pid information descriptors for FreeBSD
62bb59d3b Initial quadlet version integrated in golang
44bac51fc bump golangci-lint to v1.49.0
01a3245d7 Update vendor containers/(common,image,storage)
75222add5 Allow volume mount dups, iff source and dest dirs
cb2631bf3 rootless: fix return value handling
783b4e914 Change to correct break statements
04c126a3b vendor containers/psgo@v1.8.0
c39b71776 Clarify that MacOSX docs are client specific
51c376c8a libpod: Factor out the call to PidFdOpen from (*Container).WaitForExit
bb2b47dc7 Add swagger install + allow version updates in CI
2a622c8af Cirrus: Fix windows clone race
973710c8b build(deps): bump github.com/docker/docker
b35fab6f1 kill: wait for the container
ba276e117 generate systemd: set --stop-timeout for stopping containers
5113343a5 hack/tree_status.sh: print diff at the end
bab816953 Fix markdown header typo
bd4ee2d57 markdown-preprocess: add generic include mechanism
9cdea7fb3 markdown-preprocess: almost complete OO rewrite
33858c1cf Update tests for changed error messages
05119a917 Update c/image after https://github.com/containers/image/pull/1299
8c7673857 Man pages: refactor common options (misc)
617a2de3a Man pages: Refactor common options: --detach-keys
69815a7f1 vendor containers/storage@main
a584bb4e7 Man pages: refactor common options: --attach
0510dd2f1 build(deps): bump github.com/fsnotify/fsnotify from 1.5.4 to 1.6.0
1d18dc267 KillContainer: improve error message
5da54e183 docs: add missing options
57ddeffd0 Man pages: refactor common options: --annotation (manifest)
b256f5f58 build(deps): bump github.com/spf13/cobra from 1.5.0 to 1.6.0
f16e9acc6 system tests: health-on-failure: fix broken logic
7ff8c8f79 build(deps): bump golang.org/x/text from 0.3.7 to 0.3.8
00adeda80 build(deps): bump github.com/onsi/gomega from 1.20.2 to 1.22.1
d08b4c133 ContainerEngine.SetupRootless(): Avoid calling container.Config()
03c5f9d02 Container filters: Avoid use of ctr.Config()
af38c79e3 Avoid unnecessary calls to Container.Spec()
55191ecc2 Add and use Container.LinuxResource() helper
7b84a3a43 play kube: notifyproxy: listen before starting the pod
2bee2216c play kube: add support for configmap binaryData
1038f063e Add and use libpod/Container.Terminal() helper
b47b48fd0 Revert "Add checkpoint image tests"
f437078d2 Revert "cmd/podman: add support for checkpoint images"
4dd67272e healthcheck: fix --on-failure=stop
d4052c1aa Man pages: Add mention of behavior due to XDG_CONFIG_HOME
b5950a918 build(deps): bump github.com/containers/ocicrypt from 1.1.5 to 1.1.6
c34b5be99 Avoid unnecessary timeout of 250msec when waiting on container shutdown
02040089a health checks: make on-failure action retry aware
5b71070e4 libpod: Remove 100msec delay during shutdown
b4b701139 libpod: Add support for 'podman pod' on FreeBSD
7f8964a78 libpod: Factor out cgroup validation from (*Runtime).NewPod
d71160539 libpod: Move runtime_pod_linux.go to runtime_pod_common.go
c35a70d21 specgen/generate: Avoid a nil dereference in MakePod
e187b9711 libpod: Factor out cgroups handling from (*Pod).refresh
713428df0 Adds a link to OSX docs in CONTRIBUTING.md
f8b659d09 Man pages: refactor common options: --os-version
8b189c0a0 Create full path to a directory when DirectoryOrCreate is used with play kube
d4f622da7 Return error in podman system service if URI scheme is not unix/tcp
51c357841 Man pages: refactor common options: --time
0e4eeb52e man pages: document some --format options: images
e136376d1 Clean up when stopping pods
11e83a095 Update vendor of containers/buildah v1.28.0
1e71d124e Proof of concept: nightly dependency treadmill
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
| |
The upstream repository has switched to a main branch, we update
our recipe to match.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
k3s is using a lot of SRC_URIs and some of them have corrsponding
recipe in meta-virt, which are used by k8s. These components'
SRC_URIs are better to be kept in sync, because this avoids two
local git repos (Yocto supports fetching locally) which are totally
the same. Remove the '.git' suffix from these recipes to sync the
SRC_URIs.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping containerd to version v1.7.0-beta.3-71-gfdfdc9bfc, which comprises the following commits:
fe0116ec2 CI: skip some jobs when `repo != containerd/containerd`
b944b108d Clean up repeated package import
76a62e52a Use http constants instead of string
13652e081 fetch: Use data from descriptor when available.
6ae3e5df6 Fix retry logic within devmapper device deactivation
6adb6a727 Rename release CI job
aed3b0a70 Clean CI file
617c66dcc Add critest.exe in $PATH
757b8f702 keep the uppercase letter for flag info
e5c57f242 update hcsshim tag to v0.10.0-rc.5 and revendor
1f35b0336 Fix sandbox exit monitor
d1cd9757e Generate GRPC for runtime task service
86c238c87 Generate GRPC for runtime sandbox API
99580e0aa Update TTRPC and Protobuild dependencies
b9b44ed5c Removing end of line for last line
dbf384a5a Export remote snapshotter label handler
d6070f8a7 go.mod: github.com/urfave/cli v1.22.12
2f1aad03a cleanup useless IntToInt32Array func
e551d734f pkg/epoch: drop timezone
eeab05242 Make `mount.UnmountRecursive` compatible to `mount.UnmountAll`
58bd5a094 go.mod: update github.com/containerd/nri.
c46aaa8df Add integration test for tracing on image pull
7ec75b120 Update CNI to 1.2.0
306db3e70 go.mod: github.com/containerd/cgroups/v3 v3.0.0
5082fb395 go.mod: go.opentelemetry.io/otel v1.12.0
8886b05dc integration: use sleep inf with busybox:1.36
005d30e84 deflake: TestContainerPids
6de94a4cc log/logtest: add `testcase` as debug field
97ddac539 RELEASES.md: update release status
b36b41552 cri: mkdir /etc/cni with 0755, not 0700
7eb652830 release: Ubuntu 18.04 -> 20.04 (glibc 2.27 -> 2.31)
b473c2922 release: Add "cri-containerd.DEPRECATED.txt" in the deprecated cri-containerd-* bundles
d00655092 Update the EOL date for 1.5 release
336c0cd2c Prepare release notes for v1.7.0-beta.3
77e51e9b0 Adding support to run hcsshim from local clone
27cf7f87d fix(docs): minor fix on the windows installation steps
d21578674 runtime docs: Clarify delete cwd behavior
34d587818 Use mount.Target to specify subdirectory of rootfs mount
21fe0ceaa Move PLEG events for pause container to podsandbox
12359559d reused package errdefs for not supported err
4f39b164f pkg/cri: optimize slice initialization
9f6058d02 pushWriter: correctly propagate errors
361291559 Update vendored files
d845b2a9c go.mod: update goresctrl to v0.3.0
ac72483e8 Fix syntax errors in the document
f9f845533 Backport #7393 to sbserver
0cbfb3375 Backport #7661 to sbserver
41eabf134 Backport #7685 to sbserver
b0d7a9697 Backport unit test from #7882 to sbserver
b1c5c57be Fix Memory Limit test
d1e1a1646 release/Dockerfile: set DEBIAN_FRONTEND=noninteractive
7ddd8add4 CI: remove redundant archs from ci.yml
ffabc8a29 CI: test release.yml on every PR
b9bd10c14 use local variable for rt when iterating collectors
1ade777c2 Add basic spec and mounts for Darwin
66eeee043 Update hcsshim tag to v0.10.0-rc.4
3c8469a78 Use Platform instead of generated API
802c6c5c0 fuzzing: improve archive fuzzer
40be96efa Have separate spec builder for each platform
fdfa3519a Remove unused params from platformSpec
1c1d8fb05 Update OCI spec tests for generic platform
f43d8924e Move most of OCI spec options to common builder
21338d277 Add stub to build common OCI spec
f318e5630 Update sandbox API to return target platform
dd22a3a80 Move WithMounts to specs
0ae0399b1 Make OCI spec opts available on all platforms
5f1a42543 shim: move reap log line to debug
515d68099 shim: enable debug logging for delete
c8f4ab3b0 update to go1.19.5, go1.18.10
9c8c4508e cri: Fix TestUpdateOCILinuxResource for host w/o swap controller
82d6c2f93 Revert container_stats_test.go change which caused Windows CRI integration test failure
0b9313c42 ctr/run: flags --detach and --rm cannot be specified together
6f9936e30 mod: update github.com/pelletier/go-toml@v1.9.5
f0917fb6e archive: improve TestSourceDateEpoch
9df5a1714 snapshots: refactor metastore transaction
f9a702105 docs/content-flow: update the description of the content labels
fc905324a docs/content-flow: update the digests of the redis:5.0.9
0de12cf7e Add tracing plugin test
b550526cc Use cleanup.Background instead of context.Background for cleanup
38159694f Prepare release notes for v1.7.0-beta.2
88c8d2e39 docs: fix a typo in tracing documentation
79d09c69b CI: Pass GITHUB_TOKEN to containerd/project-checks
06bfcd658 Enable dupword linter
0abc2f160 ctr: Add platform flag to 'oci spec' command
f606c4eba Add cleanup package for context management during cleanup
419b5ab04 Cirrus CI (Fedora 37, Rocky 8): enable cri-integration
7b1f08bf5 nri_test.go: skip if SELinux is enabled
dcbb32d6f cri-integration: set SelinuxRelabel
0f163d696 TestVolumeOwnership: compare GID, not group name
76d68b080 container_stats_test.go: avoid checking snapshot size
12955d291 Vagrantfile: fix comments about SELinux
bb86c6e57 contrib/Dockerfile.test: add "integration", "cri-integration", "critest" stages
5e84f08c4 Vagrantfile: fix disk resize error with VirtualBox
778e8f2af Use the const labels.LabelUncompressed
a5b979623 Add lease to transfer to preserve streams during transfer
3f0edb249 CRI: Comment cleanup/misc fixes
1753e5af7 Reused errdefs for error
5a00d28a6 Fix TestUpdateContainerResources_Memory* on cgroup v2 hosts
a5ea5935b integration/images: switch away from Docker Hub to avoid rate limit
119bbec9e Vagrantfile: install-rootless-podman: remove `setenforce 0`
d7ef6cbfa [streaming] move response packet after registration
72ef98622 cri: Simplify parseUsernsIDs()
4eed20fc3 cri: Verify userns container config is consisten with sandbox
a44b35627 cri: Fix assert vs require in tests
6b333fd21 `ctr contents ls` sorts the labels of the content
3b48fb5b5 cri: Shadow variables to avoid t.Parallel() issues
6b7e237fc chore: use `go fix` to cleanup old +build buildtag
1d0619bc0 Refactor metastore transaction
ca69ae265 Add integration tests for CRI userns
09243e43f make runc 1.1 for oss_fuzz_build.sh
94c68aa00 oci: appendOSMounts(): remove unused error, and move
d66afd211 add kube v1.26: remove v1alpha2 cri support
e94d92571 CRI sbserver: Prevent server reuse after Shutdown.
b10536d64 Reused errdefs define error
229779a4e oci: Add WithDomainname
ba0a7185f add network plugin metrics
a2df12d1a fix `ctr tasks kill` does not remove cni network under windows
0bc9f7b54 Avoid using canceled context in unpacker cleanup
b6df6708b Check containerd's readiness before calling critest
a27e09548 Fix grammar and spelling mistakes in README
a7adeb697 cri: Support pods with user namespaces
31a644973 Add capability for snapshotters to declare support for UID remapping
36f520dc0 Let OCI runtime create netns when userns is used
47fee791f Add sandbox store plugin type
6e55234c3 Add unit test to function GetCPUVariantFromArch
8d5c04543 Use uname machine field to get CPU variant if fails at /proc/cpuinfo
3ee6dd5c1 CRI: Fix no CNI info for pod sandbox on restart
aa8a389c5 overlay snapshotter: Make use of WithTransaction
2c573de6d Move snapshot event publishing into metadata store
d5dd11dcd Enable checkRename test
415750388 cri: fix `memory.memsw.limit_in_bytes: no such file or directory`
791428005 Prevent a race condition in testHook
54f1bdee3 "make proto-fmt" doesn't like spaces
52a748039 Remove github.com/gogo/protobuf again
ce4ea2695 go.mod: update fuzz-headers and fuzz-build
a4d5c3e5c Support sandboxed shims shutdown
fb7a04234 move up to CRI-TOOLS v1.26.0
84529072d CRI: Add host networking helper
0e33a8fa4 [sb] Fix status
ce3a73270 nil check to avoid panic on upgrade
5a3a9baec fatal error: concurrent map iteration and map write
c5fff10fe Bump golangci-lint to v1.50.1
d7507c3c1 Bump grpc to v1.51.0
b94c1018a disable tracing while handling token
f219f7d1e fix sdNotify func when debug level
75b09ac4a images: support specifying SourceDateEpoch via ctx
dc4834924 epoch: propagate SOURCE_DATE_EPOCH via ctx
66f71ea4d Enable GitHub Actions local Linux CI runs
14a38e12b Upgrade GitHub actions packages in release workflow
33e706aec Prepare release notes for v1.7.0-beta.1
d65269fda Add sandbox shutdown API
423f4388b integration: increase timeout in container_event_test.go
80839f11e allow client to remove created tasks with PID 0
a6929f9f6 Add Evented PLEG support to sandbox server
a338abc90 Add container event support to containerd
69975b92b cri: make swapping disabled with memory limit
cde949077 digest: use github.com/minio/sha256-simd
3b71cfd40 metastore: Add WithTransaction convenience method
9df96dc46 support fetching containerd from non public GCS buckets
c59f1635f add metrics for image pulling: success/failure count; in progress count; thoughput
74813786c fuzzing: improve archive fuzzer
176e8d35c image/label: print more characters of label keys
7afe6d92d Fix incorrect defer usage and refactor judgement
20e7b399f prevent Server reuse after a Shutdown
ccd1d22ad fix incorrect namespace of event when create/update namespace
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping docker to version v23.0.1, which comprises the following commits:
4002fa877b vendor: update buildkit to latest v0.10
e697c9365f builder: define GetRemotes for the worker
4c544c3d5f ci: fix branch filter pattern in buildkit workflow
06aca27cc1 ci: enhance tests distribution
001b2e778a ci: update gotestlist to 0.3.1
38b70ebc3b apparmor: Check if apparmor_parser is available
8a5d341d94 [23.0] vendor: github.com/moby/buildkit v0.10.7-0.20230206124303-b8fdb4b78da0
427101f656 libnet/d/ipvlan: gracefully migrate from older dbs
5b7142073f Dockerfile: configure code dir as "safe" directory
7e03250780 graphdriver/overlay2: usingMetacopy ENOTSUP is non-fatal
975bdb2c96 daemon: identify container exits by ProcessID
610250f06e vendor: github.com/containerd/containerd v1.6.16
63a0f1fe09 vendor: github.com/pelletier/go-toml v1.9.5
699e853be3 hack: display build cmd when DOCKER_DEBUG set
b7e0725e98 hack: remove unnecessary vars in make.sh script
96746238b2 hack: remove ORIG_BUILDFLAGS var
df2fe70049 hack: remove -installsuffix build flag
8b83e09b9c client: improve error messaging on crash
26e9face5a [23.0] update containerd binary to v1.6.16
6641852d51 rootless: support `--ipc=host`
8fc49af4ab hack: check if cross-compiling before setting ARM target name
30134ab177 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230119195359-904c221ac281
3da45c0fe7 fix blockThreshold full bug
941a07b339 ioutils: add regression test for bytespipe deadlock
a21381a55a Dockerfile: prefer ld for building against arm64
2616ebc5ac libnetwork: Support IPv6 in arrangeUserFilterRule()
7a5f3f8053 libnetwork: fix empty-lines (revive)
7cfd4b3471 libnetwork/config: rename ParseConfigOptions() to New()
1090c5fd4c libnetwork/config: inline LoadDefaultScopes()
c93e1e9e66 libnetwork/config: merge DaemonCfg into Config
031fb72313 libnetwork: remove old integration tests
a96a97bf47 libnetwork/config: remove ParseConfig()
9b383dbd51 libnetwork/config: inline ProcessOptions
bed115e664 libnetwork/config: remove "Experimental" and "Debug" options
64cbbaa883 Dockerfile: smoke tests for static builds
4100226e27 Dockerfile: use clang to build dockerd/docker-proxy
dadeec4205 Disable chrootarchive.init() on Windows
f328486cb3 Add GetLibHome stub for non-linux OS
8e83d28f31 vendor: golang.org/x/net v0.5.0
06eb6ab794 vendor: golang.org/x/text v0.6.0
31cf0bf181 vendor: golang.org/x/sys v0.4.0
0e4548bbe1 Dockerfile: fix PKG_CONFIG for xx
8c12a6648b hack: name for target ARM architecture not specified
10c4ada049 hack: typo in displayed platform name
322149038a Add additional loggig in case of error of renaming runtimes-old and removing it
a8926de2a1 Handle docker start inside overlayfs
524de97334 daemon/config: inform the user when the input JSON contains invalid UTF-8
0b2eecdc8a daemon/config: support alternate (common) unicode encodings using a BOM
abff66b283 daemon/config: clean up tests to use common helper
d9bdb61992 cmd/dockerd: use default SIGQUIT behaviour
c627132dc8 vendor: github.com/moby/ipvs v1.1.0
13a31b67de vendor: github.com/vishvananda/netns v0.0.2
bd5d9f3190 vendor: github.com/vishvananda/netns v0.0.1
c8262e912f libnetwork: Remove iptables nat rule when hairpin is disabled
12e3398f64 update to go1.19.5
076d57104a docs: api: synchronise versioned API docs (v1.39 - v1.41)
8ce4ae1345 docs: api: synchronise versioned API docs (v1.42)
f0fe353ca6 api: swagger: add errorDetail to CreateImageInfo
04371160f8 api: docs: add errorDetail to CreateImageInfo (v1.42)
e753cce70f docs: add 401 to possible status codes of /auth
4d7792417e ci: update buildkit to fix integration tests
5802ca9e08 rootless: move ./rootless to ./pkg/rootless
33572e98c1 Use user paths for plugin discovery in rootless mode
52c7a5d96b daemon/config: New(): initialize config with platform-specific defaults
101bd10d0e daemon/config: group JSON preprocessing steps
def679d0e0 daemon/config: ignore UTF-8 BOM in config JSON
cf8c728f3c graphdriver/btrfs: needs kernel headers >= 4.12, not >= 4.7
e40c2410ca Dockerfile.*: drop libbtrfs
51a65e01ac PACKAGERS: update Btrfs graphdriver dependencies
0cf2b14994 graphdriver/btrfs: use free wrapper consistently
21e6c282e6 graphdriver/btrfs: use kernel UAPI headers
42e7a15a63 graphdriver/btrfs: drop version information
01883e1177 daemon/graphdriver: use strconv instead of fmt.Sprintf
25939ee45e libnetwork: improve logs for DNS failures
691b44b4c3 vendor: github.com/containerd/containerd v1.6.15
5aa0c2cae2 [23.0] update containerd binary to v1.6.15
6acc1701ea integration-cli: Fix hanging TestLogsFollowGoroutines*
8dfd907478 hack: restore copy_binaries func
0d1aba547e hack/make: Don't add -buildmode=pie with -race
4da19e2dca Clear conntrack entries for published UDP ports
fe097e018c Fix volume CreatedAt being altered on initialization
d778bbab84 docs: contributing docs update for cross comp
2dd577955c Dockerfile: add "all" stage to build binaries and extra tools
3ef71f9085 ci: add extra steps to check artifacts
8fbfc2676f Dockerfile: rename dev stages
7e286efcd3 ci: use GITHUB_REF and GITHUB_SHA to set version and commit
f29fe2daec bake: define additional vars
3b90bb6ad3 bake: define DESTDIR
171471b613 hack: update buildmode pie condition
7d8c689923 hack: do not set buildmode pie for statically linked binary
75596bee28 hack: use PKG_CONFIG var when checking libdevmapper
29758a067f IAmStatic not used anymore
5d4ddce5ed hack: remove containerutility script
a85bdbe1ca Dockerfile: use TARGETPLATFORM to build Docker
6a0a2c4f79 Always use iptables -C to look for rules
91f2d963c6 Merge iptables.probe() into iptables.detectIptables()
2bf66f725c Check ipt options before looking for ip6t
1b27ab4c73 libnetwork/iptables: Fix test panic when execute only one test
316231cced daemon/graphdriver/devicemapper: simplify Udev log, and update link
770ace39d8 daemon/logger/gcplogs: remove ensureHomeIfIAmStatic workaround
5e4464798f api: can marshal and unmarshal when args.fields is empty
515219b716 Update delve version
0393897695 daemon/graphdriver/btrfs: workaround field rename in btrfs-progs 6.1
7199300239 cmd/docker-proxy: add "-v / --version" flag
e9075f70c7 gha: update buildkit to fix integration tests
b2d2f012b4 errdefs: FromStatusCode() don't log "FIXME" debug message
9980e64341 vendor: github.com/containerd/containerd v1.6.14
5ebd78d5f8 update containerd binary to v1.6.14
f6c2f20cee Dockerfile: delve cross build with TARGETPLATFORM
3d6908c79b Dockerfile: swagger cross build with TARGETPLATFORM
1dc34e889c Dockerfile: containerutility cross build with TARGETPLATFORM
effd7661df Dockerfile: registry cross build with TARGETPLATFORM
f3e3266373 Dockerfile: dockercli cross build with TARGETPLATFORM
fd6316e631 Dockerfile: rootlesskit cross build with TARGETPLATFORM
fbe4db5be0 Dockerfile: tini cross build with TARGETPLATFORM
f9a356c7e9 Dockerfile: runc cross build with TARGETPLATFORM
6e7cc3b7e3 Dockerfile: containerd cross build with TARGETPLATFORM
582b29f587 Dockerfile: DOCKER_STATIC arg
daa28fcf2d Dockerfile: add dummy stage
4cab584a9c Dockerfile: add cross compilation helper
0b12468116 vendor: github.com/containerd/containerd v1.6.13
6570b654f4 vendor: github.com/Microsoft/hcsshim v0.9.6
d8d11bca37 update containerd binary to v1.6.13
a72fb70eb0 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221215132206-0da442b2780f
dca58c654a daemon: drop side effect from registerLinks()
6149c333ff daemon: don't checkpoint container until registered
42bffae5ff daemon: fix GetContainer() returning (nil, nil)
a6818fd4cb hack: introduce validate/no-module
45fe08c93c hack: replace go-mod-prepare.sh with wrapper script
c508d13372 hack/go-mod-prepare.sh: find root robustly; make steps transparent
036398f512 hack/validate/vendor: clean up license validation step
a4957d2585 hack/validate/vendor: split tidy from vendor
394eaa8495 hack/vendor.sh: allow running tidy & vendor separately
d80f235c47 vendor: github.com/tinylib/msgp v1.1.6
5ca9231b44 vendor: github.com/philhofer/fwd v1.1.2
ffa2c0b517 image/store: Use errdefs for errors
c0c146fc82 Remove uses of deprecated go-digest.NewDigestFromHex, go-digest.Digest.Hex
6295320d91 use consistent alias for gotest.tools/v3/assert/cmp
1cc1395fae vendor: golang.org/x/net v0.4.0
0163808dbe vendor: github.com/prometheus/client_golang v1.14.0
9b62b83429 vendor: github.com/go-logr/logr v1.2.3
d5ffdeb76c vendor: golang.org/x/crypto v0.2.0
4da8dedaab vendor: golang.org/x/net v0.2.0
b14ffffffd vendor: github.com/opencontainers/runc v1.1.3
173df30ac5 vendor: github.com/klauspost/compress v1.15.12
fe62290eed go.mod: github.com/miekg/dns v1.1.43
4952dc2844 distribution: remove unused RequireSchema2
e7b26fa1b1 use ad-hoc libtrust key
f2463e1e86 distribution: use ad-hoc trustkey for tests
139080d093 daemon/config: remove and local trustkey utilities
46e0317bc1 [23.0] remove libtrust tests
docker-ce/libnetwork: update to -tip
f7cdd0e7 Always use iptables -C to look for rules
a6106f66 Merge iptables.probe() into iptables.detectIptables()
49bb4902 Check ipt options before looking for ip6t
51413ef1 libnetwork: processEndpointCreate: Fix deadlock between getSvcRecords and processEndpointCreate
e460ffec skip TestPortMappingV6Config
64b196bd circleci: update to "next-gen" convenience image
50f192e9 circleci: update to docker 20.10
88744155 update to go1.18.9, gofmt, and regenerate proto
9ed130d8 fix linting issues
5e08bdb1 Revert: Added API to set ephemeral port allocator range
047ac186 Cleanup servicebindings only on Windows
6f36306d Delay network deletion until after lb cleanup
a9c349a6 Log HNS policylist removal failures
Bumping docker-cli to version v23.0.1, which comprises the following commits:
27b19a6ac ci: fix branch filter pattern
14aac2c23 vendor: github.com/docker/docker v23.0.0
0cd15abfd vendor: github.com/containerd/containerd v1.6.16
168f1b55e cli/command/container: exit 126 on EISDIR error
53ed25d9b Fix bad ThrottleDevice path
9e3d5d152 Fix issue where one bad credential helper causes none to be returned
1e3622c50 docs: move doc generation scripts to subdir
9b54d860c rm: allow `docker container remove` as an alias
00070e6e2 docs: add note about MKE CA rotation, which is potentially dangerous
67b961789 manifest: save raw manifest content on download
285e137aa manifest: explicitly error if whitespace reconstruction has failed
070825bc7 manifest: add support for oci image types
551c4e9ab Fix typo in reference doc for docker Signed-off-by: Craig Osterhou <craig.osterhout@docker.com>
8672540f8 vendor: github.com/docker/docker v23.0.0-rc.3
c4fff9da1 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230119195359-904c221ac281
526e5e7c9 vendor: golang.org/x/net v0.5.0
d7f21ea9c vendor: golang.org/x/term v0.4.0
ae43eb0e0 vendor: golang.org/x/text v0.6.0
caf8b152c vendor: golang.org/x/sys v0.4.0
be30cb370 Fix section docker ps --size
5d04b1c49 note `--user` args usage restriction
9bb70217f Add extra newline after additionalHelp output
59e74b44a cli: additionalHelp() don't decorate output if it's piped
fc6be6ad3 cli: pass dockerCLI's in/out/err to cobra cmds
d347678cd README: fix badges
e04f3dd0d docs: fix duplicated format anchor in plugin_ls
c453cc687 vendor: github.com/docker/docker v23.0.0-rc.2
0d16330dd vendor: github.com/containerd/containerd v1.6.15
b9e1ad3d1 update to go1.19.5
d1f02a273 deprecated: update deprecation for btrfs on CentOS/RHEL 7
bdc7e37b3 deprecation: mark btrfs driver as deprecated for CentOS 7 and RHEL7
35d7fbc81 docs: inspect: remove trailing whitespace from example
79c9e527a docs: generate markdown
186dcf30b docs: fix anchors
c49f1ccb4 update cli-docs-tool to v0.5.1
5a5b7a61d contrib: fix engine logging docs link
4595ce588 cmd: set double quotes as code delimiter
81b051298 docs: fix some more anchors
71e561780 docs: fix anchor links
3613fcc86 docs: deprecated: fix link to Docker Desktop 3.2.0 release notes
b81105718 cli/rm_test: Fix TestRemoveForce race condition
42de5cc7f service/logs: use strings.Cut
3fa18636e internal/test: use strings.Cut
c8bd8932a cli/config: use strings.Cut
3bed830a2 cli/compose: use strings.Cut
cb19bf9f7 cli/command: use strings.Cut
acc45f549 cli/command/volume: use strings.Cut
806f9eab6 cli/command/swarm: use strings.Cut
b3557b284 cli/command/stack: use strings.Cut
2b06c0c42 cli/command/service: use strings.Cut
f29992c0f cli/command/network: use strings.Cut
424401233 cli/command/container: use strings.Cut
6c39bc1f6 opts: use strings.Cut for handling key/value pairs
a473c5b38 opts: rename logOptsValidator, fix unhandled errors in tests
d84256132 remove redundant conversions and braces
720a6a823 docs/run: Fix url to blog "Docker can now run within Docker"
946bb9471 Missing exec_die event
784f66014 cli/command/container: remove unused NetworkDisabled field
6fe14e61f vendor: github.com/docker/docker v23.0.0-rc.1 (use tag)
c5982f373 vendor: github.com/inconshreveable/mousetrap v1.1.0
cc859412c vendor: github.com/docker/docker v23.0.0-beta.1.0.20221221173850-cba986b34090
70d24e854 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221215132206-0da442b2780f
bab905a44 vendor: golang.org/x/crypto v0.2.0
929f23fcf vendor: golang.org/x/net v0.4.0
2df9ff91e vendor: golang.org/x/term v0.3.0
1b75c7c52 vendor: golang.org/x/text v0.5.0
e3e0b7a6c vendor: golang.org/x/sys v0.3.0
6f2f021b6 vendor: github.com/prometheus/client_golang v1.14.0
dedbcec46 vendor: github.com/opencontainers/runc v1.1.3
cd2098c46 vendor: github.com/klauspost/compress v1.15.12
d7869bead vendor: github.com/containerd/containerd v1.6.14
06eba426d cmd/docker: fix typo in deprecation warning
895e7a3df Added missing backslash to documentation sites cli snippet
2f733b87f cli/flags: remove outdated TODO
60d62fb72 cmd/docker: improve error message if BUILDKIT_ENABLED=0
e547881e2 Fix ssh process killed when context is done
35b42efad [completion/zsh] add volume completion
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Refresh two patches for context in the udpated docker-moby.
Bumping moby to version v23.0.1, which comprises the following commits:
4002fa877b vendor: update buildkit to latest v0.10
e697c9365f builder: define GetRemotes for the worker
4c544c3d5f ci: fix branch filter pattern in buildkit workflow
06aca27cc1 ci: enhance tests distribution
001b2e778a ci: update gotestlist to 0.3.1
38b70ebc3b apparmor: Check if apparmor_parser is available
8a5d341d94 [23.0] vendor: github.com/moby/buildkit v0.10.7-0.20230206124303-b8fdb4b78da0
427101f656 libnet/d/ipvlan: gracefully migrate from older dbs
5b7142073f Dockerfile: configure code dir as "safe" directory
7e03250780 graphdriver/overlay2: usingMetacopy ENOTSUP is non-fatal
975bdb2c96 daemon: identify container exits by ProcessID
610250f06e vendor: github.com/containerd/containerd v1.6.16
63a0f1fe09 vendor: github.com/pelletier/go-toml v1.9.5
699e853be3 hack: display build cmd when DOCKER_DEBUG set
b7e0725e98 hack: remove unnecessary vars in make.sh script
96746238b2 hack: remove ORIG_BUILDFLAGS var
df2fe70049 hack: remove -installsuffix build flag
8b83e09b9c client: improve error messaging on crash
26e9face5a [23.0] update containerd binary to v1.6.16
6641852d51 rootless: support `--ipc=host`
8fc49af4ab hack: check if cross-compiling before setting ARM target name
30134ab177 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230119195359-904c221ac281
3da45c0fe7 fix blockThreshold full bug
941a07b339 ioutils: add regression test for bytespipe deadlock
a21381a55a Dockerfile: prefer ld for building against arm64
2616ebc5ac libnetwork: Support IPv6 in arrangeUserFilterRule()
7a5f3f8053 libnetwork: fix empty-lines (revive)
7cfd4b3471 libnetwork/config: rename ParseConfigOptions() to New()
1090c5fd4c libnetwork/config: inline LoadDefaultScopes()
c93e1e9e66 libnetwork/config: merge DaemonCfg into Config
031fb72313 libnetwork: remove old integration tests
a96a97bf47 libnetwork/config: remove ParseConfig()
9b383dbd51 libnetwork/config: inline ProcessOptions
bed115e664 libnetwork/config: remove "Experimental" and "Debug" options
64cbbaa883 Dockerfile: smoke tests for static builds
4100226e27 Dockerfile: use clang to build dockerd/docker-proxy
dadeec4205 Disable chrootarchive.init() on Windows
f328486cb3 Add GetLibHome stub for non-linux OS
8e83d28f31 vendor: golang.org/x/net v0.5.0
06eb6ab794 vendor: golang.org/x/text v0.6.0
31cf0bf181 vendor: golang.org/x/sys v0.4.0
0e4548bbe1 Dockerfile: fix PKG_CONFIG for xx
8c12a6648b hack: name for target ARM architecture not specified
10c4ada049 hack: typo in displayed platform name
322149038a Add additional loggig in case of error of renaming runtimes-old and removing it
a8926de2a1 Handle docker start inside overlayfs
524de97334 daemon/config: inform the user when the input JSON contains invalid UTF-8
0b2eecdc8a daemon/config: support alternate (common) unicode encodings using a BOM
abff66b283 daemon/config: clean up tests to use common helper
d9bdb61992 cmd/dockerd: use default SIGQUIT behaviour
c627132dc8 vendor: github.com/moby/ipvs v1.1.0
13a31b67de vendor: github.com/vishvananda/netns v0.0.2
bd5d9f3190 vendor: github.com/vishvananda/netns v0.0.1
c8262e912f libnetwork: Remove iptables nat rule when hairpin is disabled
12e3398f64 update to go1.19.5
076d57104a docs: api: synchronise versioned API docs (v1.39 - v1.41)
8ce4ae1345 docs: api: synchronise versioned API docs (v1.42)
f0fe353ca6 api: swagger: add errorDetail to CreateImageInfo
04371160f8 api: docs: add errorDetail to CreateImageInfo (v1.42)
e753cce70f docs: add 401 to possible status codes of /auth
4d7792417e ci: update buildkit to fix integration tests
5802ca9e08 rootless: move ./rootless to ./pkg/rootless
33572e98c1 Use user paths for plugin discovery in rootless mode
52c7a5d96b daemon/config: New(): initialize config with platform-specific defaults
101bd10d0e daemon/config: group JSON preprocessing steps
def679d0e0 daemon/config: ignore UTF-8 BOM in config JSON
cf8c728f3c graphdriver/btrfs: needs kernel headers >= 4.12, not >= 4.7
e40c2410ca Dockerfile.*: drop libbtrfs
51a65e01ac PACKAGERS: update Btrfs graphdriver dependencies
0cf2b14994 graphdriver/btrfs: use free wrapper consistently
21e6c282e6 graphdriver/btrfs: use kernel UAPI headers
42e7a15a63 graphdriver/btrfs: drop version information
01883e1177 daemon/graphdriver: use strconv instead of fmt.Sprintf
25939ee45e libnetwork: improve logs for DNS failures
691b44b4c3 vendor: github.com/containerd/containerd v1.6.15
5aa0c2cae2 [23.0] update containerd binary to v1.6.15
6acc1701ea integration-cli: Fix hanging TestLogsFollowGoroutines*
8dfd907478 hack: restore copy_binaries func
0d1aba547e hack/make: Don't add -buildmode=pie with -race
4da19e2dca Clear conntrack entries for published UDP ports
fe097e018c Fix volume CreatedAt being altered on initialization
d778bbab84 docs: contributing docs update for cross comp
2dd577955c Dockerfile: add "all" stage to build binaries and extra tools
3ef71f9085 ci: add extra steps to check artifacts
8fbfc2676f Dockerfile: rename dev stages
7e286efcd3 ci: use GITHUB_REF and GITHUB_SHA to set version and commit
f29fe2daec bake: define additional vars
3b90bb6ad3 bake: define DESTDIR
171471b613 hack: update buildmode pie condition
7d8c689923 hack: do not set buildmode pie for statically linked binary
75596bee28 hack: use PKG_CONFIG var when checking libdevmapper
29758a067f IAmStatic not used anymore
5d4ddce5ed hack: remove containerutility script
a85bdbe1ca Dockerfile: use TARGETPLATFORM to build Docker
6a0a2c4f79 Always use iptables -C to look for rules
91f2d963c6 Merge iptables.probe() into iptables.detectIptables()
2bf66f725c Check ipt options before looking for ip6t
1b27ab4c73 libnetwork/iptables: Fix test panic when execute only one test
316231cced daemon/graphdriver/devicemapper: simplify Udev log, and update link
770ace39d8 daemon/logger/gcplogs: remove ensureHomeIfIAmStatic workaround
5e4464798f api: can marshal and unmarshal when args.fields is empty
515219b716 Update delve version
0393897695 daemon/graphdriver/btrfs: workaround field rename in btrfs-progs 6.1
7199300239 cmd/docker-proxy: add "-v / --version" flag
e9075f70c7 gha: update buildkit to fix integration tests
b2d2f012b4 errdefs: FromStatusCode() don't log "FIXME" debug message
9980e64341 vendor: github.com/containerd/containerd v1.6.14
5ebd78d5f8 update containerd binary to v1.6.14
f6c2f20cee Dockerfile: delve cross build with TARGETPLATFORM
3d6908c79b Dockerfile: swagger cross build with TARGETPLATFORM
1dc34e889c Dockerfile: containerutility cross build with TARGETPLATFORM
effd7661df Dockerfile: registry cross build with TARGETPLATFORM
f3e3266373 Dockerfile: dockercli cross build with TARGETPLATFORM
fd6316e631 Dockerfile: rootlesskit cross build with TARGETPLATFORM
fbe4db5be0 Dockerfile: tini cross build with TARGETPLATFORM
f9a356c7e9 Dockerfile: runc cross build with TARGETPLATFORM
6e7cc3b7e3 Dockerfile: containerd cross build with TARGETPLATFORM
582b29f587 Dockerfile: DOCKER_STATIC arg
daa28fcf2d Dockerfile: add dummy stage
4cab584a9c Dockerfile: add cross compilation helper
0b12468116 vendor: github.com/containerd/containerd v1.6.13
6570b654f4 vendor: github.com/Microsoft/hcsshim v0.9.6
d8d11bca37 update containerd binary to v1.6.13
a72fb70eb0 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221215132206-0da442b2780f
dca58c654a daemon: drop side effect from registerLinks()
6149c333ff daemon: don't checkpoint container until registered
42bffae5ff daemon: fix GetContainer() returning (nil, nil)
a6818fd4cb hack: introduce validate/no-module
45fe08c93c hack: replace go-mod-prepare.sh with wrapper script
c508d13372 hack/go-mod-prepare.sh: find root robustly; make steps transparent
036398f512 hack/validate/vendor: clean up license validation step
a4957d2585 hack/validate/vendor: split tidy from vendor
394eaa8495 hack/vendor.sh: allow running tidy & vendor separately
d80f235c47 vendor: github.com/tinylib/msgp v1.1.6
5ca9231b44 vendor: github.com/philhofer/fwd v1.1.2
ffa2c0b517 image/store: Use errdefs for errors
c0c146fc82 Remove uses of deprecated go-digest.NewDigestFromHex, go-digest.Digest.Hex
6295320d91 use consistent alias for gotest.tools/v3/assert/cmp
1cc1395fae vendor: golang.org/x/net v0.4.0
0163808dbe vendor: github.com/prometheus/client_golang v1.14.0
9b62b83429 vendor: github.com/go-logr/logr v1.2.3
d5ffdeb76c vendor: golang.org/x/crypto v0.2.0
4da8dedaab vendor: golang.org/x/net v0.2.0
b14ffffffd vendor: github.com/opencontainers/runc v1.1.3
173df30ac5 vendor: github.com/klauspost/compress v1.15.12
fe62290eed go.mod: github.com/miekg/dns v1.1.43
4ee3cc2531 vendor: github.com/containerd/containerd v1.6.12
48a0d8a8d1 [23.0] update containerd binary to v1.6.12 (addresses CVE-2022-23471)
4952dc2844 distribution: remove unused RequireSchema2
e7b26fa1b1 use ad-hoc libtrust key
f2463e1e86 distribution: use ad-hoc trustkey for tests
139080d093 daemon/config: remove and local trustkey utilities
46e0317bc1 [23.0] remove libtrust tests
Bumping libnetwork to version v0.7.0-dev.3-1857-g05b93e0d, which comprises the following commits:
f7cdd0e7 Always use iptables -C to look for rules
a6106f66 Merge iptables.probe() into iptables.detectIptables()
49bb4902 Check ipt options before looking for ip6t
51413ef1 libnetwork: processEndpointCreate: Fix deadlock between getSvcRecords and processEndpointCreate
e460ffec skip TestPortMappingV6Config
64b196bd circleci: update to "next-gen" convenience image
50f192e9 circleci: update to docker 20.10
88744155 update to go1.18.9, gofmt, and regenerate proto
9ed130d8 fix linting issues
5e08bdb1 Revert: Added API to set ephemeral port allocator range
047ac186 Cleanup servicebindings only on Windows
6f36306d Delay network deletion until after lb cleanup
a9c349a6 Log HNS policylist removal failures
docker-moby/cli: update to 23.0.x
27b19a6ac ci: fix branch filter pattern
14aac2c23 vendor: github.com/docker/docker v23.0.0
0cd15abfd vendor: github.com/containerd/containerd v1.6.16
168f1b55e cli/command/container: exit 126 on EISDIR error
53ed25d9b Fix bad ThrottleDevice path
9e3d5d152 Fix issue where one bad credential helper causes none to be returned
1e3622c50 docs: move doc generation scripts to subdir
9b54d860c rm: allow `docker container remove` as an alias
00070e6e2 docs: add note about MKE CA rotation, which is potentially dangerous
67b961789 manifest: save raw manifest content on download
285e137aa manifest: explicitly error if whitespace reconstruction has failed
070825bc7 manifest: add support for oci image types
551c4e9ab Fix typo in reference doc for docker Signed-off-by: Craig Osterhou <craig.osterhout@docker.com>
8672540f8 vendor: github.com/docker/docker v23.0.0-rc.3
c4fff9da1 vendor: github.com/moby/swarmkit/v2 v2.0.0-20230119195359-904c221ac281
526e5e7c9 vendor: golang.org/x/net v0.5.0
d7f21ea9c vendor: golang.org/x/term v0.4.0
ae43eb0e0 vendor: golang.org/x/text v0.6.0
caf8b152c vendor: golang.org/x/sys v0.4.0
be30cb370 Fix section docker ps --size
5d04b1c49 note `--user` args usage restriction
9bb70217f Add extra newline after additionalHelp output
59e74b44a cli: additionalHelp() don't decorate output if it's piped
fc6be6ad3 cli: pass dockerCLI's in/out/err to cobra cmds
d347678cd README: fix badges
e04f3dd0d docs: fix duplicated format anchor in plugin_ls
c453cc687 vendor: github.com/docker/docker v23.0.0-rc.2
0d16330dd vendor: github.com/containerd/containerd v1.6.15
b9e1ad3d1 update to go1.19.5
d1f02a273 deprecated: update deprecation for btrfs on CentOS/RHEL 7
bdc7e37b3 deprecation: mark btrfs driver as deprecated for CentOS 7 and RHEL7
35d7fbc81 docs: inspect: remove trailing whitespace from example
79c9e527a docs: generate markdown
186dcf30b docs: fix anchors
c49f1ccb4 update cli-docs-tool to v0.5.1
5a5b7a61d contrib: fix engine logging docs link
4595ce588 cmd: set double quotes as code delimiter
81b051298 docs: fix some more anchors
71e561780 docs: fix anchor links
3613fcc86 docs: deprecated: fix link to Docker Desktop 3.2.0 release notes
b81105718 cli/rm_test: Fix TestRemoveForce race condition
42de5cc7f service/logs: use strings.Cut
3fa18636e internal/test: use strings.Cut
c8bd8932a cli/config: use strings.Cut
3bed830a2 cli/compose: use strings.Cut
cb19bf9f7 cli/command: use strings.Cut
acc45f549 cli/command/volume: use strings.Cut
806f9eab6 cli/command/swarm: use strings.Cut
b3557b284 cli/command/stack: use strings.Cut
2b06c0c42 cli/command/service: use strings.Cut
f29992c0f cli/command/network: use strings.Cut
424401233 cli/command/container: use strings.Cut
6c39bc1f6 opts: use strings.Cut for handling key/value pairs
a473c5b38 opts: rename logOptsValidator, fix unhandled errors in tests
d84256132 remove redundant conversions and braces
720a6a823 docs/run: Fix url to blog "Docker can now run within Docker"
946bb9471 Missing exec_die event
784f66014 cli/command/container: remove unused NetworkDisabled field
6fe14e61f vendor: github.com/docker/docker v23.0.0-rc.1 (use tag)
c5982f373 vendor: github.com/inconshreveable/mousetrap v1.1.0
cc859412c vendor: github.com/docker/docker v23.0.0-beta.1.0.20221221173850-cba986b34090
70d24e854 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221215132206-0da442b2780f
bab905a44 vendor: golang.org/x/crypto v0.2.0
929f23fcf vendor: golang.org/x/net v0.4.0
2df9ff91e vendor: golang.org/x/term v0.3.0
1b75c7c52 vendor: golang.org/x/text v0.5.0
e3e0b7a6c vendor: golang.org/x/sys v0.3.0
6f2f021b6 vendor: github.com/prometheus/client_golang v1.14.0
dedbcec46 vendor: github.com/opencontainers/runc v1.1.3
cd2098c46 vendor: github.com/klauspost/compress v1.15.12
d7869bead vendor: github.com/containerd/containerd v1.6.14
06eba426d cmd/docker: fix typo in deprecation warning
895e7a3df Added missing backslash to documentation sites cli snippet
2f733b87f cli/flags: remove outdated TODO
60d62fb72 cmd/docker: improve error message if BUILDKIT_ENABLED=0
e547881e2 Fix ssh process killed when context is done
35b42efad [completion/zsh] add volume completion
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping compose to version v2.14.0-155-ga93f09ef, which comprises the following commits:
51bcfa37 build(deps): bump github.com/containerd/containerd from 1.6.15 to 1.6.16
982a8ccb support dry-run for kill command
790712fa update tty and plain text writers to support dry run mode
97752b23 refresh Maintainers list
634a7d2a Support for docker compose build --push when using multiple platforms
a288332f Update docs to add `--scale` argument to `compose create`
9d53ed8f Add `--scale` to `compose create`, refactor scale option
df707352 Fix: Handle concurrent threads using mutex on the rainbowColor function
d8bf175c Remove unecessary files
4816f40b Fix: remove the infinite goroutine
ed5a2e83 Remove unecessary files
fa8d075d Fix: remove the infinite goroutine
33c3f4df alias -n for --tail to align with docker CLI
aa313873 cleanup TUI lines after switching to "compact" mode
d47f0f31 Update docs to mention `COMPOSE_PARALLEL_LIMITS` and ways to configure parallelism
4721c017 fix docs to reflect docker compose ps being aligned with docker ps
5919fcb4 Revert "Fix Goroutine leak in v2/command/formatter"
3a21e1e3 Fix Linting Issues
b670aefb Feat: Clean inifinite Goroutine
220626ec Only account running containers for logs
291e1bd6 bump compose-go to version v1.9.0
e94eb056 allow a TTY to be allocated with -t
c15bf195 debounce refresh requests with quietperiod
0b1c8672 Add tests for filtering containers not created by Compose
82ef9985 Ignore containers created outside compose
fb36f7ff directly embed the orignal APIClient in the DryRunClient
3fac506a identify functions which need to be ovorridden for dry run feature
eb59b0e2 add alpha command to test dry-run
5081ab05 create custom CLI when dry-run mode active update documentation
13ef440d add DryRun API Client with delagation pattern
fbf845c5 add dry-run flag
5a2b7b83 use compose service methods when exist instead of directly service.dockerCli
8c07fa4d mark alpha command as experimental
9daf4189 Adjust terminal height calc
bb9cf322 introduce experimental watch command (skeletton)
69a09624 Skip child events when printer events > terminal height
f2088bb9 fix typo
dadad01e Update docs programatically like you're supposed to
1adc9f54 fix docs yaml
4cebce3a This option lives in the create options, not the run options
bd8e5744 Add remove-orphans functionality to run, because it recommends that in error messages
4ad87463 Add :cucumber: GHA workflow
cc912c62 introduce --remove-orphans in compose create command
3e12a7cb pass proxy config as build args - same as docker/buildx#959
0c197997 Remove unused kube tag
73ebbffb Don't share the options map
b326a9da don't filter by services if no filter was set
f1313f3a use a simpler prompt implementation when we lack a terminal
a226d014 fix CVE-2022-27664 and CVE-2022-32149 high-risk vulnerability
7e2af3aa build(deps): bump github.com/containerd/containerd from 1.6.14 to 1.6.15
96bbda98 add support for uts namespace
aa5cdf2b add support for COMPOSE_PARALLEL_LIMIT (parity with Compose v1)
d5e4f006 introduce --no-attach to ignore some service output
8b4ac37f introduce `--ignore-buildable` to ignore buildable images on pull
b96e27e0 limit build concurrency according to --parallel
37d15d7e Ignore not only auto-removed containers but also "removal in progress" for orphan containers
dde7eea2 Update expected Cucumber `compose ps` output to match changes
a2247807 Set `pullChanged` when setting `--pull` on `compose up`
ffce33ec Fix empty file when using compose config in case of smaller source files
8a3248d0 Update documentation
52e7f0fb build(deps): bump github.com/docker/cli-docs-tool from 0.5.0 to 0.5.1
fd353ffa add support of privileged attribut in service.build section
adf8e753 cleanup framework.go from uncessary debug logs
9f7ad18d reduce cyclomatic complexity
40ebcd62 fix security opts support (seccomp and unconfined)
9bd9f176 check service names based on project, not running containers
5dcadc05 debut output for CI
c72f161a change the way finding the just built compose binary
86a648bd e2e tests display Compose version used to run the test currently the version displayed is the one installed and not the one use for the tests
27a32419 rely on CI timeout
935968fe add buildx plugin to e2e configuration directory
91371fef remove flaky TestLocalComposeLogsFollow
986bc445 service hash MUST exclude replicas
24f83271 don't assume os.Stdout and rely on dockerCLI.streams
dacf2437 dump stdout to help diagnose flaky test
22d2e838 don't fail `logs` when driver:none is set
b4b73199 introduce support for cgroup namespace
aae5ddca build(deps): bump github.com/containerd/containerd from 1.6.12 to 1.6.14
0ab5079c fix race condition on compose logs
89ef8198 update projectOptions to be public by renaming it to ProjectOptions
b8bbdcd8 detect dependency failed to start
d0e95cca set CPU quota
7bc27d44 Use `DOCKER_DEFAULT_PLATFORM` to determine platform when creating container
c1ce53c9 fix regression running pull --ignore-pull-failures
e42673da only list running containers when --all=false
ffb95449 volume: fix WCOW volume mounts
5c1484ec apply uid/gid when creating secret from environment
84984864 load project from explicit --files when set
8566daa9 use recently introduced `withSelectedServicesOnly` to reduce code duplication
84ea395d introduce --timestamp option on compose up
1cb5536a Address review comments
e4850d9c Add --include-deps to push command
8c39b5b7 align `--format` flag and UX with docker cli
bc568eeb align `compose ps` output with `docker ps`
a501ab3a use StatusError from docker/cli, not "dockerd"
d4a4dcf4 resolve --env-file as absolute path
05e987dd fix parsing of repository:tag
0368f190 distinguish stdout and stderr in `up` logs
3ee2ab87 ContainerStart must run sequentially for engine to assing distinct ports within configured range
8f991a20 Fix corner case when there's no container to attach to
0234e134 Don't stop pull for images that can be built
c342891f Squashed commit of the following:
8ef34947 build(deps): bump github.com/containerd/containerd from 1.6.10 to 1.6.12
cc247fdb remove go.* from e2e tests directory
a4ac6ab6 added table of contents inside readme
a73dce44 fix race condition collecting pulled images IDs
804d7163 detect required service are gone to stop watching explicit API to stop the log printer
cc60026c update to go1.19.4
87a0a57f Cleanup tips from output
95bc6c58 check only running containers in after down tests of profiles e2e tests
57a1e1e0 Update `e2e` mod deps
02305756 build(deps): bump go.opentelemetry.io/otel from 1.11.1 to 1.11.2
a0acc20d introduce --parallel to limit concurrent engine calls
053f20ed port: improve error-handling if port not found (#10039)
9b8d520b ci: upgrade to Go 1.19.3 & bump deps
113fb673 schema: add support for tmpfs.mode in mount definition (#10031)
b9e5f9e9 test: speed up Cucumber stop test (#10032)
c74a77e8 Make use of Containers.filter() and isService()
7f975fa4 Fix replacing "service:x" with "container:y"
73691276 use StringToBool to detect COMPOSE_IGNORE_ORPHANS
2e7644ff use api.Separator to print right image names
8f2b7471 use DistributionInspect to resolve image digest
9ac4f699 move image digests resolution to backend
2bef9769 Broken Link fixed in compose docs
707d55c7 add file header and cleanup profiles e2e tests
5edd7830 add e2e tests to check profile activation via targeted service
6fbef296 add e2e tests to check no profile usages
7fe43a8b add e2e tests using explicitly profiles
24ec0b2d pass services list to projectOrName function to add profiles for targeted services
ed38fe0d only stop services started by `up` on interruption
06e71371 docs: fix grammatical issues (#9997)
fb5b90ed implement support for oom_score_adj
10a5d998 useDockerDefaultOrServicePlatform fct should return service.platform if defined and present in the build.platforms list (or if the list is empty)
c3e5e499 configure buildx for plain output if --ansi=never has been set
4bf98c70 change the default branch of the doc repository
d7a24e9c Update `e2e` module deps
19d6ca9c ignore error parsing container number label, just warn
6fe03e93 Update docs
35d31cc5 Add `--build` option to `compose run`
7c5675c3 use platform defined by DOCKER_DEFAULT_PLATFORM when pulling and no service platform defined
a077e8a2 display creation warnings from the engine
8c1e2af3 add e2e tests to check build dependency between services
a9e07020 check if a missing image won't be build via a service declared in depends_on section
32f29b83 add --no-consistency flag to convert command
533fc616 use COMPOSE_PROFILES value only if no command line arg profiles used
bfb9e11f build(deps): bump github.com/containerd/containerd from 1.6.9 to 1.6.10
09e742b3 exclude issues with the kind/feature label from stale bot process
306ae161 ci: upgrade to compose-go v1.7.0
fd4aecef ci: update dependencies to latest
34e945a5 ci: remove uses of deprecated gotest.tools v2 (#9935)
e1899421 Update `e2e` module dependencies
369e9125 build(deps): bump github.com/containerd/containerd from 1.6.8 to 1.6.9
7ba9aac5 add support of deploy.reservation.memory
6d64242f Update deps for `e2e` module
eaf27d9d map deploy.restart_policy.condition to engine values
36a91839 build(deps): bump github.com/stretchr/testify from 1.8.0 to 1.8.1
533abc3b go.mod: docker 5aac513617f072b15322b147052cbda0d451d389 / v22.06-dev
197c1690 update docker engine API to apply fix of CVE-2022-39253
c630c8d2 go.mod: update docker-credential-helpers v0.7.0
41cf5ee3 go.mod: remove replace for runc
b7053cad go mod: tidy and group "require" blocks, update comments
717ace99 Update `e2e` module deps
8bdfc627 build(deps): bump go.opentelemetry.io/otel from 1.11.0 to 1.11.1
dd13299e Skip flaky test in CI
3f0550f8 log the error object instead of the string message only
18ce1f41 replace deprecated functions
3bf29d40 bump docker dependencies version
7424a3d3 Fix Makefile target `validate-go-mod` to only run correct bakefile target
6b7e9466 Update `e2e` module deps
91eae4f0 Add Codecov
8b897214 port: fix container name in error message (#9909)
f43a1e3e github: add feature request template
fa1ae635 github: switch to issue template form
afc0263f build(deps): bump go.opentelemetry.io/otel from 1.10.0 to 1.11.0
bb002a76 Update e2e mod dependencies
2ccd57e0 build(deps): bump github.com/spf13/cobra from 1.5.0 to 1.6.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping umoci to version v0.4.7-117-gfb2db51, which comprises the following commits:
3544ece build(deps): bump github.com/stretchr/testify from 1.8.0 to 1.8.1
5978bb9 build(deps): bump github.com/vbatts/go-mtree from 0.5.1 to 0.5.2
7c782c4 README: add dummy comment to start to make Hugo happy
777164a build(deps): bump github.com/opencontainers/runc from 1.1.2 to 1.1.4
1714399 build(deps): bump github.com/docker/go-units from 0.4.0 to 0.5.0
ed6b0f4 build(deps): bump google.golang.org/protobuf from 1.28.0 to 1.28.1
14756db build(deps): bump github.com/stretchr/testify from 1.7.1 to 1.8.0
2034a22 test: handle /etc/pki/ca-trust with Fedora images
2163223 *: improve io.Pipe CloseWithError usage
aab35e4 *: implement EINTR-retry logic for io.Copy users
We also switch BUILD_FLAGS to STATIC_BUILD_FLAGS, as the Makefile
variable has changed.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping containerd to version v1.7.0-beta.0-284-gf2cf411b7, which comprises the following commits:
d5010a12d docs: Authorizer.Authorize could return ErrUnexpectedStatus
2eabcf702 fix: check for tmpfs when evaluating if userxattr should be used
a6929f9f6 Add Evented PLEG support to sandbox server
a338abc90 Add container event support to containerd
e14753fc5 Respect no_cri constraint
3bc8fc4d3 Cleanup build constraints
c040f8382 Fix default config for Darwin
0b349428e CI: Vagrant: pin rockylinux/8 to v5.0.0
662d8a085 vendor: golang.org/x/net v0.4.0
f9295aa49 Fix context when waiting sandbox
8ab1d4496 Pass runtime configuration as TOML blob
3e92dedc2 Update runtime options to include bytes blob
a113737cc sbserver bug fixing
85776d2c6 update to go1.19.4, go1.18.9
840a657eb Change PushContent to require only Provider
847294679 Adding unit tests to opentelemetry tracing
8a25fa584 Unwrap proto errors in streaming client
b0dd50655 fix panic when containerd-stress density --count 0
39cc684c6 docs: Add extra security instructions
afa19a0a7 Fix process_vm_* syscall names in seccomp
740e90177 go.mod: re-vendor NRI from the official repo.
345332175 upgrade the ops.md output for current 1.7 version .
f88162587 Rename transferer to transferrer
fc2754204 Cleanup code comments and lint fixes
f1598cf5e Update transfer docs
01bd314b1 Rename local transfer plugin
c387a5205 Add variables names to transfer interface
8304a61b5 Combine stream fuzz tests
0762a3a75 Add media type to export stream
52341a234 Update export API types
42eedc0bc Update ctr to make local the default for distribution
ef61e13a6 Update import cli to use transfer service
11c1c8e6f Update import logic
66dc4d106 Update API for import types
b991c71e9 Update pull command to use filter arguments
40d3fa3af Add filter fields to image store types
9ae92f16e Improve push handler ordering
737257bb4 Add push progress
e88baa087 Fixup pull authorization and labeling
478f1c934 Lint fixes
28ea75456 Regenerated protobuf files with updated version
b0f519703 Add transfer docs
cd67a98ec Add transfer integration test
0aca4bb1f Update ctr commands to use transfer interface
6b5df1ee1 Update transfer packages
2a8d7a744 Update transfer API
7318a2def Add transfer plugin registration
d1627e3c7 Add basic import and export handlers
adfaeeff0 Add binary stream functionality and helpers
e506cd103 Implement client interface for transfer service
81afd9c36 Add progress
0e4e96544 Add transfer proxy client
6f64cb859 Transfer interface and plugin work in progress
f61ed7e94 Transfer API types
a24ea31c2 Add transfer API
dcf5687ca Add streaming service
08d5879f3 Added nullptr checks to pkg/cri/server and sbserver
8e0a3c51a Add ctr image prune
ceab73007 use MaxConcurrentDownloads instead of MaxConcurrentUploadedLayers
f012617ed CRI stream server: Fix goroutine leak in Exec
9f4ba4883 [sandbox] Fix panic when waiting for sandbox controller
dbc6d33ac [sandbox] Specify sandbox ID when using sandboxed shims
9a53a6c34 [sandbox] Don't access pause container when creating pod container
cc111eef6 [sandbox] Move sandbox info to podsandbox controller
a0daf1c28 docs: add NRI-related documentation.
02f0a8b50 pkg/cri/server: nuke old v0.1.0 NRI hooks.
ca84aba6c integration: add first NRI integration tests.
b27ef6f16 pkg/cri/server: experimental NRI integration for CRI.
43704ca88 nri: add experimental NRI plugin.
a6d1d53cc [sandbox] Update Controller.Status protos
2136736f5 go.mod: golang_protobuf_extensions v1.0.4 - prevent incompatible versions
63c6c55ab go.mod: roll back github.com/containerd/cgroups to v1.0.4 release
3c1c0878e integration/client: update containerd version to v1.7.0-beta.0
ebd63adac integration/client: fix go.mod grouping
8d868dadb Add ptrace readby and tracedby to default AppArmor profile
8c035d387 Resolve warnings in Windows GitHub Actions periodic workflows
ae0da7dc5 Use sandbox store to retrieve runtime info for sandboxed containers
3ddaa3444 Retrieve sandbox creation time from store.
4b3281982 Remove duplicated helpers
3f331e7d1 Specify runtime configuration for sandbox shims
c4dee237f Fix order of operations when setting lease labels
a22f0a4c3 archive: set WithModTimeUpperBound when WithSourceDateEpoch is set
ed3a49c0e fix for OSS-Fuzz infra changes
ac4af4df8 integration: enable CNI slow test for sbserver
a74f7e902 sbserver: save netns in sandbox metadata on create
085d8e633 integration: enable tests for sbserver
1deaedd38 sbserver: persist sandbox during partial teardown
5a7c108ba Resolve Scorecards GitHub Actions workflow warnings
b7b185c92 update github.com/cpuguy83/go-md2man/v2 to v2.0.2
6142a2a24 sys: remove unused GetOpenFds()
f0ce2f6d3 remotes/docker: remove deprecated NewAuthorizer alias
c71a31156 sys: remove aliases for deprecated EpollCreate1, EpollCtl, EpollWait
3e5b444ac pkg/cri/util/: remove deprecated NormalizeImageRef alias
3a7cfaebb sys: remove alias for deprecated sys.RunningInUserNS()
bd912bbee go.mod: github.com/matttproud/golang_protobuf_extensions v1.0.2
5f23daeb2 go.mod: github.com/moby/sys/sequential v0.5.0
763ec7c86 go.mod: github.com/cpuguy83/go-md2man/v2 v2.0.2
0f616e354 go.mod: github.com/AdaLogics/go-fuzz-headers v0.0.0-20221118232415-3345c89a7c72
df4d07352 go.mod: golang.org/x/sys v0.2.0
4e68634ef go.mod: github.com/sirupsen/logrus v1.9.0
579c7f43d Change fsnotify event status condition.
2cea525ee Bump fsnotify to v1.6.0
73c6db881 Bump urfave-cli to v1.22.10
bf777a70b remove duplicated tx rollback
70b65062c Missed out `platform interface` when reused the conn for Client.
0c4d32c13 cri: add pod uid annotation
438db09b0 Fix building.md for btrfs
792294ce0 Update to cri-api v0.26.0-beta.0
234bf990d Copy cri-api v1alpha2 from v0.25.4 to containerd internal directory
e224f77eb Add process_vm read and write calls to default seccomp profile
e4130b2a0 overlay: Remove unused method param
661aaae3b introspection: expose the daemon's PID and PIDNS
f6232793b can set up the network serially by CNI plugins
2f5dd7c66 CI: update Fedora to 37
3fc5802d1 gotestsum match go version 1.19
aaf59efd2 Expose Done and Err in Shutdown service
5d0457df9 Refactored ctr to allow for tty allocation when container has {terminal:true} within Spec
c245347e9 tx rollback when GetInfo return error
14a08721c Remove OpenTelementry imports from remotes/docker package
405024db0 complement sub-command note for containerd-main
e38e2c8a4 make status more readable and update easy.
3abcfb5c0 keep the lower case letter for flag info
69af001b3 Replace broken and redirection link for CRI and kubelet in docs
b0133882f bump critools into ca1571e6edd116b2c95f52e3dfa0b4779b74223a
8bb599973 Remove the outdated comment
dd86128e0 Convert hcsshim's stats to cgroups' stats
6596a7086 Use github.com/containerd/cgroups/v3 to remove gogo
38ad785ce Bump k8s.io deps to v0.25.4
bd66f588b Bump OpenTelemetry contrib to v0.36.4
3fca677c1 Release: add static binaries
0c63c42f8 Fix slice append error
b829e6f2d Bump OpenTelemetry to v1.11.1
7def13dde Add a thin wrapper around otel Span object
ab194e65f Bump grpc to v1.50.1
b742aa2e7 fuzzing: bump go-fuzz-headers
91e295d76 Add `--debug` args
0f54c4740 feat add sandbox api status func
c953eecb7 Sandbox API: Add a new mode config for sandbox controller impls
99ac7a771 add oci.WithCPURT
717aa5929 Remove uses of deprecated go-digest.NewDigestFromHex, go-digest.Digest.Hex
3a9044f24 Rename darwin-kubelet to containerd
5f48e00af Extra documentation for content interfaces.
202abf8fc Bump k8s.io deps to v0.25.3
eaedadbed replace strings.Split(N) for strings.Cut() or alternatives
f90219d47 services/server/config: TestMergeConfigs(): use correctly formatted values
4866d8ba4 registry: support ipv6 addresses
8bec2b652 Replace references to `re` with `regexp.MustCompile`
5c510e47a Improve how reference regexps are built
98ff27265 Clarify repo name regex intention
2a8a53178 go.mod: change imports to github.com/distribution/distribution/v3
a97eb6955 Update repo normalize error message to include the name of the repo.
b979f0069 Fix bug in parsing domain from repository reference
f96660286 reference/docker: add unit-tests from upstream distribution/distribution
7de88c5ba reference/docker: align files with original code
f32595a0c Fix "getCPUInfo for OS freebsd: not implemented" on FreeBSD/arm64
11a06c1a3 ctr: add `ctr content fetch-blob`
dfd6a3aa6 remotes: add FetcherByDigest for fetching blobs without foreknown descriptors
c607f83c3 Fix missing closed fifo
a24ef0993 Replace mount fork hack with CLONE_FS
8b1b81eef Update hosts doc
f0bf9e7f8 Support default hosts.toml configuration
81bbd9dac add option to resolve symlinks to linux device
ee64926a7 add SpanAttribute
2d9f0f2fb add additional info in backport process
3b87d46ce Add tracing spans in CRI image service and pull.go
902b96cf2 fix comments
30c3078ae go.mod: golang.org/x/*: use tagged versions
422a24066 Bump go version to 1.19.3
9c2a63440 Fix ctr crash when pulling with http-trace and http-dump
78ac0046a ctr export strictly match default platform
a270d6e8a Harden GITHUB_TOKEN permissions
98269c061 s390x: initial enabler
4b2a23e7e overlayutils: Add fastpath for userxattr check
2da782468 Add sequence diagram for shim runtime v2
0be981595 Sandbox API: Move remote impls to /sandbox/proxy
2e83d885d fuzzing: improve archive fuzzer
7c77b3540 Add Workflow for running critest with Hyper-V Containers on Windows.
9494f0b80 Add HyperV config in tests
53f67705c Add release notes for v1.7.0-beta.0
c776a3631 Update mailmap
b7d0d1271 Cleanup sandbox interfaces
be3987a92 Migrate away from GitHub actions set-output
9a0331c47 maintenance: Remove WithWindowsNetworkNamespace from pkg/cri
3f3e2b3cc Fix LogURI generation-related tests on Windows.
ddb8a65be update codeql-action to v2
727b33c71 Retry client connection in waitForStart
3e4449862 Add logging volume metrics to Containerd CRI plugin
3ddcbf5f1 Update 1.5 release support timeframe
9a8611d63 bump go-fuzz-headers
fc86be501 not init a tracing processor when not loaded
47fa603e1 Update required Go version in BUILDING.md
8e7ef890a Use logtest if possible to clean up logs
a76d68ee4 Separate containerd logs in GitHub Actions' console
e47bdbd16 Upgrade critools from 1.24.1 to 1.25.0
878dbc7af Upgrade actions/upload-artifact from v2 to v3
198277202 Use `go env` to determine GOPATH in Makefile.
6a07a1c07 go.mod: matttproud/golang_protobuf_extensions v1.0.2 (use tag)
972399538 sys: synchronize mkdirall() with latest os.MkDirAll()
063c5f980 sys: create SecurityAttribute only once (Windows)
a983599e2 sys: update volumePath regex to allow returning earlier
d422c87e4 sys: compile volume-path regex once, and update GoDoc
f8f052482 Vagrantfile: explicitly specify rsync as the shared folder driver
4839f1bdf Add timeouts to all CI jobs
890398677 cri: PodSandboxStatus should tolerate missing task
fb6a40dc9 Don't unmount on Darwin when deleting bundle
c7e6a889b sys: remove unused IsAbs() (windows)
48daccb4d fix the --no-pivot flag being ignored by `ctr tasks start`
ea53e52fc CI: update GHA instances from Ubuntu 18.04 to 20.04
49a54e23c Stats() shouldn't assume s.container is non-nil
e7c8a5ab0 Move up actions versions to prep for deprecation
752bff981 cmd/containerd: use golang.org/x/sys/windows.SetStdHandle()
8b5df7d34 update golangci-lint to v1.49.0
f9c80be1b remove unneeded nolint-comments (nolintlint), disable deprecated linters
29c7fc952 clean-up "nolint" comments, remove unused ones
d21572513 pkg/cri/(server|sbserver): criService.getTLSConfig() add TODO to verify nolint
0eaace306 golangci-lint: sort linters in config file
3ebeb6d79 linting: address gosec G112/G114
347397cf2 update go.mod and go.sum
643dc1656 improve CDI logging
8ed910c46 CDI: configure registry on start
eec7a76ec move WithCDI to pkg/cri/opts
634bf0dd3 cmd/containerd: use golang.org/x/sys Service.SetRecoveryActions()
17a932403 Update the default seccomp to block socket calls to AF_VSOCK
d4b9dade1 Updates oci image config to support upstream ArgsEscaped
047e684bb fix install cni script
b7f6a6804 runtime/v2/shim: clean up the use of containerdBinary
b41d6f40b Update container with sandbox metadata after NetNS is created
8fc68db0c cmd/containerd: replace deprecated windows.IsAnInteractiveSession()
63a7d8a7f fix pusher concurrent close channel
260af5e1d TestTaskResize must use a terminal
39158629f diff/apply.readCounter: check negative size
70fbedc21 archive: add WithSourceDateEpoch() for whiteouts
0aefb5280 archive: windows: chtimes(): remove redundant conversion
f9c9121e5 archive: validate digests before use
8162e044b Add long term stable release branches
e2d8f3859 vendor: github.com/opencontainers/selinux v1.10.2
011fca6ed fuzzing: create structured tar bytes in archive fuzzer
54f2b5121 Update to go 1.19.2 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
f330ffd83 cri doc: Update kata containers reference
0119d43a4 use raw link to containerd.servic config
a59ecc50e CRI: implement Controller.Delete for SandboxAPI
9d18b5746 Modify WithDiscardUnpackedLayers
4333e6a6d Swap to net.ErrClosed checks for services
acb2964d6 go.mod: Bump go-winio to v0.6.0
4196fad02 Add integration tests with failpoint
4f4aad057 Persist container and sandbox if resource cleanup fails, like teardownPodNetwork
396b6d670 fix missing close
7a66f70b5 cri-integration: pass ENABLE_CRI_SANDBOXES to test
2432b54a5 Add new ctr option for discarding unpacked layers
b4558bedc Add test flag for skipping shim cgroup test
c6f571fc7 Set grpc code for unimplemented cri-api methods
82890dd29 CRI: implement Controller.Stop for SandboxAPI
927906992 CRI: implement Controller.Wait for SandboxAPI
dcb0d8f9e remove stray .zuul.yaml
e22a7a383 reference CDI configuration details
bc01f8fc0 Add reader option to local content reader at
c8010b9cb sbserver: return resources in ContainerStatus
b92f3160a cri-integration: propagate ENABLE_CRI_SANDBOXES
b79dcabd6 chore: enable Scorecard Github Action
8f4c23b69 retry request on writer reset
a37c64b20 Refactor CRI fuzzers
bf26140d9 Fix LogURIGenerator on Windows
adfbda464 Add ext2 fs support to devmapper snapshotter
f0fbc8dfd Upgrade fuzzing-related packages to reduce dependencies
e7c593edd Fuzzing: Instrument with new sanitizers
9cdf9f6c6 Use jq and only show failed tests on summary
34ad96bab CI: Output a summary using GITHUB_SUMMARY
524d3aca8 github.com/emicklei/go-restful CWE-285: Improper Authorization
3cfde732e remotes/docker/config: Skipping TLS verification for localhost
0f51aa874 Add NoSameOwner option when unpacking tars
b2a7183a8 matching the casing of other flags for ctr's pull command.
829dd2145 update cdi version to v0.5.1
0f743ce4f vendor: golang.org/x/net v0.0.0-20220906165146-f3363e06e74c
8f2bbd5e8 Update to go 1.19.1, 1.18.6 to address CVE-2022-27664, CVE-2022-32190
6ce0f6a26 Fix missing close
8575a0d6f Remove unused variable from images action
5e57d463d feature: use client default namespace
3c0e6c40a feat: upgrade registry.k8s.io/pause version
f9166aa53 .zuul: remove the zuul because it is offline
e041d1a2c integration: TestUpdateContainerResources_MemoryLimit: remove TODO comment
3a2197f5f metrics/cgroups/v1: Remove unused event parameter
bfb280fb3 Update golangci-lint timeout to match config
407703f09 Make checkContainerTimestamps less strict on Windows
344b25995 delete redundent import alias and and type conversion
17e436c20 Pin github.com/AdamKorcz/go-118-fuzz-build
a3bfa58b0 Make oss-fuzz mandatory
2e677c932 sys: move ForceRemoveAll to integration/client
19db697a5 archive: replace tarName() with filepath.ToSlash()
3cc3d8a56 mount: use ioctl helpers from x/sys/unix
0c6553bfd go.mod, vendor: bump golang.org/x/sys to latest version
93342d637 replace sys Sequential funcs with moby/sys/sequential
9ae2cc3a8 mount: remove unused ErrNotImplementOnWindows
dcfaa30ba chore: remove duplicate word in comments
b170eb3ca Add Kubernetes v1.25 supported version as v1.24
fdff11def ctr: add privileged-without-host-devices for run command
d063597e8 Upgrade github.com/klauspost/compress from v1.11.13 to v1.15.9
eb664aed0 go.mod: github.com/opencontainers/runc v1.1.4
ad597015c update runc binary to v1.1.4
962841fc7 Clarify containerd 1.5.0+ for k8s 1.20,1.21
90f6bd21c script/setup: handle cnidir with SUDO
331066f87 update intergration
49e2fe2ab bump cri-api
b7b1200dd ContainerStatus to return container resources
9525b3148 migrate from k8s.gcr.io to registry.k8s.io
f0036cb9d windows: Add runhcs-wcow-hypervisor runtimeclass to the default config
f318947b0 Do not rename test files on-the-fly to share functions
912d43b2b Revert "Downgrade MinGW to version 10.2.0"
850f667f5 contrib/fuzz/daemon.go: reformat the fileheader
460b0533b pkg/cri/streaming: increase ReadHeaderTimeout
9d286baed crypto/sha256 must be imported
adc7d5b2e Don't patch github.com/cilium/ebpf
470d3ee05 Upgrade containerd/cgroups to remove github.com/cilium/ebpf's fuzzer
43907515b adding support of CAP_BPF and CAP_PERFMON
13b14736a Don't fail test when GOOGLE_APPLICATION_CREDENTIALS is unset
095044710 Remove Windows special case in TestContainerdRestart
1f8db2467 go.mod: Bump hcsshim to v0.10.0-rc.1
396d2a7e4 ci: remove GOPROXY environment variable due to https://github.com/go-yaml/yaml/issues/887
1d8b1bc75 Cleanup shim manager
ff65fc2d0 Make TaskList generic
6e4b6830f Update CRI-API
782fd3c8e Vagrantfile: dump containerd log after critest
74c09b756 Fix contrib/ header
8add7e5d3 Rework permission handling in scripts
6ba91de84 release workflow: remove Go setup action
f8add9263 release workflow: increase timeout to 30 minutes
2dbff1dbc oci: skip checking gid for WithAppendAdditionalGroups
481861020 release: rollback Ubuntu to 18.04 (except for riscv64)
68bae258a Update protobuf definitions
ca3b9b50f Run gofmt 1.19
4a11a4018 Update golangci-lint to 1.48 with Go 1.19 support
ea6613029 Switch to Go 1.19
7787168cc Use global env variable to specify Go version on CI
5cf77fc43 Add TODOs for the remaining work
e1c5d71c0 Update golang to 1.18.5, 1.17.13
ee0f2e906 Change os.Stderr reassign for Windows service
426fcfbc5 fix protobuf aarch64
aa3303b69 Update sandbox protobuf to match CRI
882322417 Update controller's start response to incldue pid and labels
3d028308e Cleanup CRI files
c085fac1e Move sandbox start behind controller
f51014f8d Add sandbox to in memory services
6c14ca25d Fix cleanup in critest
e47c433d5 Add sandbox store helpers
f5fb2c32d Regenerate protos with updated protoc-gen-go
b16c3e9ad Windows HostProcess container CRI stats test
106433b79 Use httputil.DumpRequestOut for dumping client req
2fa84b1b8 Add extra context to error when push unauthorized
f4d05f207 chore: bump macos runner version
276a6f133 test: error strings should not be capitalized
2b92c70fa Fix command line parsing for image list
14003683f go.mod: Bump hcsshim to v0.9.4
1e0698e8e Fix CRI image pull timeout test for ppc64le
c15d8e156 go.mod: Bump hcsshim to 0.9.3
a9514da75 Update image references for Windows tests
2ae5f405d Use image lists instead of hardcoded images
552d76344 Use image lists in client tests
d121efc6d replace with selinux label
e6a2c0790 integration: simplify CNI-fp and add README.md
344431cdd fix: support simultaneous create diff for same parent snapshot
050cd58ce Drop deprecated `ioutil`
500ff95f0 Make getServicesOpts a helper
ee6fc5c2e adds an env var commented out for sandboxed mode
cbebeb944 pkg/failpoint: add FreeBSD link and update pkg doc
3c5e80b63 integration: Add injected failpoint testing for RunPodSandbox
be91a219c integration: CNI bridge wrapper with failpoint
1ae6e8b07 pkg/failpoint: add DelegatedEval API
b297775ea runtime/v2/shim: return if error in load plugin
5f9b318e5 bin/ctr,integration: new runc-shim with failpoint
822cc51d8 runtime/v2: manager supports server interceptor
ffd59ba60 pkg/failpoint: init failpoint package
3125f7e1a cri_stats: handle missing cpu stats
7eeec8987 adds support for using env file for systemd boot
7dc66eee6 using ContextDialer instead
6639b2b02 test: Add ability to switch between cgroupv1 or cgroupv2
0d6881898 Refactor usageNanoCores be to used for all OSes
f6bc986dc go.mod: github.com/stretchr/testify v1.8.0
628f6ac68 code cleanup
cc30880e8 ci: workaround Cirrus CI's INVALID_ARGUMENT
d8d63a7aa docs: Fix sample config.toml syntax
88bcbb036 adds a comment explaining how to disable experimental sbserver
3a3f43f72 Fix linter warnings
60f51c1aa Update and align golangci-lint version
98a1b7ff1 Add log messages when choosing CRI server
bbb8d3470 seccomp: add get_mempolicy, mbind, set_mempolicy, with CAP_SYS_NICE
19e847983 seccomp: seccomp: add syscalls related to PKU in default policy
2ba635331 Change metrics namespace for sandboxed CRI to prevent panic
b8e93774c Enable integration tests against sandboxed CRI
cf5df7e4a Fork CRI server package
4ffef752d update golang to 1.18.4, 1.17.12
c733119db cri doc: fix formatting for CDI options
f77d45e3b ctr: support --user for run/create
22dfc68ad Fix protobuf script to install protobuf on darwin
bcdc8468f Fix out of date comments for CRI store packages
174b01344 update some devmapper docs
575095fcd seccomp: allow clock_settime64 when CAP_SYS_TIME is added
e9e33f847 Copy fuzzers from github.com/cncf/cncf-fuzzing
b31631859 Upgrade github.com/AdaLogics/go-fuzz-headers
6d4b61007 integration/client: fix typo in export_test.go
b8bb33b92 fix can't edit object by using ctr content edit command
548c9c317 Fix WWW-Authenticate parsing
b8403d2e1 Update k8s.io/cri-api to v0.25.0-alpha2
a44cabf51 Update go-restful/v3 to latest release
c2703c08c pkg/cri: use marshal wrapper for version convertor
d2588b3fa LCOW differ return ErrNotImplemented for wrong mount type
0a240ff81 Fix missing closed HTTP Body
f7de1c8f9 Do not hardcode fuzzers
2b60770c4 Move container_fuzzer.go under integration/client/
66cc0fc87 Copy FuzzCRI from cncf/cncf-fuzzing
ca5637104 Remove mainfuzz package and StartDaemonForFuzzing
17f9c3a0e Move builtins_*.go to cmd/containerd/builtins to make the files reusable
d97b754a5 Cleanup metadata tests
1ef4bda43 Downgrade MinGW to version 10.2.0
1ab42be15 refactor: reduce duplicate code
47ad5f70e Fix Doc:
fb5b6612a ctr: Fix `ctr c create` fails to parse arguments
68a55fe8b make xattr EPERM non-fatal in createTarFile
99e210c50 Move metadata plugin registration to seperate package
4f0ea7831 fix: missing sudo for devmapper doc
72b87ad00 add WithAdditionalGIDs test
5bf705255 add WithAppendAdditionalGroups helper
5cde04bc7 Forward ctr snapshotter flags on Windows
4ac1031e0 Add snapshotter key to snapshot events
b27a229df Move contrib/fuzz/docker_fuzzer.go to remotes/docker
f91616e45 Copy FuzzConvertManifest from cncf/cncf-fuzzing
c9c5fee37 Do not hardcode fuzzing targets
50f1a4e42 Don't log "ignored xattr ..." warnings
112497bc3 Make oss_fuzz_build.sh quiet
6e53ffb10 ctr: add --hostname flag to create, run
7002fc2c4 Ensure Windows Periodic workflow errors out while still uploading results.
2e288f5b1 improve content-flow
d4ab64988 Revert MinGW to oldest known working version in Windows setup script.
55dd56e52 Make CI Fuzz optional
82adbc849 Run fuzzing tests with go test -fuzz
a1eb2d8a6 Use testing.F on FuzzPlatformsParse
57200edf2 Use testing.F on FuzzParseProcPIDStatus
0b3c31dd7 Downgrade MinGW in Windows setup scripts.
42a386c81 CRI: change the /dev/shm mount options in Sandbox.
a62a95789 CRI: remove default /dev/shm mount in Sandbox.
8245e35eb Make test path a constant
ee14f9316 Run fuzzers in CI
52593cfc8 containerd-stress: add support for running through CRI
5560b622d archive: Explicitly specify stdio for tar(1)
95f1d7971 platforms: Run goimports for FreeBSD
42e019e63 cri/server: Disable tests on FreeBSD
ad8e59806 oci: Remove empty mount option slice for FreeBSD
c15f0cdaf oci: FreeBSD devices may have major number 0
2ab8c12fc archive: use Linkat on FreeBSD for hardlinks
61690d76d Improve naming consistencies in comments in snapshotter.go
c101f7999 Allow CRI on Darwin
0167e55ab update runc binary to v1.1.3
c3fb7dfa7 go.mod: github.com/moby/sys/mountinfo v0.6.2
fa4720fa1 fix add ro mount for userattr-unmount unexpected timeout
92d360b58 fix minor spelling mistake: lablel -> label
6190b0f04 Correct spelling mistake ("sanbdox" to "sandbox")
5a6e4144a go.mod: github.com/containerd/cgroups v1.0.4
088c8df3a go.mod: github.com/containerd/continuity v0.3.0
012d68ff9 add gc scheduler metrics: collection count
44e12dc5d Windows snapshotter touch ups and new functionality
40aa4f3f1 Implicitly discard the input to drain the reader
00eb74a4c Make building static binaries simpler
d25b4e6f3 Bump Golang and MinGW versions in Windows setup script.
7b9f1d405 Added support for runtime level snapshotter, issue 6657
8bc6ccc07 Bump k8s.io deps to v0.24.1
5fcde823d Bump grpc to v1.47.0
1b3c3860d update golang to 1.18.3, 1.17.11
e3b4d750d update go-cni/for cni update fixing plugins that don't respond with version
8ed54849a Move docker reference logic to reference/docker package
f7aa90d27 Fix containerd-stress duration flag
ae22854e2 Linux containers on FreeBSD
49ca87d72 Limit the response size of ExecSync
1cf6f2032 promote pause image to 3.7
b5e1b8f61 Use t.Run for /pkg/cri tests
b572a82ad CRI: Remove deprecated error types and update error msg
978ff393d Add validations for Windows HostProcess CRI configs
1a8024b46 Makefile: use urfave_cli_no_docs for binaries that don't need it
5bb47fb95 vendor: github.com/urfave/cli v1.22.9
a3a2d14ec fix verify-vendor if go.mod does not contain replace rules
688b30cf5 CRI: Move truncindex to pkg
e44335800 CRI: Move reference sorting to reference package
b5366f8d7 CRI: Retrieve image spec on client
4ba5415fb build: Fix references to check-protos target in Makefile
8a3114b37 Fix broken oss-fuzz build
d2f30150b archive: add human-readable hint to Lchown error
9f9ebbd99 Fix tx closed error when upperdirlabel specified
739cb4c99 config: improve config v1 deprecation message
b5107a898 Fix Windows install powershell script
b69182c71 add note that a namespace cannot be named "version"
8d95f2b59 fix comments on metadata schema
900019b30 ctr sandbox: handle sandbox config
8ec1fc70d adjust format
a42688639 Restore decompression benchmarks
8494f7f11 adjust format in comment
92b7bc9ed ctr: fix label args used in NewContainer
4da4a8879 update doc url
eaec6530d fix some confusing typos
65150600d Separate windows-2019 and windows-2022 test results
7300296cb reverts removal of parallel run from critest
523d069a2 sandbox: replace github.com/pkg/errors with native errors
c4ce13a28 vendor: github.com/opencontainers/runc v1.1.2
25858d621 update runc binary to v1.1.2
c1140aef6 Bump OpenTelemetry dependencies
f710505f4 shim: fix debug flag not working
72cd3b476 update golang to 1.18.2, 1.17.10
f5b7a4b3d CI: update Fedora to 36
a3ac15600 oci: WithDefaultUnixDevices(): remove tun/tap from the default devices
ad8b87ba2 Add `Wait` to `binaryProcessor`
d9fc5f4b0 Enable git commands due to git CVE fix
09c2c2a75 Pass explicit JUnit outfile to critest.exe in Windows workflow.
2c98a7b09 ctr import: strictly match platform
d1c49781e go.mod: Bump k8s deps to v0.24.0
c721c8e27 devmapper docs: small fixes
bb11c9d24 update critools to v1.24
8a2e8cd8d move report dir option to eol
af24e3871 Update Kubernetes version matrix in release docs
7a834516f Share images between TestRestartMonitor and TestRestartMonitorWithOnFailurePolicy
cedb7d3bd containerd 1.6.4 k8s 1.24 readme announce
57d2bce74 docs: minor fixes in snapshots.Snapshotter comments
42584167b Officially deprecate Schema 1
55401ac9c Update k8 docurl in file
d4127a9f2 CI: add riscv64 builds
0e56e4f9f release/Dockerfile: update Ubuntu to 22.04 for supporting riscv64
4b412b800 seccomp: support riscv64
8160a3efc Reduce the number of the concurrent HTTP requests in TestUserNamespaces
7183fc81d Skip TestImagePullWithConcurrencyLimit on Cirrus CI
10576c298 cri: support blockio class in pod and container annotations
9b04d2fae docs: Adding windows installation steps to getting-started.md
227156dac Add ctr support for CPUMax and CPUShares
b5370b040 Fix comment for metadata/db.go
5d0730370 Update go-cni to v1.1.5
180c7535d Upgrade protoc, protoc-gen-go and protoc-gen-go-grpc
2c6760005 go mod tidy & go mod vendor
29b937956 make protos
fcba48636 Remove gogo from .proto files
ae29594d0 Bump opencontainers/selinux from 1.10.0 to 1.10.1
46773c341 Cleanup leaked shim process
7f23296b9 Upgrade google.golang.org/grpc and google.golang.org/protobuf
7353006f6 Remove kzys/typeurl
7215f85ac Don't use "uname -a" as Cirrus CI's cache key
45c0cbec5 Create ppc64le release
5f43118ce Move Vagrant-based tests from GitHub Actions to Cirrus CI
00d102da9 feature: support image pull progress timeout
fceab7f4c remove duplicate
0e6c7bf93 Fix undefined error in use of errors package
a9f5190fb images/image.go: typo
da3e2f985 fix incorrect syntax in comments
7a4f81d8b Fix tests
aefd1849b go mod tidy and go mod vendor
f616dd471 Upgrade containerd/typeurl
9dbe000a3 make protos
1a095e18b Rename Size_ to Size
e3db7de8f Remove gogo/protobuf and adjust types
fd37cc75b Use protoc-gen-go instead of protoc-gen-gogoctrd
e044759eb Upgrade containerd/ttrpc
8710d4d01 cri: close fifos when container is deleted
7331b2af4 Add Container-Optimized OS into Adopters
dfa6e8763 diff: hide types.Any from clients
01dfb110c Add go_package on all proto files
aa1526def Use proto.Marshal instead of calling Marshal() on objects
95dde4959 Embed "Unimplemented" structs as proto recommended
35994a475 fix monitor restart
237ef0de9 Remove all gogoproto extensions
22cd13b37 fix nil pointer panic for monitor
bd90ce043 Keep shim API backward compatible
39692e767 unpack: return error when no platforms defined
8017daa12 Add unpack interface to be used by client
e2fd25f3d Move runtime v2 proto Move runtime v2 protos to api/runtime package.
3742c756e Don't generate a Go file, if that would be empty
5f3b72432 Fix protoc-gen-go-fieldpath
3b82f9e33 metadata: use resource max and end on registration
88c0c7201 Consolidate gogo/protobuf dependencies under our own protobuf package
80b825ca2 Remove gogoproto.stdtime
dbdf50cc0 update golang to 1.18.1, 1.17.9
fd704d334 Build bin/gen-manpages instead of using "go run"
b497e6414 Fuzz filter package with Go 1.18's fuzzer
94faa70df allow ptrace(2) by default for kernel >= 4.8
fe8da6dca Move lease manager plugin to separate package
147f0a7e0 check for duplicate nspath possibilities
942af1203 fix pool_device_test.go
5f3ce9512 Do not append []string{""} to command to preserve Docker compatibility
8367f69fb Add collectible resources to metadata gc
c525aa5f8 Set timeout when collecting metrics from shim's Stat
49235ccba Change architecture path in README.md
8a1280b2b metrics/cgroups: fix deadlock issue in Add during Collect
a5dfbfcf5 cri: load sandboxes/containers/images in parallel
6d69aca56 make consistent for checkpoint path
6341e0696 ADOPTERS: Update AKS Info
b446c7647 [Sandbox] Remove outdated documentation
d0b32c053 [sandbox] Migrate from gogo to Any
85a49e4ee [sandbox] Cleanup interfaces
de4974572 [sandbox] Fix CI
b7a36950f [Sandbox] Add Wait and PID
0d165e654 Restore sandboxes on daemon restart
0c5e5c357 Fix protobuf after rebase
fa02477ca [sandbox] Add sandbox shim skeleton
35195737e [sandbox] Register shim plugin after #6301
17a2aaded [sandbox] Add ctr support
982de8a5d Launch sandboxed containers from task service
00f7a6bf2 [sandbox] Address PR review comments
6343fe3ea [sandbox] Implement sandbox controller
eaccbf1d0 [sandbox] Add clients
df234edeb [sandbox] Add controller service
a433beb79 [sandbox] Update vendor
0e77f758a [sandbox] Implement store service
13eb1a4bb [sandbox] Revendor API changes
d7ece8724 [sandbox] Save sandbox ID to container's store
cab7d5b3d [sandbox] Implement metadata store
87d4c8923 [sandbox] Add basic sandbox structures and interfaces
4445d0a8d [sandbox] Add protobuf definitions
3df767405 add restart policy for enhanced restart manager
7e70ad9fb Pin upload-cloud-storage action to 0.8.0 in Windows workflow.
927b34e41 tracing: fix panic on startup when configured
1a45c2c5f docs: add Deckhouse to the list of adopters
825c1c58a CDI: update go.mod and vendor deps
ff5c55847 move CDI calls to the linux-only code
c9b4ccf83 add configuration for CDI
aed0538da cri: implement CDI device injection
35383fb42 docs/cri: simplify
493baa6e7 Add docs/snapshots
811375856 CRI: improve image pulling performance
16fbbaeee Skip flaky test on Windows
44d7cd152 mv design docs/historical/design
195fc7424 docs: migrate config v1 to v2
84cebafe8 docs: remove deprecated `io.containerd.runtime.v1.linux`
83665bf8d docs/getting-started.md: typo
ccea927d9 Move historical docs to `docs/historical`
50921e71b Run go mod tidy in integration tests
99c194e03 go.mod: move indirects, and update integration go.mod to 1.18
6ccec53d3 Remove gotest.tools
871b6b6a9 Use testify
6da318310 Disable writing freelist to make the file robust against data corruptions
62c846b17 Update linters to use t.Setenv
2d59a3944 Use t.Setenv instead of os.Setenv
4bdac2b43 Adding multi-arch support for the configure.sh script
6f269ccb3 docs/getting-started.md: massive update
c7bdcdfbe Address some timeout issues in the Windows CI
a2d22ac05 BUILDING.md: update supported Go versions
d0bd65d3c Remove unmaintained contrib/linuxkit
f2d5f71a7 update runc binary to v1.1.1
11a31320b go.mod: github.com/opencontainers/runc v1.1.1
0b2a95e10 Add no_tracing tag
b42e936c5 CI: add Rocky Linux 8
b1030e7b6 CI: bump up crun to 1.4.4
b737cb10e Update README.md
cf571fa96 added make help for cri integration
44a8ac7b0 Turn paths from cmdline into absolute paths
2689432bf Fix error message in TestNewBinaryIO
96b16b447 Use typeurl.Any instead of github.com/gogo/protobuf/types.Any
fe426227d native: fix deadlock from leaving transactions open
a51da91c1 moving up to go-cni v1.1.4
36612d692 go.mod: remove replace and update github.com/gogo/googleapis v1.4.1
df93940fb fix: ctr images mount with snapshotter option can't get snapshotter
c091d48cb Use cgroups.AddProc() for cgroups v1
d2013d2c9 runtime: deprecate runc --criu / -criu-path option
388ee880d Upgrade containerd/imgcrypt and opencontainers/image-spec
70a06d0c8 Upgrade to Go 1.18
067611fde Remove enumvalue_customname, goproto_enum_prefix and enum_customname
bfde58e3c Bug fix for mount path handling
e9bb9c3bc Skip tty critest testcase on Windows Server 2022
3eeeb9429 Remove gogoproto.customtype
040babe00 Vendor dependencies with module graph pruning
a19ad9bb6 Use Go 1.18 to build and test containerd
56f95e3d8 Test turning off golang CI lint cache
ee49c4d55 Add nolint:staticcheck to platform-specific calls
c56875233 Update prometheus client vendor
9aadef1be vendor: golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
fdb746442 document log level and format
52d307ac1 test: remove redundant `mountPoint`
2a0b2ee9e fix: ctr run --cni get failed
18ec2761c test: use `T.TempDir` to create temporary test directory
b8bf504e9 Enable gosec linter for golangci-lint
2ddcb2019 Make OpenLab's CI jobs blocking
cc526a98a Make mkfs.xfs available on OpenLab's CI environment
ba1674389 typo fixes under cmd.
2e080bf49 Add shared content label to namespaces
2a425990c Implement `--device idType://id` for `ctr run` on Windows
39d52118f Plumb CRI Devices through to OCI WindowsDevices
6a25be94e CRI integration test for Windows Device mounts
622a35a4f Upgrade golangci-lint and its GitHub Action
59b1871b3 Fix link in getting-started.md
88de65112 Don't build a second copy of containerd-shim-runhcs-v1.exe
807ded41f Update TestNormalize to only test Windows
80bc32f06 Use temp file for export/import test
0d0b2bd4f Mount devmapper xfs file system with "nouuid" option.
14901335c Increase wait timeout for TestDaemonRestart
718adfe06 Use the latest image for Windows test workers
894e78001 Improve ErrUnexpectedStatus default string
48b478381 Skip most of script/setup/prepare_env_windows.ps1
768bf73dd Enable cri-tools critest on Windows
59b978847 Enable CRI Integration tests on Windows
5b78a9a8f Remove hardcoded /tmp in tempfile paths
03a5e648b Use version 2 config and mention containerd config command
e0a6f9c7d update to go 1.16.15, 1.17.8 to address CVE-2022-24921
b90c466c3 Add ErrUnexpectedStatus to resolver
fdaf859aa Update status of 1.4 release
7b045ea5f ctr: improve error relative shim path error msg
e5efc260d Update latest release versions
63dd929af Update release process to include Kubernetes test infrastructure
0c79257f5 Add --user support for ctr run Windows
de3d9993f Adds support for Windows ArgsEscaped images
775facd57 cri: fix integration test on cgroupsv2 system
f1f69d4ee integration: remove duplicated util pkg
352a8f49f cri: relax test for system without hugetlb
ec90efbe9 Make the temp mount as ready only in container WithVolumes
ea3d2e643 go.mod: update to github.com/tchap/go-patricia/v2 v2.3.1
2b68c03a6 Update Go version recommendation in getting started
77c0539e9 Use containerd/protobuild instead of stevvooe/protobuild
d28981d48 Fix build with gccgo
f4f41296c Replace golang.org/x/net/context with std library
296f75bd0 Do not use weak import
3febabffe Add protoc-gen-go-fieldpath
7901f4b33 containerd-shim-runc-v1: return init pid when clean dead shim
a3303e721 Update TestContainerSymlinkVolumes to use windows path
481fb923c go.mod: update to github.com/emicklei/go-restful/v3 v3.7.3
fb0b8d617 Use fs.RootPath when mounting volumes
1a31772a7 go.mod: github.com/moby/sys/signal v0.7.0
b1881bdc0 go.mod: github.com/moby/sys/mountinfo v0.6.0
b6a6757c1 go.mod: github.com/fsnotify/fsnotify v1.5.1
83c80388b Initialize platform matchers for current platform
b63000c65 [Windows][Integration] Enable TestRestartMonitor
7275411ec cgroup2: monitor OOMKill instead of OOM to prevent missing container OOM events
6906b57c7 Fix the Inheritable capability defaults.
fdbfde5d8 cmd/containerd-shim: add -v (version) flag
e79aba10d integration/images/volume-ownership: strip path information from usage output
b8cadf753 runtime/v2/shim: strip path information from version output
356ca7575 containerd-shim-runc-v2: return init pid when clean dead shim
86d52fc26 Fuzzing: refactor metadata fuzzers
894af07e3 integration: Adds Windows equivalent for TestSandboxRemoveWithoutIPLeakage
54e95e6b8 fix Implicit memory aliasing in for loop
5d4dc5780 remotes/docker: log registry URLs as info instead of debug
afe39bebf add oci.WithAllDevicesAllowed flag for privileged_without_host_devices
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping containerd to version v1.6.12-2-gccfc27e30, which comprises the following commits:
3595dd04b fix: check for tmpfs when evaluating if userxattr should be used
1899ebcd8 Prepare release notes for v1.6.12
ec5acd4c1 CRI stream server: Fix goroutine leak in Exec
9743dbae8 [release/1.6] update to go1.18.9
3d24d97ba Prepare release notes for v1.6.11
bb96b21e5 fix: support simultaneous create diff for same parent snapshot
15b541238 Fix order of operations when setting lease labels
9fdf713e5 Added nullptr checks to pkg/cri/server and sbserver
56593cca5 cri: add pod uid annotation
8ec051a6b [release/1.6] go.mod: use golang_protobuf_extensions v1.0.4
e639ecd7c Prepare release notes for v1.6.10
5af8d89ce overlayutils: Add fastpath for userxattr check
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
| |
Bumping runc to version v1.1.4-10-gbd4d05c0, which comprises the following commits:
e6a8287c ci: shellcheck: update to 0.8.0, fix/suppress new warnings
3b958289 Fixes inability to use /dev/null when inside a container
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
| |
Bumping runc to version v1.1.4-10-gbd4d05c0, which comprises the following commits:
e6a8287c ci: shellcheck: update to 0.8.0, fix/suppress new warnings
3b958289 Fixes inability to use /dev/null when inside a container
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping docker to version v23.0.0-beta.1-16-g3083236871, which comprises the following commits:
4ee3cc2531 vendor: github.com/containerd/containerd v1.6.12
48a0d8a8d1 [23.0] update containerd binary to v1.6.12 (addresses CVE-2022-23471)
3d902fe719 [23.0] update containerd binary to v1.6.11
0da8917add vendor: github.com/containerd/containerd v1.6.11
623f6f7702 update to go1.19.4
4952dc2844 distribution: remove unused RequireSchema2
e7b26fa1b1 use ad-hoc libtrust key
f2463e1e86 distribution: use ad-hoc trustkey for tests
139080d093 daemon/config: remove and local trustkey utilities
46e0317bc1 [23.0] remove libtrust tests
1da1a3ea87 builder: handle host-gateway with extra hosts
7620f72fb8 ci(buildkit): update buildkit ref to fix issue with alpine image
304c56f7f5 distribution: checkSupportedMediaType: allow additional media-types
6875e7f1be seccomp: block socket calls to AF_VSOCK in default profile
978690e4f9 client/list: Handle SharedSize
da6bb8c408 AUTHORS: regenerate
a889a17a63 .mailmap: cleanup and additions
6f581c1808 hack/generate-authors.sh: refactor and simplify
de3143c6b9 Jenkinsfile: Fix dev image build fox ppc64le/s390x archs
f547f2f3c0 Makefile: always use buildx
0c4b6b1742 ci: define timeout for jobs
f088bcadd5 ignorefiles: cleanup
5770145433 vendor.mod: remove outdated comment about replaced module
d15fe0d782 registry: session: remove unused id
546005804c go.mod: golang_protobuf_extensions v1.0.4 - prevent incompatible versions
73a98393c6 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221123162438-b17f02f0a054
acb8204a7f Dockerfile: remove hardcoded platforms for vpnkit stage
313f105443 hack: remove obsolete sources for go-autogen
2b1ba3ea6b vendor: github.com/prometheus/client_golang v1.13.0
f493b770a9 vendor: github.com/aws/aws-sdk-go v1.37.0
36430f7970 vendor: google.golang.org/grpc v1.48.0
fb24b99a2b vendor: go.uber.org/zap v1.21.0
0c65191c49 vendor: go.uber.org/multierr v1.8.0
bf78bf3458 vendor: go.uber.org/atomic v1.9.0
dcf06b3f5f vendor: github.com/jmespath/go-jmespath v0.4.0
aba1d597bc vendor: google.golang.org/genproto v0.0.0-20220706185917-7780775163c4
e37ac41afb vendor: github.com/fernet/fernet-go v0.0.0-20211208181803-9f70042a33ee
963e3ec65c vendor: google.golang.org/protobuf v1.28.1
526203dd7f vendor: github.com/spf13/cobra v1.6.1
f528e2ab96 vendor: github.com/moby/term v0.0.0-20221120202655-abb19827d345
3989be2f7b vendor: github.com/bsphere/le_go v0.0.0-20200109081728-fc06dab2caa8
df2427022a vendor.mod: add comment about replaced dependency
9e4c508b55 vendor.mod: remove replace for github.com/rexray/gocsi
cb358e8a19 vendor: github.com/armon/go-radix v1.0.1-0.20221118154546-54df44f2176c
3768c71d9e Dockerfile: variant support in frozen-images stage
7b9e86f789 update github.com/tc-hib/go-winres v0.3.0 to fix schema version in manifest
5052c38846 update gotestsum to v1.8.2
3508cfb149 hack/validate: drop changelog-related steps
67633130c6 cleanup: drop historical CHANGELOG.md
2dc7a1dc25 cleanup: drop .DEREK.yml
fc657692c7 daemon/config: use strings.Cut(), fix panic in BuilderGCFilter
e75fa6684c daemon: use strconv instead of fmt.Sprintf()
abe6b3dc9b rootlesskit.installer: s/vendor.conf/vendor.mod/
297f224a92 update RootlessKit to v1.1.0
f48f4dde24 vendor: github.com/rootless-containers/rootlesskit v1.1.0
2dce69e001 update containerd binary to v1.6.10
5c4dc48995 vendor: github.com/containerd/containerd v1.6.10
10fa0d5321 vendor: golang.org/x/oauth2 v0.1.0
356f483038 vendor: golang.org/x/crypto v0.1.0
c0edbfd621 vendor: golang.org/x/net v0.1.0
e46e43470b vendor: golang.org/x/time v0.1.0
d4e2341f93 vendor: golang.org/x/sync v0.1.0
e32bfd347c vendor: golang.org/x/sys v0.1.0
65c7f3bac3 pkg/loopback: use ioctl helpers from x/sys/unix
5f35b157a3 vendor: golang.org/x/sys v0.0.0-20221006211917-84dc82d7e875
11973d0c0a vendor: github.com/moby/buildkit v0.10.6
251610397c vendor: gotest.tools/v3 v3.4.0
83f90039ef vendor: github.com/google/go-cmp v0.5.9 to remove golang.org/x/xerrors dep
2fd846d40f vendor: gotest.tools v3.3.0
f9ab209417 chore: update supported go version to 1.18+
bfca3185ee ci(actions): bump outdated actions on Linux
7f45eb041c ci(actions): migrate to file-based commands
7370bbc034 replace distribution/digestset with opencontainers/go-digest/digestset
21feb1808d Revert "validation: temporarily allows changes in integration-cli"
5e15ce3a4a pkg/directory: remove unused MoveToSubdir() utility
92b96ac2ed pkg/directory: minor refactor of Size()
e0b105623e pkg/system: unconvert
9d86e1d204 pkg/system: move GetExitCode() to pkg/idtools, and un-export
3a946f5291 pkg/system: remove Umask() utility
cf1e138ab1 pkg/directory: Size(): add back type-casts to account for platform differences
7175841ebd Remove long-deprecated "arm" fallback
f3e180b704 Update to Go 1.19.3 to address CVE-2022-41716
07e84005ac distribution: Error when pulling OCI artifacts
39d3d3db56 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221102165002-6341884e5fc9
1e0f2186a9 Fix containerd task deletion after failed start
75634f9a1e daemon: fix docs for config-default constants
ad11d3f232 Fix the max-concurrent-downloads and max-concurrent-uploads configs documentation
03015fe6de fix force remove for cluster volumes
09a2f7a667 integration: download busybox-w32 from GitHub Release
24de1f7adc vendor: github.com/containerd/containerd v1.6.9
c4685540e4 update containerd binary to v1.6.9
80dc5186ec builder/remotecontext/git: allow building on go1.18
f72c96c5c4 gha: buildkit: make checks more readable
1bbb6f2454 gha: buildkit: remove "skip-integration-tests" from matrix
c0be73f88d skip TestImagePullStoredfDigestForOtherRepo() on Windows and rootless
727c4fdee3 Validate digest in repo for pull by digest
b4c4be1f22 Revert "testutil/registry: remove unused WithStdout(), WithStErr() opts"
4bef6f5510 gha: update buildkit to v0.10.5-6-ge27c8e24 to skip some tests
f056df579a builder: add missing doc comment
c062238ea4 builder: fix running git commands on Windows
20ff8a2380 builder: make git config isolation opt-in
ca99cab891 builder: isolate git from local system
5829b244ec builder: explicitly set CWD for all git commands
3bc8fccc1b builder: modernize TestCheckoutGit
00b44caa69 vendor: github.com/moby/buildkit v0.10.5
aaa8f96cc9 registry: allow "allow-nondistributable-artifacts" for Docker Hub
671bf589e2 Change restart delay for Windows service to 15s
e1b240d6bd cmd/dockerd: use golang.org/x/sys Service.SetRecoveryActions()
18a54ed59c cmd/dockerd: use golang.org/x/sys/windows.SetStdHandle()
0c66bc948a cmd/dockerd: replace deprecated windows.IsAnInteractiveSession()
a12d359c1a daemon/graphdriver/windows: Remove() don't use defer() in a loop
2d12e69c9f daemon/graphdriver/windows: use go-winio.GetFileSystemType()
fa10084a82 daemon/graphdriver/overlay2: remove deprecated overrideKernelCheck
43ce8f7d24 integration/plugin: remove deprecated overlay2.override_kernel_check
a5ecbf4d22 vendor: github.com/opencontainers/selinux v1.10.2
ac6624773e pkg/fsutils: deprecate in favor of containerd/continuity/fs
4669418731 Volume prune: only prune anonymous volumes by default
1fe550cfc7 Update to go 1.19.2 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
edef49eeac docs: swagger: update description for default builder version
0a87dc9f71 Fix live-restore w/ restart policies + volume refs
262ad3bb2f libnetwork/resolvconf: removed unused GetIfChanged() and GetLastModified()
44d42c2b16 replace pkg/fileutils Matching funcs with github.com/moby/patternmatcher
f8e5145e96 runconfig, oci, image, layer, distribution: fix empty-lines (revive)
24888a10f6 cmd/dockerd: fix empty-lines (revive)
3a1896db63 client: fix empty-lines (revive)
47319e065d api/server: fix empty-lines (revive)
b9b6e68903 opts: fix empty-lines (revive)
c6c4d07830 daemon: fix empty-lines (revive)
9136c32327 daemon/images: fix empty-lines (revive)
7cb488934b daemon/logger: fix empty-lines (revive)
aea1aa0daa daemon/graphdriver: fix empty-lines (revive)
79caa2f955 daemon/cluster: fix empty-lines (revive)
87552f2e67 plugin: fix empty-lines (revive)
aad639c1fa volume: fix empty-lines (revive)
bee5153c5b testutil: fix empty-lines (revive)
31a938c73c integration: fix empty-lines (revive)
9d44956d8c builder: fix empty-lines (revive)
08d01be870 integration-cli: fix empty-lines (revive)
3660ee30e3 api/types: fix empty-lines (revive)
3424a7c2e3 pkg/*: fix "empty-lines" (revive)
541fda8e90 migrate pkg/pubsub to github.com/moby/pubsub
a8b1fec072 pkg/fileutils: remove gotest.tools as dependency, use t.TempDir()
fd0904805c contrib: make dockerd-rootless-setuptool.sh more robust
f6ebfaea19 test(pkg/archive): add TestImpliedDirectoryPermissions
daa8708601 refactor(pkg/archive): factor out createImpliedDirectories helper
7114360901 pkg/idtools: mkdirAs(): fix infinite loops and repeated "chown"
5dfec22079 swagger: update links to logo
cee2490d84 Jenkinsfile: use Ubuntu 20.04 for DCO stage
3ce520ec80 golangci-lint: update to v1.49.0
1d7fb64a6e vendor: github.com/moby/sys/sequential v0.5.0
ae65811be2 vendor: github.com/github.com/coreos/go-systemd v22.4.0
2bc36de638 Remove the OS check when creating a container
997ec12ec8 set ReadHeaderTimeout to address G112: Potential Slowloris Attack (gosec)
4a8f744255 ci: reduce cache throttling limits
07efcaf3b2 ci(test): report summary output
7f94f2b393 fix debian sysvinit script fails to restart docker daemon when stopped
970c938b56 client: ignore kernel-memory on API >= 1.42
d41ebd79f7 vendor: github.com/armon/go-metrics v0.4.1
d0fadc859d vendor: github.com/google/btree v1.1.2
44c5f7721a ci: fix branch filter pattern
00b1722fb4 Jenkinsfile: remove unit-validate stage
8fdaad4018 Jenkinsfile: remove report bundles creation in unit-validate
fefe6290e5 Jenkinsfile: remove validation steps moved to GHA
f925f295f4 ci: reusable dco workflow
cc770330f8 ci(test): dynamic validate matrix
e42f7db450 ci(test): validate job matrix
9a57be4ac4 integration-cli: remove TestDockerSuite func
95831246a2 Update uses of Image platform fields in OCI image-spec
6236ebaed5 vendor: github.com/klauspost/compress v1.15.9
366d551cd2 Update some tests for supplementary group permissions
393027d1b1 AdditionalGids must include effective group ID
b9b8ddc160 Jenkinsfile: remove steps moved to GitHub Actions
d96d56ff09 ci: fix .windows workflow name
cc7b8cc980 ci(test): send coverage to codecov
8ca74127d9 ci(test): upload reports
fc2942d4e0 integration-cli: TestPluginInstallImage broken on GitHub Runner
874954d8bd integration-cli: TestEventsOOM* broken on GitHub Runner
0bfb1bded3 integration: TestNetworkLoopbackNat is broken on GitHub Runner
4765040aa3 ci: gha test workflow for integration and unit test
c853881610 Update to go 1.19.1 to address CVE-2022-27664, CVE-2022-32190
2450c5a46b update to golang 1.19
5d2b3687b0 Wrap local calls to the content and lease service
287d1656de vendor: golang.org/x/net v0.0.0-20220906165146-f3363e06e74c
39976cd2bf Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
1650fa8889 vendor: github.com/docker/go-units v0.5.0
e9e7491f2b linting: host:port in url should be constructed with net.JoinHostPort
2609d4e252 linting: gosec: fix or suppress G112, G114 in test code
188c5d4a7c linting: suppress false positive for G404 (gosec)
ff4ec67b90 libnetwork/diagnostic: EnableDiagnostic(): use net.JoinHostPort
fee68df273 namesgenerator: remove Valentina Tereshkova
f7cf9fbe48 ci: move buildkit tests to a dedicated workflow
ee87eaf9ad ci(windows): move windows-2019 to another workflow
09a0b0a84a Upgrades buildx to 0.9.1
8e6ed32610 Makefile: update buildx to v0.9.0
f10c50958c replace pkg/system Sequential funcs with moby/sys/sequential
40515da6d6 pkg/system: make IsAbs() platform-agnostic
3b9370fcf8 validate: address SC2155 (shellcheck)
51bf7da729 validate: format vendor script with shfmt
f1bd611d41 validate: add yamllint validation
e9f7c05ae1 validate: yamllint: ignore "truthy value should be one of" warnings
72156dd7a4 validate: yamllint: set locale in config file
554a933944 validate: yamllint: use "parsable" output
8d43d7fa6b validate: yamllint rename config-file
a61b411ceb Dockerfile: update yamllint to v1.27.1
704e7a2d71 ci: fix broken workflow
87b7e40a34 update containerd binary to v1.6.8
901fb577cb update runc to v1.1.4
9aeda305fd vendor: github.com/moby/buildkit v0.10.4
48e314fbe2 gha: temporarily pin BuildKit integration test version
292d352ee4 libnetwork/drivers/ipvlan: fix missing IpvlanFlag field in config JSON
2293a20972 Test: wait for network changes in TestNetworkDBNodeJoinLeaveIteration
76fa56b62d vendor: github.com/containerd/containerd v1.6.8
e5958a8f08 client: remove deprecated WithDialer() option
e7f4963e73 daemon: kill exec process on ctx cancel
dfcb3e17ae Allow containerd shim refs in default-runtime
2c17e9a333 api: set default "Builder-Version" to "2" (BuildKit) on Linux
d1d9fd50c2 daemon: complete the "--graph" / "-g" deprecation
8912c1fade seccomp: allow "bpf", "perf_event_open", gated by CAP_BPF, CAP_PERFMON
332de3f1e3 vendor: github.com/hasicorp/memberlist v0.4.0
b73c27ef6b vendor: github.com/moby/swarmkit/v2 v2.0.0-20220721174824-48dd89375d0a
15f9cb5c4d vendor: github.com/containerd/containerd v1.6.7
6c78a1166e vendor buildkit 8e2d9b9 (v0.10 branch)
8ae63006f1 update containerd binary to v1.6.7
aeb600bc4a update runc binary to v1.1.3
e0d8418ddc vendor: github.com/Microsoft/hcsshim v0.9.4
0133759476 api: swagger: fix invalid example value (API v1.39-v1.41)
572457e265 api: swagger: document BuildCache fields (API v1.39-v1.41)
49377cdd63 api: swagger: document BuildCache fields (API v1.42)
910d5c44fc api: add BuildCache.Parents for API >= v1.42
0e3d20cb20 api: deprecate BuildCache.Parent in API >= v1.42
a96b75191e api/types: add missing GoDoc for BuildCache fields.
a285cd4d88 api: swagger: document BuildCache fields.
1240460547 Update golang to 1.18.5
e88c28941f docs: api: add missing "platform" query-arg on create (v1.42)
9c4984db6b docs: api: add missing "platform" query-arg on create (v1.41)
af7c8ff045 api: swagger: add missing "platform" query-arg on create
6de52a29a8 daemon: support other containerd runtimes (MVP)
85b9568d0e state/Wait: Fix race when reading exit status
826003ecae integration: TestWaitRestartedContainer
e2bd8edb0d daemon/restart: Don't mutate AutoRemove when restarting
44fde1bdb7 integration: Add TestContainerWithAutoRemoveCanBeRestarted
6ab3b50a3f libcontainerd: switch generated containerd.toml to v2 (v1 is deprecated)
6d41219bae Fix file capabilities droping in Dockerfile
112fb22152 Windows: Re-create custom NAT networks after restart if missing from HNS
a9081299dd logger/journald: fix SA4011: ineffective break statement
e34ab5200d fix formatting of "nolint" tags for go1.19
863ca3f185 libnetwork: skip firewalld management for rootless
edcc51cbee profiles: seccomp: add syscalls related to PKU in default policy
c51efa8617 docs: add API v1.42
52791b1c14 client: errors: remove dead code
cdbca4061b gofmt GoDoc comments with go1.19
c52e221207 gofmt files
e417e8dfc2 pkg/parsers/operatingsystem: fix stray import
6905fe7488 update golang to 1.18.4
420142a886 profiles: seccomp: allow clock_settime64 when CAP_SYS_TIME is added
71e2aa78e4 hack: don't generate checksums for individual binaries
1cab8eda24 replace golint with revive, as it's deprecated
65e1adc219 Dockerfile: update golangci-lint to v1.46.2
968ff5ab44 fix some minor linting issues
10c56efa97 linting: error strings should not be capitalized (revive)
e5a1514c6e Dockerfile: update to latest syntax
43feaa9f8f Dockerfile.e2e: remove redundant INSTALL_BINARY_NAME
d6f9b4d73b hack: remove version from binaries, and remove symlinks
2b0bd34d47 Dockerfile: don't install delve on ppc64le, s390x
66f14e4ae9 Fix AppArmor profile docker-default /proc/sys rule
3a3a0cb54e project: Add label kind/regression
4e632a13c3 Dockerfile: use consistent format for CONTAINERD_VERSION
1f187e640c daemon/config: use more assertions in tests
10e42f599a daemon/config: TestUnixValidateConfigurationErrors: use subtests
751222d907 daemon/config: verify that flags were set correctly in tests
f73aadb230 daemon/config: New(): set more defaults
a0d0db126c daemon/config: set default MTU when initializing config
62f71c4505 daemon/config: fix TestDaemonConfigurationMerge
9b39cab510 daemon/config: improve some tests
f8231c62f4 daemon/config: Validate() also validate default MTU
fce7ebdaa5 cmd/dockerd: loadDaemonCliConfig() safeguard for unparsed flags
0281f50efa cmd/dockerd: move setting defaults to loadDaemonCliConfig()
717a503590 api: add Hosts to API Config
fee8a6a5c4 cmd/dockerd: make newAPIServerConfig() more idiomatic
b053376741 cmd/dockerd: reserve port before creating sockets/listeners
986725b466 daemon: improve some errors
cbe354b12a vendor.mod: group replace rules
384dc22de7 Add more detail to cluster volumes docs
421b93dcf5 vendor: github.com/hashicorp/go-msgpack v0.5.5 (indirect)
4e87a758f6 vendor: github.com/hashicorp/serf v0.8.5
06a7f41488 vendor: github.com/hashicorp/serf v0.8.2, go-msgpack v0.5.3
f3b2df7b0b vendor: github.com/armon/go-metrics v0.0.0-20180917152333-f0300d1749da
6b023b2eb6 vendor: github.com/prometheus/client_golang v1.12.1, procfs v0.7.3
bd9412e36b vendor: un-pin github.com/matttproud/golang_protobuf_extensions
f0647f33f5 vendor: go.opencensus.io v0.23.0
939d124731 vendor: github.com/hashicorp/go-multierror v1.1.1
917f620874 vendor: un-pin github.com/coreos/systemd
6488695a2c vendor: un-pin github.com/coreos/pkg
f70a9788c5 drivers/ipvlan: add ipvlan_flag option, support l3s ipvlan_mode
db977355b0 fix typo (cluser -> cluster)
0bce64f08d api: POST /containers/{id}/wait: fix validation for "condition" parameter
cf543a0bd5 vendor: github.com/moby/sys/mount v0.3.3
4178caade6 vendor: github.com/moby/sys/mountinfo v0.6.2
53aefba7f3 vendor: golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a
88916949ef build: force unlazy of refs by calling extract
56a20dbc19 container/exec: Support ConsoleSize
04c51cba84 Add new people to the curators list
b4ffe3a9fb Move the inspect code away from the image service
f1c111b176 fix flaky TestRunContainerWithRmFlag tests (take 2)
068ab51442 layer: layerstore.Cleanup(): improve some logging
c2e32c144c volumes/service: NewStore: add more context to error
15716fc9ae ci(windows): test report summary output
ca8b659a06 ci(integration-cli): move integration-cli run to make script
1887d85e21 ci(integration-cli): dynamically split tests in matrix
0e6a1b9596 integration-cli: split DockerSuite into subsequent build suites
7ed823ead9 validation: temporarily allows changes in integration-cli
5edfd6d081 bump netlink library bump netlink to 1.2.1 change usages of netlink handle .Delete() to Close() remove superfluous replace in vendor.mod make requires of github.com/Azure/go-ansiterm direct
cf6058941c Dockerfile: add crun to dev image
2ec3e14c0f test: Add tests for logging
f90056a79d daemon: LogDaemonEventWithAttributes: don't call SystemInfo()
b2795564dc codecov: disable "patch" status
73b4b07c4d vendor: github.com/containerd/containerd v1.6.6
a7e3182757 update containerd binary to v1.6.6
c3eefab550 hack: remove error_on_leaked_containerd_shims
1fcd9f73d4 hack: stop installing containerd-shim (io.containerd.runtime.v1.linux)
658a4b0fec libcontainerd: remove support for runtime v1 API
2c7a6d7bb1 daemon: remove support for deprecated io.containerd.runtime.v1.linux
89db5a6fd4 vendor: github.com/containerd/containerd v1.6.5
a747cd3702 update containerd binary to v1.6.5
b241e2008e daemon.NewDaemon(): fix network feature detection on first start
1db286c5e8 Fix alphabetisation of possible names
ca6e94f994 update AUTHORS and mailmap
cd58d11b2a volume/local.New(): extract loading options to a function
7e907e29a3 volume/local.New() always unmount existing mounts
c0f0cf6c19 volume/local: extract saving options to a separate method
d3930330a7 volume/local: store both volume's "data" and "root" path
e106e3f5c6 volume/local: make "validateOpts()" a method on Root
29c6224fe9 volume/local.Create(): validate early
a77b90c35e volume/local: make setOpts() a method of localVolume
b56fc2d0f8 volume/local.New(): don't register volume before we're done
eecf7a0840 volume/local: localVolume.mount() move errors.Wrap()
c1671abf14 volume/local: add test for validation
b4b2a0323b libnetwork/portallocator: un-export consts for defaults
414dd017b3 Revert "Added API to set ephemeral port allocator range."
9adad264d2 distribution: match manifest list resolution with containerd
585c147b7a fix flaky TestRunContainerWithRmFlag tests
a0a6b82a0d ci: add concurrency check
c1a9ffc97a update golang to 1.18.3
bb69104381 Openrc: Depend on containerd init script
6ecbd078c2 ci(windows): upload test reports with logs
e3c14acd33 Jenkinsfile: remove Windows stages
553b0edb4c fix unclosed file-handles in tests
293cfd6c76 Ensure performance tuning is always applied
c51d34dcfb vendor: github.com/moby/ipvs v1.0.2
2463c40144 daemon/logger: Fix TestConcurrentLogging race test
d8a731c3aa daemon/logger: Increase initial buffers size
98810847c4 daemon/logger: Put Message back as soon as possible
8fe2a68698 daemon/logger: Global buffer pools
152467d185 api: swagger: adjust ContainerWaitResponse error as optional
2359da802b docs: api: adjust ContainerWaitResponse error as optional
0afc71fc90 archive: add human-readable hint to Lchown error
cb7b329911 daemon: fix daemon.Shutdown, daemon.Cleanup not cleaning up overlay2 mounts
a3b1b66bb3 integration: TestPingSwarmHeader(): fix incorrect ping, and cleanup
795ecf02ce builder: fix empty reference
fdd2772547 vendor: gotest.tools v3.2.0
a5f6500958 replace deprecated gotest.tools' env.Patch() with t.SetEnv()
3cadb1f63f update gotestsum to v1.8.1
7493342926 daemon/logger: Share buffers by sync.Pool
c6cc03747d daemon/images: use gotest.tools for tests, and use sub-tests
a04e3326e7 Fix constant `WARNING: No swap limit support` on cgroup v2 hosts
2f6b8a2aec vendor: github.com/containerd/cgroups v1.0.4
c3d7a0c603 Fix validation of IpcMode, PidMode, UTSMode, CgroupnsMode
cba8cf34d2 Set ExternalPortReserved for dummy proxy
18529568d3 integration-cli: TestRemoveContainerAfterLiveRestore use overlay2
345346d7c6 Annotate some swagger documented types as int64
c576de88ed vendor: github.com/Microsoft/hcsshim v0.9.3
493d3ca0c3 fix docker-proxy not statically linked
15ed58ffb5 ci(windows): upload coverage to codecov
80862d61d0 gha: temporarily override buildkit version for tests
90fb4eca20 vendor: github.com/moby/buildkit v0.10.3
a67e159909 daemon/logger: hold LogFile lock less on ReadLogs
c609523a8c pkg/filenotify: delete unused package
01915a725e daemon/logger: follow LogFile without file watches
6d5bc07189 daemon/logger: fix refcounting decompressed files
49aa66b597 daemon/logger: rotate log files, never truncate
990b0e28ba daemon/logger/local: fix appending newlines
3844d1a3d1 daemon/logger: drain readers when logger is closed
906b979b88 daemon/logger: remove ProducerGone from LogWatcher
ae5f664f4e daemon/logger: open log reader synchronously
9aa9d6fafc daemon/logger: add test suite for LogReaders
961d32868c daemon/logger: improve jsonfilelog read benchmark
0ca6e28807 integration-cli: TestSlowStdinClosing is flaky on GitHub Runner
ac82b2519a integration-cli: refactor TestStartReturnCorrectExitCode
440d051ce9 integration-cli: TestRestartContainer is flaky on GitHub Runner
890de00f02 ci: windows gha workflow (integration test)
71ba8cf24f ci: windows gha workflow (unit test)
958fa08711 ci: windows gha workflow (build)
304fbf0804 introduce CreateMountpoint for parity between binds and mounts
3b157dc3b6 integration-cli: fix test rogue certs
85a7f5a09a daemon/linux: Set console size on creation
8a5c13155e all: use unix.ByteSliceToString for utsname fields
a5a77979dd docs: api: /containers/{id}/attach/ws: remove unsupported query-args < v1.42
d4a0a422da docs: api: add note about websocket attach streams
0dd3a2eade Apply performance tuning to new sandboxes also
ce3e2d1955 overlay2: account for UserNS/userxattr in metacopy test
ea6760138c wsContainersAttach attach to stdin/out/err streams as requested
cc3848f2b7 Rename Reservation to Reservations in the open API
9a7298a3e6 volume: mask password in cifs mount error messages
4e025b54d5 Remove mount spec backport
2c3d1f7b4b overlay2: test for and report metacopy status
7de9f4f82d Allow different syscalls from kernels 5.12 -> 5.16
d9524d92a9 api/types/swarm: Version: implement stringer interface
240a9fcb83 Add Swarm cluster volume supports
73f0b01da1 volume/local.New(): remove redundant filepath.Base()
a4bfd9788f volume/local.New(): remove some intermediate variables
74be0fed6f volume/local: remove redundant Root.scopedPath(), Root.scope
0abd7ba229 volume/local: remove hack for downgrading docker 1.7 to 1.6
c9e19a2aa1 Remove "seccomp" build tag
91c254a189 vendor: github.com/opencontainers/runc v1.1.2
bc0fd3f617 update runc binary to v1.1.2
af5d83a641 Make it explicit raw|multiplexed stream implementation being used
f9cef468f9 vendor: golang.org/x/sys v0.0.0-20220412211240-33da011f77ad
d294078dd0 update golang to 1.18.2
61fec7b36e daemon/initlayer: Init(): remove unused stub for Windows
1f21c4dd05 testutil/registry: remove unused WithStdout(), WithStErr() opts
78095e4d12 Remove unused image/v1 code
14fdd97b69 Remove unused distribution/metadata/V1IDService
4573cd9c30 Improved readability of the run hack script
7873c27cfb all: replace strings.Replace with strings.ReplaceAll
f0d1911ddf api/server: fix stray import in container_routes.go
d6115b8f40 daemon: fix some minor nits
d733481399 daemon: daemon.ContainerKill() accept stop-signal as string
521807837b plugin: Executor.Signal() accept syscall.Signal
21df9a04e0 container: StopSignal(): return syscall.Signal
ea1eb449b7 daemon: killWithSignal, killPossiblyDeadProcess: accept syscall.Signal
2ec2b65e45 libcontainerd: SignalProcess(): accept syscall.Signal
070da63310 daemon: only create trust-key if DOCKER_ALLOW_SCHEMA1_PUSH_DONOTUSE is set
bb1208639b daemon: separate daemon ID from trust-key
6e376e32d8 update containerd binary to v1.6.4
a35040222c vendor: github.com/containerd/containerd v1.6.4
9880e6a1ef vendor: github.com/opencontainers/selinux v1.10.1
789223f2dc api: postContainersStop, postContainersRestart remove redundant validation
4c2f18f6cc seccomp: support riscv64
a3ae9a5956 opts: ParseTCPAddr(): extract parsing logic, consistent errors
82088364e1 vendor: github.com/moby/buildkit v0.10.2
fca0c20cd4 vendor: github.com/containerd/continuity v0.3.0
16cd359664 vendor: golang.org/x/sys v0.0.0-20220405210540-1e041c57c461
63b13a70ee vendor: github.com/Microsoft/go-winio v0.5.2
e62382d014 daemon/config: remove uses of pointers for ints
dbd575ef91 daemon: daemon.initNetworkController(): dont return the controller
bdc6473d2d health: Start probe timeout after exec starts
41b96bff55 update uses of container.ContainerCreateCreatedBody to CreateResponse
3bb2d0026b api: rename container.ContainerCreateCreatedBody to container.CreateResponse
ff197417fa api: swagger: move ContainerCreateResponse to definitions
64e96932bd api: rename volume.VolumeCreateBody to volume.CreateOptions
18281c92fa api: rename volume.VolumeListOKBody to volume.ListResponse
4caf68f4f6 api/types: rename volume.VolumeUsageData to volume.UsageData
3cae9fef16 imports: remove "volumetypes" aliases for api/types/volume
7293857456 api: rename ContainerWaitOKBody to container.WaitResponse
5ecb6fb68b vendor: github.com/containerd/containerd v1.6.3
4cf904494e daemon: reloadMaxDownloadAttempts() remove validation
c46e2e85ee daemon/config: Reload(): add TODO for config reload logic
9a54dadc44 daemon/config: MergeDaemonConfigurations() don't validate intermediates
b819480899 daemon/config: Reload(): normalize labels before validation
21dac5e441 opts: remove IPOpt as it's no longer used
ccb75439ff cmd/dockerd: use flags.IPVar() instead of custom type
5d352f6a87 cmd/dockerd: remove config_common_unix.go
92d9e892b5 cmd/dockerd: combine installUnixConfigFlags with installConfigFlags
83f67c63a6 cmd/dockerd: combine installRegistryServiceFlags with installCommonConfigFlags
1483905024 cmd/dockerd: remove some intermediate variables
782de17bd0 cmd/dockerd: installCommonConfigFlags() re-group some flags
0ff0b8693e cmd/dockerd: move storage-driver flag to unix-only file
a9be008f00 update containerd binary to v1.6.3
314a47492a chore: fix linguist for Dockerfile
0603f87fab cmd/dockerd: validate API configuration as part of --validate
e16c3616e2 cmd/dockerd: change newAPIServerConfig() to only receive config.Config
57c20c1b79 cmd/dockerd: normalize hosts when loading config
7b3463f2c5 cmd/dockerd: loadDaemonCliConfig(): minor cleanup
d9d0683862 cmd/dockerd: un-export config methods, and don't pass flags "twice"
390c7d6871 daemon/config: Validate(): validate log-level
cc8dd9b4a7 Extended contribution guide with how to enable GoLand IDE syntax highlighting and code completion in Moby project
7d328ea1d6 Added Delve debugger to the development container (including instructions in the contribution guide).
63ea9eb594 cmd/dockerd: don't call registry.SetCertsDir() twice
350fadbdd4 rootless: remove redundant sync.Once
cd054983ff api/server: remove "Logging" from config
3b56c0663d daemon: daemon.networkOptions(): don't pass Config as argument
36049a04d2 test: use `T.Setenv` to set env vars in tests
1c129103b4 Bump swarmkit to v2
2b0da89366 distribution: move newPusher() and newPuller() together with definition
566c8db66d distribution: add GetRepository(), un-export NewV2Repository, ValidateRepoName
572c7e0184 distribution: remove RootFSFromConfig(), PlatformFromConfig() from ImageConfigStore
1e75ab0ab9 distribution: remove Pusher interface, NewPusher(), and redundant V1 checks
41999abcbe distribution: remove Puller interface, remove redundant V1 checks
074e41679d distribution: un-export internal errors and error-utilities
fb5485f5d0 distribution: un-export ImageTypes, make ImagePullConfig.Schema2Types optional
176f66df9c api/types: replace uses of deprecated types.Volume with volume.Volume
54386f0c8f api: docs: move VolumeListResponse to definitions (v1.39-v1.41)
cd635e465d api: swagger: move VolumeListResponse to definitions
f19ef20a44 api: move types.Volume to volume.Volume
0e4f473a9f pkg/chrootarchive: remove redundant init() stub for Windows
df650a1aeb panic() instead of logrus.Fatal() in init funcs
ab5ebefa0d opts: TestParseHost(): also check the error
fc83834ebb opts: use subtests, and split checks
83b71e0ed0 opts: re-order test-cases and use more consistent values
eebd8d3c0c opts: ParseTCPAddr(): remove workaround for go1.5
c66271f4da opts: TestParseDockerDaemonHost(), TestParseTCP() remove workaround
90647e22b2 api/types/time: remove DurationToSecondsString() utility as it's no longer used
e8fa708ae5 client: ContainerStop(), ContainerRestart(): support stop-signal
9060126639 client, integration-cli: remove unneeded import aliases
83a185897d API: add "signal" parameter to container stop and restart endpoints
90de570cfa backend: add StopOptions to ContainerRestart and ContainerStop
952902efbc daemon: containerStop(): use a regular "defer" to log container event
5edf9acf9c daemon: move default stop-timeout to containerStop()
f3bce92a24 daemon: cleanupContainer(): pass ContainerRmConfig as parameter
4430992af8 daemon: rename some variables, import-aliases and receivers
301b252b58 libnetwork: don't use strings.Fields() to improve performance
b9de761c26 docs: api: document ImageSummary fields (api v1.39-v1.41)
f8a1d6b50a api: swagger: document ImageSummary fields
b365924ec3 client: ContainerKill(): don't send signal query-param if none was set
07dba5d9fe api: docs: improve documentation of ContainerConfig type (API v1.30-v1.41)
a46700dbdb Cleanup servicebindings only on Windows
6861aade58 Delay network deletion until after lb cleanup
556cb3ae81 Log HNS policylist removal failures
cb62919d28 api: improve documentation of ContainerConfig type
ef64db5021 update golang to 1.18.1
013d648888 client: CopyToContainer(), CopyFromContainer(): remove status-code handling
83969fa3dd daemon: move DefaultShutdownTimeout to daemon/config
690a6fddf9 daemon: move default namespaces to daemon/config
881e326f7a daemon/config: remove unneeded alias
4039850bef add instructions to generate events message table bin
1efda78f2b use go-winres for windows build and cleanup autogen and winresources
fd2143e0b0 use go-winres for cross to create Windows resources
1d6e0fb103 metrics: DRY metric definitions
efe03aa2d8 Jenkinsfile: add workaround for CVE-2022-24765
449250994f builder/remotecontext/urlutil: simplify and improve documentation
5f89a6a78e pkg/urlutil: deprecate, and move to builder/remotecontext/urlutil
074bc1c3ab pkg/urlutil: remove unused IsTransportURL()
b6d58d749c runconfig: ContainerDecoder(): fix handling of invalid JSON
ff5f70e55f api/server/httputils: move WriteJSON() together with ReadJSON()
0c9ff0b45a api/server/httputils: add ReadJSON() utility
ef490cae45 api/server/httputils: matchesContentType(): return error instead of logging
3e47a7505e daemon/logger/fluentd: remove udp, tcp+tls, unixgram, add tls scheme
12424cfa6f daemon/logger/fluentd: fix missing host, remove urlutil.IsTransportURL()
0f40aefccd daemon/logger/fluentd: validate path element
b161616202 daemon/logger/fluentd: make error-handling less DRY
0dd2b4d577 daemon/logger/fluentd: rename var that collided with import
40182954fa daemon/logger/fluentd: add coverage for ValidateLogOpt(), parseAddress()
c2ca3e1118 daemon/logger/syslog: remove uses of pkg/urlutil.IsTransportURL()
87206a10b9 daemon/logger/splunk: remove uses of pkg/urlutil.IsURL()
2e831c76c2 daemon/logger/gelf: remove uses of pkg/urlutil.IsTransportURL()
170049225c ci: add cross job in ci workflow
12558c8d6e fix cross compilation for arm platforms
d730d550e2 ci: set shorter retention period for artifacts
c2dfb60e31 ci: update upload-artifact and download-artifact actions to v3
5d9e99ead3 missing windows arm64 arch detection
eb4c6d8316 maintainers: update metadata for samuelkarp
101dafd049 daemon/config: move proxy settings to "proxies" struct within daemon.json
2bc07370ec daemon/graphdriver: remove unused graphdriver.IsInitialized()
d570bc4922 remove deprecated support for overlay(2) on backing FS without d_type (fstype=1)
758714ed6d api/server/router/grpc: fix some nits in NewRouter()
87948c7892 Jenkinsfile: allow all ppc64le / s390x stages through checkbox
2ff043c9fe Updated AUTHORS and .mailmap files
a35b4ac54a daemon/config: Validate(): validate hosts
5cfcd88d57 daemon/config: fix TestReloadDefaultConfigNotExist if file exists
ecbfe73193 opts: ParseTCPAddr(): fix validation of hosts to not ignore path elements
846af8e413 cmd/dockerd: update --ip6tables description to include "experimental"
ae7d3efafd Makefile: update buildx to v0.8.2
ffc903d7a6 update runc binary to v1.1.1
69993c1c57 vendor: github.com/opencontainers/runc v1.1.1
482d1d15bf distribution: use the maximum compatible platform by default
890231f46b client: container ps: don't set "limit" if none was set
fcc42d5682 distribution: use correct platform matcher for containerd
d74bf97f40 vendor: github.com/moby/buildkit d7744bc
064650dd09 Pass TestPsListContainersFilterCreated if other created containers exist
31e1fec950 Suport vpci-class-guid in the non-containerd backend
cb07afa3cc Implement :// separator for arbitrary Windows Device IDTypes
92f13bad88 Allow Windows Devices to be activated for HyperV Isolation
c60f70f112 Break out `setupWindowsDevices` and add tests
1e645fb70f client: Ping(): add handling for swarm status headers
adf4bf772d API: add "Swarm" header to _ping endpoint
4d7ab4b214 update RootlessKit to v1.0.0
19a7875c3c vendor: golang.org/x/sys v0.0.0-20220319134239-a9b59b0215f8
85572cac14 registry: remove dependency on rootlesskit, add `SetCertsDir()`
3853eb59d1 daemon: require storage-driver to be set if the driver is deprecated
020fd68326 daemon: graphdriver: some minor cleanup
7b277f62cc Remove comment that is no longer relevant
ec221d6881 vendor: github.com/containerd/containerd v1.6.2
e69529c94a update containerd binary to v1.6.2
8c7ea316d1 Mount (accessible) host devices in --privileged rootless containers
ff35785cfc vendor buildkit 8d45bd6 that fixes dockerd worker integration tests
32f0561715 ci: buildkit integration test
fda0226a89 builder: add buildinfo for buildkit
b899db6423 builder: enable shm-size and ulimit for buildkit
aadb3bf766 builder: changes needed since buildkit 0.10.0
e5812117a5 bridge: also flush conntrack entries when setting up endpoints
a2aaf4cc83 vendor buildkit v0.10.0
feab0cca9f libnetwork/overlay:fix join sandbox deadlock
e82b7b2fa0 errdefs: move GetHTTPErrorStatusCode to api/server/httpstatus
45067cda33 client: remove wrapResponseError()
5e9829b75d registry: remove unused fallbackError
8947730124 registry: un-export AuthTransport()
2f466a9f88 registry: remove unused Service.TLSConfig()
64e50ce86a search: remove parsing JSON filters out of the backend
bdb878ab2c filters: lowercase error
2d45b5ddbc api: filters: return correct status on invalid filters
a5be5801e9 search: un-export registry.DefaultSearchLimit, and fix API status codes
bee8f006fe registry: serviceConfig: don't embed registry.ServiceConfig
2b5dc81582 registry: move allowNondistributableArtifacts, isSecureIndex to config
382b986520 registry: make defaultService.ServiceConfig() more idiomatic
18de76a420 registry: make serviceConfig.loadInsecureRegistries() more atomic
dae2173568 registry: defaultService: use sync.RWMutex
9cb0aa4c91 registry: minor improvements and cleanup
d3c3e2c867 registry: remove unneeded alias for api/types/registry import
79aa65c1fa registry: return "errdefs" compatible error types
98202c86ad registry: remove ErrInvalidRepositoryName
273dca4e3c registry: remove unused error return from HostCertsDir()
6e3e657ea6 registry: un-export config.LoadXXX() functions
4ebb18479d registry: un-export Session, remove NewSession()
286992ef53 registry: un-export Ping(), PingResult, remove v1Endpoint.Path()
6a01a3cfa4 registry: un-export V1Endpoint and NewV1Endpoint()
8b8bbbd445 registry: un-export HTTPClient() and NewTransport()
569dc6d692 registry: un-export DefaultService
541ed077a6 registry: remove unused authConfig from Session
02ed265854 registry: remove unused RepositoryData and ImgData
2bcf4628a7 registry: remove TODO for removing localhost as insecure by default
d9261561f9 registry: add TODO for removing ParseSearchIndexInfo()
746c51b54f registry: tests: remove unused mock code and use gotest.tools
917b44799d vendor: golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
9bf40d7edd pkg/system: move IsWindowsClient to pkg/parsers/operatingsystem
427b0cd636 api/types: fix KernelMemory deprecation comment, and omitempty
5d10c6ec67 Update handling of deprecated kernel (tcp) memory options
af6307fbda Remove KernelMemory option from /containers/create and /update endpoints
85c4d633db pkg/system: remove deprecated (and unused) windows consts
590e34eaf4 update golang to 1.18.0
4203a97aad staticcheck: ignore "SA1019: strings.Title is deprecated"
98f027813f api: swagger: add IPAMConfig on IPAM
abc2f095ab api: docs: add IPAMConfig on IPAM (v1.41)
8ac2f84f9a docs: cleanup swagger API with multiple examples (v1.25-v1.41)
8ba83f63a0 client: ImageSearch(): don't send limit if none was specified
3671cb90a3 cleanup swagger API with multiple examples
de6732a403 version: add RootlessKit, slirp4netns, and VPNKit version
098a44c07f Finish refactor of UID/GID usage to a new struct
da068165f6 ci: simple gha workflow to build docker daemon
a768652fd6 Support STOPSIGNAL instruction in commit change
c28a8e9cf7 layer: remove layerstore.setOS(), layerstore.getOS()
7df7357e08 vendor: cloud.google.com/go v0.92.0, google.golang.org/api v0.54.0
f9f549cbe4 plugin: add EndpointResolver interface
61599d0a4d plugin: remove unused pluginRegistryService
06abe8dd2d update containerd binary to v1.6.1
b36fb04e03 vendor: github.com/containerd/containerd v1.6.1
00ba5bdb98 Unpin grpc, protobuf dependencies
06c797f517 vendor: github.com/docker/swarmkit 616e8db4c3b0
b92af14a1c vendor: github.com/docker/distribution v2.8.1
14cb9d22df api/types: add godoc on MountPoint
0a438f2612 api: docs: document MountPoint fields (v1.25-v1.41)
69ba3713d5 api: swagger: document MountPoint fields
b0b71dbe1c pkg/sysinfo: remove libcontainer dependency
2c97295ad8 daemon: remove v1 shim configuration for containerd
5979d6e7e3 client: add const for environment variables, and document them
c2c7e9d449 client: improve GoDoc, and minor touch-ups
8512cf076c client: TestNegotiateAPIVersion(), TestClientRedirect(): use sub-tests
25a336ab6a client: TestGetAPIPath(): update test to use more realistic results
65e4ea27cd client: various small test-improvements
c04dff7623 Correct type of Mounts in ContainerSummary in docs (v1.25-v1.40)
16e3ca35eb Correct type of Mounts in ContainerSummary in docs
ed843fe42f Correct type of Mounts in ContainerSummary
948c2c45bb client: use canonical names for HTTP Headers
a34fe9b422 Add locking to the ZFS driver
b94a319fdf remove deprecated builder/dockerignore
d89bfac728 remove deprecated pkg/symlink
7449ca078b remove deprecated pkg/locker
4a6dc85e40 remove deprecated pkg/term, pkg/term/windows
97a235196e remove deprecated pkg/mount
0759f013a4 api: docs: fix indentation of HostConfig.SecurityOpt (v1.39-v1.41)
a4567903a8 api: swagger: fix indentation of HostConfig.SecurityOpt
352d1bb8e0 api: docs: move ContainerWaitResponse to definitions (v1.39-v1.41)
e4c6ca36ae api: swagger: move ContainerWaitResponse to definitions
444b27910c api: docs: move VolumeCreateOptions to definitions (v1.39-v1.41)
0119f7973b api: swagger: move VolumeCreateOptions to definitions
5c0aae359f api: docs: move Volume examples inline (v1.39-v1.41)
e444ac3470 api: swagger: move Volume examples inline
9f3b1a9664 distribution: retry downloading schema config on retryable error
8e9c8ff7f2 api: docs: remove deprecated RootFS.BaseLayer (API v1.25-v1.41)
fd1f34cacd api: docs: remove deprecated RootFS.BaseLayer (current API version)
25c896fcc2 api: remove unused RootFS.BaseLayer
9aacaeb667 pkg/parsers: support Windows 11; drop ProductName
9ed8cd128a Dockerfile.windows; update containerd binary to v1.5.10
2c8f0a0c99 update containerd binary to v1.5.10
b4a943afab vendor: github.com/containerd/containerd v1.5.10
e781cf5f64 update to go 1.17.8 to address CVE-2022-24921
a0230f3d9a remove unneeded "digest" alias for "go-digest"
06df530b6d image: improve godoc for V1Image
34c2c14775 api: improve godoc for ImageInspect struct
d19dd22257 api: docs: fix warning about comment indentation (API v1.40-v1.41)
9565606222 api: docs: update docs for /images/{name}/json (API v1.39-v1.41)
697f42582a api: docs: fix warning about comment indentation (current API version)
3193d7e101 api: docs: update docs for /images/{name}/json (current API version)
90c54320c8 daemon/logger: fix data race in LogFile
9080e5a1f7 daemon/logger: add test to detect data races
5263bea70f daemon: move check for CPU-realtime daemon options
dee9f422c8 pkg/system: remove github.com/docker/go-units dependency
25ee00c494 pkg/system: move EnsureRemoveAll() to pkg/containerfs
d492101172 daemon: SystemInfo() extract collecting debugging information to a helper
ac2cd5a8f2 daemon: unexport Daemon.ID and Daemon.RegistryService
a27f8aecad daemon: SystemInfo() extract container counts to a helper function
82f96da04d layer: remove unused ErrActiveMount, ErrNotMounted, ErrNotSupported
de0eabbd66 vendor: github.com/vishvananda/netns v0.0.0-20210104183010-2eb08e3e575f
d8e1746466 vendor: github.com/tonistiigi/fsutil v0.0.0-20220115021204-b19f7f9cb274
931b455f27 vendor: github.com/hashicorp/errwrap v1.1.0
4d1c323796 vendor: golang.org/x/text v0.3.7
7f9c77b2fe vendor: golang.org/x/oauth2 v0.0.0-20210819190943-2bc19b11175f
a69cda092b vendor: golang.org/x/lint v0.0.0-20210508222113-6edffad5e616
c03ae0b726 vendor: github.com/cespare/xxhash/v2 v2.1.2
2634edec6e vendor: github.com/klauspost/compress v1.14.3
8bf694b427 vendor: github.com/google/go-cmp v0.5.7
89d39e5e77 vendor: gotest.tools/v3 v3.1.0
c35143f92e vendor: github.com/moby/sys/mount v0.3.1
9efa8b3500 all: fix typos
203fcd6997 layers: remove layerStore.getWithoutLock()
7d70d95d8e registry: add DefaultRegistryHost const, and improve documentation
9d6382f2b3 vendor: github.com/Microsoft/hcsshim v0.9.2
ace606fd75 vendor: github.com/aws/aws-sdk-go v1.31.6
0809bd6859 vendor: github.com/klauspost/compress v1.14.2
20e5d6b3e3 vendor: github.com/pelletier/go-toml v1.9.4
812dacb676 vendor: github.com/containerd/continuity v0.2.2
461845bfbc vendor: github.com/containerd/cgroups v1.0.3
7876c53424 vendor: golang.org/x/tools v0.1.5
1b829c2a6a vendor: golang.org/x/mod v0.4.2
6be521ccb8 vendor: golang.org/x/oauth2 v0.0.0-20210805134026-6f1e6394065a
8f106d4576 vendor: github.com/google/go-cmp v0.5.6
9393cf73f6 removed mentions of the archived Docker CE repo
ff408210da distribution: remove use of deprecated dial.DualStack
3c44ade6d0 daemon: fix error-message for minimum allowed kernel-memory limit
9f3c238c29 docs: add missing KernelMemoryTCP to api v1.40 and v1.41
203d97df59 api/swagger.yml: add KernelMemoryTCP to /info endpoint
3f0abde50d integration-cli: TestSlowStdinClosing: use sub-tests
496a4bd15e integration-cli: TestSlowStdinClosing: add logs, and potential naming conflict
821b4d4108 daemon/config: DefaultShmSize: minor tweak and improve docs
705f9b68cc some cleaning up of isolation checks, and platform information
1b3fef5333 Windows: require Windows Server RS5 / ltsc2019 (build 17763) as minimum
833139f390 pkg/archive: audit gosec file-traversal lints
e9bbc41dd1 Remove local fork of archive/tar package
79ea1b16b1 distribution/xfer: un-export DoFunc type
4d6c6a5000 distribution/xfer: smaller interface, rename to DigestRegisterer
047e032461 distribution/xfer: define DownloadOption type
69b0913e1f distribution/xfer: add TODO for return error on Registered()
3309ea9419 distribution/xfer: slightly more idomatic type assertion
4c7dc9806c distribution/xfer: un-export transfer interface accessors
849d8c2d02 distribution/xfer: un-export Watcher
96a750aab4 distribution/xfer: un-export Transfer interface
765844e419 distribution/xfer: un-export NewTransfer()
587c474b57 distribution/xfer: use "transferManager" in godoc
874b11495b distribution/xfer: un-export transferManager.setConcurrency() and .transfer()
d746a836fc distribution/xfer: remove TransferManager interface, un-export newTransferManager
cf31aa0fa0 distribution/xfer: fix some nits in tests
79cad59d97 daemon/images: ImageService.Cleanup(): return error instead of logging
dd4cf4b641 daemon: remove some unused stubs on Windows
1240f8b41d daemon: remove kernel version check and DOCKER_NOWARN_KERNEL_VERSION
c79a169a35 Remove opts.QuotedString implementation
699174347c daemon: use RWMutex for stateCounter
cad6c8f7f1 Update Go to 1.17.7
2ac898c232 vendor: github.com/moby/sys/signal v0.7.0
9c2646e486 vendor: github.com/moby/sys/mountinfo v0.6.0
c2b33f8684 vendor: github.com/fsnotify/fsnotify v1.5.1
3776fe6256 vendor: github.com/containerd/containerd v1.5.9
3ddf696a2d vendor: golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c
42d2f0bbc7 vendor: github.com/google/go-cmp v0.5.5
b9c8eca468 libnetwork/networkdb: remove some redundant fmt.Sprintf()'s
abaf4b25d7 integration-cli: remove some redundant fmt.Sprintf()'s
7e06add3c8 testutil/daemon: remove redundant fmt.Sprintf()'s
737e8c6ab8 api: POST /containers/{id}/wait: validate "condition" parameter
a832635e51 client.ContainerWait(): don't send empty "condition" query parameter
5e2b7dea02 docs/api: add missing 400 response for POST /containers/{id}/wait
41b137962d docs/api: update /containers/{id}/wait "condition" parameter (v1.30-v1.41)
0e5929f99d api/swagger: add missing 400 response for POST /containers/{id}/wait
0ac746fabb api/swagger: update /containers/{id}/wait "condition" parameter to match code
fada92c393 vendor: github.com/prometheus/common v0.10.0
147752ee05 vendor: github.com/grpc-ecosystem/go-grpc-middleware v1.3.0
f9f11050cc vendor.mod: don't replace github.com/stretchr/testify
738bd5a90e vendor.mod: don't replace github.com/containerd/containerd
be4144c153 vendor.mod: don't replace gopkg.in/fsnotify.v1
9f7280f2d2 vendor: github.com/google/uuid v1.3.0
24a7b61800 vendor.mod: don't replace github.com/hpcloud/tail
c1fa01deb8 vendor.mod: don't replace github.com/onsi/ginkgo, github.com/onsi/gomega
40bf5d414e vendor: github.com/pelletier/go-toml v1.9.1
8f6d58915d vendor: github.com/klauspost/compress v1.12.3
40b8495735 vendor: go.etcd.io/bbolt v1.3.6
03f45fafc5 vendor: golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2
368d680dfe vendor: golang.org/x/time v0.0.0-20211116232009-f0f3c7e86c11
ce4ca67d52 vendor: golang.org/x/text v0.3.6:
2deec80dba fix(check-config.sh): Check for existence of /etc/os-release before sourcing
624b3cfbe8 Freeze the namesgenerator package against new additions
eae20b1a1b client: extract FromEnv parts to separate WithXX options
0d9a37d0c2 oci: inheritable capability set should be empty
646ace6ee3 Dockerfile: update golangci-lint v1.44.0
89f63f476b integration-cli: SA5011: possible nil pointer dereference (staticcheck)
85ed9b8746 libnetwork: fix unhandled errors in tests (ineffassign)
99935ff803 client.NewClientWithOpts(): remove redundant type assertion (gosimple)
b88f4e2604 daemon/logger/awslogs: suppress false positive on hardcoded creds (gosec)
be63b7d7f6 vendor: github.com/docker/distribution v2.8.0
b79dec8138 vendor: github.com/opencontainers/runc v1.1.0
0d04359ec2 vendor: golang.org/x/sys v0.0.0-20220114195835-da31bd327af9
c55eb6b824 update runc binary to v1.1.0
325c3a457b hack/vendor.sh: run "go mod tidy" before vendoring
347a85787b pkg/namesgenerator: remove names-generator binary
2cff05e960 client/request.go:157:8: SA1019: err.Temporary is deprecated (staticcheck)
af819bf623 seccomp: add support for Landlock syscalls in default policy
f9fb5d4f25 daemon/graphdriver/fuse-overlayfs: Init(): fix directory permissions (staticcheck)
ab9796b0e9 pkg/system: rewrite IsWindowsClient() using golang.org/x/sys/windows
be463cbd6c pkg/system: remove unused HasWin32KSupport()
b36d896fce layer: remove OS from layerstore
da277f891a daemon.cleanupContainer() remove named return variable
cae1dbee01 ImageService.ReleaseLayer(): remove unused containerOS argument
e30a4a438b daemon: remove leftover LCOW platform checks
cfddecc3d2 builder/dockerfile: remove leftover LCOW platform checks
1ef0a5bb91 image: remove leftover LCOW platform checks
b2ef2e8c83 daemon/images: remove leftover LCOW platform checks
f9a1846ca2 distribution: PushLayer.Size(): remove unused error return
f5db4b01c0 daemon/images: ImageService.LookupImage(): minor cleanup
e1ea911aba layer: remove unused error return from .Size() and .DiffSize()
01ae9525dd Add support for platform (os and architecture) on image import
6b69de61f9 integration-cli: TestImportBadURL: use proper rfc6761 "invalid domain"
9839ddd800 api: postImagesCreate(): use local variable for platform
81ac487d71 api: postImagesCreate(): rename ambiguous err variable
5c870b421a daemon/images.NewImageService() don't print debug logs
bb66ebd621 distribution: xfer.LayerDownloadManager.Download(): remove "os" argument
0b0a995d9d distribution: remove RootFSDownloadManager interface
38e2e756c9 Avoid platform-specific NewPatternMatcher function in TestCompile
839e2ecc1b docs: remove HostConfig.LxcConf field from API docs
75a1ad0c9f api: remove HostConfig.LxcConf field
16cb04c2e8 api/swagger: move DistributionInspect to definitions
ebd709f80c api/swagger: rename PluginPrivilegeItem to PluginPrivilege
0b5a2e3c87 api/swagger: fix up event-types and move to definitions
a65804adc4 api/swagger: move DistributionInspect to definitions
24a43d934c api/swagger: rename PluginPrivilegeItem to PluginPrivilege
92ed6ca356 api/swagger: fix up event-types and move to definitions
62cf748df9 Fix swagger docs to match the opencontainers image-spec
6153c2f08d Extract PluginPrivilegeItem as explicit type definition
be93e50a58 Use explicit object names for improved swagger based code generation
8168d1877d Fix ContainerSummary swagger docs
0e719f8a00 Add "changes" query parameter for /image/create to swagger docs
d3d78c1ae3 Add RestartPolicy "no" to swagger docs
c0bc82cef1 Fix swagger docs to match the opencontainers image-spec
7248ebcd7e Extract PluginPrivilegeItem as explicit type definition
6e421a1823 Use explicit object names for improved swagger based code generation
9ac2d04617 Fix ContainerSummary swagger docs
050f5f29f7 Add "changes" query parameter for /image/create to swagger docs
90294e9bdb Add RestartPolicy "no" to swagger docs
037b4c0e8e docker-py: skip CreateContainerTest::test_create_with_device_cgroup_rules
ace8c7896c vendor: cloud.google.com/go v0.59.0 to remove some test-deps
3bd74488fd Makefile: use volume for go mod cache when running dev-container
e5d28115ee vendor: regenerate
a46f968229 vendor: replace vndr with `go mod vendor`
fa73c24471 Fixed broken links in project documentation files.
7b052cdc63 Removed the slack archives
f85ae526f0 Update Go to 1.17.6
8d250be008 Add unit test for (*Pattern).compile
483aa6294b daemon: load and cache sysInfo on initialization
df3ea5da03 update containerd binary to v1.5.9
9326ea5b99 Jenkinsfile: remove Windows RS1 as it reached end of support
436abb458c hack/ci: remove unused entrypoint scripts
745700d2ef remove unused poule.yml
5d96e09628 Do not panic on empty quoted string argument
71119a5649 awslogs: use gotest.tools/v3/assert more
f0e450992c awslogs: replace channel-based mocks
2145f3ba2c docs: fixing /exec/{id}/resize response code in API documentation
3dda7311cd xfer: fix a simple goroutine leak in unit test
7b692a421b libnetwork: remove more config bits related to external k/v stores
745ba3ecbc libnetwork: remove etcd-related code and tests
147173b099 libnetwork: remove consul-related code and tests
25594c33b9 libnetwork: replace consul with boltdb in test
a7d0f3060a libnetwork: remove zookeeper-related code and tests
e202ac3f38 remove pkg/discovery as it's now unused
00f9b23c3a libnetwork: remove external DS-based host discovery
c741ab0efa daemon: remove daemon/discovery as it's now unused
9492354782 daemon: remove daemon.discoveryWatcher
f28fc8bc8d daemon: remove discovery inits
d2c6602cac integration-cli: use unique names for custom bridges
ff2a5301b8 daemon: remove discovery-related config handling
9f2240c56f cmd/dockerd: produce error when using discovery options
65b92a730a integration(-cli): remove discovery related tests
702cb7fe14 daemon: remove discovery related tests
834272f978 Added error codes for exec resize in API docs
1a933e113d Fixed exec resize success code in API docs
ffd5a20ab8 vendor: bump etcd v3.3.27
cfd26afabe Use syscall.Timespec.Unix
4bdc208449 hack: remove a workaround for go-tools
22f19f8243 hack: do not exclude SQL-related checks
136f93ea05 hack: remove non-existent directories from golangci-lint's skip-dirs
c91e09bee2 daemon/logger: replace flaky TestFollowLogsHandleDecodeErr
7a10f5a558 daemon/logger: refactor followLogs to write more unit tests
5cbc08ce57 The flag ForceStopAsyncSend was added to fluent logger lib in v1.9.0
60f868c263 Ensure system clock was set
8b4c445f54 test: use os.CreateTemp instead of ioutil.TempFile
9a0b1f4f6b hack: use golangci-lint to find io/ioutil
3500d7e472 vendor: github.com/fluent/fluent-logger-golang v1.9.0
f415028976 integration-cli: delete existing docker0 bridge to prevent it interfering
dd66dcad9c fileutils: Avoid compiling a regexp for simple patterns
85eaf23bf4 seccomp: add support for "swapcontext" syscall in default policy
26dafe43a4 system: unbreak build for darwin
f2e458ebc5 daemon/logger: test followLogs' handleDecodeErr case
48d387a757 daemon/logger: read the length header correctly
d620cb6afc Update Go to 1.17.5
6bb3891c60 Update Go to 1.17.4
7c17ad8735 docker-rootless-setuptools.sh: use context after install
934f955e3d vendor: github.com/opencontainers/runc v1.0.3
53397ac539 update runc binary to v1.0.3
d78b883576 Fix grammar for "does not exist"
dd9782fe94 go.mod: golang.org/x/crypto 5770296d904e90f15f38f77dfc2e43fdf5efc083
bd61629b6b fluentd: Turn ForceStopAsyncSend true when async connect is used
e24d61b7ef vendor: github.com/fluent/fluent-logger-golang v1.8.0
9d9b8e0cf3 daemon.WithDevices(): use containerd's HostDevices()
55da5245de Fix missing parent info case in MatchesUsingParentResults
0f1b68df16 Adjust deprecation comments
7c216bcabe distribution: validate blob type
715e78631d fix image spec JSON example
4555d3aa54 pkg/fileutils: Track incremental pattern match results against each pattern
a715bfb857 vendor: github.com/Microsoft/hcsshim v0.8.23
cbb4aed0b4 vendor: github.com/containerd/ttrpc v1.1.0
ce25968008 vendor: github.com/moby/sys/mount v0.3.0, mountinfo v0.5.0, signal v0.6.0, symlink v0.2.0
875969251b vendor: golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359
6d92d2c7c4 TestConntrackFlowsLeak: use busybox "nc"
c3537ec24c Dockerfile.windows: update containerd binary to v1.5.8
238180d292 integration-cli: remove manifest v2 schema 1 push tests
cef0a7c14e vendor: github.com/opencontainers/image-spec v1.0.2
458b4aae19 vendor: github.com/containerd/containerd v1.5.8
aef782f348 update containerd binary to v1.5.8
615ff22437 vendor: github.com/opencontainers/selinux v1.9.1
c721bad8cc Fix flaky TestPortMappingV6Config
080529dfea Jenkinsfile: update check-config script to latest version
2a6a4587fa testing: skip TestBuildWCOWSandboxSize for now
eea2758761 TestBuildUserNamespaceValidateCapabilitiesAreV2: cleanup daemon storage
1a15a1a061 testutil: daemon.Cleanup(): cleanup more directories
24aaa7f8c9 log error message when receiving an unexpected type error
502b35c8f6 Fix windows rxReservedNames
61b43b1eb8 bump up rootlesskit from v0.14.4 to v0.14.6
582ef29426 vendor: github.com/containerd/containerd v1.5.7
c97d09b1e1 vendor: github.com/Microsoft/hcsshim v0.8.22
5f79e03624 vendor: github.com/imdario/mergo v0.3.12
ce668d6c1e Update Go to 1.17.3
b865204042 cmd/dockerd: create panic.log file without readonly flag
3a938df4b5 Make the network allocator handle IPv4 blocks too small for network/broadcast addresses.
894230b82d Fixed docker.internal.gateway not displaying properly on live restore
e7583ab859 testutil/daemon: ReadLogFile() trigger os.Sync() before reading
040b1d5eeb integration/daemon: use "windows" to skip tests
76016b846d daemon: make sure proxy settings are sanitized when printing
bad4b30e65 integration: skip TestDaemonProxy on rootless CI
427c7cc5f8 Add http(s) proxy properties to daemon configuration
a6ce7eff65 daemon: move maskCredentials to config package
1cdad98a7a distribution: do not retry unsupported layer media types
13cff6d583 Fix race in TestCreateServiceSecretFileMode, TestCreateServiceConfigFileMode
eadf839530 fix TestInvalidRemoteDriver() to check underlying error
195558de5a pkg/fileutils: escape additional regex meta characters
27ba755f70 Fix racey TestHealthKillContainer
0c887404a8 daemon: fix TestVerifyPlatformContainerResources not capturing variable
3e5e7a6de3 CI: update docker-py to 5.0.3
b4e056d556 buildkit: normalize build target and local platform
a8ce4d47c3 dockerd-rootless.sh: Fix variable not double quotes cause unexpected behavior
8f1b2a0fd3 Port testutil/daemon to FreeBSD
59511e1234 vendor: Update go-winio to v0.5.1
485cf38d48 oci/caps: limit available capabilities to current environment
79d6e935ad libnetwork: some minor refactoring / cleanup
d86a331fa4 libnetwork: improve consistency in log messages
fa4a9702be Update containerd binary to v1.5.7
b746a2bf9b Update containerd binary to v1.5.6
23abee412b compression: support zstd with skippable frame
1c7a47f709 Dockerfile: switch CRIU install to Debian 11 "bullseye" packages
13adcfafde Revert "Dockerfile: CRIU: disable GPG validation, due to expired signing key"
9a09448540 libnetwork: ServeDNS(): don't panic on unsupported query types
089a33e7c5 Dockerfile: CRIU: disable GPG validation, due to expired signing key
68e3034322 Add an option to specify log format for awslogs driver
e7fb0c8201 Update Go to 1.17.2
9f39889dee Fixes #41871: Update daemon/daemon.go: resume healthcheck on restore
9dbec13362 registry: EndPointV1.Ping() remove redundant "Standalone" and cleanup logs
37dc2582d1 registry: remove use of iota for consts
4a52c46e37 registry: trimV1Address(): simplify trimming trailing slash
542edf0c21 registry: inline newV1Endpoint() into newV1EndpointFromStr()
c8754f44d7 registry: remove unused ToV1Endpoint()
afbeec8bda registry: remove tlsConfigForMirror()
9f874e53b9 registry: remove unused registry.ErrAlreadyExists
cec4e69813 chrootarchive: don't create parent dirs outside of chroot
03f1c3d78f Lock down docker root dir perms.
ce715505bd Dockerfile: update test-registries to released versions
25381123d3 Makefile: update bfirsh/redoc to 1.14.0, and fix swagger warnings
b954e4793b Dockerfile: move installers into Dockerfile
ec9c8545f8 Makefile: remove passing proxy env-vars
3ce1dcc25d daemon.UsingSystemd(): don't call getCD() multiple times
7ccf750daa Allow switching Windows runtimes.
f3d3994a4b Port pkg/system/mknod.go to FreeBSD
e187eb2bb5 compression: add support for the zstd algorithm
0050ddd43b Update Go to 1.17.1
f586a473cf pkg/namesgenerator: replace uses of fmt.Sprintf()
1b8db06785 Dockerfile: update gotestsum to v1.7.0
14ff070469 Dockerfile: use "go install" to install utilities
a7a7c732c0 Dockerfile: use version for some utilities instead of commit-sha
3cec4b8cd4 Dockerfile: remove GOPROXY override (was for go < 1.14)
3c7c18a499 remove deprecated "nokmem" build-tag for runc
1de1d26eda api/swagger: move DistributionInspect to definitions
9c0ca67e95 api/swagger: rename PluginPrivilegeItem to PluginPrivilege
a207eea6a4 api/swagger: fix up event-types and move to definitions
303ea8e820 pkg/plugins: fix compatibility with go1.16
a826ca3aef daemon.WithCommonOptions() fix detection of user-namespaces
4045c4ceaf client: use subtests for TestNetworkInspect
c23eae3114 libnetwork/ipamapi: godoc fixes
92ea7df3d1 libnetwork: fix some linting issues
c425188bc0 libnetwork: remove API, as it's no longer used
accec292c1 pkg/sysinfo: use containerd/pkg/seccomp.IsEnabled()
7ce810c771 use defer to unlock mutex
073f8df0fe libnetwork/types: remove TransportPort.FromString() as it's unused
7c0d8fa5da libnetwork/types: remove PortBinding.FromString() as it's unused
513310f776 libnetwork/types: remove GetMinimalIPNet() as it's unused
1a67e9572e cmd/dockerd: add the link of "the documentation"
c55a4ac779 refactor: move from io/ioutil to io and os package
6f5beea146 Remove platform argument from Puller interface.
6a72e73c1d fix potential goroutine leak by making channel non-blocking Signed-off-by: Shihao Xia <charlesxsh@hotmail.com>
ee9e526764 Only check if route overlaps routes with scope: LINK
aa606307b7 vendor: update archive/tar to match Go 1.17.0
686be57d0a Update to Go 1.17.0, and gofmt with Go 1.17
21faae85ee vendor: update tar-split to v0.11.2
247f4796d2 api/types/events: add "Type" type for event-type enum
9ed88a0801 hack/vendor.sh: allow go version to be specified with .0
d48c8b70a1 vendor: golang.org/x/sys 63515b42dcdf9544f4e6a02fd7632793fde2f72d (for Go 1.17)
82c978ad95 vendor: github.com/opencontainers/runc v1.0.2
14189170d1 update runc binary to v1.0.2
b585c64e2b info: remove "expected" check for tini version
25dbeab78e Fix a typo in project/GOVERANCE.md
96e4adfdc2 api/types/versions: simplify compare if versions are equal
83ec46a7e6 libcontainerd/local: fix GoDoc
f68260ba22 Dockerfile: frozen images: update to bullseye, remove buildpack-dep
1effe7435a Dockerfile: add back libseccomp-dev to cross-compile runc
43c6a3d359 Dockerfile: update to debian bullseye
d7abbd01eb Jenkinsfile: windows 2022 LTSC mcr.microsoft.com/windows/servercore:ltsc2022
7e67bc067f integration/libnetwork: make delInterface() a t.Helper()
3ab8decad7 Dockerfile: remove aufs-tools, as it's not available on bullseye
882fd19f39 Dockerfile: update to docker/dockerfile:1.3, and remove temporary fix
d215d3477b libnetwork/resolvconf: remove README.md
98caf09f0f fix go-digest to make sure the algorithms are registered
572498be56 move pkg/ioutils.HashData() to libnetwork/resolvconf
c21be64e1a libnetwork: remove resolvconf/dns package
c9ba301a49 libnetwork: move resolvconf consts into the resolvconf package
8f75d8d4d5 Fix swagger docs to match the opencontainers image-spec
ef44b22085 Extract PluginPrivilegeItem as explicit type definition
52a9f1689a Use explicit object names for improved swagger based code generation
9275268110 Fix ContainerSummary swagger docs
6b53f2c5a2 Add "changes" query parameter for /image/create to swagger docs
d741c14f1f Add RestartPolicy "no" to swagger docs
a6692ccc0b Windows CI: Make sure that correct version of containerd-shim-runhcs-v1.exe is used
b90dd66bdd testutil: don't import "opts" package
427ad30c05 libnetwork: remove unused "testutils" imports
1285c6d125 Windows CI: Add support for testing with containerd
c44b90f3bf Test fix for Windows compatibility
97ede9df26 Rename Matches to MatchesOrParentMatches
9bae4f2f24 Add more optimal MatchesUsingParentResult method, use it in pkg/archive
002b38dc36 integration/network: remove unused CheckKernelMajorVersionGreaterOrEqualThen
8a25d752a9 integration/network: remove IsUserNamespace in favor of testenv equivalent
e53f65a916 pkg/signal: remove DefaultStopSignal const
3b316814f9 container: un-export DefaultStopTimeout
8e0d43dda7 docs/api: add node about concurrency on /system/df endpoint
135cec5d4d daemon,volume: share disk usage computations
5adc29ffe2 daemon: sort imports according to gofmt
4706e1c37d Jenkinsfile: update Windows 2022 insider to latest tag (10.0.20348.1)
d081e5d70c runconfig: decodeContainerConfig() return early if there's no HostConfig
e8e278c44f daemon: simplify networking config
b1f7ffea9f Update Go to 1.16.7
27aaadb710 daemon: normalize seccomp profile as part of setupSeccompProfile()
04f932ac86 daemon: move custom seccomp profile warning from CLI to daemon side
f8795ed364 daemon: allow "builtin" as valid value for seccomp profiles
68e96f88ee Fix daemon.json and daemon --seccomp-profile not accepting "unconfined"
ac449d6b5a daemon/config: rename the default seccomp profile to "builtin"
ee02257553 Add const for "unconfined" and default seccomp profiles
a6dd341ca2 client: remove deprecated SetCustomHTTPHeaders(), CustomHTTPHeaders()
8afb57e633 client: deprecate client.CustomHTTPHeaders()
0fdd23b7fe API: discard `/system/df` `type` parameter pre-1.42
6948ab4fa1 api/types: hostconfig: fix LogMode enum
5ae1c1f4cf api/types: hostconfig: clean up enum for Isolation
09cf117b31 api/types: hostconfig: create enum for CgroupnsMode
98f0f0dd87 api/types: hostconfig: define consts for IpcMode
a18cf3e4ef daemon: paralellize disk usage computations
58c4c120a8 oci/caps: simplify, and remove types that were not needed
fc3f98848a oci/caps: improve error message for unsupported capabilities
72b1fb59fe oci/caps: use map for capabilities to simplify lookup
d786a52364 oci/caps: generate list of all capabilities on "init"
0ec6f7ea23 oci/caps: minor optimization in init
b00b21b93c oci/caps: rename some vars that conflicted with imports / built-ins
94334153b5 oci/caps: remove hack for RHEL6 kernels
9499acc360 bump up rootlesskit to v0.14.4
c1c973e81b Revert "Temporarily disable CAP_PERFMON, CAP_BPF, and CAP_CHECKPOINT_RESTORE"
3af2217dc4 hack/test/unit: run libnetwork tests sequentially
b821590461 libnetwork/networkdb: consistently wait for nodes in tests
8fbba73f42 libnetwork: wait until t.Deadline() instead of hardcoded value
fb794166d9 seccomp: Use explicit DefaultErrnoRet
5f0703c549 client: remove containerd "platform" dependency
b33f3c7802 client: remove unused Platform field from configWrapper
3d58d13811 vendor: github.com/containerd/containerd v1.5.5
4a07b89e9a update containerd binary to v1.5.5
e3491ab56a pkg/archive: gzDecompress(): use local vars for MOBY_DISABLE_PIGZ
b321474747 pkg/archive: DetectCompression(): use bytes.HasPrefix()
ebeda658bc pkg/archive: remove some debug logs
dc7c06ce4e vendor: github.com/docker/swarmkit 3629f50980f6c0dd5ccd7dbfa0956b57ea0cd78d
e05fc8ca35 builder/dockerfile: make normalizeDest() platform-specific again
337500f374 builder/dockerfile: make containsWildcards() platform-specific again
131fac6eb4 builder/dockerfile: remove fromSlash() and separator() utils
190b6f64e3 builder/dockerfile: copy: remove LCOW code
c33b9bcfd4 libcontainerd/local: remove LCOW bits
13cb04e57c remove various LCOW bits (container, image, pkg/containerfs)
0998c7e363 system: remove LCOWSupported() utility
dc70e55c9b distribution: remove LCOW code
79f89ed9b7 hack/ci: remove LCOW from examples, and fix minor linting issue
0c84c322ae daemon, oci: remove LCOW bits
47ad2f3dd6 API,daemon: support `type` URL parameter to /system/df
9f6b562dd1 seccomp: add support for "clone3" syscall in default policy
384517218a volume/mounts: remove windowsValidateRegex() utility
71b0e47bee volume/mounts: add destination validation to "validators"
cff0276aaf volume/mounts: rename windowsSplitRawSpec() to splitRawSpec()
f77eb5349b volume/mounts: minor formatting and linting fixes
efb87ad106 volume/mounts: pre-compile regular expressions
3deac5dc85 btrfs: annotate error with human-readable hint string
a34d804572 integration: remove deprecated endpoint test
90f8d1b675 fileutils: Fix incorrect handling of "**/foo" pattern
17f39dcb4d fix a typo
28409ca6c7 replace pkg/signal with moby/sys/signal v0.5.0
dd01abf9bf integration: copy loop variable into parallel test closures
d5dbbb5369 storage-driver: promote overlay2, make Btrfs and ZFS opt-in
4fc2d4df03 vendor: github.com/containerd/containerd v1.5.4
22316ff1d8 Makefile: update buildx version to v0.6.0
cf1328cd46 update containerd binary v1.4.8
549060a1d3 vendor: github.com/sirupsen/logrus v1.8.1
82b264bd2d vendor: github.com/coreos/go-systemd/v22 v22.3.2
9f9a0b872c vendor: github.com/cilium/ebpf v0.6.2
1256aa0241 vendor: github.com/opencontainers/runc v1.0.1
f50c7644cf update runc binary to v1.0.1
8de724390e Makefile: do not tag docker-dev image with GIT_BRANCH
0ef7e727d2 seccomp: Seccomp: embed oci-spec LinuxSeccomp, add support for seccomp flags
bfd4b64600 seccomp: setupSeccomp(): update errors and remove redundant check
c815b86f40 seccomp: add additional unit-tests
c1ced23544 seccomp: use oci-spec consts in tests
b309e96b11 seccomp: improve GoDoc for Seccomp fields
6ff6913ac4 pkg/signal: remove gotest.tools dependency
0880df4644 pkg/signal: move Trap() to cmd/dockerd
ea5c94cdb9 pkg/signal: move signal.DumpStacks() to a separate package
7d63cbfd38 api/types: add GoDoc to Info.Warnings field
4ace1998e5 pkg/sysinfo: use correct name for AppArmor in t.Skip()
9b795c3e50 pkg/sysinfo.New(), daemon.RawSysInfo(): remove "quiet" argument
1fb62f455c pkg/sysinfo: collect warnings in SysInfo struct
208d3c6efb pkg/sysinfo: move cg2Controllers to be a field in SysInfo and unify v1/v2
5cc20ad9e5 pkg/sysinfo: adjust Opt to set new field
ca27b473cc pkg/sysinfo: move cg2GroupPath to be a field in SysInfo
e70c5ea1a9 pkg/sysinfo.newV2() remove redundant path.Clean()
6677ab6a63 pkg/sysinfo: move cgMounts to be a field in SysInfo
10ce0d84c2 pkg/sysinfo.New() move v1 code to a newV1() function
1d055267a8 updated names-generator.go for alphabetization
84df737f50 vendor: github.com/containerd/containerd v1.5.3
5ae2af41ee Update containerd binary to v1.5.3
3334fb9af1 Fix up vndr tooling
2af9bd3b26 API: add shared-size parameter to image queries
bf9c76f0a8 API, daemon/images: add ImageListOptions and pass context
fe6f1a4067 Bump go 1.16.6 (addresses CVE-2021-34558)
2837fba75f libnetwork: ensure all nodes are available in tests
cdd04a94bc vendor: hashicorp/memberlist, google/btree (dep) update
d7a2635537 libnetwork: make rejoin intervals configurable
a985655ac4 Move containerd.service from Requires= to Wants=
31348afa19 API: deprecate `BuilderSize` in API versions >= 1.42
115b37b8f7 daemon: use object literal for stats
0ff80c844d daemon/config.New(): rewrite to be slightly more idiomatic
5588a78ab3 daemon/config: restrict "unix" code is linux
96f843ef30 daemon/config: move "common" tests
9d9679975f daemon/config: remove CommonUnixConfig type
defeab7387 daemon/config: remove commonUnixBridgeConfig
a65f83317c daemon/config: reorganize code between unix and windows files
f7eaf2bf78 Update hcsshim vendor to v0.8.20
83e3dd68ca swagger: add BuildCache example to `/system/df`
aff02dbcaf Updated check_config
5d244675bd seccomp: Sync fields with runtime-spec fields
f2225933bb API: ensure empty build cache is represented as empty JSON array
68b095d4df API: fix 404 status description on container create
477244cca5 API: update API version to v1.42
42d2048b9d Dockerfile: update go-swagger to fix validation on Go1.16
8e3f9fd032 volume/mounts: use sub-tests, and use gotest.tools
73378d2042 volume/mounts: don't use global variable for fileinfoprovider
28b0f47599 volume/mounts: add constructors for each parser
df179a1d6a volume/mounts: split tests per parser
536818508d volume/mounts: move TestConvertTmpfsOptions
300c11c7c9 volume/mounts: remove "containerOS" argument from NewParser (LCOW code)
f3d08d59aa volume/mounts: move some code to correct location, and minor linting/formatting
af3e5568fc daemon/images: fix shared size computation for filtered requests
a8d92be6e8 Use crypto/rand
9f0e268b00 Fix use of unsafe ptr #42444
b308097ec3 daemon/images: refactor image listing
00a4f67ddf Reduce TestClientWithRequestTimeout flakiness
7a6cac2b23 Run s390x tests on Ubuntu 20.04
0c1a125644 libnetwork: processEndpointCreate: Fix deadlock between getSvcRecords and processEndpointCreate
345a180a55 there is no file named mkimage-rinse.sh in contrib floder, should delete it
2050e085f9 hack: remove proxy.installer
2bec9f607f Remove spurious libnetwork vendor entry.
116f200737 Fix gosec complaints in libnetwork
0645eb8461 Remove libnetwork/client package
e7cf711c02 Move proxy CLI to main cmd/
7266a956a8 Remove dnet libnetwork cli
42bcc2df68 Remove leftovers from libnetwork move
b5835646eb registry: remove const for 'Docker-Distribution-Api-Version' header
e93132e273 Add s390x to cross platforms target
3a208c0ff9 Add ppc64le to cross platforms target
f558056d2b Make validate flag description more generic
9973dc67dd Jenkinsfile: add stage for Windows 2022 on containerd
8f80e55111 Add configuration validation option and tests.
52744fccdd contrib: remove report-issue.sh script
7168d98c43 Remove libseccomp dependency in runtime-dev-cross-true image It turns out libseccomp is not used for building docker at all. It is only used for building runc (and needs libseccomp > 2.4)
7c97896747 libnetwork: processEndpointDelete: Fix deadlock between getSvcRecords and processEndpointDelete
72549d4ca1 Fix cross compilation in Jenkinsfile
64badfc018 update runc binary to v1.0.0 GA
af1e74555a vendor: moby/term, Azure/go-ansiterm for golang.org/x/sys/windows compatibility
8610d8ce4c rootless: fix "x509: certificate signed by unknown authority" on openSUSE Tumbleweed
967ec6f2e8 Fix typo in macvlan_setup.go
46c591b045 pkg/system: deprecate some consts and move them to pkg/idtools
26f5db7a1d pkg/system: remove unused system.Unmount() utility
5f04517c48 pkg/system: remove deprecated GetOSVersion(), consts, SecurityInfo utils.
6988f786f1 vendor swarmkit to 2dcf70aafdc9ea55af3aaaeca440638cde0ecda6
472f21b923 replace uses of deprecated containerd/sys.RunningInUserNS()
c7cd1b9436 profiles/seccomp.Syscall: use pointers and omitempty
d92739713c seccomp.Syscall: embed runtime-spec Syscall type
7cf079acdb quota: adjust build-tags to allow build without CGO
ff141d366f netutils: minor cleanups
888e75dfc9 netutils: remove unused ErrNoDefaultRoute
c21eaf9a07 portmapper: move mockProxyCommand to a _test file
ac8c80d6f1 portmapper: change userlandProxyCommandName to a const
f6be7f2945 portmapper: minor linting fix, and comment purpose of newProxy variable
4231dbca23 portmapper: don't compile linux-only code on Windows
c2c0b8dc4e docs: fix image name in testing guide
3eb1257698 revendor BuildKit (master branch)
8733144f8b vendor: github.com/tonistiigi/fsutil d72af97c0eaf93c1d20360e3cb9c63c223675b83
225f764652 vendor: golang.org/x/sync 036812b2e83c0ddf193dd5a34e034151da389d09
037c26d863 vendor: golang.org/x/net e18ecbb051101a46fc263334b127c89bc7bff7ea
e1ae2d28fb vendor: golang.org/x/time 3af7569d3a1e776fc2a3c1cec133b43105ea9c2e
28156f4a2e vendor: golang.org/x/crypto 0c34fe9e7dc2486962ef9867e3edb3503537209f
1dac53860c Adjust buildmode comment to link to commit
73aef6edfe ReplaceFileTarWrapper: permit to override file name
2cd68d5268 don't use buildmode=pie on ppc64
13828e430d Bump swarmkit to get fix for rollback failure
76640e5d39 drivers/bridge: format comments
da0a006b14 drivers/bridge: dont use types.ParseCIDR() for fixed value
31d3468146 windows: remove redundant init()
dc7cbb9b33 remove layerstore indexing by OS (used for LCOW)
3ed804aeca updated vendored archive/tar to go1.16.5
f400e84a43 update archive/tar patch for go 1.16
ae5ddd257c Bump go 1.16.5
594c972fc5 golangci.yml: do not limit max reported issues
22ce0f8faa golangci.yml: skip some tests
ea74765a58 golangci.yml: update regex for ignoring SA1019
e6dabfa977 graphdriver: temporarily ignore unsafeptr: possible misuse of reflect.SliceHeader
d61b7c1211 daemon: var-declaration: should omit type bool (revive)
16ced7622b daemon/config: error strings should not be capitalized
bb17074119 reformat "nolint" comments
dd1374f7b2 if-return: redundant if ...; err != nil check (revive)
4004a39d53 daemon/splunk: ignore G402: TLS MinVersion too low for now
7b071e0557 pkg/archive: RebaseArchiveEntries(): ignore G110
09191c0936 daemon/stats: fix notRunningErr / notFoundErr detected as unused (false positive)
7c91fd4240 unused: ignore false positives
b4c0c7c076 G601: Implicit memory aliasing in for loop
d13997b4ba gosec: G601: Implicit memory aliasing in for loop
f77213efc2 gosimple: S1039: unnecessary use of fmt.Sprintf
f7433d6190 staticcheck: SA4001: &*x will be simplified to x. It will not copy x
b92be7e297 client: S1031: unnecessary nil check around range (gosimple)
d43bcc8974 daemon/logger/journald: fix linting errors
6b0ecacd92 gosec: G404: Use of weak random number generator
c7b1e5ba38 portallocator: log instead of discard port-range failures
1f398f06aa portallocator: minor refactor for readability
1f90fdd973 portallocator: use const for default port-ranges, instead of init()
076d9c6037 daemon: remove graphdriver indexing by OS (used for LCOW)
350e303c7f endpoint: remove redundant doUpdateHostsFile() function
508a0979d9 bridge: remove unused "others" argument from isolateNetwork()
08ddbfbdac libcontainerd: remove LCOW bits
117bca149f libnetwork/resolver: fix minor linting issues
0d9b0ed678 Fix possible overlapping IPs
774b970cb1 libnetwork: remove MAINTAINERS and LICENSE
e90d6abfcd libnetwork: update Dockerfile to Go 1.13.15
a384f83e7a libnetwork: remove CircleCI config and code
bc8acc5b08 pkg/fileutils: PatternMatcher.Matches(): remove debug logging
9f6add406e networkdb: mark test-helpers as t.Helper()
25879d3134 Remove a lot of outdated "project/PACKAGERS.md" text
b6052669e6 vendor: swarmkit master (after libnetwork move)
d15ce134ef Fix log statement 'failed to exit' timeout accuracy
424c0eb3c0 docker pull: warn when pulled single-arch image does not match --platform
22186d2645 vendor: github.com/opencontainers/selinux v1.8.2
aa4dce742f daemon: improve handling of ROOTLESSKIT_PARENT_EUID
a7ecbd4b29 libnetwork: replace BurntSushi/toml with pelletier/go-toml
7c1c123555 vendor: github.com/containerd/containerd v1.5.2
989cd6e8f6 vendor: github.com/containerd/typeurl v1.0.2
0bc4035f76 vendor: github.com/containerd/go-runc v1.0.0 (add version comment)
0691addf6a vendor: github.com/containerd/cgroups v1.0.1
134b73a1ea vendor: github.com/containerd/continuity v0.1.0
bfb5b8017b vendor: github.com/containerd/fifo v1.0.0
778c8f787d Update AUTHORS and mailmap
7ef6ece774 Fix setting swaplimit=true without checking
ffc6d8d3dd contrib/check-config.sh: Remove awk dependency
e047d984dc Remove LCOW code (step 1)
0dd8bc6d31 Fix flakey test TestNetworkDBIslands
b3c883bb2f Skip libnetwork integration tests on Windows
7186fd8a95 More libnetwork windows test fixes
d414c0c1e8 replace uses of deprecated libcontainer/configs.Device
a927fc7831 vendor: github.com/opencontainers/runc v1.0.0-rc95
f0d3e905b6 vendor: golang.org/x/sys d19ff857e887eacb631721f188c7d365c2331456
8db4c4ca01 vendor: golang.org/x/net 6772e930b67bb09bf22262c7378e7d2f67cf59d1
b7dbed85b3 vendor: github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417
56481e899d vendor: github.com/cilium/ebpf v0.5.0
473817206e vendor: rename ebpf README
6c954ffd32 vendor: temp rename ebpf readme
4b981436fe Fixup libnetwork lint errors
b53b85ca40 Remove libnetwork leftover vendor stuff
00b2c13a1b Fix some windows issues in libnetwork tests
9184f7fdff Ensure ip6table_filter module on all ci nodes for libnetwork
20fd1dd7d2 Skip some windows network driver tests
72c4a7b496 Fix issues running libnetwork tests.
4da0dc974c Ensure docker-proxy is installed in unit-test ci
e837dd0fb8 Add urfave/cli for libnetwork cmd's
86c8b8f1a0 Move proxy build into hack/make
94017da880 Use buildkit fork which uses new libnetwork import
7abc3e83c9 Use tmp swarmkit fork for libnetwork import
a0a473125b Fix libnetwork imports
c8e6ad1adc Dockerfile: install criu from binary repo
bf07c06c63 daemon: move DefaultShimBinary, DefaultRuntimeBinary to config package
34b854f965 daemon: un-export ModifyRootKeyLimit()
95d69658be daemon: un-export VerifyCgroupDriver()
a506630e57 daemon: use sync.Once for systemd detection
e7ba5cacc6 daemon: un-export IsRunningSystemd()
61b04b3a02 vendor: github.com/moby/buildkit v0.8.3-3-g244e8cde
7a1716462c changelog: fix incorrectly named libnetwork label
cd40eb89ae Fix client request error handling
2865d17233 Update contrib/check-config.sh
f1e7d02a78 Update contrib/check-config.sh
0f77b22dbe Update contrib/check-config.sh
79ee285d76 vendor: github.com/moby/buildkit v0.8.3
a6a98d6928 vendor: github.com/fluent/fluent-logger-golang 1.6.1
1ce955ec83 contrib/check-config.sh: Make script POSIX
05f520dd3c pkg/signal: ignore SIGURG on all platforms
22b9e2a7e5 vendor: github.com/ishidawataru/sctp f2269e66cdee387bd321445d5d300893449805be
e4109b3b6b vendor: github.com/docker/libnetwork 64b7a4574d1426139437d20e81c0b6d391130ec8
fb5a9ec741 Limit the rate at which logger errors are logged into daemon logs
d72722f97c Add Samuel Karp as a maintainer
31b2c3bbd9 hack/vendor: add check for vendored archive/tar
8e3186fc8f update containerd binary to v1.5.2
b7ebf32ba3 pkg/signal.CatchAll: ignore SIGURG on Linux
719504b810 vendor: github.com/ishidawataru/sctp f2269e66cdee387bd321445d5d300893449805be
efec2bb368 update runc binary to v1.0.0-rc95
151ec207b9 Makefile: install buildx from binary release, instead of building
7070df3a3e integration: ensurePlugin: disable go modules when building plugin
8bae2278ba hack/ci/windows.ps1: disable go modules
fe54215fb3 Update test certificates
2fea30f146 hack: add script to regenerate certificates
2842639e0e pkg/fileutils: TestMatches: remove cases no longer valid for go1.16
466e21b273 hack/validate: skip DCO in "default"
22c0291333 update containerd binary to v1.5.1
85167fc634 builder-next: relax second cache key requirements for schema1
82c7e906ea Jenkinsfile: skip ppc64le and s390x by default on pull requests
35c1542ec7 contrib: remove unused "rpm" variant of systemd unit
2f0d6664a1 integration: remove KernelMemory tests
9303376242 Swarm config: use absolute paths for mount destination strings
8c019e830a Update runc binary to v1.0.0-rc94
3987dc264b vendor: github.com/godbus/dbus/v5 v5.0.4
7a956d1342 vendor: github.com/coreos/go-systemd/v22 v22.3.1
a40197328e oci/caps: remove unused GetCapability() and ValidateCapabilities()
e5ae83e503 volumes: only send "create" event when actually creating volume
8844c48523 vendor: github.com/moby/sys/mountinfo v0.4.1, github.com/moby/sys/mount v0.2.0+
4d3f64da63 API-client: remove unused ContainerListOptions.Quiet field
9b2f55bc1c update containerd binary to v1.5.0
56c88c94dd Added missing test cleanup for temporary directory
cf259eb8a0 Wait for `run` goroutine to exit before `Close`
489f57b877 Add security privilege needed to write layers when windows VHDX used as docker data root
4300a52606 rootless: disable overlay2 if running with SELinux
cdaf82ba3f dockerd-rootless.sh: avoid /run/xtables.lock EACCES on SELinux hosts
42b1175eda hack/dind: fix cgroup v2 evacuation with `docker run --init`
325668315c fix port forwarding with ipv6.disable=1
7c731e02a9 grpc: make sure typed errors handler is installed
42a485f7fa Update Microsoft/go-winio to version 0.4.19
b6a05b7371 Add John Howard to our alumni
c9a62831ba Move Michael Crosby to alumni
5a5f8564ba builder/dockerfile: add "ALL_PROXY" to list of default build args
e928692c69 dockerd-rootless.sh: use `command -v` instead of `which`
6d1eceb509 Fix panic in TestExecSetPlatformOpt, TestExecSetPlatformOptPrivileged
bffa730860 Prepare tests for Windows containerd support
f41a6d5c95 enforce order of lock acquisitions on network/controller, fixes #2632
1c7585a7da vendor: github.com/docker/swarmkit 5a5494a9a7b408b790533a5e4e1cb43ca1c32aad
2bef937507 vendor: github.com/coreos/etcd v3.3.25
6202322b60 vendor: github.com/containerd/containerd 19ee068f93c91f7b9b2a858457f1af2cabc7bc06
8b385fde57 vendor: github.com/gogo/protobuf v1.3.2
3980d0462d Remove needless check
825e9855b7 Remove lowenna (aka jhowardmsft) from maintainters
3cd025bc67 bump up rootlesskit to v0.14.2
c35cefb489 Dockerfile: update yamllint to v1.26.1 to fix build
225e046d9d Error string match: do not match command path
e57a365ab1 docker kill: fix bug where failed kills didnt fallback to unix kill
8e362b75cb docker daemon container stop refactor
1ec689c4c2 btrfs: Do not disable quota on cleanup
948e201c1c vendor: github.com/containerd/console v1.0.2
a0d1a1f78c Update contrib/nuke-graph-directory.sh
8f4b3b0ad4 pkg/archive temporarily skip some tests on Windowsd V19H1 (1903) and up
b5f0096584 Jenkinsfile: temporarily use insider build for Windows 2022 (SAC)
e13d41db1b Jenkinsfile: update to Windows 2022
0100a9ebc1 Jenkinsfile: windows-1903: send junit.xml results
fa194ec86c Jenkinsfile: add stage for Windows 1903 (SAC)
2834f842ee Use containerd's apparmor package to detect if apparmor can be used
42ef2c5036 vendor: github.com/containerd/containerd 55eda46b22f985cde99b599e469ff9c13994bf68
928227a456 vendor: golang.org/x/sync 6e8e738ad208923de99951fe0b48239bfd864f28
e538720da7 vendor: github.com/coreos/go-systemd/v22 v22.1.0
5761fca80d vendor: github.com/containerd/containerd fbf1a72de7da110187b7d3dace433914b9beca10
ab1dd80877 vendor: github.com/containerd/containerd b9092fae15f1814a5402bea1ceb0fa21ce1c785c
398cb1dc4f Fixes subvol delete on a non-btrfs volume
452f82d5fc Bump hcsshim to get some fixes.
eefb6c672a Fix typo on the v1.41 changelog
257b4db186 testing: update docker-py 5.0.0
a876ede24f Use docker media type for plugin layers
00cb3073f4 Fix flaky TestInspect
bedefacfd5 Jenkinsfile: update check-config.sh to latest version
2a7c1cc1d6 libcontainerd/supervisor: replace BurntSushi/toml with pelletier/go-toml
1d4a273487 validate/toml: switch to github.com/pelletier/go-toml
97a5b797b6 Use designated test domains (RFC2606) in tests
248f98ef5e rootless: bind mount: fix "operation not permitted"
b7c3548c82 Pin arm64 machines to a specific Ubuntu version
45021ee354 bump up rootlesskit to v0.14.1
b14bf43764 check-config.sh: add SELinux and AppArmor
6322dfc217 archive: do not use overlayWhiteoutConverter for UserNS
67aa418df2 overlay2: doesSupportNativeDiff: add fast path for userns
dd97134232 overlay2: call d.naiveDiff.ApplyDiff when useNaiveDiff==true
62b5194f62 btrfs: Allow unprivileged user to delete subvolumes (kernel >= 4.18)
0450728267 vendor: docker/libnetwork b3507428be5b458cb0e2b4086b13531fb0706e46
c8599a6537 fix assertPortList normalizing being too strict
5ffcd162b5 discovery & test: Fix goroutine leaks by adding 1 buffer to channel
d6ddfb6118 rootless: fix getCurrentOOMScoreAdj
cbc6cefdcb hack: use GOPROXY for rootlesskit to workaround issue with old git on CentOS/RHEL 7
1c72a68f2a check-config.sh: add SECCOMP_FILTER
a432eb4b3a ContainerExecStart(): don't wrap getExecConfig() errors, and prevent panic
6eb5720233 Fix daemon.getExecConfig(): not using typed errNotRunning() error
c6038b4884 integration-cli: rely less on "docker port" output format
f845b98ca6 integration: update getExternalAddress to prefer IPv4
54ca929a70 integration/container: wrap some long lines for readability
e166af959d update rootlesskit to v0.14.0
0f32beb4f8 libcontainerd: remove unused consts
9637be0e9d libcontainerd: remove unused win32 errors (leftover from TP4)
601707a655 TestPushMultipleTags: Add support for 20.10 CLI
5a664dc87d jsonfile: more defensive reader implementation
e31086320e Remove cli test for duplicate --net/--network opts
0c3be53107 integration-cli: Fix race in TestServiceLogsFollow test case
039e9670cb info: unset cgroup-related fields when CgroupDriver == none
fb886a119b vendor: github.com/spf13/cobra v1.1.3
a09c0276a2 builder: produce error when using unsupported Dockerfile option
4be98a38e7 Fix handling for json-file io.UnexpectedEOF
a8008f7313 overlayutils/userxattr.go: add "fast path" for kernel >= 5.11.0
11ef8d3ba9 overlay2: support "userxattr" option (kernel 5.11)
1600e851b5 Use buster backports to build with libseccomp-2.4.4
d10046f228 Add an option to skip create log stream for awslogs driver
7024564c48 Correct name (right) sort order
1a49393403 update containerd binary to v1.4.4
d39b075302 Enable `process_vm_readv` and `process_vm_writev` for kernel > 4.8
ae6cf966f9 fix typo in comments
f23c1c297d pkg/archive: TestUntarParentPathPermissions requires root
f2f1c0fe38 dockerd-rootless-setuptool.sh: create CLI context "rootless"
5f6db3a077 rootless: Set service type to `notify`
328de0b8d9 Update documentation links
088e6ee790 Include VPNkit binary for arm64
9bf93e90fa builder: fix incorrect cache match for inline cache with empty layers
9962a3f74e vendor: github.com/moby/buildkit v0.8.2
8dc6c109b5 dockerd-rootless.sh: add typo guard
9351e19658 dockerd-rootless.sh: prohibit running as root
80cc1f1d6f registry.Auth: try next endpoints on non-auth failures
588da41f52 distribution: fix errors tests
7a50fe8a52 Remove more of registry v1 code.
083dbe9fcd Dockerfile: switch to "stable" dockerfile front-end
cbd2f726bf Update Swarmkit to pick up fixes to heartbeat period and stalled tasks
0f3b94a5c7 daemon: remove migration code from docker 1.11 to 1.12
ff1d9a3ec5 Update v1.41.yaml
e8ceb97646 check-config.sh: add NETFILTER_XT_MARK
50f39e7247 Move cpu variant checks into platform matcher
8d73c1ad68 Check the length of the correct variable #42039
1cd1925acd oci.Device() fix FileMode to match runtime spec
4be5453215 Fallback to manifest list when no platform match
25ada76437 pkg/archive: Unpack() use 0755 permissions for missing directories
b53ea19c49 builder: fix pull synchronization regression
8128a9a478 Fix grammar in client function comments
1d2a660093 Move cgroup v2 out of experimental
fa480403c7 TestBuildUserNamespaceValidateCapabilitiesAreV2: verify build completed
26965fbfa0 TestBuildUserNamespaceValidateCapabilitiesAreV2: use correct image name
e32ae1973a Update rootlesskit to v0.13.1 to fix handling of IPv6 addresses
5c01d06f72 builder: fix blobs releasing via leases after pull
28e5a3c5a4 update runc binary to v1.0.0-rc93
2ad187fd4a Fix userns-remap option when username & UID match
8e2343ffd4 docs: fix NanoCPUs casing
2bd46ed7e5 api: fix NanoCPUs casing in swagger
58825ffc32 Fix for lack of syncromization in daemon/update.go
96e103feb1 Update TestDaemonRestartWithLiveRestore: fix docker0 subnet missmatch Fix docker0 subnet missmatch when running from docker in docker (dind)
ba7906aef3 archive: avoid creating parent dirs for XGlobalHeader
137f86067c Add test coverage for seccomp implementation
dd7ee8ea3e Dockerfile.simple: Fix compile docker binary error with btrfs
654f854fae reject null manifests
c747d9f8ee pull: Validate layer digest format
94c07441c2 buildkit: Apply apparmor profile
28a623aa3a vendor buildkit 68bb095353c65bc3993fd534c26cf77fe05e61b1
7f5e39bd4f Use real root with 0701 perms
4b5aa28f24 Do not set DOCKER_TMP to be owned by remapped root
66dffbec86 Ensure MkdirAllAndChown also sets perms
227687f2ef rootless: support --pid=host
7994443c15 integration: port TestRunModePIDHost from CLI test to API test
c23b99f4db Jenkinsfile: add cgroup2
c316dd7cc5 TestInspectOomKilledTrue: skip on cgroup v2
e192ce4009 Move container exit state to after cleanup.
05566adf71 rootless: set systemd KillMode to mixed
240d0b37bb docs: fix double "the" in existing API versions
54eff4354b profiles: seccomp: update to Linux 5.11 syscall list
30b20a6bdd Dockerfile.buildx: update buildx to v0.5.1
14fb165085 testing: update docker-py 4.4.1
d5d5cccb7e pkg/archive: allow mknodding FIFO inside userns
7ca0cb7ffa Use golang.org/x/sys/execabs
5d3b0102f7 Use hostIP to decide on Portmapper version
2db5676c6e swagger.yaml: Remove extra 'the' wrapped by newline
5cc1753f2c Fix daemon panic when starting container with invalid device cgroup rule
ec416c51b7 TestCgroupNamespacesRunOlderClient: support cgroup v2
42dba8c3f9 Fix spurious error from "docker load"
bb11365e96 Handle long log messages correctly on SizedLogger
00225e220f docker info: adjust warning strings for cgroup v2
8086443a44 docker info: silence unhandleable warnings
4f9af99194 Fix regression in docker-proxy
399695305c Fix builder inconsistent error on buggy platform
2903863a1d Add shim config for custom runtimes for plugins
4f36640553 volumes/local: gofmt
06d9020fac contrib/check-config.sh: fix INET_XFRM_MODE_TRANSPORT
18e0543587 contrib/check-config.sh: fix IOSCHED_CFQ CFQ_GROUP_IOSCHED
070f9d9dd3 contrib/check-config.sh: fix MEMCG_SWAP_ENABLED
03da41152a contrib/check-config.sh: fix NF_NAT_NEEDED
eeb53c1f22 contrib/check-config.sh: fix NF_NAT_IPV4
76b59065ae contrib/check-config.sh: support for cgroupv2
c9ec21e17a replace json.Unmarshal with NewFromJSON in Create
46dfc31342 integration: fix TestBuildUserNamespaceValidateCapabilitiesAreV2 not using frozen image
7c7e168902 builder: ensure libnetwork state file do not leak
a6d7b43dfc fixed IPv6 iptables rules for enabled firewalld
64465f3b5f Fix Error in daemon_unix.go and docker_cli_run_unit_test.go
e6591a9c7a Make test work with rootless mode
4e8f3bcee1 docs: fix typos in API docs
f47b27e590 API: fix typos in swagger
95eb490780 Use v2 capabilities in layer archives
33a82a26a8 Fix IPv6 Port Forwarding for the Bridge Driver
06308f4d37 setup IPv4 and IPv6 iptables chain
d14b7a5191 fixed ip6tables command in error message
b7c663c2ec Make sure IPv6 is enabled for IP6tables
273eae8a11 Revert "systemd: add multi-user.target to After list"
4886e5e5b1 Added improved IP validation for port mapper
27801b9ef8 vendor: update github.com/Microsoft/hcsshim v0.8.10 (back to tagged release)
19eda6b9a2 Update daemon_linux.go for preventing off-by-one
f4aafedc48 container: minor cleanup/refactor
5c0b694ef3 container: make hostconfig.json non-world-readable (0600)
1571e9331b Use specific APIs for shared mount-point behaviour
695b151a18 Work around small disk on Windows-RS5 CI nodes
db7b7f6df9 Parse storage-opt in GraphDriver init on Windows
56d378a88f Apply a 127GB default WCOW Sandbox size globally
142b2b785b Add TestBuildWCOWSandboxSize integration test
009639e0f4 Do not "Bind" docker "To" containerd.
21578530d7 systemd: set OOMScoreAdjust for dockerd
77096349e1 vendor: github.com/coreos/pkg v4
768ba77d37 plugin.Manager.setupNewPlugin() remove unused blobsums argument
959dfca7e6 service_linux: Fix null dereference in findLBEndpointSandbox
e9646aafa4 vendor: docker/docker 7ca355652fe0e2f7401d424d65a81dc248360127
b3b8f561f7 vendor: github.com/gogo/protobuf v1.3.1
77c68a7f6e vendor: golang.org/x/crypto 75b288015ac94e66e3d6715fb68a9b41bf046ec2
d321fc2f61 vendor: golang.org/x/sync cd5d95a43a6e21273425c7ae415d3df9ea832eeb
b14bf0e66e vendor: golang.org/x/sys ed371f2e16b4b305ee99df548828de367527b76b
3c90d159f8 vendor: golang.org/x/net ab34263943818b32f575efc978a3d24e80b04bd7
b95a3f1f23 vendor: github.com/coreos/etcd v3.3.12
5ce882207d vendor: runtime-spec v1.0.3-0.20200728170252-4d89ac9fbff6
64e852ee65 vendor github.com/Microsoft/hcsshim 9dcb42f100215f8d375b4a9265e5bba009217a85
0aad792f1d vendor: containerd/cgroups 318312a373405e5e91134d8063d04d59768a1bff
2fdc3e86b1 vendor: logrus v1.6.0
05701c485e vendor: go.etcd.io/bbolt v1.3.5
e11c7fe3ab vendor: vishvananda/netns db3c7e526aae966c4ccfa6c8189b693d6ac5d202
6cbe360e47 vendor: github.com/gorilla/mux v1.8.0
e18c7629c3 vendor: docker/go-events e31b211e4f1cd09aa76fe4ac244571fab96ae47f
3e1e9e878c vendor: gotest.tools v3.0.2
5186d9e1b1 vendor: github.com/pkg/errors v0.9.1
dc6e4d8881 replace github.com/docker/docker/locker with github.com/moby/locker
6796c2cc9b client/mflag: remove use of docker/docker/pkg/homedir
681196c8f2 Remove dependency on github.com/docker/docker/opts
bf28003c99 Replace use of deprecated functions
0e8b02bac4 Makefile: enable BuildKit
53688d374e CircleCI: update to Docker 19.03.12
6dde6cb0b0 drivers/macvlan: skip kernel version check
02d313ca15 drivers/bridge: skip kernel version check
304bb14ffc vendor.conf: reformat to match spacing in docker/docker
a65c65d801 systemd: add multi-user.target to After list
34f4706174 added TODOs for open IPv6 point
648d891827 reworked allocatePorts
9f98bd79d8 reworked comment of IPTable struct
1e1408f421 additional EnableIPTables check in isolateNetwork
a4fcced708 enabled ipv6 parameter in TestSetupIPForwarding
4d1c92c155 resorted EnableIP6Tables in driver configure
9bc2f88f04 isolateNetwork for both IP version
ccad03a139 split setupIPTables into setupIP4Tables and setupIP6Tables
9cf5335269 default DROP policy on firewall reload also for IPv6
ec7df93731 replace string.Contains* with net.IP.To4() check
3475f006b7 moved some ipv6 config to setupIPForwarding
dfd1925ed1 Renamed driver config variable to EnableIP6Tables
8dbb5b5a7d Implement NAT IPv6 to fix the issue https://github.com/moby/moby/issues/25407
b1a3fe4934 Add more error details on plugin get
570c5f9e76 testing: remove use of docker/docker/errdefs in tests
27345e8f8f log error instead if disabling IPv6 router advertisement failed
9fd12a5e31 client/mflag: remove use of docker/docker/pkg/homedir
42b87e6a4b types: remove some dead code
521ac858e7 doc: server API Correct ImagesCreate - platform parameter added in 1.32
e65003a722 bridge: disable IPv6 router advertisements
0c8ffda2ab Fix 'failed to get network during CreateEndpoint'
07ed00102d store.getNetworksFromStore() remove unused error return
efe0ab37a1 Resolver: fix error handling if we didn't receive a response
a24e5f5fd4 reduce parameters for func JoinOptionPriority
23d1ca4426 Add docker interfaces to firewalld docker zone
c30d55d067 vendor: update moby/ipvs v1.0.1
c7f0b0152e Fix NPE due to null value returned by ep.Iface()
1e02aae252 Fixes a panic in the DNS resolver
4dda50d226 Fixes moby/moby#40388
d846c2b1ab vendor: update vishvananda/netlink v1.1.0
a533fe7094 Use vendored ipvs package
76b5905cbe Macvlan: Separate empty parent and internal
d339e6d480 Don't disable socket activation when stopping docker service
c39ac9c05e Cleanup VFP during overlay network removal
41a91e9a5d fix InhibitIPv4 nil panic
7ca71f2c49 vendor godbus/dbus v5
add7253d68 Dockerfile: update to Go 1.13.8
129e28baa3 Fix gofmt in preparation of Go 1.13 update
847f469e76 regenerate protobufs with debian buster
6dc0d4ff60 Dockerfile: update to Golang 1.12.17
c18a3a075e Dockerfile: switch to debian "buster"
2a480d515e Bump the DNS library and revendor
9cd3fb6796 Re-vendor with newer vndr
c7f8bfa001 Fix internal ipvlan network to work in swarm
b0bce9159e Fix internal macvlan network to work in swarm
76bccc5ad4 Ipvlan internal network should not change gw
14fbe41991 Update design.md
9ced389e6e Improving load balancer performance
5cc6ffae0c Migrate from github.com/codegangsta/cli to github.com/urfave/cli
cc7847ddd2 Update vendored dependency hcsshim to v0.8.7
6492936018 Add Arko to maintainers
8899d916c0 Improving load balancer performance
c27bb1189d Added document describing libnetwork traffic flow.
fcb70a0e86 DOCKER-USER chain not created when IPTableEnable=false.
cd864b50a2 Fix panic in drivers/overlay/encryption.go
fdf46323f4 Update Golang 1.12.12 (CVE-2019-17596)
2c4a868f64 Added API to set ephemeral port allocator range.
f042605a42 Revert "Merge pull request #2339 from phyber/iptables-check"
0ca676db49 Revert "Always configure iptables forward policy"
34a636bf51 Fix flaky NetworkDB tests
87b082f365 Fix Error Check in NewNetwork
ff27bb0db4 Resolve "bridge fdb show" hang issue
edd44eede9 trigger new CI run
beb0c82841 Rerun CI
8c8a25d524 Support for com.docker.network.host_ipv4 driver label
0a99a5f152 adding the constants to the test file
4d1db69bcc weighted scheduling methods constants for ipvs Signed-off-by: Jakub Drahos <jack.drahos@gmail.com>
a1ab732711 return immediately on error
7e584c1d69 Configure iptables forward policy when ip forwarding is enabled
43a3151db2 Fixed getNetworkFromStore, which returned incorrect network information - notably, the 'resolver' field was empty. This fixes https://github.com/moby/moby/issues/38901
c4fcd7059c etchosts: additionally include the container's IPv6 address if available
226fde5cdd etchosts: allow adding multiple container ips
27fc6e9bae log the actual error when failing to add IPv6 route
049966bdc2 Shorten controller ID in exec-root to not hit UNIX_PATH_MAX
55adbae783 bump hashicorp/go-sockaddr v1.0.2
5ee62a9c70 bump hashicorp/go-multierror v1.0.0, add errwrap v1.0.0
f366d37c72 Updating IPAM config with results from HNS create network call. In windows HNS manages IPAM. If the user does not specify a subnet, HNS will choose one for them. However, in order for the IPAM to show up in the output of "docker inspect", we need to update the network IPAMv4Config field.
7ab62b791f Fix parseIP error when parseIP before get AddressFamily
4818e89751 Bump the GO Version to 1.12.8 which contains security fixes https://groups.google.com/forum/?utm_medium=email&utm_source=footer#!msg/golang-announce/65QixT3tcmg/DrFiG6vvCwAJ
f79533d720 Revert "Apply load balancer properly"
9a4025d79f Revert "Adjust LockOSThread"
402efabec5 Remove vlanLinkExists and dummyLinkExists since these are redundant
d22824dc11 Move dummyLinkExists into createDummyLink
5fa03a4a8e Dockerfile: use GO_VERSION build-arg for overriding Go version
66a82d7268 Log when endpoint joins internal macvlan network
ddd22a8198 Support dockerd and system restarts for ipvlan and macvlan networks
12a182e937 Ipvlan network handles netlabel.Internal wrong
d132acb485 Fix hardcoded AF_INET for IPv6 address handling
afcb9fb299 Allow network with --config-from to be --internal
ecc7bd0540 vendor: update netns to 7109fa855
e5353649f6 Macvlan network handles netlabel.Internal wrong
3eeda3d91c Dockerfile: Update to Go 1.12.6, matching moby/moby
84414583f0 gofmt: Fix formatting warnings
746e680871 vet: Fix format string warnings
0275b007c6 vet: Fix composite literal uses unkeyed fields warnings
e2b2318e14 Macvlan internal network shouldln't change gw
75bc82fe5c bridge: add riscv64 build tags
1f1d9898c9 road map loss tracing, just keep use 'Design' describe the 'Future'
c5c8653912 Update sctp package
1425fd4fcc controller.loadIPAMDriver: Unwrap error type returned by PluginGetter
e9e18d993c bump github.com/vishvananda/netns 13995c7128ccc8e51e9a6bd2b551020a27180abd
d152888722 Bump vishvananda/netlink to 1.0.0
0fce3b3653 Maintainers update
313d2b8a74 Make DNS records and queries case-insensitive
599e037a24 remove gosimple - package is gone and it's not important
c575631528 resolvconf: use /run/systemd/resolve/resolv.conf if systemd-resolved manages DNS
e9bd147bb7 Add Delete endpoint for plugin in test
cc38e3a35c Fix TestValidRemoteDriver GetCapabilities errors
6038ef390d bridge: Fix hwaddr set race between us and udev
ee574c1b7d Correctly clean up --config-only networks
a04a30717e Forcing a nil IP specified in PortBindings to IPv4zero (0.0.0.0).
74013a3899 add check on node LB in support.sh
301a7724fb Move hasIPTablesEnabled check into firewall_linux.go
b4d0319424 controller: Check if IPTables is enabled for arrangeUserFilterRule
1909ecb27a Pick a random host port if the user does not specify a host port.
6b5dc55e93 Use fewer modprobes
6ee0b5fcd8 update docker/docker and dependencies
0b40402976 Reformat vendor.conf for readability, pin to git-sha's
f126923aeb re-vendor with current version of LK4D4/vndr
5c6423fb29 Adding error log if peerAdd fails
94ab7b2df6 Adding synchronization to endpoint addition/deletion to prevent network connectivity issue
5ae7f4daf7 Use errors.Wrap to preserve original error
efeae5e7ee [ipvs] Add SetConfig test with timeout=0
8e650a9685 [ipvs] Add tests for get/set timeout
7374284841 [ipvs] Add support for timeout configuration (Get/SetConfig)
068ca7d046 Revert "debian has iptables-legacy and iptables-nft now"
cfde9c717f systemd: fix typo in TasksMax comment
e744b62f49 Update setup_ip_forwarding.go
23c763ef1c systemd: set --containerd socket patch to prevent race-condition
7ca0bc66d3 Cleanup the cluster provider when the agent is closed
916927d970 Bump Go to 1.10.7
d7f397c236 Touch-up error-message and godoc for ConfigVXLANUDPPort
151f42aeaa Fix possible nil pointer exception
d021af7d2d Start docker.service after containerd.service
d418337502 Fix gosimple
10027e8c01 Allow bridge net driver to skip IPv4 configuration of bridge interface
ef2741452c Removed roadmap
33d47f95e8 Build with latest docker stable engine
5338928eb8 account for removal of configs.HookState
bb3ae82008 vndr runc 96ec217
a937bc3825 Add docker.socket requirement for docker.service
6821d80881 Add socket activation for RHEL based distributions
03b2393a80 Improve error if auto-selecting IP-range failed.
38c8a3f84d Use sync.RWMutex for VXLANUDPPort
07c9fef311 Add the docker.socket back in
56ca280b27 VXLAN port configuration - late review comments update
d635844ed7 Do not add IP to Name records for aliases
077ccabc45 VXLAN UDP Port configuration support
387aed91bf Update golint tool
7adcd856fe debian has iptables-legacy and iptables-nft now
1caeac8b64 clarifications and typo fixes for the design documentation
6dd3f45248 Handle NXDOMAIN, REFUSED and log errors
a72bff0da3 Remove if/else and redundant brackets in resolver
013ca3bdf8 Make DSR an overlay-specific driver "option"
9a2464f436 Set east-west load balancing to use direct routing
0922883b7e Add a `DstStats` type to track Destination (real server) stats
e427c4ee2e Add `Stats` to the `Destination`
0fa3c8c277 Restore `Type=notify` in Systemd unit
4fd54c2aea Do not fail with an empty transparent IPv4 address
619e3d6706 typo fix about mismatch
b19e8d3319 Remove Environment, not needed anymore
08796e04ea Removing experimental driver interface
f7b7e74624 Moving IPVLAN driver out of experimental
212521b1e9 Use image artifacts as daemon and dependencies
14103caff2 systemd/docker.service: fix PATH
ea996b88c1 Add `/usr/sbin` to our path variable for systemd
ce5bc0079b allow propagating custom exec-root (e.g. "/run/docker") to libnetwork-setkey
55b80035ed Don't build portallocator on Windows
40b6ebfe75 Add init_windows.go for compilation
44094fae9f Remove unused syndtr/gocapability from vendor.conf
9ca55c7a60 Bump libkv to 458977154600b9f23984d9f4b82e79570b5ae12b
65860893bf Fix typo: assigment -> assignment
a906968a3f Bump Microsoft/go-winio to v0.4.11
c15a478047 Bump Microsoft/hcsshim to v0.7.3
d642cfdeb6 Increase max concurrent requests for DNS from 100 to 1000
03ba96c5cf Rolling back the port configs if failed to programIngress()
09e8b411dc Remove offline installer to install shim-process
1adcfa9aa1 fix error when make lint
36375881f3 Fix some typos
ce46100a27 doc: fix typo
cb95442fc7 systemd: set start burst limits
e7ad8e2b28 systemd: add support for reloading daemon configuration through systemd
f30757f439 systemd: set systemd KillMode
26eddc16a8 systemd: add "Delegate=yes" to docker's service file
7daf2db62a systemd: don't limit tasks
80039b4699 systemd: set Limit* to infinity
ef9ee10914 systemd: no limit on core size
53343f1bf3 added RestartSec
0c8e758012 Add post-stop
72eed906b8 bridge: fix error handling for stale default gateways
99c4c6d5fc ipvs support rs connection information
e56475aa14 Set containerd to be a systemd bind for docker
814f6c1f4b Add getter function for Default Address Pools
a478edc819 Added support for Swarm Service Driller (ssd)
52e85b4b9a Global Default Address Pool support
cdb1e7033d Some changes to get this working on CentOS 7
e086064b2c Revive pre / post steps, update offline location
a5c809e809 Round out systemd for RPM packaging
6cd66eaa2d Add systemd files, add containerd-proxy config
17966c940a Move SSD image to docker
05c05ea5e9 Add NetworkDB docs
f9442ee314 Apply load balancer properly
94af1e5af2 Adjust LockOSThread
72905ebb13 Dockerfile: Install a fixed version of gogoprotobuf
5041b74451 Give LB sandboxes predictable names
55ad3ef1a4 Fix handling of the resolv.conf
204ce3e31d Create internal directory
e88eed1d65 Add required imports to example code in README.md
012fcea177 Add support for Internal and Private network types on windows
6defa7c807 Make protobuf check silent
a06f1b2c4e Spelling fixes
b9223019c2 support.sh: also inspect stopped containers
4e6580c4c1 Refactor locking for join/leave to avoid race
56c4a6dd3f Makefile: Add check for out of date protocol buffer code
2b602bf3d0 Makefile: Add protobuf-local target, runnable within build container
3bebfbc34e Makefile: Document and organize into sections
348ed0a1a8 circleci: Rename 'lint' to 'check' to match build target
5fdfa8c52c Cleanup interfaces properly when vxlan plumbling fails
c699a1215e Makefile: Run containers with --init for proper signal handling
9da8e04c70 Updated handling of disable_ipv6 file
06d471d186 Migrate to gotest.tools :)
6c0f597a82 Remove unused deps from vendor.conf
ffe33f932e Create tag for master code
06922d2d81 Use fmt precision to limit string length
5ef4c59574 Fix error handling about bridgeSetup
1383aadf59 ipam: Test rejection of overlapping pool requests
6fd25eea33 ipam, types: Expand documentation
4cbba0da48 CircleCI use latest image
55e4cc7262 Optimize networkDB queue
b09cb39fa5 Enhance testing infra
9295e124bb Update stretchr/testify to v1.2.2
341845b5f2 ndots: produce error on negative numbers
b306706062 improve error message for invalid ndots number
7fc1795cdf Allows to set generic knobs on the Sandbox
6e260332e8 do not ignore user-provided "ndots:0" option
6e6ac3d2ac Remove redundant and faulty assert messages
ac0aa6485b Adjust warnings for transient LB endpoint conds
0b14b45f0c Prevent race between add-binding and net-delete
ea2fa20859 Add endpoint load-balancing mode
85a3483b4b Refactor [add|rm]LBBackend() to use lb struct
78b684a24a Add ability to alias any interface in a sanbox
f2c6009583 Add SrcName() method to return interface name
31d3de0994 Fix error handling in createLoadBalncerSandbox()
1449e88f7a Avoid default gateway collisions
04bfc61497 Add option processing to network.Delete()
1abac50c8d Generate LB sandbox/endpoint names in one place
5525c22635 Fix unknow driver test error
fe9a5a225d Fix net driver response loss on createEndpoint
f04280986e Reduce libcontainer dep
791700aed3 Use new plugin interfaces provided by plugin pkg
e07681c8ca Bump docker commit
62ebaeac7a Added back dockerignore
96c7cba64c networkdb, drivers: Regenerate protocol buffers
22a24df515 Makefile, Dockerfile: Add support for regenerating protocol buffers
500d9f4515 Adjust corner case for reconnect logic
4f3fb7ee6a Add retry to cluster-peers
705bf07f05 vendor.conf: Update vendored components to match moby
9b114971e5 controller: Unwrap error type returned by PluginGetter
5de876c7ae Add auto update to support.sh
9dbf55097a Create support as a container
8f1fca3e66 Multistage for build
24bdb26483 Dockerfile.build: Bump Go to 1.10.2
f5fa40f9aa Fixing the unit test for overlapping subnet
48196df4a2 Further makefile cleanup
fbf02c3794 Migration from CircleCI1.0 to CircleCI2.0
bef873c9df support.sh: add host links
e31e906e4e Add pool reuse test to unit tests
cc8b2cac28 Allocate subnets in order rather than restarting
f0c86fb56e Fix deadlock introduced in b64997ea
3d2b2f1c7e Possible race on ingress programming
01e6a24545 Update miekg/dns to v1.0.7
c4d507b566 Remove non-service cluster info on sbLeave
b0b5e14b77 test: update tests to use sub-benchmarks
e3c212c224 types: Handle IPv6 literals correctly in port bindings
328948d35a Fix type in error message
1784a46e64 Enable network-db test image creation
f6d9d22e6f test: fix ineffectual assignments
f9f3b1bdeb typo: fix misspells in code and comments
67dbb04852 Improve interface order
e7fcca2f9f Makefile: build image is a prerequisite of the shell target
35f505210b types/types: Correct docstring typo for (PortBinding)FromString
f6ddf88cec types/types_test: Rename test to match function
ebf0054912 ipam/allocator: Fix typos in error message
48eba3c2c9 Maintainers update
35a81f8173 ipam/allocator_test: Test pool double-release behavior
b4c09ceae2 Makefile: Add shell target
2f2811dd14 Adding logs for ipam state
dfa303e568 fixing test cases
9fe5cc10b2 Add check for overlapping subnets
5eb96dfbba fix markdown style in doc
c97bb41620 Remove race in encrypted overlay key update
40b55d2336 Remove race condition from ovnmanager
b64997ea82 Fix race conditions in overlay network driver
3df00a6c64 Add wait time into xtables lock warning
606e28015a Add test for parallel request pool
16e077b884 Filter xtable wait messages when using firewalld
0f6cb61f2d Switch from x/net/context -> context
a6ec9e673b Bump golang.org/x/net
96472cdaea Adding a recovery mechanism for a split gossip cluster
bc465326fe networkdb: Use write lock in handleNodeEvent
bab08251c0 Allow for larger preset property values, do not override
67ecbba4ff bridge: fix lint issue
6b782b4b82 Modify awk to use cut in check_ip_overlap
74d7da907a Vendor go-sockaddr
c67ee787da Adding goreport card
20faf0adf0 Retry other external DNS servers on ServFail
9b7922ff6e Fix README flag and expose orphan network peers
4ce05845db bridge: fix handling errors during setupIPChains()
6362d28969 Make go-tools happy
40923e7353 Use ordered array instead of heap for sb.endpoints
ed6d70c0c1 Improve scalabiltiy of bridge network isolation rules
7d7412f957 Gracefully remove LB endpoints from services
a360943a48 Fix golang.org/x/sync canonical import path
4c8d751400 IPAM tests
b8c14de74a Vendor golang/sync
a0085a47fd IPAM and Bitseq test cases
fe629b6eba Fixing concurrent map access
6a8a15dd9d Fixing Duplicate IP issue in IPAM library
9ba57c93b8 Add warning message for the failure of deleting link device
cf89f97a14 Add check for IP overlap in support.sh
c8a3950d8b Delete stale HNS endpoints when creating a network
d84f182717 Prevent ingress deletion when endpoint count == 1
1f55734d4c Fix crash if the len was < maxSetStringLen
83d1ce9fb5 fix for #1333, calling LinkDel to delete link device when the err of LinkByName is NULL
85791fb3fd Limit max length transient log
d1e6cfa6a1 Add an explicit flag to join network in diagnostic
4484ea17c3 Allow user to specify default address pools for docker networks This is new feature that allows user to specify which subnetwork Docker contrainer should choose from when it creates bridge network.
d5aab13c38 Various support script improvements
ba5b3ee8d9 Bump BurntSushi/toml for MIT License
71c0bc0b89 Revendor dependencies
2120ed2363 Support SCTP port mapping
f5c62864e9 Make ssd portable and usuable outside the default image. Add error check when network on a particular node has no services
a16d469867 Import the ssd tool in libnetwork
bbbfa21a94 libnetwork Windows driver support for outboundnat policy via generic options
5a658d4cc1 Fix user specified ndots option
2f6921cbba Diagnostic client
a59ecd9537 Change diagnose module name to diagnostic
b6f640a9ff Bump Go to 1.9.3
64da6b8889 Avoid delay on node rejoin, avoid useless witness
5f773281d2 Revendor memberlist
d5fef4ca1c Reload DOCKER-USER chain on frewalld reload.
e975f3caa0 Fix watchMiss thread context
5ab37a55a1 Delete service info from cluster when service is disabled
88df74659a Add unit tests for MX and A DNS queries
dd47466a4d Remove watchMiss for swarm mode
d28d679080 Enable IPV6 config on Sandbaox creation on live-restore
fe032eeb07 change base image version in Dockerfile.build to enable unit test in arm64 for multi-arch image issue
6a4c8d0ac9 Handle DNS querries of type MX
b190ee3ccf Cleanup node management logic
66b65b471a VETH interface cleanup when dockerD suddenly crashes
8c21351e3e Changed the name of the server pointer
1a2efea39e Call the Shutdown on the server
f7023e11c8 Remove useless error log
5b89af1bba Vendor latest netlink library
6736b223ec Set socket timeout on netlink sockets
3e544bc500 Avoid extra notification on node leave
b578cdce86 Diagnose framework for networkDB
4aab854d6d Addressing feedback from PR https://github.com/docker/libnetwork/pull/2011
f0fcb0bbe6 Fixed race on quick node fail/join
5a5b7fee33 Added a new network creation driver option (disable_gatewaydns) for the Windows driver
2a219a04cc Fix for docker intercepting DNS requests on ICS network
4037132b33 Fix listen port for test infra
ecb4442ab3 Fixing circleci. Signed-off-by: Pradip Dhara <pradipd@microsoft.com>
92f9f38103 Use containerId instead of sandboxid for windows
0d1f9c4c97 Move load balancer sandbox creation/deletion into libnetwork.
12891fe687 Support override of binary name
2c8670b496 endpoint_cnt store updates should not create an object
f864421ead bump docker/docker to master and unfork dependencies
276a452f17 Remove Solaris support
1b49b17ef5 wait for iptables lock in support script
e4f3bcb696 Add test for dns options
7fbaf6de2c Add test to confirm garbage collection
78627b6f14 Fix ndots configuration
aa81c6d265 Add test for cleanupServiceDiscovery
1732ab426d Handle cleanup DNS for attachable container
da1e931693 Explicitly pass the sha to codecov
d64c34e4a5 Bump Go to 1.8.4
1dcffbeb3f Disable hostname lookup on chain exists check
01688ba253 Fix typo in overlay log message
1fe48e8608 Fix IPMask marshalling
3d44975995 Adding a unit case to verify rollover
955b8b4593 Changing containerID to sandboxID based off feedback/conversation with Madhu.
b0888450a9 Enable Hot Add/Remove of Network Endpoints for Windows
ad577a25fe Changed ipMask to string
181115b350 Addressing code review comments
2bad0fbedf log for miss notification
3e7b6c9cb0 flush peerdb entries on network delete
711d033757 Handle IP reuse in overlay
b92d91d6a1 Fix comparison against wrong constant
813a24a51c Minor unit test change
a52bcf48f2 Serializing bitseq alloc
955c532735 Repair (*Broadcaster).run goroutine leak
8c31217a44 NetworkDB create NodeID for cluster nodes
a4e64d05c1 Avoid alignment of reapNetwork and tableEntries
8b400916ce Ignore failure to save hns endpoint to store
053a534ab1 Changed ReapTable logic
2d2a2bc568 Fix reapTime logic in NetworkDB
729d45379f Fix lint issues
7d466c6600 Fix concurrent CreateNetwork in bridge driver
a3c3a596dd PR feedback
495252723d Fixing a race condition that caused a Panic when deleting overlay network then quickly leaving swarm. This issue was uncovered in TestOverlayAttachableReleaseResourcesOnFailure.
89aeeb294c support flush services API
cc08cacfab Vendoring microsoft/hcsshim v0.6.3
b76166c110 Increase code coverage for set_matrix
43360c627f Enabling ILB/ELB on windows using per-node, per-network LB endpoint.
0482b29df1 Enable codeconv reporting
0fc6ce881f fix log
10c88fc3ab Ignore "no such file" error when docker cannot find `resolv.conf`
5ab9b5e6a9 Docker deamon doesn't work with --fixed-cidr on windows
663672b8c7 Lock goroutine to OS thread while changing NS
a6073649e9 Add a minimum value for the CP MTU
a15113e012 Remove useless flags on operations
998a93783e Fix test using com.docker.network.mtu
b7c258cf07 PeerDbDelete was passing the wrong field
0651183f84 gofmt and lint changes.
404a9ffa5a For RS3, tasks connected to a swarm network will have 1 endpoint .
3c1ebfaef9 Add service virtual IP to sandbox's loopback address
710e0664c4 Update logrus to v1.0.1
2e38c53def PeerInit for the sandbox init
5c52ff49e0 Funnel peerAdd and peerDelete in a channel
b8d514432d Revert "Avoid peerUpdate logic in swarm mode"
19fd1c37fb Fixes bug which makes restoring endpoint mess
b65a4ee10e Avoid peerUpdate logic in swarm mode
d261ccb89f Revert "Funnel peerAdd and peerDelete in a channel"
7bd4fc1de4 Improve debugging for resolver
3252a10845 Revert "Fixes bug that mistook gw6 for gw."
d6440c9139 optimize the rebroadcast for failure case
a3ecb8902a fix join/leave
e77c245e45 2x faster to converge
fee89e0490 Funnel peerAdd and peerDelete in a channel
115519e0b3 Fixes bug that mistook gw6 for gw.
d51ed8a97b Remove the error message on mac delete failure..
ecb3daa49e Fix warn log
e5bba51d4f Revert "use builtin package context rather than vendored one"
585964bf32 NetworkDB testing infra
60b5add4af NetworkDB allow setting PacketSize
1c67f2592b Fix the Gateway type in remote network plugin spec
daba67d67b Avoid flakiness of TestLinkContainers
5c01dcd401 iptables: jump to DOCKER-USER first
051a0d5ce9 NetworkDB incorrect number of entries in networkNodes
738fc5201b Fix debug statement in startResolver
a50e885121 When the gc_thresh3 value is reached kenel might remove existing neighbor entries. On an l3 miss try to reprogram the neighbor entry if the peer is valid. Its a best effort attempt because if the arp table is still at gc_thresh3 value, addition will fail.
680832b7b0 use builtin package context rather than vendored one
3dd1fb1217 Make node join event logging less noisy
746070c39a Adding a unit test to catch offset scenarios
b5d09df0c3 dnet: remove unused method for dnetConnection struct
af5e370627 Add gosimple check
6bd57f977d Fix go generate for protobuf
f969f26966 Service discovery race on serviceBindings delete. Bug on IP reuse (#1808)
c48c1a3748 Flavio as Libnetwork maintainer
2d278dece0 Fixes docker daemon not restarting after endpoint leak on windows with transaprent network
ba788519d6 Fix handleEPTable log
65860255c6 Fixed code issues
a018694f40 Added more code checks
d69db01eb8 Bump docker base image to 1.8.3
c0f59f9643 IPVS fix
39d2204896 Service discovery logic rework
7ae2b025be Fixing issue with bit allocation byteoffset calculation
2111d4cafb Create SetMatrix data structure
233aa636d7 Fix OS tweaks call
b8bcf7005c Use internal systemd scripts for DEB packaging
509b86caa2 Use internal systemd scripts for RPM packaging
bb68bc5ae2 Add initial systemd scripts
acf9c53292 Vendoring netlink library
d5c69190d1 Fix leak of watchMiss goroutine
4abd54d419 Set kernel specific config on linux
e49955988a Remove dynamic mac entry from fdb on endpoint deletion
ca9a768d80 Handle single manager reload by having workers reconnect
6d768ef73c Fix leak of handleTableEvents
26fb58d3a8 Removing the override for ipamdriver for local scope networks
ae9f1f9f04 Removed printfs
34ce7c7e6a Revert "Move Cluster provider back to Moby"
0f17689abf [Bug]Fix race between sandbox.delete() and SetKey()
79a76217db fix review comments
e777305c7f Moby vendoring
627da8bf04 Moved the cluster provider to Moby
9376cd3c63 Fix typos and review comments
81296dda15 Update GetService(*Service) api. Update UT with new apis and remove dependency from ipvsadm
f585f33042 Node failure timeout fix
000775b918 Initial Checkin GetServices and GetDestinations
c7d77e9e89 Simplify network scope setting logic
6d7e9ea6b4 Changes to support ICS network on windows
08d8cfa00f Restore isAgent || n.dynamic check
bf98dc6a40 Reject scope settings in config-only network
3fdce29e1d Do not accept swarm scope network creation if swarm is off
f566d6384e Added persistence to windows driver so that cleanup happens properly
f2db3987e1 Remove unused package in circle.yml
c348cebe99 Add a filter chain to allow persistent rules
f626582c16 Do not reset network scope during store read
047f7c0793 Add support for FreeBSD in portallocator
ece544627b Adding manager pkg for swarm visible network drivers
254d082cc3 Add ConnectivityScope capability for network drivers along with scope network option
06c3489bb8 retry once on a bulk sync failure
5e8c5d68fb Add network inspect -v to the support script
25082206df Support configuration networks
cc0b7e6aad all: Avoid trivial uses of Sprintf
da9ac65ea6 Remove explicit set of memberlist protocol
a2bf0b35d6 Fix for swarm/libnetwork init race condition
552c16dc92 Fix for remote addr parsing
3d7bc23901 Change GetRemoteAddr to return all managers
541cafdb30 Vendoring memberlist tag 0.1.0
95f6336157 Clarify endpoint definition in documentation.
1323730eca On send node envents, notify only if there are peers
102f9d230d Avoid nDB stale entries because of intermittent nw issues.
46ebc9613e agentSetup to first check if clusterProvider is nil
b4e5078bd5 Make sure sbJoin programming rollback happens on each error
e24adf94a1 Change wording for Endpoint description
a0e0231909 Add the data-path-addr
23b43b1557 Remove gw endpoint on gw nw join failure
421c089e98 ingress sandbox hosts and resolve.conf files location didn't respect the custom daemon root directory
3684df4a66 Flush container flows in conntrack (Bug #8795)
6f062c298a Vendoring the netlink changes
cddead94d2 Do not manage ipv6 for host mode containers
e5c1a4cabd Remove firewalld running log
18098ab1c8 Add AgentStopWait method
79bf46fd79 improve error for getStore()
b04b258243 Do not clear ingress network in libnetwork
69ad7ef244 control-plane hardning: cleanup local state on peer leaving a network
34f4304a71 Sandbox.SetKey() should not reset the osl sandbox on failure
6e31451d16 print name and id infomation when has active endpoints
a143df7d99 revendor x/net and gogo/protobuf to match docker/docker
869e907fcf Re-run vndr with latest version
9155e456b6 fix some misspells in api/api_test.go
9dc694de18 Always program the kernel state if triggered by l2 or l3 miss
ed935930b5 Fix rename for containers on swarm network
83837617b4 Handle kernel's l2miss notification in the overlay driver
495f534317 Fix typo
9c3c86a931 Do not invalidate table event messages
4b306ee83d Fix panic in networkdb test code
dce60f5afb Remove enpoint state from cluster on join failure
b9d820faf4 Fix misspelling fmt verb in dnet
9272c89bb7 Clear encryption states when joining cluster
bfab379411 swarm mode network inspect should provide cluser-wide task details
54d6daf95e Expose ingress network option
fc2414f988 Ensure iptables initialization only happens once
442640a8b8 Update maintainers file
d718efd92f Add anonymous container alias to service record on attachable network
c679b071f0 fix endpoint error
200410dd18 Lock linux namespace structure when adding neighbors
d07e1a02a4 Support for com.docker.network.bridge.container_interface_prefix label Signed-off-by: Wolfgang Nagele <mail@wnagele.com>
eb8c603046 Add logs around service records modifications
138c4b2a77 Serialize non-atomic jump rule programming in bridge
c00467aaac Removed unused integration test code
91f5b1669e Once a network is encrypted, do not accept clear packets from it
2243480e99 Fix typo in remote.md
8059597722 Fix typo in IPAM doc
4a04857a68 Fix bug in datapath key rotation in 1-1 NAT case
4208a2f75a Update the local VTEP in peerdb on receiving self discovery
66895dfdfc Clearing up windows overlay driver to just work in swarm mode
e94edd6d6b Ignore previous serf user events to avoid wrong fdb programming
dd10eb794c Do not hold the peer map lock during the peerDBNetworkWalk
242af665c1 handle err and fix t.Skip() in ipvs/ipvs_test.go
adb8720634 Report failure in subscribing to neighbor notifications
bee7d9219f Properly construct CIDR in policy selector
6a2d86f0a9 Do not leak ipvs netlink socket
2a9be357f9 Trust the endpoint state if we have a valid sandbox-id
71fff44c0b replace individual endpoint_cnt read from store with 1 bulk read
8e2ca0471c Revert "validate network and endpoint name more strictly"
4d1334c9ee Revert "Allow spaces in network names"
bb560a1f44 Generating node discovery events to the drivers from networkdb
a02b4ef4a4 Fix service logs
4e69afc4f3 Make virtual service programming more robust
d565d5f2d2 Gracefully handle redundant ipvs service create failures
53c84ac767 Fix GetNameServerAsCIDR
5713ca4694 Remove stale files
66197b7787 Fix incorrect error log message
6f507f53e3 Fix the data model inconsistency that breaks daemon upgrade to 1.14-dev
d3e7ca726d proxy: clean up code (addendum to #1598)
bfd1683e74 Use vndr for managing libnetwork dependencies
6ea22f2f50 carry docker/docker #29564
3178e13246 Godep update for docker plugingetter pkg
d94be29ec5 return an error on overlay subnet is overlapped with hosts
c6dfc70b33 Make use of GetAllManagedPluginsForCap to avoid loading v1-plugins
69cf4bc83e Updating Godeps to pull in plugingetter dependancy
32e713eca6 fix json
cdd56ba07e Prioritize nw endpoint which can provide both v4 and v6 connectivity
16af9918c0 ResolveName should return copy of IPs
11be70cf5e docs/remote.md: Remove unnecessary backquote
c702e19e44 fix typos
bc85efdb4f fix nits in comments
7c85ed3eac make network connect error message readable
9fb8d5696e proxy: fix an issue about half-closing net.TCPConn after io.Copy()
bf832ec2a7 Add embedded DNS server support for host loopback resolver
879d94edbd Defer PTR queries to external servers based on A/AAAA response
92efad001c drvregistry to allow overriding plugin
1b28c5e01d Internal interface to differentiate built-in drivers from remote
bc45d84e8d Handle the case of registering active plugins during remote init
721518279a Handling the new experimental daemon flag
6c3fc691e7 Fix fqdn hostnames not added to /etc/hosts
3776604aab Correct regexp to match v6 addresses with zone ID
0c2b4b267c Check for node's presence in networkDB's node map before accessing.
c80348596b fix review comments
bb8b9a6040 networkdb: Properly format memberlist logs
fac86cf69a Add missing locks in agent and service code
46b59b7964 Fix incorrect debug message
b495131861 Fix a bug in idm.GetIDInRange()
f89d6b0073 Fixed misspelling
5217602776 Create vxlan-id space from 0 instead of starting from 1
f195563a4e Control IPv6 on container's interface
e2f0070492 Fix xtables_lock message probe
23ac56fdd0 Remove unnecessary string formats
94845a80f7 Serialize embedded resolver Start and Stop
0f745fbb23 Refactoring logrus import and formatting Fix import name to use original project name 'logrus' instead of 'log' Removing `f` from `logrus.Debugf` when formatting string is not present.
69c2f8d6db Fix bug in link-local unmarshalling
684ea92515 Add a ICMP reply rule for service VIP
b6540296b0 Revert "Enable ping for service vip address"
1770ced6c0 Fix bug in needDefaultGW()
27500b1e35 Separate service LB & SD from network plumbing
85b22fabbe Allow spaces in network names
763f0fa1da Set a timeout on the netlink handle sockets
c3e00a2611 Update netlink @17ea11b
d07d6814f3 Add a nil check for sandbox.osSbox
6afe20096d Fix bug in DeleteNeighbor
5b4059e087 Fix new golint reported errors
236dc57a9e fix unsafe acces on arm
1066f9ed5c IDM need not be bound by default vxlan-id start index
cbe520b62c Add GetIDInRange API in idm package
1685e48b03 Increase timeout for local store client
83dd2c193a Respect auto allocation for --ipv6
e755b439fa Update libkv @1d84310
db69cfc151 Support attachable in network.
261fedba8c Default GW support for overlay networks
7f473c779a Refactoring logrus import and formatting This fix tries to fix logrus formatting by removing `f` from `logrus.[Error|Warn|Debug|Fatal|Panic|Info]f` when formatting string is not present. Also fix import name to use original project name 'logrus' instead of 'log'
0d32a1924e Check subnet overlap when programming of sandbox interface
0b4f68390d remove unused mConfig
99f84ff5a7 update reapNode interval
4ca7b01a5c Register remote network driver on Windows.
9f2ecdcd9d If enabling ip forwarding set the default forward policy to drop
3e11ddc4d9 Change vxlan-id start-idx to 4096
d1b012d97a Windows overlay driver support
93914ef0f6 Vendoring hcsshim to pick overlay changes
c52c8ca6eb Add NetworkDB API to fetch the per network peer (gossip cluster) list
3be080496d Fixing incorrect resovler error message shown on daemon startup
efc25da851 Allow concurrent calls to agentClose
807f14746d Modify the serial number from 1 to 9
a1ed5b7be2 fix nits in comments and log
4218a0a650 Respect icc option for internal networks
97915bde44 Fix some typos
a21d577b8b Block non exposed port traffic on ingress nw interfaces
ddc74ffced Enable ping for service vip address
a7e1718800 Add sandbox API for task insertion to service LB and service discovery
53bf987984 Fix issue for `--fixed-cidr` when bridge has multiple addresses
b859ce411b Do not update hosts file with internal networks endpoint IP
e98b152bac Reap failed nodes after 24 hours
0a2537eea3 Use monotonic clock for reaping networkDB entries
6293a1b8ca Updated vagrant box, ubuntu/vivid64 was remove from atlas.hasicorp.com
ef50edefde overlay driver support for Solaris Signed-off-by: Puneet Pruthi <puneetpruthi@gmail.com>
65356ed861 Do not use logrus for proxy
eae800acf0 Fix map access race in populatedEndpoints
761722395d validate network and endpoint name more strictly
3504ed88d9 Update loadDriver to use pluginv2.
a48b541da3 libnetwork support for Solaris Signed-off-by: Puneet Pruthi <puneetpruthi@gmail.com>
e18c1ffd0c Avoid controller/service lock AB/BA situation
8e37c3160a add Created to NetworkInfo
433e3dfe98 Remove driver endpoints on network deleting
795697d823 Check for presence before installing forward rules
2781cb0e1e Force go 1.7.1 in circle.yml to resolve failure to get golint
cff2573d1f Reset endpoint port info on connectivity revoke in bridge driver
c772d14e58 networkdb: fix race in deleteNetwork
a4f56880b2 Run API check to assert xfrm modules
7a51c79979 fix race in serializing sandbox to string
5c77ba43e2 Update plugingetter import path.
e2008b82e8 Handle containers with different network drivers
b48e25b44f Add support for NetworkAllocate and NetworkFree in remote driver
03088ace1b networkdb: fix race in access to nodes len
c7b9435004 Do not add names to ingress network
47759a5d4b WIP: Update golang version to 1.7.1
f649d5ae61 Do not hold ack channel in ack table after closing
ded6e1934a Clear ingress resources on graceful shutdown
003e04775b Make libnetwork understand pluginv2.
952520472f Godep changes.
22c322dded Avoid returning early on agent join failures
38338863dc bridge,portmapper: custom docker-proxy path
7b905d3c63 Purge stale nodes with same prefix and IP
d1f6eb1812 Allow the memberlist shutdown even if networkdb leave fails
bd7fc6431b Fix macvlan private mode argument vaildation
d6e596b3a0 Serialize overlay filter plumbing
a4d0e53f14 Fix test failures
b0a7084c05 Honor user provided listen address for gossip
3c9d05fba5 Delay port redirect until packet reaches container
2b0d5b1339 Check for ExecFunc failure
093a017f68 Use complete port configs when plumbing mark rules
8653b72786 Lock agent access in addDriverWatches
ce65a4cf2a Vendoring dependencies
7f43fd30f3 DNS support
5f5dad3c02 Recover from transient gossip failures
d4f3963a26 In overlay driver reset any state on setkey()
5b632d752c Make nodenames unique in Gossip cluster
e31db5d6af Name the ingress sandbox explicitly
989d9b2cc4 Check if IPv6 is enabled before restoring the network pools
c9bf3b594e Revert "Add sandbox API for task insertion to service LB and service discovery"
f43e4ec066 Fix bitseq.SetAnyInRange
c69d42d6b8 Update Godeps
ff59f1baab Serialize dynamic network creation
db9a7021ac Drop queries in root doamin when ndots is set
8d63e73522 Revert "add s390x arch build info at the netlink_deprecated_linux bridge driver"
8298e278be Add sandbox API for task insertion to service LB and service discovery
56175d6f97 add missed defer to unlock
ad10ae9b3b Move engine-api to docker/docker/api
68ed10ff07 Update Godeps
f5516d817d Add mflag package locally to libnetwork
56de900a7b Decrement epCnt only after all cleanup
2ba6c399ea Ensure purging neighbor cache for stale deletes
6bd15397b2 don't delete the bridge interface if it was not created by libnetwork
d46e5c83dd Remove pkg/tlsconfig dependency
6205a5d616 make sure the user-provided bridge interface is a bridge
7fac070519 uprev docker/docker/pkg/reexec for libnetwork Signed-off-by: Puneet Pruthi <puneetpruthi@gmail.com>
bace4fb6ff Cleanup on error in ProgramExternalConnectivity
bf7ef3fd7b Do not hold sandbox if not in distributed control
ddcc220eb7 Adjust WaitForDetachment to also accept networkID
92e20b70e6 Fix potential deadlock in getSvcRecords()
7912e19488 Fix CircleCI
b551a61694 Do not try LB populate on interface-less endpoint
416a730dad Allow reachability across services on different networks in the same host
9041996509 Nil check ingressSandbox before deleting
b29ba21551 Avoid double close of agentInitDone
02ef43380e Simple support script to gather libnetwork info
1f4c1cb75c Avoid k/v store endpoint update in swarm mode
547c342c1b Add network attachment methods to cluster provider
d39893a9a0 Updated godeps
ba8714e585 Propage the vxlan device creation error in driver to libnetwork
4f55b50f93 Cleanup service bindings when leaving cluster
8a1092fe78 Notify agentInitDone after joining the cluster
1b027335f1 Ensure add newly joined node to networknodes
2bead02c87 Ignore delete events for non-existent entries
4b80c3411d Cleanup ingress network and sandbox on leave
6e965c03ad Reset the encryption keys on swarm leave
6d877647e1 Add a narrower SNAT rule for LB egress
55564fda1d network: fix race in read access to map
149af45509 Relax SRV name validation and fix external SRV query handling
e28730d44b Fix a panic introduced by #1389
cd0b6bac4c For service name DNS resolution prioritize IP on user overlay network
2bab9b6bdb Cleanup networkdb state when the network is deleted locally
004e56a4d1 Fix spurious overlay errors
09da6a6f59 overlay: fix data race in map access
392b089170 networkdb: fix data races in map access
ab02b015ef Remove unused key handling functions
aced41a3d2 Make service LB work from self
d19e1f22cb Fix typo in error message
cd488c6d18 Do not add ingress loadbalancer on service tasks
bd5051931f Fix external DNS responses > 512 bytes getting dropped
b54a4b5936 Add container short-id as an alias for swarm mode tasks
cfd97fc7d2 Godep update for gogo/protobuf components
3f542419ac Check size of keys slice
82457d17b0 Make sure to not remove backends on stale notices
91ec1a2cf4 Ensure drivertable entries in joininfo is uptodate
4f8c645173 Allow reattempt of overlay network sbox join
1b899469a6 portmapper: touch iptables only for IPv4
d69747e19e fix typo in comments and log
7acedb94f3 Fix crash when remote plugin returns empty address string
83b0be7f1a Check for isAgent() outside the network lock to avoid deadlocks
849712f35d Better error handling in restoring sandbox states
8af5fdb9b1 Do not create network entry in networkdb for the local node based on table event from peer
bc6a60dae5 Fix bug in ipsec key rotation
8bc99ae906 Check for advertise IP when deriving ipsec nodes
147b646e79 On network creation, reset mangle rule
801bd7b3b2 Allow user to set the overlay network's mtu
e415b1f495 Do not use 4 byte ip addresses in encryption code
44fabf5343 Remove UDP connection cachig in embedded DNS server
b2603e895a Send truncated external responses to the client
902ead3109 Update service DB on deletion of containers in bridge networks
3c36b06cb3 Lock in isAgent() and inMaster()
b042dbe312 add s390x arch build info at the netlink_deprecated_linux bridge driver
df728f4e0c Remove commented code from libnetwork_test.go
47c071b654 Save the controller config on config reload
6368406c26 Adding Advertise-addr support
6aa25f33d4 Adjust container's veth MTU when encryption is on
ddff1b5a87 Use fnv1-a to construct the SPI
7301999c2a added locks for all other accesses to controller.svcRecords
1e0c61c3a2 added mutex on read from controller.svcRecords map
829a4ee4be Fix several typos on macvlan docs
253c103b8c Use aead for dataplane encryption
daf4c97f7a Actually retry LinkSetUp
744d5332bd ipvlan: remove endpoint from network on deleting endpoint
25f0573785 Make osl sandbox basepath configurable via execroot.
0b0678677f Update vishvananda/netlink to e73bad4
32e08e7700 Moving the UDS file out of /var/lib/docker and into /run/
4999c5707d Fix endpoint cnt decline overflow
804f93bdff Fix update endpoint cnt to store
46f525c7d6 Overlay driver to cleanup stale endpoints
2e88dfa406 Return proper error types on sandbox creation
d0192db0cd On agent init, re-join on existing cluster networks
f0292e04b8 Add Virtual-IP of an endpoint as a secondary IP
9d01c1fcd5 manage network dynamic flag appropriately under various scenarios
af3158ecdb networkdb: do nothing in bulkSync if nodes is empty
f2ae8467e3 Avoids panic when checking for conflicts against an uninitalized network
576267bfb9 Moving IPAM initalization out of drvRegistry into libnetwork core
5202f95604 Make the docker proxy a standalone binary not a re-exec
ccabedfbe3 Fix file descriptor leaks
dc4487dbb0 docs/ipam.md: spelling error
8936daab5e Retain deleted entries for longer time
2988086ab1 Do not remove service record while scaling down
de766cc7e6 ovmanager: Error out on vxlan id alloc failure
bc89397105 Index service on both id and portconfigs
3925ea0a2d Fix panic calling `ep` instead of `endpoint`
5146f05b33 Do not error on non discovery type messages in remote driver
d3b8412ac6 Update ovmanager to support maximum vni
91e8d5bfb9 Fix sanbox typo
fa68f9d017 Make sure route selected is direct Signed-off-by: Clint Armstrong <clint@clintarmstrong.net>
115cdb52b3 Remove Lock in datastore for global scope
64673bce0a Remove locator check on endpoint force removal
500a255181 Fixed missing v6 enable flag in macvlan doc
5f7577bbb4 fix typos
93cada0d94 make sure interface up successful
117131c41b Gracefully handle missing xfrm modules
b39f13f80e Update vishvananda/netlink 734d02c
165a1f6021 Added docs for macvlan driver
6538faa880 Do not bulk sync state which is getting deleted
d7d88ce37d Make getSvcRecords() more robust
ad35d257ff Match only locally destined requests for ingress
c963031a44 Bridge driver to detect and remove stale network
6034058dc3 Fix infinite loop in bulk sync
d5ce149555 Do not add loadbalancer to unpopulated sandboxes
48739b5868 Reduce overlay encryption log noise
ec17841ea4 Switch overlay encryption to use IPSec susbsystem keys
9328f1ea1e Refresh special drivers networks if present in store
acac7ee812 Add service alias support
e2b0934ac2 Delete endpoint from network map for macvlan driver upon endpoint deletion
f5f576ad34 Properly purge node networks when node goes away
5c5a43124a design.md: fixed anchor reference
929921a640 Add debugs for key change events in networkdb
1272f90eae Sequence non-persistent objects in cache
54f694c913 For cached connections ignore late replies after read timeout
8ee94f8349 Make sure sandbox GC is started after live-restore
2e9c30a4a1 Persist and restore overlay endpoints to handle daemon restart
41ca84c950 Populate nlHandle and use it on netns restore
8ca4ed0c68 IPvlan and macvlan driver to persist endpoints
c63b7b005f Bridge driver to persist endpoints
ae90761a21 Reserve addresses of existing local endpoints
055c5dd496 Add network restore to support docker live restore container
fe56a8d3dc Moving MacVlan driver out of experimental
8245296aa5 Make sure node map is valid before accessing it
d2cc81c023 Make sure to close nshandle in ipvs.New
297a7e9039 Change port names in agent proto
3859a7e394 Make sure to notify watchers on node going away
c79a49235d Purge vniTbl after cleaning up network sandbox
78a3cf5f6c Do not rebroacast bulk sync updates
04f3247c3d Add support for ingress LB in localhost
98b571a524 Make sure broadcast queue is valid broadcasting
64d8c5f87f Resolve host-name before trying the interface-name in agent bind
96b424b9b8 Process only misses on IP belonging to network
a70909792a Reserve IPAM pools before resource cleanup
8ded762a0b Update key handling logic to process keyring with 3 keys
fd72f6e318 Do not wait on ack in bulksync response
8d1adbd665 Properly cleanup ingress sandbox in controller
0e284be943 Handle the case of reseting the Cluster Provider for leave cases
1dbff60121 Do not panic if failed to get ipvs family
0deffeac4b Cleanup any stale overlay bridge with overlapping subnet in hostMode
96cc604cf1 Setup external DNS servers after daemon restart with live-restore
cd1362e370 Revert "Handle the case of reseting the Cluster Provider for leave caes"
f65ae3c742 Fix panic if miss notification sock is nil
74fdcb1f4b Handle the case of reseting the Cluster Provider for leave caes
10fcb9dd2a Add all backend ip into service records if no vip
a95260646a Allow maximum possible VNI
93b5073a7d Overlay driver to support network layer encryption
6d3fa9e0f2 Migrate libnetwork to use netlink.Handle
da61c5d37f Allow to program Endpoint link-local addresses
a2cc703dae Overlay driver's NetworkAllocate method must honor driver options
26ae9499f0 Set controller ingress state only if ingress
4d1a5ce968 Fix a lb rule race in loadbalancer
dea36fd997 Move ingress port forwarding rules to a chain
fdc385573c Do not plumb local peers as remote peers
3eff69860d Reset agentInitDone channel when leaving a cluster
6e47b07b39 Cleanup vxlan interfaces inside namespace
a63fca344f Add agent initialization wait method in controller
f98cfa5597 Fix a missing unlock on ingress sandbox failure
9054ac2b48 Provide a way for libnetwork to make use of Agent mode functionalities
3b3d49cc4c Do not attempt LB plumbing until sandbox is ready
c4d5bbad7a Use controller methods for handling the encyrption keys from agent instead of the Provider interface methods.
0f89c9b7bc Add ingress load balancer
b2b87577d4 Add support for encrypting gossip traffic
9f415d0cdb use grep to find a/an misuse
774399fd66 Fix couple of panics in networkdb
68de30a57c Update address-space in ipam-info for remote driver
1607b4be6f Update netlink to 7995ff5
de588f950d fix typos
d05adebf30 Add loadbalancer support
5889b279fb Separate pool parsing from pool auto-allocation
4b549ce428 Add IPVS netlink support
034f587706 for fix CI tools/cmd/vet has been deleted
87e023dfc2 Switch to golang 1.5.4
0051e39750 Add support for SRV query in embedded DNS
dec79c21f2 Convert overlay peer updates to use protobuf
b93c2c69ac Vendor vishvananda/netlink b824519
b1e5178bc3 Convert endpoint gossip to use protobuf
92f074c095 Fix flakiness in dnet_exec
77abea9c1e Use protobuf in networkdb core messages
9dd822b8cc Add gogoproto to Godeps
b52748bb26 Vendoring vishvananda/netlink f9bc7a684edbe780a09b87689db6cb1706bf327f
b82101c4cc Protect cap access in driver()
a9c9765b33 IPAM allocator to not accept a datastore update if already present
bc6203bd0a Do not allow network creation if datastore is missing
651f6ea0fa Avoid persisting ipam data if it can be reconstructed
abb3b9b12d Fixes #22466 Embedded DNS problem after renaming container
8c2a2ff471 Do not perform the overlap check on user chosen pool
22422dad64 Changelog for 0.8.0-dev.2
680ce6e69e changelog for 0.8.0-dev.1
f2c5ff41de Set persist flag on the dummy network object during cleanup
ffdceda255 Add service support
bd74df7b41 Dnet agent mode support and IT
d0f96c5846 Fix cleanup logic in case of ipv6 allocation failure
0580043718 Add libnetwork agent mode support
e57d2f987d don't add /etc/hosts record if ip is empty (issue #1146)
b1d422b6b5 Make overlay driver work without a kv store
84682eb59a Fix bug in osl.SetGatewayIPv6() function
ff2200b397 Fix default gw logic for internal networks
060aa49a70 Fix gossip network event overwriting self
24d11b1533 Fix cross compilation issues
87e4661332 Remove files for no longer used docker/swarm Godep
f09dae40f7 uprev docker/docker, dbus to v4.0.0, boltdb to v1.2.0 to vendor dependencies required for build clean on Solaris
43a2b083e8 Static ip support for windows
6fb69f0816 Add driver api enhancements for gossip
088c3cafb2 Increase concucrrent query limit
6a96717344 Fix a panic in handling forwarded queries
6149b1f32f Fix bad order of iptables filter rules
61510dc222 Move the iptables setup for embedded DNS into a reexec process
04f5343139 Make o/p of ipam DumpDatabase() consistent
716af1c1ee Need boltdb Register only in tests
89e72d8888 Remove kvstore deps from datastore package
64a2d2a3a2 Fix ipams builtin package for darwin
0eb215c7e6 Update libkv in godeps
4289ea637a Make IPAM work even without a backing store
7d7b9f2405 Add support to accepting arbitrary network ID
69cf50c305 Enable cross platform build check in circle-ci
c7684b5ff7 Get libnetwork to build on Solaris
c0162f53a6 Add overlay manager driver
e82b92182f typo fix
cf65861f59 Overlay driver to check for chain presence
39bc023caf Correct the check in l3 miss handling in overlay driver
83d8a3527a Fix broken CI because of newly introduced NetworkAllocate/NetworkFree api
b6d5c12ea2 Add NetworkAllocate/Free to driver api
15237db7d6 Fix IT test breakages
b0d046a1af Remove all netlink/osl deps from ipam/ipamutils
d81a91ebad Resolver sockets not flushed on default gw change
f539be8a63 Create driver registry package
8e6d52fa80 Use newly introduce plugins method to validate plugin response
28f4561e3f Add network scoped gossip database
01c9083626 Update Godeps
865951c6e8 Persist ipam driver options
d0c34749d9 tools/cmd/vet has been deleted and go tool vet works natively on 1.5+
5e4fa21005 Fix the panic when a query response comes after the read() timesout
a5aeffcb59 Fix when connecting/disconnecting to/from default gw network
12f04e292f Revert "Do not leave/delete gw endpoint twice"
3ad5bd6d88 Bridge driver needs to store the network config internal flag
c957564753 Do not leave/delete gw endpoint twice
0e7a19521c Have resources initialized before deleting overlay network
22801e071f Remove pre-defined networks from package init
30d649c3e8 Fix the handling for concurrent queries over UDP
cea4dd457c Do not allow overlay destroySandbox() to be interrupted
a9c3a9821b bitseq: fix races
7cbc3e76f6 Handle endpoint & network object in notifyEvent avoiding id lookup
bd0d8222aa Limit number of concurrent DNS queries
df975778fc Log time taken to set sandbox key
5b3524af9f Added maximum egress bandwidth qos for Windows
c92b196d2e Reload config should initialize only the appropriate datastore
70be85fa40 Change 'an user' to 'a user'
52da8bda47 modprobe when needed
ca06f1ed80 On network disconnect clear the cached connections to external nameservers
97ce9f457f Changelog for v0.7.0-dev.10
0c22e1bd07 Avoid V6 queries in docker domain going to external nameservers
2ac1e5b088 Changelog for v0.7.0-dev.9
7ad482ffc7 label support for networks on creation
4b9dc647be Honor enableIPv6 network flag on IP allocation
8d480263c0 Fix CI
2e566e3882 Add AAAA record handling in embedded DNS server
937702b74d Format network address using %v instead of %p
639fd9a131 Changelog for 0.7.0-dev.8
9c88ee206e Log stale resource cleanup
7089723ee2 Fixing support for static mac and updating dependencies
880d0ada95 Fix netns path setting from hook
4dde205544 Fixing a possible endpoint_cnt state inconsistency issue
c92a4e9fd6 Avoid network/endpoint count inconsistences
4e2e0f148b Fix nil pointer reference in ServeDNS() with concurrent go routines.
9a91bbeb4f Clear cached udp connections on resolver Stop()
2b2d011899 Reject a null v4 IPAM slice in exp vlan drivers
62c6bb12db changelog for 0.7.0-dev.7
dda75448c3 Removed experimental drivers modprobe check
fcf79b55ff Bumped ipvlan kernel version to >= 4.2
e052aeaaa0 changelog for 0.7.0-dev.6
60bd944921 ipvlan slaves must inherit the mac-address from parent
64edd40fcc Use osl.InitOSContext appropriately
af75e8a624 Added kernel version checks for macvlan/ipvlan
fe10aae30b Adding the missing ExternalConnectivity driver methods
ed9601e4c6 Make macvlan and ipvlan drivers as experimental
a971c561d1 Close dbus connection if firewalld is not started
5ada0fa920 changelog for v0.7.0-dev.5
8cf7270d06 Miscellaneous fixes
392750e74c changelog for v0.7.0-dev.4
dbf16c8302 Fix veth leak in overlay driver
679ee7a070 Fixed IP information not displayed properly in docker network inspect
dd48b1c688 If anonymous container has alias names use it for DNS PTR record
82f3d55fa4 Fix out of bound slice access in Delete()
1638fbdf27 Move exposed ports from Endpoint to Sandbox
51058eecec Implement DNS RR in the Docker embedded DNS server
093df0b922 Fixed a panic issue in clearNetworkResources
43e3da2f3a Source external DNS queries from container namespace
6b209991aa Fix IPAM driver documentation
ea30113303 Added macvlan and ipvlan drivers
9ba3f70d8e bridge/overlay driver should fail to create network with empty ip pool passed
ac1ec348ff Add nil ipam driver
13451d9a07 Fix some typos in comments and strings
92af10a0fe Extract hostname from (hostname.domainname)
0eb01bbbee Fix race in Statistics
67596cc84c Fix some typos.
b1c4ec6f05 Renaming driver name to lower case for usability and allowing portmapping to surface
c09c312f64 Update vishvananda/netlink package
2cb645bf57 Fix iptables.Exists logic
fb4e5ff417 Chen Chun as libnetwork maintainer
1417b4ba1d Fix error message on bridge network creation conflict.
48a7860211 Fix cross compilation breakage
9e57eb5467 changelog for v0.7.0-dev.3
935150ef95 Fixing bulid break because of gofmt
209cb0b476 Allow to pass global datastore config
3ff94689ef Fixed build tags for linux files
5dc5acfa58 Handle datastore update in Ipam and overlay drivers
2fb14185cb Add a check for invalid/junk messages
9871032e4d Windows HNS integration
421a3ec5d7 Use gofmt with -s instead of goimports
f6868a007f Make sure iptables chains are recreated on firewall reload
16a62955cd changelog for v0.7.0-dev.2
799369da81 getNetworksFromStore should not fail on inconsistent network state
f335e2c1eb changelog for v0.7.0-dev.1
b017aeb8ca Add Santhosh as libnetwork maintainer
dfe437eace Bridge driver to Warn if xt_conntrack not present
101e63f593 getNetworksFromStore should return all valid networks
5e5dc809cc Register natChain with portmapper
cbb59adbd8 Set the compress flag for the responses from external DNS servers to avoid sending DNS replies > 512 bytes
defcd4afb9 Change in programming iptables in container
9db2b791bc Allow inter-network connectivity via exposed ports
cfb3ce460b Don't allow passing EnableIPv6 as a driver option (a label)
83f1107e59 Delete the interface on endpoint delete in overlay
74cf622463 Fix some races in getNetworkFromStore
01d2ad412f Expose the enableIPv6 setting
247e8034b8 Introduce discoverapi.Discover interface
187e179e6b Remove overlay's ipAllocator
f719512ab4 Cleanup stale overlay sandboxes
dbfc99eb94 Change in bridge/setup_ip_tables.go
81c586e0e5 Stop referring to requested IP address as "preferred", since it is an error if that address is unavailable.
7086da757a Handle concurrent creation of default GW network
7a76968485 expose Endpoints API for a Sandbox
36fd9d02be Set Recursion Available bit in query response and reduce the ttl
1419d96a01 Reducing the complexity in default gateway service handling
a509244057 Fix predefined pool reservation
62b34aa361 Adding TCP listener for embedded DNS
411bc69949 Embedded DNS server should resolve only in docker network domain
30ef9bcf4a Retain V6 DNS server in resolv.conf; use only V4 servers for fallback
4e25ffc8d9 Loopback IP shouldn't be filtered from resolv.conf in host mode
5f22db217a Enable embedded DNS server on network connect to a user defined network
315004b575 Cache scope in network object
3d9c5a959c Fixes docker/docker#19404
a7c52918fd Force delete sandbox during sandboxCleanup
94f4fb0b10 changelog for v0.5.5
b48c479b17 changelog for v0.5.6
05bd52dbb6 Setup embedded DNS server correctly on container restart
21219731d3 IPAM to run consistency check over its bitmasks
854fe82ba1 Allow bitseq caller to run consistency check
b8d2ac9b65 Honor --iptables=false in bridge
f9e4b40e5e Allow network-scoped alias to be resolved for annonymous endpoint
0b07ad6202 Fixes some typo errors
4161ddd747 changelog for v0.5.4
e88b95c13f Remove `isNodeAlive` check while force deleting endpoint
5e78e49f76 Adding changelog for vendoring libnetwork into docker
02d6721763 dnet client update for -force unpublish and Integration Tests
ec622bf158 Forced endpoint delete
7b64b1c293 Add internal network support for bridge networks
c6dfe4b795 Fix etchosts.Update to not target hosts with given hostname as prefix
3e154b3cef EP lock shouldn't be held when trying network lock
3569adad28 Fix race in setting ctrlr for network
2db863e5d7 Global alias support
16ff947fb6 IpamOptions per network not per ipam subnet
be981267c0 alias support in dnet and integration-tests
63e20c2f3d Alias support
e22b54dee1 Check if present before programming IPv6 in bridge
fe2fa218d8 Delete veth on ep leave in overlay driver
cf7ed0a717 Embedded DNS server
1051418559 Fix golang.org/x/tools breakage in go 1.4
69fe328789 Add network options to NetworkInfo to display internal network option
31016faad5 Disable DAD for sandbox IPv6 addresses
5b82b93285 Fix default make target
797c32bcac Clean up docker chain of filter table as well on driver init
54145fdd20 Godep fixup to import miekg/dns library
abaaa23a8c Vendoring netlink - bfd70f556483c008636b920dda142fdaa0d59ef9
0ce2a2dba0 Fix regex for IPv6
95f1bcc249 Change isolation rules for multiple bridge networks
e026deb981 Fix up Godeps and update docker/docker packages
921be8b633 Fix up example code
2ecc6aa49e Add support for Endpoint's preferred IPv6 address
9b31fc50ba Don't treat non-nil output as error in ChainExists
6cff09f710 Check existence of network chain before creating
59e1e42ce7 Add tests for internal network
186a32acab Add internal network option
66141b879f Cleanup vxlan interface by id before creating
30ec1b5081 Bridge driver to honor IPv6 network gateway
29299b73df Allow remote IPAM driver to express capability
b7d0fefabc Add overlay network support < 3.16 kernels
294b858f2c Add IpamInfo() function to retrun ipamV4Info and ipamV6Info
4cb0d27cf9 Improve ipam test coverage
ad95559d74 Replaced reference to dockerinit by dockerenv for func isRunningInContainer()
256e15a6fc Increase test coverage in bitsequence
46077fcfb1 Fix mutex copy
6b40581ea5 Libnetwork to set container interface's MAC
158b2852b9 Skip defaultGw check if sandbox is being deleted
6b81e3a868 update maintainers file for parsing
44f532f16e When assigning an address for an endpoint set preferred address and options.
eef129c103 Do not attempt serf query when not initialized
141c51273f Add DisableGatewayService in JoinInfo to offering drivers the ability to disable default gateway
2eadfb8290 Don't connect sbx to default gw nw if default static route is provided
dc4285b9a4 Adjust ipam errors
a87a58e2be Changing image file-path in design doc
1d88c10f98 Adds cnm directly to repo
20e5a0503a Add nice image illustrating CNM
dee3acc574 Release address pool before removing the network from store
d0f3f77432 bitseq: fix race between CopyTo and set
0ae6d496bd Allow libnetwork to compile on freebsd
84abbcefa8 Fix a couple of edge cases in service discovery
ffbe62a8f7 sandbox_externalkey.go: split for cross compilation
b67e986b75 Multi-Arch Support
e758f136a4 Updating README
90711b0def Fix bug in bitsequence.pushReservation
f24b0aae51 English please.
d778845791 Fix in endpoint Info() method
c1b67065e6 godeps: update coreos/go-systemd to v4 and godbus/dbus to v3
1aa88fa870 Allow endpoint delete if sandbox identifier is stale
7ff429e32d Use documentation IPv6 addresses (RFC 3849) in tests
ea14d68757 libnetwork to honor explicit mac-address
7fa78a97c4 Remove redundant assignment to ep.network
af7bc494f9 Allow IPv6 allocation post endpoint create
6531b0c4cd Use Docker Machine for Test Environments
e4ce59b7aa Cleanup iptables after bridge network is removed
14b21d5d88 Fix bug in getAddressRange() in default ipam driver
229e735837 Clean unused variables and fix typo
dd85700005 Fix bug in bridge driver
1452fc31d4 Retain sandbox only if network is not available
d9ad8c961c Skip non-persistent endpoints in sandbox store
670302e66b Fix stale sandbox from store problem
967917c8b4 Fix race in os sandbox sharing
6c23d4073f Fix race in host sandbox creation
e636d8398b set cntlr sandbox before cleaning endpoints in ungraceful restart case
64547e43c0 Minor spelling fix ("likey" => "likely")
c8a66f5e72 Fixes a case of ungraceful daemon restart + unreachable store
ab0c0df288 Add IT case for external connectivity
71207b575e Reconcile persistent state after driver config
320219829b Fix in DriverInfo()
2f03577ec8 Use serf logger for memberlist log
7b4b56169b Some functions' logic cleanup
5a0dbbd986 log an error if advertise is configured with a non-local ip-address
fbb2269109 Format the code
e5d280edac Tidy up the IPAM driver doc
0e2ff9dd71 Add more integration test cases
824bdec0bd Add customer_prefix to the store URL for integration test
92f7f2e1a0 Add IT case for proper /etc/hosts handling
e5b34e1435 Cleanup service db for the network
4cc65d01a6 Clean hosts entries on endpoint leave
473ce7db08 Dont notify the leave if the serf is not inited
84b1ef9bd5 Fix an issue in overlay network peer EP list maintenance
a687e431c0 Default Gateway endpoints must be annonymous
4850c5f1e6 Avoid duplicate entries in /etc/hosts
36a8f5822c Use simple scanner instead of regexp for etchosts.Delete
de7607f509 Add benchmark for etchosts.Delete
aababdc1c7 Fix the issue to parse file path for boltdb
b339bb2707 Fix the issue for the --cluster-store URL with path
3da8471681 Handling container rename in libnetwork
115d2ec7d8 Do not manipulate bitseq length to reserve broadcast address
133ee32980 Fix Endpoint Unmarshal to retrieve the fields correctly
5ef8d0f038 Add watch retrigger when store restarts
c3c4825f80 Purge remote endpoints from watch if it is local
cdb82dc22d Synchronize /etc/hosts updates at file level
3cc33dc491 Update libkv
379609e362 Allow remote ipam driver to return nil address
f1b2705d5e Do not refresh the bitmasks on all operations in IPAM
07bb3dcdba Dont fail the Get functions if there is an error in one of the stores
e41a9cf59d Allow anonymous endpoint
d686fbb9c4 Handle maskable error during endpoint delete
33d336ac72 Cleanup dangling local endpoints
773648507d TC for ungraceful restart of default network
96d819cb06 Make sandbox cleanup robust for ungraceful exits
27908bfeb4 Update netlink library.
316a652e6e Fixes #680
4df4ba70ca Fix the daemon panic on consul server restart
afd6162240 Bridge driver should return maskable error
537ba03dd1 Use netlink.LinkByName instead of net.InterfaceByName
604753b43a Fix build image name
04126b850a Fixed Vagrantfile to use systemd script
79b37def48 Explicitly set namepsace for ipamutils.ElectInterface
e0f1ac4b2e Fix ipam state cleanup logic
33aa626bc9 Add etcd integrations tests
e8370e78d0 Changed Labels to DriverOpts
82e3c49b0a Fix docker daemon failed to start with multiple cluster store address
ac1cf3f784 Add support for selectively running a suite
b92b013820 Add overlay zookeeper test
72b8f80dc3 Ensure the parent directory for key prefix exists
c42e2cf44d Update libkv godeps
3365af97c2 Initializing generic to emtpy map
6b77f04e9b IPAM driver doc
71220e2a88 Made use of map[string]string for nw options in default-gateway impl
9ae62c93dd Updated Vagrant with the latest UX
8d56508190 Change in remote IPAM API payload
6d6490b91c Check if address space valid in getStore
ab8dfb54fe Separate endpoint count data from network object
74376e8676 Moved the default local and global store to new root
a6c2dd75b5 Synchronize datastore apis
93bc5ed4c7 Update libkv godeps
7391338323 Make ipamutils compile for windows
750671e633 Default bridge need not have persistence in bridge driver
c2064dc18d Reduce logging verbosity in allocator
6026fe772c Remove 2^32 bits restriction on bitsequence
50db985c1d Few more fixes identified during integration
dbbc561c18 Network ep count increment/decrement needs retry
24339bea43 Relax restriction on IpamConfig
af95bfd273 Preserve default ipam driver setting
0e04c8555e Network to expose ipam config
1ffe6fef02 Move sandbox resources when container restarts
bd45253fb5 move Labels from array to map to be consistent with cotnainers
0f8a6b392f Fixed a bridge driver bug in unmarshalling DefaultBridge
3d3bd9331f Fixed a couple of error messages to address UX related comments
2401496d2a Enable network labels in Rest API
02386e85d5 Enable Network labels in backend
b7c2b8111f Add netlable. KeyValue() and ToMap()
888f13d17b Make the integration tests robust
be700ec0eb Add default network restart test case
268d41835d Make bridge driver networks persistent
9a8c636a40 Retire ipallocator
af3eb25d44 Phase-2 bridge driver changes to support IPAM
284c9cd0f5 Revert "Share libkv store handles across datastore handles"
9c2541b774 Removing boltdb timeout
87f5a70f0a Godep update to libkv 1.9.0-integ branch
f2f536032b Phase-1 bridge driver changes to support IPAM
e41b4765bd Cleanup dangling sandboxes on boot up
50098e5c7b Add support for configuring TLS
2a392e5a98 Any newly added data to an existing marshalled object must nil check
e5ee4ada8b Removing the endpoint name restriction
b9596c89d6 libnetwork to handle allocation of ipv6
0cfaa590de Fix in handling aux addresses
3f7e26160e Share libkv store handles across datastore handles
a226c36b75 Pass down store configs to driver
344b653478 Remove unconditional debug logging
94b6e5e18b Default IPAM to use ipamutils pkg
a22ce0938c Add bridge network integration tests
a13f78369f IPAM watch removal and multistore support
71e14dd52a Remove always-on watch for networks and endpoints
d74384b1d4 Add local store caching support
782d9a4618 ipam must honor preferedIP ahead of random allocation from subPool
cc1e49cbbb Fixed a bug in AuxAddresses handling in libnetwork core
fd00a53019 Add ipamutils package
e5d44569fb fix the regexp for matching an ip address
b061382c5e Default IPAM to handle local ds
67b1e3c5f2 Fix in bitseq.NewHandle()
b75601e84d Updating the network driver document with IPAM data
ddcfab5f81 libnetwork <-> ipam driver interaction
2aaef377f3 IPAM driver - Add IPAM cotract and remote IPAM hooks - Add ipam registration in controller - Have default IPAM follow ipamapi contract
1081687e38 Allowing local joins to happen even when serf is not initialized
fac4e67c16 serfJoin doesnt happen if self notification comes later
0b40559c69 Fix the overlay cleanup in the multi-subnet case
0066225da5 Integration with Docker Discovery
19f466369b marshal/unmarshal for overlay multiple subnets
1b393486b5 Godeps update
aa3db80a5b Update overlay.md
6e327a5afb Support for multiple subnets in a overlay network
caab594ffb Moved InterfaceStatistics from osl into types package
e8593bdb65 Docker GCCGO CI is causing compilation errors as the varibale is declared and not used. Signed-off-by: Srini Brahmaroutu <srbrahma@us.ibm.com>
a41025e9c0 Fixed a few more issues observed during docker integration
7305922385 Moving overlay configure out of Init and into network create
e4e77353c9 Setting bridgename to be network-id[:12] if bridgename option is empty
a42e5f0663 Flip the default for the flag AllowNonDefaultBridge in bridge driver
ce44f2478d Add overlay network integration test
50ec2d3a50 Add Sandbox ID to `service ls` output
24f1845a18 Do not overwrite the /etc/hosts file on Join
08d9578e48 Updating tests to use controller.Stop() to cleanup states
27397dcbdf libnetwork to make use of boltdb ConnectionTimeout to avoid deadlock
dd6b8cb408 Update libkv to support boltdb timeout
e82989f845 Fix outdated docs and comments
725280d03f Providing KVObject option to skip persisting object in kvstore
72567c355b Various refactor and fixes for the previous two commits including: 1. Don't save localscope endpoints to localstore for now. 2. Add common function updateToStore/deleteFromStore to store KVObjects. 3. Merge `getNetworksFromGlobalStore` and `getNetworksFromLocalStore` 4. Add `n.isGlobalScoped` before `n.watchEndpoints` in `addNetwork` 5. Fix integration-tests 6. Fix test failure in drivers/remote/driver_test.go 7. Restore network to store if deleteNework failed
8babc3d4d3 Add local datastore to persist states of LocalScope network
56e3c1e9d5 Update godep to support boltdb backend
d565a4df48 Push driver config during `Init`
1cd9c4dcaa Serialize the endpoint join/leave at the sandbox level
6b1fcf3e6a fix bad docs format
f33a362b48 Introduce multi-node integration tests
09fec4e411 Allow to set bits in a range in bitseq
eb54ed5d42 Support for default gateway for containers
3342e5591b Remove unwanted lock
9e6378ad57 Correct formatting in remote.md
ba83cbc058 Set interfaces routes after the interface is up
bd20fd4813 Add cmd/dnet/dnet binary to .gitignore
437dfd3a43 Correct perms for directory creation
2479562e72 Introduce test remote plugin in dnet
d46d5178b5 Make integration-tests an indipendent target
d04c177a10 Fix for zookeeper backend
bb6449bedb Fix unmarshal error in endpoint interface
ea4cdf441e Add simple integration test cases
ebbca4814e Update libkv to latest commit
59fd1a605a Update Godeps and add codegangsta/cli
304bfd6261 Add negotiation process for driver scope
4104c0d0e5 Cleanup external sandbox from test
84ac14e295 Reexec external key handling
2682309a23 Limit valid object names
9ea1f56cdf Godeps update on libcontainer
a5bd12b963 Remove multiple interface in an endpoint
636a967df1 Fix CI failure due to mistaken imports
f59502e1bd Support to provide external key to sandbox
06d8585503 Make lookupSandboxID() reliable
27b37e7473 Remove possible stale containers first
aade3e7a92 remove the useless get netns code in createNetworkNamespace
0e40539ebc Add integration test infra
bc4160be38 Fix inability to detach service
72eb02d807 Add missing sandboxes routes
3528fd9830 Fix CI failure due to conflicting merges
5f69a077da Fix bug for `docker service ls`
cc02894a50 Move test specific functions to a testutils package.
46a773fba6 Fix libkv source out-of-sync with Godeps
84a0a0a98f Fix bitsequence set()
005d8f1f52 Fix bridge driver panic in CreateNetwork
33780a2ed5 Fix go fmt errors in the build
36e7a8b168 Add TestEndToEndErrorMessage
af323c7006 Don't discard error message on sending response Error messages are always discarded and it makes diagnostic difficult when error occurs.
1426728a64 For the endpoints on overlay network set the MTU to 1450 to avoid fragmentation when the vxlan header gets added
d216db6ef2 Do not print the word `nil` in a log.
b0dd4944f5 Add Refresh() to Sandbox
ddfa448536 Allow tests to be interrupted
ef659c9049 Fix resolv.conf and hosts handling in sandbox
bcd996f4c3 Explicitly set namespace for all network operations
27296caeb8 Add DNS 'options' support
cd3fbc2a95 Fixes ip allocation for multi bridge networks
fd43ee1323 Introduce Sandbox entity
27e0db309f Adding ppc64le build tag to compile on IBM Power Signed-off-by: Srini Brahmaroutu <srbrahma@us.ibm.com>
44cb162f3d lock port mapper when reapply iptables rules
c09fe6a7c1 Fix panic due to mismatched types
1f28387d21 fix typo
d7803ee53a Fix ip range allocation in ipam
b2ff78548a Fix preferred ip allocation in ipam
5c926bb344 idm and ipam to use bitseq atomic APIs
01d6585a31 bitseq to provide atomic functions
ee31009744 bitseq to only handle and return unsigned types
467876e723 Control exported types in bitseq
e5842be694 network byte order to bitseq serializer
d715041cd0 Fix typo
e4853a4ada Overlay driver should assign interface mac based on the IP
9169198dc6 Update vishvananda/netlink
61f3a2e253 Fix racy joinSandbox behavior
8d73de9722 Adding libnetwork support to publish on custom host port ranges. See https://github.com/docker/docker/pull/12927 for docker portion.
50ac01f7f4 Updated Godeps to the latest vishvanandha/netlink
960639fbb9 Pass the vxlan port in network endian order
1bf751ef93 Fix in bridge delete endpoint
26ac09e004 Simplify NetworkOverlaps function
021d71de29 Fix bug "...has already joined the endpoint"
5a259d55f0 modify /proc/sys only if needed
12df37fdd0 Seperates the driver-specific and network-specific iptable operations for the bridge driver.
7a5224afe4 Fix example package error
e8771c868e Bug in bridge network mask
c38d2d4601 Remove unused config check
0b458d70ce Fixing Vagrant to use ubuntu 15.04 to get Experimental docker working again
3da75632f7 Reorganize MAC generation functions
6901ea51dc Prefer Netlink calls over ioctl
c266c843a7 Incorrect kernel version check in bridge
0c2293e0a0 Fix bridge and br_netfilter modules loading. Signed-off-by: mikael.davranche <mikael.davranche@corp.ovh.com>
092437ad0e Fix data race in controller sandboxes
140616a7d6 Simplify and fix os.MkdirAll() usage
d6685f61a7 make sure the interfaces is cleared on error
6461057521 Misc fixes to ipallocator & bridge driver about FixedCIDR
88c2c05ce9 Misc fixes to ip allocation in bridge driver
2dd9a6fa75 Use sysfs to set hairpin mode
21b0927720 Fix ICC on Firewalld enabled fedora systems, add in missing firewalld functionality to re-apply configuration when reloaded
b62013c24c deadlock fix in RemoveStaticRoute
83b6a338a4 Reduced the two spaces for network help, required to pass tests at docker build
94ca1f5bba make libnetwork compile on freebsd (again)
524b3dca97 Sometimes fdb points to wrong vtep
951dcbe85e FIX incorrect usage about libnetwork.New() in README.md
55e7175f64 Remove dependency on libcontainer
850bdd0923 Expose the remote driver API structs publicly.
b4e87d5c98 fix for #14633, use original nexthop ip value instead of obtained via RouteGet
9487241f5c Fix duplicate POSTROUTING MASQUERADE rules
981686787b Fixed a bug in DeleteEndpoint to properly release v6 ip
90a410eb3d Refactor of docker PR #11405
f88ad7d340 fix file descriptor leak of ".../ip_local_port_range"
6692b6d072 BitSequence should unmarshal data during get
8c3c747c62 Fix incorrect error handling in bitseq constructor
6bba1cd7b1 Use IANA assigned VXLAN port
00456020f5 Adjust overlay driver for netlink api change
70429527b0 Honor driver side resolv.conf file
a22d29b7cf Update vishvananda/netlink package
10444cb448 Manually bring up the host side veth interface
15759edb38 Fix networking issues in RHEL/Centos 6.6
885056b243 Use ioctls to create bridge
a35025569e Updated Godeps
ca7aa81de8 Some users docs with a Vagrant setup
e714096b54 small typo in the requirements
1a52238be9 Use github golang tools mirror
1f1bb1700a Updating to latest netns to fix amd64 / RPI issues
a3879fc169 Endpoint interface stats read fails when invoked from docker
5ac330aca2 Endpoint to expose interfaces' statistics
1cba00c62b Fixed URL used by curl in overlay readme
2e64ce637b Minor spelling fixes in documentation and code comments
6ed26709bd multi-host overlay driver quick start doc
cacdd39761 netns: Update to latest for arm64
04bd8f67ad Datastore handles creating objects atomically.
1d5698936a Remove extra conditional.
df56ce5f47 Update error return in bridge driver's getNetwork
28c2445dad Do not update /etc/hosts for empty endpoints
63514b2749 Resurrect firewalld support
f7c37712ea Fixing a windows compile error in docker during vendor-in
34708355bd removed a duplicate and incorrect unlock
1ac72c85cb Add LeaveAll support
bdeeda1703 leave must not use join options in the defer during failures
49d9787749 Ignoring locally scoped endpoints/networks from distributed delete
7084bc27f9 set the kv-provider driver labels only if it is a valid config
271bcd7ba1 Service discovery
362568467d Add/Delete etc hosts record support
b40774bb02 Fix endpoint ip data-store sync issue
12ac5827e4 Updated Godeps
421ef35df2 Support driver labels
ec68d342d1 Add ovrouter binary
aac063b4b6 Add neighbor support to sandbox
6e4a572529 Overlay driver
cc6fb95c0c Fix datastore value handling in bitseq
8b59f48537 Reading the top level element (network) from datastore on init
b818ea981d Add datastore to IPAM for configuration
2677a461de Distributed delete processing
e39fc16c55 Rework push reservation w/ datastore
390a9702d2 Change subnet key schema in ipam
c395cf2eb6 Datastore additions to bitmask management
4c4f71e2ac Added a new RetryError to indicate the caller to possibly retry
883fc7bca4 Make bitseq.Handle thread-safe
d1a16bbb84 Add numerical ids manager
1f76a79bf7 bitseq to provide handle
3ff75bd42d Reorganize libnetwork ipam datastructures
a0e0d07250 Add locking to libnetwork ipam
75443aaf72 Add serialize/deserialize for sequence list
873ea8a224 Add libnetwork ipam implementation
3287a4c830 Add ipam contract
5034c9bb11 Add bitseq package
4d60688464 Update modprobe bridge output
3a8213e40a Fixed the tests.
9e7d2fe74e Fix duplicated iptables rules
f843e44805 Cleaning up iptables nat table on driver bootup
11094f2645 Pass proper regex to mux for query fields
c0bcb8dff3 Fixed a basic UI regression due to a recent godep update
678d50f5b5 Updating CallFunc to match the Docker CLI API changes
0969e192f2 Add implementation for lookupContainerID
04e96f3811 workaround to a minor bug in mux which filters out empty query
03504cab65 Few changes to the UI and API implementation
613e60bcec support for libnetwork daemon labels
c85a58b6df Return an empty config if nil
9f3d1ce3ff Moved the TOML based Configuration to dnet
b2a5ea49f3 Windows: Compiles again
3d805de246 Pass a canonical subnet to ipallocator
903fcbd154 enable hairpin mode on the bridge port & fix iptables rule
8c9c68bec9 Remove dnet binary
3b2d2aa3ee Replace swarm store with libkv
7de9f71eb5 Promote Service cli
8aaf82c5b3 Endpoint to provide ContainerInfo
0912ecfc05 Add Service hierarchy to rest api
b92d253d60 Make sure sandbox files are removed after tests
9e8974cc64 Replacing isReservedNetwork with Driver capability
f88824fb8a Reworked endpoint store operation to address a few cases
47a3f3690d datastore delete support for network and endpoints
8dcdbbabd0 GetObject support
dca35085f5 datastore support for Endpoint
0fda541b37 Updating to new Swarm discovery and store APIs
a14da7ba36 Updating to latest Swarm dependancies
fcca4484cb Generate container mac address based on IP
fc9b204f39 handling error condition for network and endpoint deletes
6628cf7f5a Check GC loop is active/necessary before triggering GC
8d7e5cbb68 Minor changes in bridge.go
cc6d1be37e Update ROADMAP.md
e27586de4e Provide isolation b/w bridge networks
a0cccbbcfa Moved services to dnet top-level and removed experimental
fa22255b2d Windows: Allow compilation (again)
4ceec05f1b Add support to add bridge to the sandbox.
f5c1c78179 Refactor sandbox code to use interfaces
6d6aeff780 Make GenerateIfaceName generic
991f50a10c Add note on EndpointInfo semantics
8ac0d7709f Add restrictions for default drivers/bridge name
15ddc3717a Add support to trigger immediate garbage collection
f770d4b448 make libnetwork compile on freebsd
65519600f0 Document the remote driver protocol
71f08ec63f Update netns to include support for PowerPC LE (ppc64le) architecture
031e09d888 duplicate endpoint error handling
e67f9f4f79 Copy default configs from default Bridge to new bridge if not user configured
5fff515028 Including hostdiscovery conditionaly under a build tag
9d1cc7d56a Fixing a few go-vet issues
3be66461ba Change in bridge EndpointOperInfo()
a93d08aef5 Add container join priority option to endpoint
36303270c6 Introduce UnsetGateway(IPv6) methods
c3d02744c6 Cleanup libnetwork test code
ea8580d1e2 Remove only the endpoint owned interfaces
5c153bd018 Add static routes to the remote driver.
5ad02e8c48 Change scope to LINK when setting device routes
0ae84dad55 Fixes https://github.com/docker/docker/issues/13426
bc70ed60cb Fix miscellaneaus data races
61993ec6c2 Modprobe bridge driver r specific kernel modules
db5f2f40fb Removee the init time cleanup of namespace files
7560ca63f5 Reworkkgarbage collection code to use tick
f429a2528d Loopback interface not t brought up
3ec19ff62b Workaround kernel bugs s related to namespaces
96295af687 Do not warn in packages
ce64bdbd9f Fix dnet service cli help o/p
8ec7f0d7ac Remove dead code
3c0d5c3a8b Update remote driver to use destiantion prefix.
cfc28a900a One port mapper per bridge network
12117f349d cleanup: remove unused variable
3ed8beaa4b json friendly struct field in API structure
800029abb6 Remove container data return value from Join
930d27c06c Add Alessandro as a libnetwork maintainer
a4de736345 fix typo
d56c6de9b2 Windows: Enable compile
65acaaf0b5 Allow drivers to supply static routes for interfaces
ae8643748d Libnetwork Host Discovery using Swarm Discovery pkg
ef1293ce5a Updating Godep to pull in Set functionality
481568035f TOML based Configuration support for libnetwork
8324230320 Godeps for TOML parser - BurntSushi
594361552e Avoid adding local reserved networks (bridge, none, host) to the datastore
87161e8935 Added Network Watch support
9b952fc982 Initial kv store integration and datastore implementation
c46a023902 Updating Godep to reuse Swarm discovery and store packages
9c9c79f1b0 fixed some typos
820712cae6 Fix RemoveInterface in sandbox
e20e7bbbfe Added API support for both /vx.x/networks & /networks
e244043eb3 In bridge, network config to be validated last
35fab0aa6f Bridge driver to support multiple networks
5d9c59e523 Support network options in rest api
a550562ad4 UI formatting applied on top of Experimental Service PR
f1712c0bf6 Moved all the service commands under experimental build tag
a1c3dce3e9 Added a catch-all root hierarchy for the API path
97adea5b77 Add dummy proxy on port map
49f742eaff Orthographic corrections
0653afc5f5 Service endpoint UI support
b5a6c849e3 Adding support for network/id/endpoints in api
5ee5e2452f Modified Client to make use of the corrected REST API
e97b1e05a8 REST API: Support query by partial id
89045ca381 Modify driver Join api to only allow dst prefix
7934979f40 Remote driver implementation
dbb71728f9 Revert "Added more test coverage for portmapper package."
8942de9410 Fix test failure in api
c70cfcb150 Provide interface to categorize errors
7d80a5a84a Changes in rest api
a9fa764cbb Move network types to types package
407e41d394 Fix /etc/resolv.conf permission issue
56375f3687 Porting https://github.com/docker/docker/pull/12437
8c5750558a Cleanup namespace files
36a0f91b5d Initial dnet tool to test and manage libnetwork end-to-end
57628535ba Godep update to pull in parsers and term packages
977fcdd952 Client to make use of REST API
2d3758619b Fixed some basic client UI issues for the "network" command
a794fa07b7 Fix Makefile
9d4b69df73 Fix panic on leave of host driver endpont leave
1589c43f9d Restore anonymus import in iptables_test.go
902e8746d3 Optional Userland Proxy
030817808c Change default namespace path
b323d571b5 Driver api refactor
80ca3c2330 Remote Driver integration with Plugin Framework
cb8bbd3ded Upgrading Godep to the Latest Docker Pacakages that brings in the Plugins infra
4aa71f337c Fix misuse urlNwName and urlNwID in api.
8dc3f3be47 fix createTestNetwork bug
f16db2c3ad Remove pkg directory
e2fea0f945 Ignore the OldHash if the resolvConfPath is invalid
1e91009978 Network and Endpoint query methods to return error on not found
d96e94897e Fix DNS entry update issue
4a3c7e1bb5 Changed portallocator New() method to Get()
7ae3e91c8d fixing a link in design.md
9fad1812d9 Initial libnetwork rest api
26a5a79374 Update resolvconf and iptables packages from docker
10fafb06eb Fixed an intermittent issue in the libnetwork test
79556b1ccc Fix issue in ipv6 when a non-default link-local ipv6 address is present.
382fe75607 Simplify the code in the RegisterSubnet method of ipallocator.
d69e66c894 By ID and By Name query methods to return error
1cd241686c Create a build image to avoid install-deps every time
614d82390c Make driver packages register themselves via DriverCallback
1739626f4d NewNetwork and CreateEndpoint to validate resource name
7f7d9abd87 Make endpoint Join and Leave multi-thread safe
2fc4f3154f Added more test coverage for portmapper package.
0db03ebaa3 Add some tests
fd04ef2d00 Cleaning up the Endpoint Joins with proper defered Leave
27d34d67ab Fixed some convoluted texts in remote.md and fixed a remote driver bug
e1003fb078 fix some typos
904a313396 Remote Driver Registration
0d45fb66b3 Added remote driver design doc
df3cde525a Small typo fixed Signed-off-by: Kunal Kushwaha <kunal.kushwaha@gmail.com>
067e8977d5 Updated godeps
9714bcac87 Brought in iptables package into libnetwork.
d10b8aca74 Updated Godeps
9a5217b514 Copied etchosts and resolvconf packages to libnetwork.
142825b2f3 Updated Design Document
570a76384a Handled endpoint delete with active containers attached to it
4f7eb502bf Add design documentation
3919b126a9 Added support for network specific enable ipv6 label
94a9f12280 Moved most of the driver configuration to network configuration.
c9b54861e7 - Moved label definitions to a new package - Added a network scope well-defined label to enable ipv6
dc3a4a007c In bridge.go: Join(), Leave(), getnetwork() are not thread safe
ff36e97f45 Properly handle Leave by - Removing interface from the sandbox - Deleting Iptable rules in the bridge driver
f055e06f3a Added RemoveInterface support to sandbox.
8c2d72096f Don't fail the build on coveralls upload
ec4e1da3c5 Separate ExposedPorts from PortBindings in libnetwork API
8265de6325 chang the type of ports form PortBinding to TransportPort in link.go
3b8b2ffee8 - Changed ContainerConfiguration to simply use strings - Made ContainerConfiguration fields to be exported so options package can access them.
eb98e212cb Reuse existing docker chain constant in link.go
706c01073d CreateOptionPortMapping to store a copy of the passed bindings
d4851b95ec Incorrect assumption with golang net package causes Overlapping IP
55099e9656 - Removed sandbox override option from the driver. - Reworked the host network mode support by introducing a new JoinOption.
a983569c0c Added mac address to EndpointInfo
560d156e36 Replaced all proto numbers in netutils with the defined const
db2f7c6f28 Added support for /etc/resolv.conf
4399989c53 Updated Godeps to the latest versions of docker packages.
5f8bfa8ade Added "host" driver and test code.
66eb3e1cd4 - Added support for JoinInfo so that driver can override certain container config. - Added JoinOption processing for extra /etc/hosts record. - Added support for updating /etc/hosts entries of other containers. - Added sandbox support for adding a sandbox without the OS level create.
68cae04fe9 Fixed a bug in bridge driver when docker0 has no IP address it doesn't select and configure a proper IP address.
30e2ee9793 Fix a minor but in utils parsing UDP/TCP ports
56741e7d60 Provide API to retrieve Endpoint operational data
446b158581 Link implementation in bridge driver
95c5eb2856 Ignoring Driver failure on Leave.
da97978469 Remove redundant code in endpoint.go
da1cddc320 Bridge to handle port mapping - libnetwork cares for list of exposed ports, driver cares for list of port bindings. At endpoint creation: - list of exposed ports will be passed as libnetwork otion - list of port mapping will be passed as driver option
781bcc94a7 Params of non-exported struct should be non-exported
bfc5721970 Re-arrange MAC election code for sandbox iface
9db6a1b8e4 Join / Leave Driver API
cc4f27f6af Minor API modifications
0d3ad0eaee Control scope of JoinOption functions
4bf442a510 Updated Godeps
b8f81862d0 - Added Join option support - Added basic /etc/hosts generation support in libnetwork
d684600cdf Added null driver support for handling --net=none and -n=false cases
713ff79ed5 Reorganized the libnetwork code to seperate Controller, Network and Endpoint
d438fd59cd Port PR #11526 to libnetwork
e2d8531a40 - Added support for Join/Leave methods to Endpoint. - Removed sandbox key argument for CreateEndpoint. - Refactored bridge driver code to remove sandbox key. - Fixed bridge driver code for gaps in ipv6 behavior observed during docker integration. - Updated test code, readme code, README.md according api change. - Fixed some sandbox issues while testing docker ipv6 integration.
35693a1a47 Issue #88: Handle default v4/v6 gw setting
263ee2dbbb libnetwork client base infra
d152bb91c4 Added docker mflag package to Godeps
8f63aa82b0 Initial bats based integration tests for testing daemon network configs
21ed154c79 Rename setGatewayIP() in sandbox pkg
6a5e4a83e4 Provide Query API for Network and Endpoint
1c7c0f371b Add methods to walk Endpoints and Networks
6e80af6ee8 - Re-enabled Bridge test case which got disabled because lower case test case function name
c6fd92a565 - Fixed an assortment of bugs in sandbox - Added more test coverage to sandbox
1fae5573d2 Refactor NetworkController interface
198e3d3ee9 Libnetwork bridge to handle MTU option
69437b1009 Libnetwork bridge to handle --mac-address option
f4fd5dacbf Rename simplebridge to bridge
468ebf3816 Issue #68: In bridge.go driver remove veth on endpoint delete
3da12c7219 Add TestSandboxInfoEqual in sandbox_test.go
7d24e974cf Refactor driverapi, sandbox pkgs
dee9e06bbb Fixing a few typos
95958d7610 Enhance Endpoint interface
a004b52ab3 fix some typos
f151cc23ab Add Network method to return list of endpoints
88eb07fb8d Update Godeps docker/pkg/common => /stringid
8098113830 Fix libnetwork_test.go
0957eed04b Minor language cleanup in ROADMAP.md
d449658d91 Expose Endpoint IDs in their public interface.
e91ed59cb2 Changed all the naked error returns in bridge driver to proper error types, except the naked error returns which were just prefixing strings to previously returned error strings.
3e6a889cd6 Port Allocator as a libnetwork package
38ea74e2b5 - Fixed the makefile which was not checking failures in test code - Cleaned up the makefile to remove output clutter
b0a38a0d1b Fixed a bug in bridge driver where when the bridge already exists the bridgeInterface.bridgeIPv4 is not getting initialized properly
56c3adda07 - Added more testcases for libnetwork API testing - Added new error types for all of libnetwork errors
ec7d417a37 Added a test binary to test README.md code
8fe2d88db1 Fix typos and formatting in docs. Add Godoc badge.
e797f80ad4 Added driver specific config support - Added api enhancement to pass driver specific config - Refactored simple bridge driver code for driver specific config - Added an undocumented option to add non-default bridges without manual pre-provisioning to help libnetwork testing - Reenabled libnetwork test to do api testing - Updated README.md
d8f88b2afb Name/Mac generation and libcontainer dep removal
2c797384ff Report Code Coverage and Add Status Badges
6c0ffdd70a Added unsupported implementations for sandbox and sandbox test code
0a25032277 Converted IP address and gateway values to be proper types rather than strings in the sandbox and driverapi protocol
53c755b79d Updated godeps
68ae284db5 Libnetwork refactor for container network model - Added controller, network, endpoint and sandbox interfaces - Created netutils package for miscallaneous network utilities - Created driverapi package to break cyclic dependency b/w driver and libnetwork - Made libnetwork multithread safe - Made bridge driver multithread safe - Fixed README.md
1f3f37b2f8 Sync libnetwork code to latest docker/master
2d364e2c34 - Added support to bridgeNetwork.Link - Removed MAC and MTU configuration via AddInterface
7b05ee2ac4 Added initial README and ROADMAP files
d1a6ee35ea Run libnetwork test case only when it's specifically enabled
5d7b430801 Issue #33: Move portmapper and portallocator into libnetwork
bc59294da8 Point to Docker contrib guidelines in README
18d485a466 Add Makefile
4ac519f7b6 - Added initial test cases for libnetwork api - Introduce delete api
f76372ed74 Add MAINTAINERS
68d223a0e0 Issue #18: IP Allocator rework
f2d7564f2c Resolve Godeps
694c5ee788 Reimplement create namespace and move interafec to ns without reexec This removes the dependency on reexec so that libnetwork can be used as a library.
2d16187d8c Refactor the drivers interface to get rid of reflect way
6311a96710 Add implementation and test for SetupIPTables()
fc6b36e2bb Fix Godeps in CI
db5d4c3de3 Use Godeps
0ac3833edb Circle CI
2457d2549f Fix govet warnings
edebcebfee Circle CI
e718ea9d2a Circle CI
4e22b7b1f7 Add circle.yml
6424c7a875 Remove golint warnings
58a3934282 Add a diagnostic message to ip forwading code
e40794cdc4 Fix minor static analysis issue in setup_ipv4.go
80809c42c6 Add implementation and test for SetIPForwarding()
b9bd3a7dd0 Add network name
ba111871ea Renaming and comments
cb96e4149d Test coverage
94e8db8774 Next steps
882f4d7e74 Add FixedCIDRv6 test
3845ec20c4 Test coverage on bridge
8ca185e2ee Move bridge to drivers/
38f01266e3 Add tests
3125c1f7c7 WIP - Code moves
4a8b8498a7 WIP - Remove commented code
46864de1d7 WIP - Fixed CIDR v4 and v6
796d58af9e WIP - Bridge refactoring
1f3b1febc7 WIP - Bridge refactoring
76a8cbba11 WIP - Bridge refactoring
8ad4ec910b Generic argument passing to drivers
79ae90940c Generic options model
7d4450e647 Unexport reexec symbols
8ebeb1da5c Rename strategy to driver
0d29ca540f Initial import
d7c688f0f6 Initial commit
cli: update to -tip
Bumping docker-cli to version v23.0.0-beta.1-8-g83ca73f9a, which comprises the following commits:
0f6023a9c vendor: github.com/docker/docker v23.0.0-beta.1
016846e95 update to go1.19.4
0e15d73c6 Dockerfile: update buildx to v0.9.1
006c94638 cmd/docker: make feature detection lazy again
20ba591b7 Fix bug where incorrect response is returned
121c61387 cil/command: use dummy client for build-tests
21e45ff85 cli/command: add WithAPIClient
60833d204 docs/reference: exec: update some examples
cac78c237 docs/reference: info: update example output
9ba371f66 docs: update examples to not use deprecated images
74086bc93 doc/reference: update attach reference
82805ad71 docs/extend: remove note about first supported version
3da0e959d updated additionalHelp text
e547881e2 Fix ssh process killed when context is done
1b0d6fc80 Dockerfile: add ALPINE_VERSION build-arg
60b09ea7f vendor: docker/docker v20.10.3-0.20221201203946-b21e8f72f254 (v23.0.0-dev)
1768240bc cli/command/container: runPort: sort ports before printing
c5613ac03 cli/command/container: TestNewPortCommandOutput improve test
58487e088 cli/command/container: runPort(): slight refactor
f0435fd3f cli/command/container: runPort(): update godoc, and add todo
f2566760a Update AUTHORS header to indicate it's generated
b81acd7c4 Update mailmap and AUTHORS
25c06c755 vendor: docker/docker v20.10.3-0.20221201081640-bb2eab21c6db (v23.0.0-dev)
2c9dff143 cli/command/context: context ls: always show current context
ed4b0a67b cli/command/context: context ls: add ERROR column, and don't fail early
14f97cc10 cli/command: DockerCli.ServerInfo() load info lazily
3b7235edc cli/command: initialize client and load content lazily
2c41bbc49 cli/command/task: taskContext.Error(): use ellipsis utility
0ed80a3a5 cli/command/formatter: NewClientContextFormat(): unconvert
30a0d0c6d cli/command/formatter: define const for error column-headers
60987b8d7 cli/command: DockerCli: keep reference to options for later use
181769f18 cli/command: remove DockerCli.loadConfigFile()
36441fc5f cli: NewTopLevelCommand: don't use unnamed assignments
6ba7de3b5 cli/command/context: "docker context show": don't validate context
a7e2c3ea1 cli/command: add Cli.CurrentVersion() function
536aef9c6 vendor: update github.com/moby/term to fix interrupt handling
a52d922f8 vendor: golang_protobuf_extensions v1.0.4 - prevent incompatible versions
13493edcd Add Sam Thibault (sam-thibault) as curator
da6b2ab9e docs: update version to v23.0.0-dev
7c123d37c Update version to v23.0.0-dev
7d597de96 vendor: docker/docker v20.10.3-0.20221124164242-a913b5ad7ef1 (v23.0.0-dev)
dbffb29ff vendor: github.com/moby/swarmkit/v2 v2.0.0-20221123162438-b17f02f0a054
9c42cd9a3 cli/command: TestInitializeFromClientHangs fix unhandled error
e36d5a092 cli/command: DockerCli.CurrentContext: improve GoDoc
793f09705 cli/command: resolveContextName() move conflicting options check
2f5698511 cli/command: resolveContextName() don't validate if context exists
592d90caf cli/command/context: minor cleanup in runList()
0cc3f688d cli/command: use more descriptive const in test
acb934cc9 cli/command: move default context description to context itself
3499669e1 cli/flags: merge CommonOptions into ClientOptions
6a734df1c cli/context/store: make sure we handle wrapped errors
a51ce7ca9 go.mod: github.com/google/certificate-transparency-go v1.1.4
7d4450dbb vendor: docker 394f6c14add7c1a5a80257c9111f43b7edc78d0b / v22.06-dev
d4b51a343 vendor: github.com/moby/term v0.0.0-20221120202655-abb19827d345
1158788c8 Remove deprecated note
700099159 update gotestsum to v1.8.2
e064f893a docs: docker inspect --size
802c53fa9 docs: docker inspect: reformat with prettier
bf3f419b6 cli/command/stack: TestConfigMergeInterpolation: various fixes
4d2fb68b9 cli/compose/loader: fix error messages, and various tests
5aba4860d cli-plugins/manager: TestPluginError: don't use yaml.Marshal
0644aa390 cli/compose/types: UlimitsConfig.MarshalYAML() fix recursion
c18dd2719 cli/compose/loader: TestMarshallConfig: fix duplicate version
845f002d3 vendor: docker d15be0c54de92a4d868ebd66dbb1065e264554f2 / v22.06-dev
722cde068 vendor: golang.org/x/sys v0.2.0
275b7ddd1 vendor: github.com/sirupsen/logrus v1.9.0
f51c4ff31 vendor: docker cd8873dd3d21b1fc1b957c98dcd0f5c7a507fb70 / v22.06-dev
86038fdb6 vendor: github.com/containerd/containerd v1.6.10
88b33a667 vendor: github.com/moby/buildkit v0.10.6
af3007960 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221102165002-6341884e5fc9
633ef7a09 vendor: golang.org/x/crypto v0.1.0 (fix OpenSSL > 9.3 compatibility)
880b7fc67 vendor: golang.org/x/net v0.1.0
0f568cfa9 vendor: golang.org/x/text v0.4.0
63ea1e424 vendor: golang.org/x/term v0.1.0
57b6ed34c vendor: golang.org/x/time v0.1.0
7b3900145 vendor: golang.org/x/sys v0.1.0
c855e4ba3 vendor: gotest.tools/v3 v3.4.0
46ba87dcf vendor: github.com/google/go-cmp v0.5.9 to remove golang.org/x/xerrors
85eee32f4 Update to Go 1.19.3 to address CVE-2022-41716
997846918 build: keep "buildx install" behavior
d1cabdff9 build: set default context builder if not specified
8dec4bcce cleanup leftovers for --stream build flag
d978d0dd5 go.mod: github.com/spf13/cobra v1.6.1
02e782692 Add compose support for cluster volumes
7c0d6ecf6 docs: update link to docker cp
bfcadab0b docs: improved docker run cli reference
684dcd7b6 Fix the max-concurrent-downloads and max-concurrent-uploads configs documentation
a7717513b docs: fix links to BuildKit backend
67e6ba0d0 vendor: docker 5aac513617f072b15322b147052cbda0d451d389 / v22.06-dev
5d78cc13a vendor: docker v20.10.3-0.20221021122114-f9cb47a052b (22.06 branch)
6fe31557c vendor: docker v20.10.3-0.20221006185438-87d9d96ab0b6 (v22.06-dev)
9505330b0 Remove "experimental" gates around "--platform" in bash completion
759f3aa10 vendor: github.com/moby/buildkit v0.10.5
3da9499e5 fixed the plugin command docker-runc
68330e099 add ability to override ints in compose files with 0
aea2a8c41 docs/reference: run.md update confusing example name
bacc5e3aa docs: update deprecation status for "overlay2.override_kernel_check"
4648c0084 docs: use correct separator in --security-opt
485f1f79c Update to go 1.19.2 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
c2f167159 Use gofumpt if available, and enable gofumpt linter
616124525 format go with gofumpt (with -lang=1.19)
1da95ff6a format code with gofumpt
cd7c493ea cli/context/store: rename removeAllContextData(), removeAllEndpointData()
09c94c1c2 cli/context/store: List(): don't interrupt listing for not-found errors
951bb481c cli/context/store: New(): return concrete type
de6020a24 cli/context/store: simplify error handling, and make it more idiomatic
38f54e792 cli/context/store: remove filePath(), make contextDir() accept name
9720d5b45 cli/context/store: listContextData(): accept name instead of ID
712cc9a1c cli/context/store: remove(): accept name instead of ID
0bcdff257 cli/context/store: getData(): accept name instead of ID
3b7f13a5e cli/context/store: createOrUpdate(): accept name instead of ID
c3eb116f9 cli/context/store: removeAllEndpointData(): accept name instead of ID
42e275eaf cli/context/store: TestTlsCreateUpdateGetRemove(): use correct ID
d0398c423 cli/context/store: removeAllContextData(): accept name instead of ID
f843c42c0 cli/context/store: listRecursivelyMetadataDirs(): use filepath.Join()
c6dfff131 cli/context/store: metadataStore.get(), .remove(): accept name instead of ID
90f1238fb cli-plugins/manager: add IsPluginCommand(() utility
7af8aac16 fix broken alias check is buildx is installed as alias for builder
a9ccb6552 cli/compose: remove redundant reflection from tests
9a493b1bf docker context rm: allow --force to ignore non-existing contexts
ef2a82663 vendor: gotest.tools v3.3.0
28b0aa9f1 replace uses of deprecated env.Patch()
843e71672 vendor: github.com/docker/docker-credential-helpers v0.7.0
de2105d15 vendor: docker v20.10.3-0.20220922131805-e143eed8bc4f (22.06 branch)
90db6b82a cli: use N/A as placeholder for old CREATED dates
0253634f5 cli: hide old CREATED times, instead of "52 years ago"
beb92650d vendor: docker v20.10.3-0.20220909113731-8af2e62556de (22.06 branch)
8771b956e vendor: github.com/klauspost/compress v1.15.9
3a17d8a90 Update to go 1.19.1 to address CVE-2022-27664, CVE-2022-32190
07ac2d8dc update to golang 1.19
fc7e831a6 vendor: golang.org/x/net v0.0.0-20220906165146-f3363e06e74c
1061f7449 Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
0dd2c1808 golangci-lint: update to v1.49.0 for compatibilty with go1.19
3dfdaa645 linting: assigned to src, but reassigned without using the value (wastedassign)
98654202c linting: G112: Potential Slowloris Attack
b58731fa4 linting: ST1005: error strings should not be capitalized (stylecheck)
b508b0fc3 linting: ST1017: don't use Yoda conditions (stylecheck)
7cec7101c linting: tabwriter: ignore stylecheck
cef858170 linting: os.Setenv() can be replaced by `t.Setenv()` (tenv)
ce01160e7 linting: ST1019: package is being imported more than once (stylecheck)
491407b54 linting: remove unused nolint comments (nolintlint)
d3d9301d2 linting: use consts from stdlib (usestdlibvars)
c645c9928 opts: remove unused RuntimeOpt
0e4f0e4a7 vendor: github.com/docker/go-units v0.5.0
67ae2c097 cli: createContainer() remove intermediate variable
23a0fb071 vendor: docker v20.10.3-0.20220831131523-b5a0d7a188ac (22.06 branch)
fb0788f18 build: replace uses of archive.CanonicalTarNameForPath
e484243c2 cli/command: NewDockerCli(): use WithStandardStreams()
eaf6461ee vendor: golang.org/x/sys v0.0.0-20220825204002-c680a09ffe64
0e3d54261 replace pkg/system Sequential funcs with moby/sys/sequential
948482b77 vendor: docker v20.10.3-0.20220826112928-d2590dc3cd4f (22.06 branch)
b105b22f1 vendor: github.com/moby/buildkit v0.10.4
649aa6175 vendor: golang.org/x/sys v0.0.0-20220728004956-3c1f35247d10
440fb75c9 vendor: github.com/containerd/containerd v1.6.8
da81c096b ci: add concurrency check
fd5590dcd chore: dependabot to keep gha up to date
d598646f1 ci: update github actions
304c100ed complete the "-g" / "--graph" daemon option deprecation
c24ec2502 Update issues form
6eec719d3 update cli-docs-tool to v0.5.0
ad2bff2c0 Dockerfile: update buildx to v0.9.0
f41cbf9dc Move notes about required buildkit
2475b07d0 Update link to libnetwork docs
6191b662b Update golang to 1.18.5
1d9ab7803 cli: set timeout connection ping on sockets as well
f87d7ed86 context use: don't create/update config file and directories if not needed
cee286ff6 context use: skip validation for "default" context
50893d72d also treat DOCKER_CONTEXT='' as unset
aa7b1b24a command: treat DOCKER_HOST the same if it's empty or unset
6f799c1a1 dockerfile: llvm needed on debian for cross comp
87b085c8c missing DWARF symbol table
049811fef cli/command/context: remove newContextMetadata() utility
5ed92699f cli/command: remove WithContextEndpointType() as it's unused
6874c2e80 cli/command: remove unused args from ResolveDefaultContext()
07113638c vendor: docker v20.10.3-0.20220720171342-a60b458179aa (22.06 branch)
f175f5d17 vendor: remove replace rule for github.com/gogo/googleapis
65d45664b vendor: golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a
82427d1a0 format (GoDoc) comments with Go 1.19 to prepare for go updates
046e7e61f update golang to 1.18.4
a4caf8e89 remove uses of client.IsErrUnauthorized()
0b1b5957c Removed feminine reference
e7a1f14d3 maintainers: Add Paweł Gronowski as curator
c25ff58cb maintainers: Add Bruno de Sousa as curator
80b1285fe cli: use custom annotation for aliases
190dac77b container: validate --pull option on create and run
2d88c896b cli: print full command as aliases in usage output
5a434d8f7 cli/command/container: rename variable that collided with import
a929ac0f3 vendor: Bump github.com/spf13/cobra to v1.5.0
f3ed630f8 docs: dockerfile reference moved to buildkit repo
a141f1c26 command/exec: Fill ConsoleSize
9373b2611 vendor: github.com/docker/docker 4eb1c5bd52afa08595d9a082a9ba05c81f79be07
e458cf1af Improve doc code formatting
7227c0145 docs: fix misleading example of setting an env variable for a single command
a51ea675b opts: fix potential panic in trimQuotes
0929bed42 Fix psFormat's Size handling in config file
8e0afc648 bake: align platforms
0f6a0eb2d bake: use no-cache-filter for outdated stage
0c17225df Dockerfile: update xx to 1.1.1
c47aa3dfa info: fix output including "Labels:" if no labels were set
787077d41 docs: add missing --no-trunc in example
cc78788bb vendor: github.com/docker/docker 38633e797195643580ce5c4af7c5422aad3eb7de
1f179ac65 vendor: github.com/docker/docker cf4595265e7703e1e9745a30f1dd265acbc075d3
a4ffbcd95 update AUTHORS and mailmap
1d85b4d0e Deflake TestVolumeCreateClusterOpts
2119f425b docs: reference: version: add info about API version negotiation
99bb525f9 docs: reference: version: improve description
aa720f154 update golang to 1.18.3
b9e2659a0 info: update plugin section to show installed path
86a7a7aa7 vendor: github.com/docker/docker 3e32104e0e39af9019a3ea9aa7093bb7c97fcf05
73c6231b4 vendor: github.com/docker/docker cb01202de88e20d5699c76efe948dfb065da873f
baafc8f28 vendor: github.com/docker/docker 8abb84c7342a19009d777ef3d871c0b2a5c032a5
d945856e6 vendor: github.com/docker/docker d633169483bbe22b92b8310c47e827451b594364
8378b4277 vendor: github.com/docker/docker c9d04033d443e359e73e5da58a6b46ec1b8f2373
6d3bda1e7 cli/container: Move filling ConsoleSize to create
3997f3431 Added Swarm Job support to Stack Deploy
77e8c6f68 Update version to 22.06.0-dev
a1c4af764 docs/deprecated: update version to 22.06
86c30e6a0 add --signal option to stop and restart
5eb24bfd1 completion: remove options related to deprecated cluster-store
1fafae3ef info: remove cluster store from docker info output
28e2b92b5 docs: remove documentation about deprecated cluster-store
7236f7824 man: use "console" hints in markdown
a7c8cb514 remove unused poule.yml
a2e9ed3b8 cli/command/container: use RWMutex for stats to allow concurrent reads
34dd43bf1 cli/command/container: some small performance optimizations for formatting stats
7bcc03d97 cli/command/container: add BenchmarkStatsFormat()
868adb13c lint: update some nolint comments:
0fab8ecf3 volume: annotate cluster-volumes flags for API version and swarm
3455580eb Add cluster volume support
9bf28fc00 vendor: github.com/docker/docker f1dd6bf84e28930e1ccd903361f9284fb22d3b8a
20138a81b docker kill: don't set default signal on the client side
66b905650 completion v2: some small follow-ups
cbec75e2f Adopt Cobra completion v2 to support completion by CLI plugins
b59219f0e vendor: github.com/moby/buildkit v0.10.3
ef3790757 vendor: github.com/docker/docker 7c69b6dc08c7
1629df514 vendor: github.com/containerd/containerd v1.6.4
05279c7c6 vendor: golang.org/x/sys v0.0.0-20220412211240-33da011f77ad
f5d16893d update golang to 1.18.2
13e053387 Fixing stats race condition
9dc54f3fb info: don't print server info if we failed to connect
e96e17d10 info: improve handling of empty Info
2585b6a79 Fix dead external link
b901f5d14 TestSaveFileToDirs: use filepath.Join()
0c2d0072c Sleep for 1.5 seconds before looking at the resize error
db141c21e hide swarm-related commands based on the current swarm status and role
374d0f88c cli: initializeFromClient(): detect swarm status from ping (if available)
9598c4c90 Retry initializing TTY size a bit more
f1632c0dd remove some swarm annotations from flags
2d74be89e contrib/completion: remove orchestrator flags from zsh completion
ea0ae30d8 contrib/completion: remove unused options variable
6cee6085d Add example get API version
863780d0d vendor: github.com/moby/buildkit v0.10.2
b3f3beb73 vendor: github.com/klauspost/compress v1.15.1
acf6aee91 vendor: golang.org/x/sys v0.0.0-20220405210540-1e041c57c461
165c5da00 vendor: github.com/Microsoft/go-winio v0.5.2
11924f498 vendor: github.com/moby/swarmkit/v2 v2.0.0-20220420172245-6068d1894d46
7aa0b273e vendor: github.com/docker/docker 2ed904cad7055847796433cc56ef1d1de0da868c
15301e7cf vendor: github.com/containerd/containerd v1.6.3
57e28d64d vendor: github.com/miekg/pkcs11 v1.1.1
15be07a07 vendor: github.com/opencontainers/image-spec v1.0.3-0.20220303224323-02efb9a75ee1
381fb1dbd Remove unsupported alias from `docker stack config` help output
6712447e4 Remove bash completion for deprecated orchestrator flags
14d7fe441 Add bash completion for `docker stack config`
0ea587b0d Add --force option to network rm subcommand
052b4086b cli/command/image: remove use of docker/docker/pkg/urlutil
7b4d7717b Always set the console size
fd2bc1fa5 use our own version of text/tabwriter
e9a4d7e61 introduce `context show` command
9fc2dd497 Add Djordje Lukic to maintainers
c3fe1b962 update golang to 1.18.1
05ae1fdd2 Add Nicolas De Loof to maintainers
95b0c43e4 docs: deprecated: add entry for "fluent-async-connect" log-opt
b66f4b2c2 cli: use "Swarm Subcommands" instead of "Orchestrator"
aaa912c9f move commonly used top-level commands to the top of --help
a058f9774 remove exec, push, pull, ps, images, info from "legacy" commands
cea26ac86 commands.AddCommands(): re-order/group commands
ed71a5091 move global flags to end of --help output
ae611f4c0 move orchestration commands to their own section in --help output
bb610a59b cli: annotate "stack" command to be a swarm subcommand
bbc95c7bb remove "Experimental" client field from "docker version"
51a84fe86 cli/command: fix documentation of CopyToFile mentioning ioutil
cff702d88 Add merge to ShellCommand properties in config
fbea85d47 Change merge strategy for service volumes
dfc214115 Add stack config command
51aa683a8 cli/command/system: remove printStorageDriverWarnings()
f3a6e7ede docs: update deprecation status of "experimental" cli
47cad508a docs: update deprecation status for overlay(2) on backingfs without d_type
60a0e67e0 docs: update deprecation status of legacy overlay networks
9630e1490 docs: update deprecation status of aufs, overlay, and devicemapper
41fd1c49b update deprecation status of --kernel-memory(-tcp)
49a7d75a2 docs: reformat table for compatibility
167a624bd Update v21.xx to v22.04
f06606f60 Update version to 22.04.0-dev
ee218fa89 Deprecation: config: remove support for old ~/.dockercfg
b1f18b700 fix: remove asterisk from docker command suggestions
94e08f2e2 Makefile: don't warn "outside container" for some targets
90b60b5d8 Dockerfile.dev: set prompt, add nano and jq, and set MOTD
258640ab4 Makefile: add missing help messages for some targets
62bf7b703 update mailmap and authors
8fd92f186 scripts/build: make sure build-time is in UTC
72ed7bd3e scripts/build: fix date formatting on macOS
bcd4101f3 tweak description of login/logout
028d5c39b Dockerfile: update buildx to v0.8.2
4b35192d7 docs: reference: remove trailing space to fix yaml formatting
b7b923db4 tweak description of "docker push" and "docker pull" commands
6e6652b70 tweak description of "docker run" command
ac22b2bf5 tweak description of "docker exec" command
9688f62d2 fix race condition in TestRemoveForce
22edabb58 fix version quad logic that trims 0 digit so returns an empty one
525845572 trim leading 0 for minor in the version quad
391e6ad94 use GO_LDFLAGS instead of LDFLAGS to prevent inheriting unrelated options
801113fb8 cli/registry/client: remove unused IsNotFound(), and slight refactor
48745da16 cli/registry/client: remove unused RegistryClient.GetTags()
e83d6cd2c cli/registry/client: remove unused GetRegistryAuth()
04347f793 context: Endpoint.ClientOpts(): use client.WithVersionFromEnv()
1db2da57c use client consts for environment variable names
2b976720f docs: add anchor-tags for flags
885f44a5b docs: fix (table) formatting, fix some broken links
b87a0c1b0 docs: build: add named anchor tags for flags
7d4ae1375 docs: build: fix minor markdown and syntax issues
ccbaaf072 search: remove client-side default for --limit
2dc178c80 search: change "the Docker Hub" to just "Docker Hub"
f00c06f6c docs: commandline/index.md: reformat tables
a3c4a42d4 Dockerfile: update buildx to v0.8.1
8e2d63d5d Fix flaky TestContainerList tests
635c55d52 update go to 1.18.0
bf29b40a8 staticcheck: ignore SA1019: strings.Title is deprecated
a1e67401d vendor: github.com/docker/docker 8941dcfcc5db4aefc351cd5b5bb4d524823035c0
dce592979 Update to debian bullseye
d45030380 Dockerfile: prefer ld for cross-compiling arm64 in bullseye
3ffe6a337 lint: update golangci-lint to v1.45.2
4ab70bf61 linting: fix incorrectly formatted errors (revive)
d7c1fb911 linting: ignore some "G101: Potential hardcoded credentials" warnings
5a65aadd8 cli/command/container: unnecessary use of fmt.Sprintf (gosimple)
d382a7103 update run.md
c569d2574 Bump cobra to v1.4.0
bc2b48aaf e2e: cleanup TestGlobalHelp() to be less brittle
4cd2d9ddd Change "COMPANY_NAME" to "PACKAGER_NAME"
a0f057829 gofmt with go1.17
f3a05eb80 vendor dependencies with go1.17
6119e4ba9 update go to 1.17.8
3a1fc21e7 Dockerfile: use xx-apt-get instead of xx-apt
e20572d04 scripts/build: make sure osusergo is set for static with CGO enabled
40d801662 Dockerfile: update xx to 1.1
5f74020de vendor: github.com/moby/buildkit v0.10.0
adadd5472 vendor: github.com/prometheus/client_golang v1.11.0
7408799ec vendor: github.com/prometheus/procfs v0.7.3
29f799aae vendor: github.com/containerd/containerd v1.6.2
b2cef834f vendor: google.golang.org/grpc v1.44.0
51ef2ccff docs: hyphens are not dashes
bc2c8d759 vendor: golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
994d6b7fc Dockerfile: use syntax=docker/dockerfile:1
4f118c763 vendor: github.com/docker/swarmkit 616e8db4c3b0
02a06cf9a vendor: golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac
bc54802f5 vendor: golang.org/x/term v0.0.0-20210615171337-6886f2dfbf5b
56f51a35c vendor: golang.org/x/crypto v0.0.0-20211202192323-5770296d904e
1bb259144 vendor: golang.org/x/net v0.0.0-20211216030914-fe4d6282115f
ce2e036ad vendor: github.com/opencontainers/runc v1.1.0
fdbb5953a vendor: github.com/klauspost/compress v1.15.0
2b7cb5b1b vendor: github.com/cespare/xxhash v2.1.2
119c7fb84 Fix CMD --ignored-param1 example
b4ca1c736 registry: don't call "/info" API endpoint to get default registry
9c0234bbc Output compact JSON by default for --format=json
d8ecb00dd Update shell completion scripts
b4af79968 Update reference documentation
0611be0f0 Update man pages
a4a734df4 Update list commands with better format flag description
eb27a94c3 Added "json" as specific value for --format flag in list commands, as an alias to `{{json .}}`
84d47b544 Add "json" as default value to format flag in all inspect commands.
c700bbcb4 Add specific "json" value to format flag with inspect commands to output json, as empty flag does. Added tests on that new behavior.
831704e56 search: do not sort results by stars on client side
4f1ba37e1 docs: remove note about buildkit not supporting git subdirectories
ab35e3fac Handle relative source mounts
e5f5d946e docs: dockerd: fix broken link in blockquote area
de0549926 align wording of push --all-tags parameter description
dc9e069ff vendor: github.com/docker/docker v20.10.3-0.20220309172631-83b51522df43
e90cb7515 vendor: github.com/docker/distribution v2.8.1
30e47e5a0 vendor: github.com/prometheus/common v0.10.0
576e4dce4 vendor: golang.org/x/text v0.3.7
7880acb05 vendor: golang.org/x/sys v0.0.0-20220114195835-da31bd327af9
6da0fc299 vendor: github.com/moby/sys/signal v0.7.0
4adea808c vendor: github.com/google/go-cmp v0.5.7
12b06fa37 vendor: github.com/coreos/etcd v3.3.27
16554e999 vendor: github.com/containerd/containerd v1.5.10
41a5e0e4d improve cp documentation with some illustration examples
fe8a12c62 vendor: github.com/opencontainers/image-spec v1.0.2
3669aa351 vendor: github.com/Microsoft/go-winio v0.5.1
257f6149b Remove ClientInfo as it is not practically used.
ac06c971f remove unneeded "digest" alias for "go-digest"
e40529aa3 use consistent alias for api/types/registry
b7e4f3daa remove alias for cli/config imports
cc08fc1af Implement WithDefaultContextStoreConfig() DockerCliOption
d35b50c0c NewAPIClientFromFlags: rename variable to not collide with import
398026d31 vendor: gotest.tools/v3 v3.1.0
58747a631 vendor: github.com/google/go-cmp v0.5.5
9f0430b8f vendor: remove redundant replace rules
5b9256333 vendor: move github.com/moby/sys packages to "requires" ("indirect")
8a3e3b22a vendor: gotest.tools/v3 v3.0.3
20b5dfa59 vendor: gopkg.in/yaml.v2 v2.4.0
a26de1de0 vendor: golang.org/x/text v0.3.4
7917946a5 vendor: golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1
109cc4ea4 vendor: golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359
25366b6a5 vendor: remove replace rules for k8s.io packages
1d4431c1e cli/command: Add quiet option for create and run
bdfeae899 docs: daemon: remove LCOW configuration options
6c16afe1d docs: unify "docker create" and "docker run" reference
7eb61e2ff docs: add missing documentation for --pull flag
60c383636 cli/compose/schema: make version: "3" equivalent to "3.x" (latest)
a3d53e319 dummy circleci config
f160fd3e3 remove circleci
7dc35c03f validate manpages target
a650f4ddd switch to cli-docs-tool for yaml docs generation
76a2a1945 fix inherits for vendor bake defs
bea6c0d24 validate authors target
ede32747b add common args bake target
8c3ae386c golangci-lint: prevent io/ioutil from being used
6c06950cd cli-plugins/manager: remove uses of deprecated io/ioutil
38e62571f opts: remove deprecated io/ioutil and use t.Cleanup()
85754c9ab man: remove deprecated io/ioutil and use t.TempDir()
7491c5ac6 internal/test: remove deprecated io/ioutil
e89af84ff e2e: remove deprecated io/ioutil and use t.TempDir()
39ace6806 docs/yaml: remove deprecated io/ioutil and use t.TempDir()
0e3197ebd cmd/docker: remove deprecated io/ioutil
86db51e86 cli: remove deprecated io/ioutil
1e54bca83 cli/trust: remove deprecated io/ioutil and use t.TempDir()
58cf16da4 cli/manifest: remove deprecated io/ioutil and use t.TempDir()
cca80cddd cli/context: remove deprecated io/ioutil and use t.TempDir()
71575ab3b cli/config: remove deprecated io/ioutil and use t.TempDir()
b9f0340b6 cli/compose: remove deprecated io/ioutil
3f7e7bf9d cli/command: remove deprecated io/ioutil and use t.TempDir()
cca73bff4 cli/command/volume: remove deprecated io/ioutil
b5dce3c9e cli/command/trust: remove deprecated io/ioutil and use t.TempDir()
e0299ff86 cli/command/system: remove deprecated io/ioutil
78cb61c61 cli/command/swarm: remove deprecated io/ioutil and use t.TempDir()
d59330f40 cli/command/stack: remove deprecated io/ioutil
d1f26de64 cli/command/service: remove deprecated io/ioutil
c558df7ce cli/command/secret: remove deprecated io/ioutil
3b3a0b898 cli/command/registry: remove deprecated io/ioutil
f61aab59f cli/command/plugin: remove deprecated io/ioutil
9bdeb09ae cli/command/node: remove deprecated io/ioutil
f28c063e2 cli/command/context: remove deprecated io/ioutil
43795ec8f cli/command/manifest: remove deprecated io/ioutil and use t.TempDir()
d14b5bff8 cli/command/image: remove deprecated io/ioutil and use t.TempDir()
76b47359c cli/command/context: remove deprecated io/ioutil and use t.TempDir()
e946bf080 cli/command/container: remove deprecated io/ioutil
bc1790c5c cli/command/config: remove deprecated io/ioutil
8dc53344e cli/command/checkpoint: remove deprecated io/ioutil
e7a8748b9 build: use legacy builder for wcow if not opt-in with a builder component
e38e6c51f bring back and expose BuildKitEnabled func
ee9d17cae cli/context: update package documentation
242857dd8 update/remove various tests and options related to kubernetes support
7ccee6d60 remove unused KubernetesEnabled() test-utility
2d268392d publish RunExec for use by docker/compose
467e650d4 formatter: mark KubernetesEndpoint templating option as deprecated
6ea276728 config: mark stackOrchestrator option as deprecated
b7d0f5c66 docs: add more details to stack kubernetes deprecation
6dcfbe662 docs: update list of supported filters for stack services
039018b6d docs: remove deprecated orchestrator flags
869370a3f docs: remove mention of DOCKER_STACK_ORCHESTRATOR env-var
16ece9bb8 system/version: remove dead-code
1924bc9f0 stack/swarm: remove unneeded getStackServiceFilter()
cff010c61 context export: remove docker context export --kubeconfig options
013a74f00 document kubernetes feature as "removed" in 21.xx
d9a2a555d introduce plugin.RunningStandalone as utility func for a plugin to know it is run standalone
ee97fe95b Fix incorrect pointer inputs to `json.Unmarshal`
193ede9b1 remove obsolete mutli-orchestrator support
1d48749c1 warn user kubernetes is deprecated and options won't be stored in context
7b9580df5 Drop support for (archived) Compose-on-Kubernetes
a7778806a cli/compose/schema: make version optional, default to "latest"
a9fd69773 cli/compose: add schema 3.10 (no changes with 3.9 yet)
d44eca129 cli/compose/schema: Validate(): normalize version before validating
a3c131496 vendor: compose-on-kubernetes v0.5.0 to remove use of github.com/golang/glog
8b408372f Describe privileged mode in terms of capabilities
16edf8bff builder: conditional warning for wcow
fd2274692 Update deprecation docs
bce65f0ed builder: simplify error generation, and rephrase error/warning
4d8e45782 builder: fallback to legacy
6fef143db Set buildx as default builder
0ca2d25ba Update dockerd.md
2d6ebd1e3 Correct device syntax to --gpus
0d5b24b01 Dockerfile.vendor: use GOPROXY=direct
5c4a395c5 scripts/vendor: run go mod tidy when vendoring
08a1ccc60 Remove support for encrypted TLS private keys
ae3a61439 docs/daemon: replace deprecated '-g' option for '--data-root'
663f01b9c use uuid to invalidate cache
77b1031be make compose plugin detection in bash completion work on Mac OS
dfb39e9e5 Fix Typos
2725f0987 Fix typo
caa31d937 fix linguist with .gitattributes
7e560ae76 vendor with go mod
a1204a50b Update stats.md add example json output
5fab1b2b1 ensure version quad for goversioninfo
3425e9dc3 ci: add glibc to build matrix
418dbc4e7 docker exec cli docs: show 2 env vars, not just 1
a18514370 added missing closing parenthese
c6636d4d6 Change IO order in description
6ad2ceba3 Update Ubuntu version number references in push.md
4d93717ae ci: github actions test workflow
dedd4b79c Update Go to 1.16.11
62ea2bf1a GitHub Actions e2e tests
a4e746087 Bump moby/sys
8b85274d2 Fix typo
e285f1500 Update Go to 1.16.10
83c253770 fix .dockerignore to avoid dirty working tree
417f97605 Update most links in docs to use https by default
dbac82681 Fix checkout behavior and FileVersion
75284bd1d Use goversioninfo to create Windows Version Info
8c73a9392 docs: some minor touch-ups in checkpoint reference
bf310f863 Update Go to 1.16.9
795c9c96b docs: remove trailing space to fix generated YAML format
1f8cb1fbb registry: ensure default auth config has address
a3832808f docs: create.md: typo fix
cbda0760b docs: man page: typo fix in docker_1
c4619fb34 Update deprecated.md
1de937c14 docs: fix search results by filterd is-official
d9f4352c2 GitHub Actions cross
a90532e29 doc: Add `default-runtime` opt to daemon.json
47e5cfa9e docs: fix description of restart-delay to mention max (1 minute)
221bf5761 bump imdario/mergo v0.3.12
6482f3f9b Use private network address for default-address-pools setting in daemon.json example
47c7a096f Dockerfile: update tonistiigi/xx to 1.0.0-rc.2, add XX_VERSION arg
01fa5d925 Update Go to 1.16.8
2621af848 docs: fix some broken anchors
ea98f6c92 experimental: fix broken link to "checkpoint and restore" page
b0ec87afd format create.md table
172b2dc37 Fixing typo (his --> its)
214cd05aa create/run: remove default --stop-signal
61a1775ad vendor: golang.org/x/sys 63515b42dcdf9544f4e6a02fd7632793fde2f72d (for Go 1.17)
aa89e6847 docs: move checkpoint/restore doc from experimental into reference
463746ff2 docs: add missing redirect, and remove /go/experimental redirect
b5f4a6e45 fix innocuous data-race when config.Load called in parallel
47ba76afb docs: use "console" code-hint for shell examples
16466f1ce docs: rewrite reference docs for --stop-signal and --stop-timeout
af1bb80c3 Enable ssh forwarding when building a remote target
7e15d136b cli.SetupRootCommand(): minor cleanup
818564af5 cli/compose: use go1.16 native embed functionality for schemas
509cc3218 vendor: google.golang.org/grpc v1.5.2
2ef71e502 vendor: genproto 8816d57aaa9a, google.golang.org/protobuf v1.26.0, github.com/golang/protobuf v1.5.2
fc85fe4eb vendor: update docker to current master (API v1.42)
3e50224fd vendor: github.com/docker/swarmkit 3629f50980f6c0dd5ccd7dbfa0956b57ea0cd78d
847aef321 build: fix AddDockerfileToBuildContext not de-referencing tar header template
fcc2ce349 vendor: github.com/containerd/containerd v1.5.5
cfb07a75a vendor: github.com/opencontainers/runc v1.0.1
ecad24d47 vendor: github.com/sirupsen/logrus v1.8.1
23ed50c10 replace docker/pkg/signal with github.com/moby/sys/signal
3112b382a Update Go to 1.16.7
698c15547 GitHub Actions for lint
896459569 info: skip client-side warning about seccomp profile on API >= 1.42
b86f5135f docs/yaml: add TODO for conditionally skipping root command
c509ef710 yamldocs: various improvements
a477a727f Update to go1.16.6
0b2eaa7f7 cli/command: don't use client.CustomHTTPHeaders(), and simplify asserts
8916855c2 docs: update deprecation status of LCOW
40c6b117e change TestNewAPIClientFromFlagsWithHttpProxyEnv to an e2e test
60fe32243 e2e: update gotestsum to v1.7.0
15535d459 context: deprecate support for encrypted TLS private keys
2688f25eb cli/context: ignore linting warnings about RFC 1423 encryption
0695578d4 CircleCI: update BUILDX_VERSION to v0.6.0
ecaaa35be Add doc for BUILDKIT_PROGRESS env var
48dbf6f3c Update Dockerfiles to latest syntax, remove "experimental"
13e822500 vendor: cpuguy83/go-md2man/v2 v2.0.1
ef14ae09b vendor: github.com/russross/blackfriday/v2 v2.1.0
7a0dc924f Add support for ALL_PROXY
5a8d7d506 Detect compose plugin
f3d1b02e2 Dockerfile: remove custom go build for windows/arm64
d9f17025c Fix typo in documentation - build.md
0ebdad749 vendor: github.com/containerd/containerd v1.5.3 to reduce indirect dependencies
4ce521c50 info: print errors to stderr
1148163c3 Add completion for docker-compose plugin
d738e7c48 docker info: skip API connection if possible
a033cdf51 Deprecate Kubernetes context support
c05f0f595 Deprecate Kubernetes stack support
7190255a6 Deprecate Kubernetes stack support
0c723fd68 Fix the (dead) link for docs for Dockerfile syntax reference
384b59b73 Updated docker attach example.
918168c40 Bolded SIGKILL & fixed backslash escaping.
2a167065d Cleaned up formatting/typesetting.
64b2e9528 Document `--validate` daemon option
711334e9a vendor: github.com/moby/buildkit 9f254e18360a24c2ae47b26f772c3c89533bcbb7 (master / v0.9.0-dev)
678c2fde9 UX: don't reverse progress-bars when rolling back
a04c8210a vendor: github.com/docker/docker 25917217cab38eab40c3db0010b915258f4a8491
29fed6bff vendor: github.com/docker/swarmkit 2dcf70aafdc9ea55af3aaaeca440638cde0ecda6
f647fce89 vendor: github.com/containerd/containerd v1.5.2
f269e7fc3 vendor: github.com/coreos/etcd v3.3.25
83c915857 vendor: github.com/tonistiigi/fsutil d72af97c0eaf93c1d20360e3cb9c63c223675b83
79a9fd61f vendor: github.com/opencontainers/runc v1.0.0-rc95
579279ce0 vendor: github.com/Microsoft/hcsshim v0.8.16
ab46952ba vendor: github.com/Microsoft/go-winio v0.4.19
f114f6c87 vendor: github.com/json-iterator/go v1.1.10
c451d82af vendor: github.com/containerd/typeurl v1.0.2
3ea82da31 vendor: github.com/containerd/continuity v0.1.0
9ee3d08ae vendor: github.com/containerd/console v1.0.2
945f1237e vendor: github.com/containerd/cgroups v1.0.1
adb118d29 vendor.conf: sort alphabetically
6d25af0cd vendor: golang.org/x/time 3af7569d3a1e776fc2a3c1cec133b43105ea9c2e
8ebe404df vendor: golang.org/x/sys d19ff857e887eacb631721f188c7d365c2331456
af1687406 vendor: golang.org/x/sync 036812b2e83c0ddf193dd5a34e034151da389d09
dea997614 vendor: golang.org/x/net e18ecbb051101a46fc263334b127c89bc7bff7ea
716291337 vendor: golang.org/x/crypto 0c34fe9e7dc2486962ef9867e3edb3503537209f
2cbb88f4c vendor: github.com/modern-go/reflect2 v1.0.1
d6c55a105 vendor: github.com/moby/sys mountinfo/v0.4.1
f44563747 vendor: github.com/gogo/protobuf v1.3.2
b5bc27990 vendor: moby/term, Azure/go-ansiterm for golang.org/x/sys/windows compat
e12aade59 Update WORKDIR command information
524e3b215 e2e: update docker-compose to 1.29.2
c6cd0493a circleCI: update docker engine to 20.10.6
661b87ac9 Jenkinsfile: update old engine version to 19.03
2849437f2 Jenkinsfile: update labels to prevent running on cgroups v2
79638e6ea feat(docker): add context argument completion
f3b6ed744 e2e: make sure that os.environ is preserved
7672267e1 vendor: github.com/docker/docker-credential-helpers v0.6.4
49f607153 vendor: github.com/docker/docker v20.10.7
3b502ca00 Fix minor wording
16131fb45 Slight cleanup/refactor of attachContainer
04e6884f6 docs: fix link to command-line reference
cedaf44ea Ignore SIGURG on Darwin too
57e768059 docs: Fix broken jump link
f3034ee92 docs: dockerd: fix broken link and markdown touch-ups
782192a6e Swap "LABEL maintainer" for the OCI pre-defined "org.opencontainers.image.authors"
05ec0188f printServerWarningsLegacy: silence "No oom kill disable support" on cgroup v2
731f52cfe printServerWarningsLegacy: silence "No kernel memory limit support"
3c8d65963 docs: cleanup / refactor cli doc
276e7180f docs: add reference for "docker config" commands
68284ff59 docs: update some examples for proxy configuration
be327a4f0 cli/config/configfile: various test cleanups
f3886f354 Use designated test domains (RFC2606) in tests
caa4742e5 docs: remove experimental ipvlan docs, as they were migrated
12370ad1f Add progress bar to copy into and from container
30359cbdb docs/reference/builder: update "syntax" section
17a9eb60e docs/reference/builder: update example output, and some rephrasing
22b14dac8 docs/reference/builder: remove outdated example Dockerfiles
168173a3f Use net.JoinHostPort() to fix formatting with IPv6 addresses
5dd7a2826 docs/reference/builder: touch-up code-hints and some minor changes
2586decba docs: document log-opts for "dual logging" cache
83e9eeb8a scripts: Allow skipping windres when WINDRES= (empty string)
2c40960ba scripts: use WINDRES env var if set
6e45f4bfe scripts: fix VERSION_QUAD corner case in windows resource
26b633d37 set default version from git
b099c9c9e update readme with new examples
706e857a9 remove unused targets
bd3e853c7 update circleci cross target
a2a1de5f0 add windows/arm64 target
8b822c921 update windows resources generation
6423da8dc dockerfile based binary building
41d169d21 Update stop.md
75dd73f64 vendor: github.com/theupdateframework/notary v0.7.0-21-gbf96a202
09ddcffb2 config.Load() remove unneeded locks
25dc8034f vendor: github.com/spf13/cobra v1.1.3
e05e66f4b docs: remove trailing spaces to prevent yamldocs using "compact" notation
d051df994 docs: improve example for "remove all stopped containers"
b83bc6713 config: print deprecation warning when falling back to ~/.dockercfg
a54577b75 vendor: update notary to 5f1f4a34
e50cf7957 vendor: update x/sys to 134d130e
10e909a26 docs: Fix wrong bridge driver option
e1a751751 Fix `docker start` blocking on signal handling
9342ec6b7 ForwardAllSignals: check if channel is closed, and remove warning
cb1bb72fd Fix mistake with env var example in docker run docs
040210bfa Update the list of log drivers
b43b85203 context: Add tarball e2e tests
8c2872d2a context: Ensure context name is valid on import
a2f0cf527 context: Ensure import paths are valid
f52a9e2fe Add docs and completion for docker node ls --filter node.label
8d199d5bb Use golang.org/x/sys/execabs
7bef24876 vendor docker, docker-credential-helpers and golang/sys for execabs package
c0b7b5813 fix docker-run man page table formatting
852fe0599 docs: Fix wrong variable name
a4fb01f95 docs: add redirect for old reference URL
104469be0 service rollback: always verify state
ce26a165b docker service rollback: fix non-zero exit code in some cases
c85a37dbb cli/config: prevent warning if HOME is not set
26a6a724a fix --update-order and --rollback-order flags
fff164c22 Ignore SIGURG on Linux.
9f6966d4e vendor: github.com/theupdateframework/notary v0.7.0
697c3a5b4 docs: fix typo in deprecated.md
c2820a7e3 Fix panic when failing to get DefaultAuthConfig
fb2ea098a deprecate blkio-weight options with cgroups v1
69b5487e3 Remove duplicate word in push.md
ba2fef9bc Add bash completion for `dockerd --ip6tables`
5a252fb3a Update bash completion for fluentd --log-options
8242fe1fc Add bash completion for `docker run|create --pull`
b04241d95 Removed format flag for inspect
584c08e1f Added zsh completion for docker context subcommands
6e2607c6a Rename bin/md2man to bin/go-md2man
a4e86b543 Add bash completion for jobs
fc9ca9a94 Fix reading context and dockerfile from stdin with BuildKit
9d40c7464 scripts/build/.variables: Support SOURCE_DATE_EPOCH
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping moby to version v23.0.0-beta.1-8-g3fd34324a8, which comprises the following commits:
48a0d8a8d1 [23.0] update containerd binary to v1.6.12 (addresses CVE-2022-23471)
3d902fe719 [23.0] update containerd binary to v1.6.11
0da8917add vendor: github.com/containerd/containerd v1.6.11
623f6f7702 update to go1.19.4
1da1a3ea87 builder: handle host-gateway with extra hosts
7620f72fb8 ci(buildkit): update buildkit ref to fix issue with alpine image
304c56f7f5 distribution: checkSupportedMediaType: allow additional media-types
6875e7f1be seccomp: block socket calls to AF_VSOCK in default profile
978690e4f9 client/list: Handle SharedSize
da6bb8c408 AUTHORS: regenerate
a889a17a63 .mailmap: cleanup and additions
6f581c1808 hack/generate-authors.sh: refactor and simplify
de3143c6b9 Jenkinsfile: Fix dev image build fox ppc64le/s390x archs
f547f2f3c0 Makefile: always use buildx
0c4b6b1742 ci: define timeout for jobs
f088bcadd5 ignorefiles: cleanup
5770145433 vendor.mod: remove outdated comment about replaced module
d15fe0d782 registry: session: remove unused id
546005804c go.mod: golang_protobuf_extensions v1.0.4 - prevent incompatible versions
73a98393c6 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221123162438-b17f02f0a054
acb8204a7f Dockerfile: remove hardcoded platforms for vpnkit stage
313f105443 hack: remove obsolete sources for go-autogen
2b1ba3ea6b vendor: github.com/prometheus/client_golang v1.13.0
f493b770a9 vendor: github.com/aws/aws-sdk-go v1.37.0
36430f7970 vendor: google.golang.org/grpc v1.48.0
fb24b99a2b vendor: go.uber.org/zap v1.21.0
0c65191c49 vendor: go.uber.org/multierr v1.8.0
bf78bf3458 vendor: go.uber.org/atomic v1.9.0
dcf06b3f5f vendor: github.com/jmespath/go-jmespath v0.4.0
aba1d597bc vendor: google.golang.org/genproto v0.0.0-20220706185917-7780775163c4
e37ac41afb vendor: github.com/fernet/fernet-go v0.0.0-20211208181803-9f70042a33ee
963e3ec65c vendor: google.golang.org/protobuf v1.28.1
526203dd7f vendor: github.com/spf13/cobra v1.6.1
f528e2ab96 vendor: github.com/moby/term v0.0.0-20221120202655-abb19827d345
3989be2f7b vendor: github.com/bsphere/le_go v0.0.0-20200109081728-fc06dab2caa8
df2427022a vendor.mod: add comment about replaced dependency
9e4c508b55 vendor.mod: remove replace for github.com/rexray/gocsi
cb358e8a19 vendor: github.com/armon/go-radix v1.0.1-0.20221118154546-54df44f2176c
3768c71d9e Dockerfile: variant support in frozen-images stage
7b9e86f789 update github.com/tc-hib/go-winres v0.3.0 to fix schema version in manifest
5052c38846 update gotestsum to v1.8.2
3508cfb149 hack/validate: drop changelog-related steps
67633130c6 cleanup: drop historical CHANGELOG.md
2dc7a1dc25 cleanup: drop .DEREK.yml
fc657692c7 daemon/config: use strings.Cut(), fix panic in BuilderGCFilter
e75fa6684c daemon: use strconv instead of fmt.Sprintf()
abe6b3dc9b rootlesskit.installer: s/vendor.conf/vendor.mod/
297f224a92 update RootlessKit to v1.1.0
f48f4dde24 vendor: github.com/rootless-containers/rootlesskit v1.1.0
2dce69e001 update containerd binary to v1.6.10
5c4dc48995 vendor: github.com/containerd/containerd v1.6.10
10fa0d5321 vendor: golang.org/x/oauth2 v0.1.0
356f483038 vendor: golang.org/x/crypto v0.1.0
c0edbfd621 vendor: golang.org/x/net v0.1.0
e46e43470b vendor: golang.org/x/time v0.1.0
d4e2341f93 vendor: golang.org/x/sync v0.1.0
e32bfd347c vendor: golang.org/x/sys v0.1.0
65c7f3bac3 pkg/loopback: use ioctl helpers from x/sys/unix
5f35b157a3 vendor: golang.org/x/sys v0.0.0-20221006211917-84dc82d7e875
11973d0c0a vendor: github.com/moby/buildkit v0.10.6
251610397c vendor: gotest.tools/v3 v3.4.0
83f90039ef vendor: github.com/google/go-cmp v0.5.9 to remove golang.org/x/xerrors dep
2fd846d40f vendor: gotest.tools v3.3.0
f9ab209417 chore: update supported go version to 1.18+
bfca3185ee ci(actions): bump outdated actions on Linux
7f45eb041c ci(actions): migrate to file-based commands
7370bbc034 replace distribution/digestset with opencontainers/go-digest/digestset
21feb1808d Revert "validation: temporarily allows changes in integration-cli"
5e15ce3a4a pkg/directory: remove unused MoveToSubdir() utility
92b96ac2ed pkg/directory: minor refactor of Size()
e0b105623e pkg/system: unconvert
9d86e1d204 pkg/system: move GetExitCode() to pkg/idtools, and un-export
3a946f5291 pkg/system: remove Umask() utility
cf1e138ab1 pkg/directory: Size(): add back type-casts to account for platform differences
7175841ebd Remove long-deprecated "arm" fallback
f3e180b704 Update to Go 1.19.3 to address CVE-2022-41716
07e84005ac distribution: Error when pulling OCI artifacts
39d3d3db56 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221102165002-6341884e5fc9
1e0f2186a9 Fix containerd task deletion after failed start
75634f9a1e daemon: fix docs for config-default constants
ad11d3f232 Fix the max-concurrent-downloads and max-concurrent-uploads configs documentation
03015fe6de fix force remove for cluster volumes
09a2f7a667 integration: download busybox-w32 from GitHub Release
24de1f7adc vendor: github.com/containerd/containerd v1.6.9
c4685540e4 update containerd binary to v1.6.9
80dc5186ec builder/remotecontext/git: allow building on go1.18
f72c96c5c4 gha: buildkit: make checks more readable
1bbb6f2454 gha: buildkit: remove "skip-integration-tests" from matrix
c0be73f88d skip TestImagePullStoredfDigestForOtherRepo() on Windows and rootless
727c4fdee3 Validate digest in repo for pull by digest
b4c4be1f22 Revert "testutil/registry: remove unused WithStdout(), WithStErr() opts"
4bef6f5510 gha: update buildkit to v0.10.5-6-ge27c8e24 to skip some tests
f056df579a builder: add missing doc comment
c062238ea4 builder: fix running git commands on Windows
20ff8a2380 builder: make git config isolation opt-in
ca99cab891 builder: isolate git from local system
5829b244ec builder: explicitly set CWD for all git commands
3bc8fccc1b builder: modernize TestCheckoutGit
00b44caa69 vendor: github.com/moby/buildkit v0.10.5
aaa8f96cc9 registry: allow "allow-nondistributable-artifacts" for Docker Hub
671bf589e2 Change restart delay for Windows service to 15s
e1b240d6bd cmd/dockerd: use golang.org/x/sys Service.SetRecoveryActions()
18a54ed59c cmd/dockerd: use golang.org/x/sys/windows.SetStdHandle()
0c66bc948a cmd/dockerd: replace deprecated windows.IsAnInteractiveSession()
a12d359c1a daemon/graphdriver/windows: Remove() don't use defer() in a loop
2d12e69c9f daemon/graphdriver/windows: use go-winio.GetFileSystemType()
fa10084a82 daemon/graphdriver/overlay2: remove deprecated overrideKernelCheck
43ce8f7d24 integration/plugin: remove deprecated overlay2.override_kernel_check
a5ecbf4d22 vendor: github.com/opencontainers/selinux v1.10.2
ac6624773e pkg/fsutils: deprecate in favor of containerd/continuity/fs
4669418731 Volume prune: only prune anonymous volumes by default
1fe550cfc7 Update to go 1.19.2 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
edef49eeac docs: swagger: update description for default builder version
0a87dc9f71 Fix live-restore w/ restart policies + volume refs
262ad3bb2f libnetwork/resolvconf: removed unused GetIfChanged() and GetLastModified()
44d42c2b16 replace pkg/fileutils Matching funcs with github.com/moby/patternmatcher
f8e5145e96 runconfig, oci, image, layer, distribution: fix empty-lines (revive)
24888a10f6 cmd/dockerd: fix empty-lines (revive)
3a1896db63 client: fix empty-lines (revive)
47319e065d api/server: fix empty-lines (revive)
b9b6e68903 opts: fix empty-lines (revive)
c6c4d07830 daemon: fix empty-lines (revive)
9136c32327 daemon/images: fix empty-lines (revive)
7cb488934b daemon/logger: fix empty-lines (revive)
aea1aa0daa daemon/graphdriver: fix empty-lines (revive)
79caa2f955 daemon/cluster: fix empty-lines (revive)
87552f2e67 plugin: fix empty-lines (revive)
aad639c1fa volume: fix empty-lines (revive)
bee5153c5b testutil: fix empty-lines (revive)
31a938c73c integration: fix empty-lines (revive)
9d44956d8c builder: fix empty-lines (revive)
08d01be870 integration-cli: fix empty-lines (revive)
3660ee30e3 api/types: fix empty-lines (revive)
3424a7c2e3 pkg/*: fix "empty-lines" (revive)
541fda8e90 migrate pkg/pubsub to github.com/moby/pubsub
a8b1fec072 pkg/fileutils: remove gotest.tools as dependency, use t.TempDir()
fd0904805c contrib: make dockerd-rootless-setuptool.sh more robust
f6ebfaea19 test(pkg/archive): add TestImpliedDirectoryPermissions
daa8708601 refactor(pkg/archive): factor out createImpliedDirectories helper
7114360901 pkg/idtools: mkdirAs(): fix infinite loops and repeated "chown"
5dfec22079 swagger: update links to logo
cee2490d84 Jenkinsfile: use Ubuntu 20.04 for DCO stage
3ce520ec80 golangci-lint: update to v1.49.0
1d7fb64a6e vendor: github.com/moby/sys/sequential v0.5.0
ae65811be2 vendor: github.com/github.com/coreos/go-systemd v22.4.0
2bc36de638 Remove the OS check when creating a container
997ec12ec8 set ReadHeaderTimeout to address G112: Potential Slowloris Attack (gosec)
4a8f744255 ci: reduce cache throttling limits
07efcaf3b2 ci(test): report summary output
7f94f2b393 fix debian sysvinit script fails to restart docker daemon when stopped
970c938b56 client: ignore kernel-memory on API >= 1.42
d41ebd79f7 vendor: github.com/armon/go-metrics v0.4.1
d0fadc859d vendor: github.com/google/btree v1.1.2
44c5f7721a ci: fix branch filter pattern
00b1722fb4 Jenkinsfile: remove unit-validate stage
8fdaad4018 Jenkinsfile: remove report bundles creation in unit-validate
fefe6290e5 Jenkinsfile: remove validation steps moved to GHA
f925f295f4 ci: reusable dco workflow
cc770330f8 ci(test): dynamic validate matrix
e42f7db450 ci(test): validate job matrix
9a57be4ac4 integration-cli: remove TestDockerSuite func
95831246a2 Update uses of Image platform fields in OCI image-spec
6236ebaed5 vendor: github.com/klauspost/compress v1.15.9
366d551cd2 Update some tests for supplementary group permissions
393027d1b1 AdditionalGids must include effective group ID
b9b8ddc160 Jenkinsfile: remove steps moved to GitHub Actions
d96d56ff09 ci: fix .windows workflow name
cc7b8cc980 ci(test): send coverage to codecov
8ca74127d9 ci(test): upload reports
fc2942d4e0 integration-cli: TestPluginInstallImage broken on GitHub Runner
874954d8bd integration-cli: TestEventsOOM* broken on GitHub Runner
0bfb1bded3 integration: TestNetworkLoopbackNat is broken on GitHub Runner
4765040aa3 ci: gha test workflow for integration and unit test
c853881610 Update to go 1.19.1 to address CVE-2022-27664, CVE-2022-32190
2450c5a46b update to golang 1.19
5d2b3687b0 Wrap local calls to the content and lease service
287d1656de vendor: golang.org/x/net v0.0.0-20220906165146-f3363e06e74c
39976cd2bf Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
1650fa8889 vendor: github.com/docker/go-units v0.5.0
e9e7491f2b linting: host:port in url should be constructed with net.JoinHostPort
2609d4e252 linting: gosec: fix or suppress G112, G114 in test code
188c5d4a7c linting: suppress false positive for G404 (gosec)
ff4ec67b90 libnetwork/diagnostic: EnableDiagnostic(): use net.JoinHostPort
fee68df273 namesgenerator: remove Valentina Tereshkova
f7cf9fbe48 ci: move buildkit tests to a dedicated workflow
ee87eaf9ad ci(windows): move windows-2019 to another workflow
09a0b0a84a Upgrades buildx to 0.9.1
8e6ed32610 Makefile: update buildx to v0.9.0
f10c50958c replace pkg/system Sequential funcs with moby/sys/sequential
40515da6d6 pkg/system: make IsAbs() platform-agnostic
3b9370fcf8 validate: address SC2155 (shellcheck)
51bf7da729 validate: format vendor script with shfmt
f1bd611d41 validate: add yamllint validation
e9f7c05ae1 validate: yamllint: ignore "truthy value should be one of" warnings
72156dd7a4 validate: yamllint: set locale in config file
554a933944 validate: yamllint: use "parsable" output
8d43d7fa6b validate: yamllint rename config-file
a61b411ceb Dockerfile: update yamllint to v1.27.1
704e7a2d71 ci: fix broken workflow
87b7e40a34 update containerd binary to v1.6.8
901fb577cb update runc to v1.1.4
9aeda305fd vendor: github.com/moby/buildkit v0.10.4
48e314fbe2 gha: temporarily pin BuildKit integration test version
292d352ee4 libnetwork/drivers/ipvlan: fix missing IpvlanFlag field in config JSON
2293a20972 Test: wait for network changes in TestNetworkDBNodeJoinLeaveIteration
76fa56b62d vendor: github.com/containerd/containerd v1.6.8
e5958a8f08 client: remove deprecated WithDialer() option
e7f4963e73 daemon: kill exec process on ctx cancel
dfcb3e17ae Allow containerd shim refs in default-runtime
2c17e9a333 api: set default "Builder-Version" to "2" (BuildKit) on Linux
d1d9fd50c2 daemon: complete the "--graph" / "-g" deprecation
8912c1fade seccomp: allow "bpf", "perf_event_open", gated by CAP_BPF, CAP_PERFMON
332de3f1e3 vendor: github.com/hasicorp/memberlist v0.4.0
b73c27ef6b vendor: github.com/moby/swarmkit/v2 v2.0.0-20220721174824-48dd89375d0a
15f9cb5c4d vendor: github.com/containerd/containerd v1.6.7
6c78a1166e vendor buildkit 8e2d9b9 (v0.10 branch)
8ae63006f1 update containerd binary to v1.6.7
aeb600bc4a update runc binary to v1.1.3
e0d8418ddc vendor: github.com/Microsoft/hcsshim v0.9.4
0133759476 api: swagger: fix invalid example value (API v1.39-v1.41)
572457e265 api: swagger: document BuildCache fields (API v1.39-v1.41)
49377cdd63 api: swagger: document BuildCache fields (API v1.42)
910d5c44fc api: add BuildCache.Parents for API >= v1.42
0e3d20cb20 api: deprecate BuildCache.Parent in API >= v1.42
a96b75191e api/types: add missing GoDoc for BuildCache fields.
a285cd4d88 api: swagger: document BuildCache fields.
1240460547 Update golang to 1.18.5
e88c28941f docs: api: add missing "platform" query-arg on create (v1.42)
9c4984db6b docs: api: add missing "platform" query-arg on create (v1.41)
af7c8ff045 api: swagger: add missing "platform" query-arg on create
6de52a29a8 daemon: support other containerd runtimes (MVP)
85b9568d0e state/Wait: Fix race when reading exit status
826003ecae integration: TestWaitRestartedContainer
e2bd8edb0d daemon/restart: Don't mutate AutoRemove when restarting
44fde1bdb7 integration: Add TestContainerWithAutoRemoveCanBeRestarted
6ab3b50a3f libcontainerd: switch generated containerd.toml to v2 (v1 is deprecated)
6d41219bae Fix file capabilities droping in Dockerfile
112fb22152 Windows: Re-create custom NAT networks after restart if missing from HNS
a9081299dd logger/journald: fix SA4011: ineffective break statement
e34ab5200d fix formatting of "nolint" tags for go1.19
863ca3f185 libnetwork: skip firewalld management for rootless
edcc51cbee profiles: seccomp: add syscalls related to PKU in default policy
c51efa8617 docs: add API v1.42
52791b1c14 client: errors: remove dead code
cdbca4061b gofmt GoDoc comments with go1.19
c52e221207 gofmt files
e417e8dfc2 pkg/parsers/operatingsystem: fix stray import
6905fe7488 update golang to 1.18.4
420142a886 profiles: seccomp: allow clock_settime64 when CAP_SYS_TIME is added
71e2aa78e4 hack: don't generate checksums for individual binaries
1cab8eda24 replace golint with revive, as it's deprecated
65e1adc219 Dockerfile: update golangci-lint to v1.46.2
968ff5ab44 fix some minor linting issues
10c56efa97 linting: error strings should not be capitalized (revive)
e5a1514c6e Dockerfile: update to latest syntax
43feaa9f8f Dockerfile.e2e: remove redundant INSTALL_BINARY_NAME
d6f9b4d73b hack: remove version from binaries, and remove symlinks
2b0bd34d47 Dockerfile: don't install delve on ppc64le, s390x
66f14e4ae9 Fix AppArmor profile docker-default /proc/sys rule
3a3a0cb54e project: Add label kind/regression
4e632a13c3 Dockerfile: use consistent format for CONTAINERD_VERSION
1f187e640c daemon/config: use more assertions in tests
10e42f599a daemon/config: TestUnixValidateConfigurationErrors: use subtests
751222d907 daemon/config: verify that flags were set correctly in tests
f73aadb230 daemon/config: New(): set more defaults
a0d0db126c daemon/config: set default MTU when initializing config
62f71c4505 daemon/config: fix TestDaemonConfigurationMerge
9b39cab510 daemon/config: improve some tests
f8231c62f4 daemon/config: Validate() also validate default MTU
fce7ebdaa5 cmd/dockerd: loadDaemonCliConfig() safeguard for unparsed flags
0281f50efa cmd/dockerd: move setting defaults to loadDaemonCliConfig()
717a503590 api: add Hosts to API Config
fee8a6a5c4 cmd/dockerd: make newAPIServerConfig() more idiomatic
b053376741 cmd/dockerd: reserve port before creating sockets/listeners
986725b466 daemon: improve some errors
cbe354b12a vendor.mod: group replace rules
384dc22de7 Add more detail to cluster volumes docs
421b93dcf5 vendor: github.com/hashicorp/go-msgpack v0.5.5 (indirect)
4e87a758f6 vendor: github.com/hashicorp/serf v0.8.5
06a7f41488 vendor: github.com/hashicorp/serf v0.8.2, go-msgpack v0.5.3
f3b2df7b0b vendor: github.com/armon/go-metrics v0.0.0-20180917152333-f0300d1749da
6b023b2eb6 vendor: github.com/prometheus/client_golang v1.12.1, procfs v0.7.3
bd9412e36b vendor: un-pin github.com/matttproud/golang_protobuf_extensions
f0647f33f5 vendor: go.opencensus.io v0.23.0
939d124731 vendor: github.com/hashicorp/go-multierror v1.1.1
917f620874 vendor: un-pin github.com/coreos/systemd
6488695a2c vendor: un-pin github.com/coreos/pkg
f70a9788c5 drivers/ipvlan: add ipvlan_flag option, support l3s ipvlan_mode
db977355b0 fix typo (cluser -> cluster)
0bce64f08d api: POST /containers/{id}/wait: fix validation for "condition" parameter
cf543a0bd5 vendor: github.com/moby/sys/mount v0.3.3
4178caade6 vendor: github.com/moby/sys/mountinfo v0.6.2
53aefba7f3 vendor: golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a
88916949ef build: force unlazy of refs by calling extract
56a20dbc19 container/exec: Support ConsoleSize
04c51cba84 Add new people to the curators list
b4ffe3a9fb Move the inspect code away from the image service
f1c111b176 fix flaky TestRunContainerWithRmFlag tests (take 2)
068ab51442 layer: layerstore.Cleanup(): improve some logging
c2e32c144c volumes/service: NewStore: add more context to error
15716fc9ae ci(windows): test report summary output
ca8b659a06 ci(integration-cli): move integration-cli run to make script
1887d85e21 ci(integration-cli): dynamically split tests in matrix
0e6a1b9596 integration-cli: split DockerSuite into subsequent build suites
7ed823ead9 validation: temporarily allows changes in integration-cli
5edfd6d081 bump netlink library bump netlink to 1.2.1 change usages of netlink handle .Delete() to Close() remove superfluous replace in vendor.mod make requires of github.com/Azure/go-ansiterm direct
cf6058941c Dockerfile: add crun to dev image
2ec3e14c0f test: Add tests for logging
f90056a79d daemon: LogDaemonEventWithAttributes: don't call SystemInfo()
b2795564dc codecov: disable "patch" status
73b4b07c4d vendor: github.com/containerd/containerd v1.6.6
a7e3182757 update containerd binary to v1.6.6
c3eefab550 hack: remove error_on_leaked_containerd_shims
1fcd9f73d4 hack: stop installing containerd-shim (io.containerd.runtime.v1.linux)
658a4b0fec libcontainerd: remove support for runtime v1 API
2c7a6d7bb1 daemon: remove support for deprecated io.containerd.runtime.v1.linux
89db5a6fd4 vendor: github.com/containerd/containerd v1.6.5
a747cd3702 update containerd binary to v1.6.5
b241e2008e daemon.NewDaemon(): fix network feature detection on first start
1db286c5e8 Fix alphabetisation of possible names
ca6e94f994 update AUTHORS and mailmap
cd58d11b2a volume/local.New(): extract loading options to a function
7e907e29a3 volume/local.New() always unmount existing mounts
c0f0cf6c19 volume/local: extract saving options to a separate method
d3930330a7 volume/local: store both volume's "data" and "root" path
e106e3f5c6 volume/local: make "validateOpts()" a method on Root
29c6224fe9 volume/local.Create(): validate early
a77b90c35e volume/local: make setOpts() a method of localVolume
b56fc2d0f8 volume/local.New(): don't register volume before we're done
eecf7a0840 volume/local: localVolume.mount() move errors.Wrap()
c1671abf14 volume/local: add test for validation
b4b2a0323b libnetwork/portallocator: un-export consts for defaults
414dd017b3 Revert "Added API to set ephemeral port allocator range."
9adad264d2 distribution: match manifest list resolution with containerd
585c147b7a fix flaky TestRunContainerWithRmFlag tests
a0a6b82a0d ci: add concurrency check
c1a9ffc97a update golang to 1.18.3
bb69104381 Openrc: Depend on containerd init script
6ecbd078c2 ci(windows): upload test reports with logs
e3c14acd33 Jenkinsfile: remove Windows stages
553b0edb4c fix unclosed file-handles in tests
293cfd6c76 Ensure performance tuning is always applied
c51d34dcfb vendor: github.com/moby/ipvs v1.0.2
2463c40144 daemon/logger: Fix TestConcurrentLogging race test
d8a731c3aa daemon/logger: Increase initial buffers size
98810847c4 daemon/logger: Put Message back as soon as possible
8fe2a68698 daemon/logger: Global buffer pools
152467d185 api: swagger: adjust ContainerWaitResponse error as optional
2359da802b docs: api: adjust ContainerWaitResponse error as optional
0afc71fc90 archive: add human-readable hint to Lchown error
cb7b329911 daemon: fix daemon.Shutdown, daemon.Cleanup not cleaning up overlay2 mounts
a3b1b66bb3 integration: TestPingSwarmHeader(): fix incorrect ping, and cleanup
795ecf02ce builder: fix empty reference
fdd2772547 vendor: gotest.tools v3.2.0
a5f6500958 replace deprecated gotest.tools' env.Patch() with t.SetEnv()
3cadb1f63f update gotestsum to v1.8.1
7493342926 daemon/logger: Share buffers by sync.Pool
c6cc03747d daemon/images: use gotest.tools for tests, and use sub-tests
a04e3326e7 Fix constant `WARNING: No swap limit support` on cgroup v2 hosts
2f6b8a2aec vendor: github.com/containerd/cgroups v1.0.4
c3d7a0c603 Fix validation of IpcMode, PidMode, UTSMode, CgroupnsMode
cba8cf34d2 Set ExternalPortReserved for dummy proxy
18529568d3 integration-cli: TestRemoveContainerAfterLiveRestore use overlay2
345346d7c6 Annotate some swagger documented types as int64
c576de88ed vendor: github.com/Microsoft/hcsshim v0.9.3
493d3ca0c3 fix docker-proxy not statically linked
15ed58ffb5 ci(windows): upload coverage to codecov
80862d61d0 gha: temporarily override buildkit version for tests
90fb4eca20 vendor: github.com/moby/buildkit v0.10.3
a67e159909 daemon/logger: hold LogFile lock less on ReadLogs
c609523a8c pkg/filenotify: delete unused package
01915a725e daemon/logger: follow LogFile without file watches
6d5bc07189 daemon/logger: fix refcounting decompressed files
49aa66b597 daemon/logger: rotate log files, never truncate
990b0e28ba daemon/logger/local: fix appending newlines
3844d1a3d1 daemon/logger: drain readers when logger is closed
906b979b88 daemon/logger: remove ProducerGone from LogWatcher
ae5f664f4e daemon/logger: open log reader synchronously
9aa9d6fafc daemon/logger: add test suite for LogReaders
961d32868c daemon/logger: improve jsonfilelog read benchmark
0ca6e28807 integration-cli: TestSlowStdinClosing is flaky on GitHub Runner
ac82b2519a integration-cli: refactor TestStartReturnCorrectExitCode
440d051ce9 integration-cli: TestRestartContainer is flaky on GitHub Runner
890de00f02 ci: windows gha workflow (integration test)
71ba8cf24f ci: windows gha workflow (unit test)
958fa08711 ci: windows gha workflow (build)
304fbf0804 introduce CreateMountpoint for parity between binds and mounts
3b157dc3b6 integration-cli: fix test rogue certs
85a7f5a09a daemon/linux: Set console size on creation
8a5c13155e all: use unix.ByteSliceToString for utsname fields
a5a77979dd docs: api: /containers/{id}/attach/ws: remove unsupported query-args < v1.42
d4a0a422da docs: api: add note about websocket attach streams
0dd3a2eade Apply performance tuning to new sandboxes also
ce3e2d1955 overlay2: account for UserNS/userxattr in metacopy test
ea6760138c wsContainersAttach attach to stdin/out/err streams as requested
cc3848f2b7 Rename Reservation to Reservations in the open API
9a7298a3e6 volume: mask password in cifs mount error messages
4e025b54d5 Remove mount spec backport
2c3d1f7b4b overlay2: test for and report metacopy status
7de9f4f82d Allow different syscalls from kernels 5.12 -> 5.16
d9524d92a9 api/types/swarm: Version: implement stringer interface
240a9fcb83 Add Swarm cluster volume supports
73f0b01da1 volume/local.New(): remove redundant filepath.Base()
a4bfd9788f volume/local.New(): remove some intermediate variables
74be0fed6f volume/local: remove redundant Root.scopedPath(), Root.scope
0abd7ba229 volume/local: remove hack for downgrading docker 1.7 to 1.6
c9e19a2aa1 Remove "seccomp" build tag
91c254a189 vendor: github.com/opencontainers/runc v1.1.2
bc0fd3f617 update runc binary to v1.1.2
af5d83a641 Make it explicit raw|multiplexed stream implementation being used
f9cef468f9 vendor: golang.org/x/sys v0.0.0-20220412211240-33da011f77ad
d294078dd0 update golang to 1.18.2
61fec7b36e daemon/initlayer: Init(): remove unused stub for Windows
1f21c4dd05 testutil/registry: remove unused WithStdout(), WithStErr() opts
78095e4d12 Remove unused image/v1 code
14fdd97b69 Remove unused distribution/metadata/V1IDService
4573cd9c30 Improved readability of the run hack script
7873c27cfb all: replace strings.Replace with strings.ReplaceAll
f0d1911ddf api/server: fix stray import in container_routes.go
d6115b8f40 daemon: fix some minor nits
d733481399 daemon: daemon.ContainerKill() accept stop-signal as string
521807837b plugin: Executor.Signal() accept syscall.Signal
21df9a04e0 container: StopSignal(): return syscall.Signal
ea1eb449b7 daemon: killWithSignal, killPossiblyDeadProcess: accept syscall.Signal
2ec2b65e45 libcontainerd: SignalProcess(): accept syscall.Signal
070da63310 daemon: only create trust-key if DOCKER_ALLOW_SCHEMA1_PUSH_DONOTUSE is set
bb1208639b daemon: separate daemon ID from trust-key
6e376e32d8 update containerd binary to v1.6.4
a35040222c vendor: github.com/containerd/containerd v1.6.4
9880e6a1ef vendor: github.com/opencontainers/selinux v1.10.1
789223f2dc api: postContainersStop, postContainersRestart remove redundant validation
4c2f18f6cc seccomp: support riscv64
a3ae9a5956 opts: ParseTCPAddr(): extract parsing logic, consistent errors
82088364e1 vendor: github.com/moby/buildkit v0.10.2
fca0c20cd4 vendor: github.com/containerd/continuity v0.3.0
16cd359664 vendor: golang.org/x/sys v0.0.0-20220405210540-1e041c57c461
63b13a70ee vendor: github.com/Microsoft/go-winio v0.5.2
e62382d014 daemon/config: remove uses of pointers for ints
dbd575ef91 daemon: daemon.initNetworkController(): dont return the controller
bdc6473d2d health: Start probe timeout after exec starts
41b96bff55 update uses of container.ContainerCreateCreatedBody to CreateResponse
3bb2d0026b api: rename container.ContainerCreateCreatedBody to container.CreateResponse
ff197417fa api: swagger: move ContainerCreateResponse to definitions
64e96932bd api: rename volume.VolumeCreateBody to volume.CreateOptions
18281c92fa api: rename volume.VolumeListOKBody to volume.ListResponse
4caf68f4f6 api/types: rename volume.VolumeUsageData to volume.UsageData
3cae9fef16 imports: remove "volumetypes" aliases for api/types/volume
7293857456 api: rename ContainerWaitOKBody to container.WaitResponse
5ecb6fb68b vendor: github.com/containerd/containerd v1.6.3
4cf904494e daemon: reloadMaxDownloadAttempts() remove validation
c46e2e85ee daemon/config: Reload(): add TODO for config reload logic
9a54dadc44 daemon/config: MergeDaemonConfigurations() don't validate intermediates
b819480899 daemon/config: Reload(): normalize labels before validation
21dac5e441 opts: remove IPOpt as it's no longer used
ccb75439ff cmd/dockerd: use flags.IPVar() instead of custom type
5d352f6a87 cmd/dockerd: remove config_common_unix.go
92d9e892b5 cmd/dockerd: combine installUnixConfigFlags with installConfigFlags
83f67c63a6 cmd/dockerd: combine installRegistryServiceFlags with installCommonConfigFlags
1483905024 cmd/dockerd: remove some intermediate variables
782de17bd0 cmd/dockerd: installCommonConfigFlags() re-group some flags
0ff0b8693e cmd/dockerd: move storage-driver flag to unix-only file
a9be008f00 update containerd binary to v1.6.3
314a47492a chore: fix linguist for Dockerfile
0603f87fab cmd/dockerd: validate API configuration as part of --validate
e16c3616e2 cmd/dockerd: change newAPIServerConfig() to only receive config.Config
57c20c1b79 cmd/dockerd: normalize hosts when loading config
7b3463f2c5 cmd/dockerd: loadDaemonCliConfig(): minor cleanup
d9d0683862 cmd/dockerd: un-export config methods, and don't pass flags "twice"
390c7d6871 daemon/config: Validate(): validate log-level
cc8dd9b4a7 Extended contribution guide with how to enable GoLand IDE syntax highlighting and code completion in Moby project
7d328ea1d6 Added Delve debugger to the development container (including instructions in the contribution guide).
63ea9eb594 cmd/dockerd: don't call registry.SetCertsDir() twice
350fadbdd4 rootless: remove redundant sync.Once
cd054983ff api/server: remove "Logging" from config
3b56c0663d daemon: daemon.networkOptions(): don't pass Config as argument
36049a04d2 test: use `T.Setenv` to set env vars in tests
1c129103b4 Bump swarmkit to v2
2b0da89366 distribution: move newPusher() and newPuller() together with definition
566c8db66d distribution: add GetRepository(), un-export NewV2Repository, ValidateRepoName
572c7e0184 distribution: remove RootFSFromConfig(), PlatformFromConfig() from ImageConfigStore
1e75ab0ab9 distribution: remove Pusher interface, NewPusher(), and redundant V1 checks
41999abcbe distribution: remove Puller interface, remove redundant V1 checks
074e41679d distribution: un-export internal errors and error-utilities
fb5485f5d0 distribution: un-export ImageTypes, make ImagePullConfig.Schema2Types optional
176f66df9c api/types: replace uses of deprecated types.Volume with volume.Volume
54386f0c8f api: docs: move VolumeListResponse to definitions (v1.39-v1.41)
cd635e465d api: swagger: move VolumeListResponse to definitions
f19ef20a44 api: move types.Volume to volume.Volume
0e4f473a9f pkg/chrootarchive: remove redundant init() stub for Windows
df650a1aeb panic() instead of logrus.Fatal() in init funcs
ab5ebefa0d opts: TestParseHost(): also check the error
fc83834ebb opts: use subtests, and split checks
83b71e0ed0 opts: re-order test-cases and use more consistent values
eebd8d3c0c opts: ParseTCPAddr(): remove workaround for go1.5
c66271f4da opts: TestParseDockerDaemonHost(), TestParseTCP() remove workaround
90647e22b2 api/types/time: remove DurationToSecondsString() utility as it's no longer used
e8fa708ae5 client: ContainerStop(), ContainerRestart(): support stop-signal
9060126639 client, integration-cli: remove unneeded import aliases
83a185897d API: add "signal" parameter to container stop and restart endpoints
90de570cfa backend: add StopOptions to ContainerRestart and ContainerStop
952902efbc daemon: containerStop(): use a regular "defer" to log container event
5edf9acf9c daemon: move default stop-timeout to containerStop()
f3bce92a24 daemon: cleanupContainer(): pass ContainerRmConfig as parameter
4430992af8 daemon: rename some variables, import-aliases and receivers
301b252b58 libnetwork: don't use strings.Fields() to improve performance
b9de761c26 docs: api: document ImageSummary fields (api v1.39-v1.41)
f8a1d6b50a api: swagger: document ImageSummary fields
b365924ec3 client: ContainerKill(): don't send signal query-param if none was set
07dba5d9fe api: docs: improve documentation of ContainerConfig type (API v1.30-v1.41)
a46700dbdb Cleanup servicebindings only on Windows
6861aade58 Delay network deletion until after lb cleanup
556cb3ae81 Log HNS policylist removal failures
cb62919d28 api: improve documentation of ContainerConfig type
ef64db5021 update golang to 1.18.1
013d648888 client: CopyToContainer(), CopyFromContainer(): remove status-code handling
83969fa3dd daemon: move DefaultShutdownTimeout to daemon/config
690a6fddf9 daemon: move default namespaces to daemon/config
881e326f7a daemon/config: remove unneeded alias
4039850bef add instructions to generate events message table bin
1efda78f2b use go-winres for windows build and cleanup autogen and winresources
fd2143e0b0 use go-winres for cross to create Windows resources
1d6e0fb103 metrics: DRY metric definitions
efe03aa2d8 Jenkinsfile: add workaround for CVE-2022-24765
449250994f builder/remotecontext/urlutil: simplify and improve documentation
5f89a6a78e pkg/urlutil: deprecate, and move to builder/remotecontext/urlutil
074bc1c3ab pkg/urlutil: remove unused IsTransportURL()
b6d58d749c runconfig: ContainerDecoder(): fix handling of invalid JSON
ff5f70e55f api/server/httputils: move WriteJSON() together with ReadJSON()
0c9ff0b45a api/server/httputils: add ReadJSON() utility
ef490cae45 api/server/httputils: matchesContentType(): return error instead of logging
3e47a7505e daemon/logger/fluentd: remove udp, tcp+tls, unixgram, add tls scheme
12424cfa6f daemon/logger/fluentd: fix missing host, remove urlutil.IsTransportURL()
0f40aefccd daemon/logger/fluentd: validate path element
b161616202 daemon/logger/fluentd: make error-handling less DRY
0dd2b4d577 daemon/logger/fluentd: rename var that collided with import
40182954fa daemon/logger/fluentd: add coverage for ValidateLogOpt(), parseAddress()
c2ca3e1118 daemon/logger/syslog: remove uses of pkg/urlutil.IsTransportURL()
87206a10b9 daemon/logger/splunk: remove uses of pkg/urlutil.IsURL()
2e831c76c2 daemon/logger/gelf: remove uses of pkg/urlutil.IsTransportURL()
170049225c ci: add cross job in ci workflow
12558c8d6e fix cross compilation for arm platforms
d730d550e2 ci: set shorter retention period for artifacts
c2dfb60e31 ci: update upload-artifact and download-artifact actions to v3
5d9e99ead3 missing windows arm64 arch detection
eb4c6d8316 maintainers: update metadata for samuelkarp
101dafd049 daemon/config: move proxy settings to "proxies" struct within daemon.json
2bc07370ec daemon/graphdriver: remove unused graphdriver.IsInitialized()
d570bc4922 remove deprecated support for overlay(2) on backing FS without d_type (fstype=1)
758714ed6d api/server/router/grpc: fix some nits in NewRouter()
87948c7892 Jenkinsfile: allow all ppc64le / s390x stages through checkbox
2ff043c9fe Updated AUTHORS and .mailmap files
a35b4ac54a daemon/config: Validate(): validate hosts
5cfcd88d57 daemon/config: fix TestReloadDefaultConfigNotExist if file exists
ecbfe73193 opts: ParseTCPAddr(): fix validation of hosts to not ignore path elements
846af8e413 cmd/dockerd: update --ip6tables description to include "experimental"
ae7d3efafd Makefile: update buildx to v0.8.2
ffc903d7a6 update runc binary to v1.1.1
69993c1c57 vendor: github.com/opencontainers/runc v1.1.1
482d1d15bf distribution: use the maximum compatible platform by default
890231f46b client: container ps: don't set "limit" if none was set
fcc42d5682 distribution: use correct platform matcher for containerd
d74bf97f40 vendor: github.com/moby/buildkit d7744bc
064650dd09 Pass TestPsListContainersFilterCreated if other created containers exist
31e1fec950 Suport vpci-class-guid in the non-containerd backend
cb07afa3cc Implement :// separator for arbitrary Windows Device IDTypes
92f13bad88 Allow Windows Devices to be activated for HyperV Isolation
c60f70f112 Break out `setupWindowsDevices` and add tests
1e645fb70f client: Ping(): add handling for swarm status headers
adf4bf772d API: add "Swarm" header to _ping endpoint
4d7ab4b214 update RootlessKit to v1.0.0
19a7875c3c vendor: golang.org/x/sys v0.0.0-20220319134239-a9b59b0215f8
85572cac14 registry: remove dependency on rootlesskit, add `SetCertsDir()`
3853eb59d1 daemon: require storage-driver to be set if the driver is deprecated
020fd68326 daemon: graphdriver: some minor cleanup
7b277f62cc Remove comment that is no longer relevant
ec221d6881 vendor: github.com/containerd/containerd v1.6.2
e69529c94a update containerd binary to v1.6.2
8c7ea316d1 Mount (accessible) host devices in --privileged rootless containers
ff35785cfc vendor buildkit 8d45bd6 that fixes dockerd worker integration tests
32f0561715 ci: buildkit integration test
fda0226a89 builder: add buildinfo for buildkit
b899db6423 builder: enable shm-size and ulimit for buildkit
aadb3bf766 builder: changes needed since buildkit 0.10.0
e5812117a5 bridge: also flush conntrack entries when setting up endpoints
a2aaf4cc83 vendor buildkit v0.10.0
feab0cca9f libnetwork/overlay:fix join sandbox deadlock
e82b7b2fa0 errdefs: move GetHTTPErrorStatusCode to api/server/httpstatus
45067cda33 client: remove wrapResponseError()
5e9829b75d registry: remove unused fallbackError
8947730124 registry: un-export AuthTransport()
2f466a9f88 registry: remove unused Service.TLSConfig()
64e50ce86a search: remove parsing JSON filters out of the backend
bdb878ab2c filters: lowercase error
2d45b5ddbc api: filters: return correct status on invalid filters
a5be5801e9 search: un-export registry.DefaultSearchLimit, and fix API status codes
bee8f006fe registry: serviceConfig: don't embed registry.ServiceConfig
2b5dc81582 registry: move allowNondistributableArtifacts, isSecureIndex to config
382b986520 registry: make defaultService.ServiceConfig() more idiomatic
18de76a420 registry: make serviceConfig.loadInsecureRegistries() more atomic
dae2173568 registry: defaultService: use sync.RWMutex
9cb0aa4c91 registry: minor improvements and cleanup
d3c3e2c867 registry: remove unneeded alias for api/types/registry import
79aa65c1fa registry: return "errdefs" compatible error types
98202c86ad registry: remove ErrInvalidRepositoryName
273dca4e3c registry: remove unused error return from HostCertsDir()
6e3e657ea6 registry: un-export config.LoadXXX() functions
4ebb18479d registry: un-export Session, remove NewSession()
286992ef53 registry: un-export Ping(), PingResult, remove v1Endpoint.Path()
6a01a3cfa4 registry: un-export V1Endpoint and NewV1Endpoint()
8b8bbbd445 registry: un-export HTTPClient() and NewTransport()
569dc6d692 registry: un-export DefaultService
541ed077a6 registry: remove unused authConfig from Session
02ed265854 registry: remove unused RepositoryData and ImgData
2bcf4628a7 registry: remove TODO for removing localhost as insecure by default
d9261561f9 registry: add TODO for removing ParseSearchIndexInfo()
746c51b54f registry: tests: remove unused mock code and use gotest.tools
917b44799d vendor: golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
9bf40d7edd pkg/system: move IsWindowsClient to pkg/parsers/operatingsystem
427b0cd636 api/types: fix KernelMemory deprecation comment, and omitempty
5d10c6ec67 Update handling of deprecated kernel (tcp) memory options
af6307fbda Remove KernelMemory option from /containers/create and /update endpoints
85c4d633db pkg/system: remove deprecated (and unused) windows consts
590e34eaf4 update golang to 1.18.0
4203a97aad staticcheck: ignore "SA1019: strings.Title is deprecated"
98f027813f api: swagger: add IPAMConfig on IPAM
abc2f095ab api: docs: add IPAMConfig on IPAM (v1.41)
8ac2f84f9a docs: cleanup swagger API with multiple examples (v1.25-v1.41)
8ba83f63a0 client: ImageSearch(): don't send limit if none was specified
3671cb90a3 cleanup swagger API with multiple examples
de6732a403 version: add RootlessKit, slirp4netns, and VPNKit version
098a44c07f Finish refactor of UID/GID usage to a new struct
da068165f6 ci: simple gha workflow to build docker daemon
a768652fd6 Support STOPSIGNAL instruction in commit change
c28a8e9cf7 layer: remove layerstore.setOS(), layerstore.getOS()
7df7357e08 vendor: cloud.google.com/go v0.92.0, google.golang.org/api v0.54.0
f9f549cbe4 plugin: add EndpointResolver interface
61599d0a4d plugin: remove unused pluginRegistryService
06abe8dd2d update containerd binary to v1.6.1
b36fb04e03 vendor: github.com/containerd/containerd v1.6.1
00ba5bdb98 Unpin grpc, protobuf dependencies
06c797f517 vendor: github.com/docker/swarmkit 616e8db4c3b0
b92af14a1c vendor: github.com/docker/distribution v2.8.1
14cb9d22df api/types: add godoc on MountPoint
0a438f2612 api: docs: document MountPoint fields (v1.25-v1.41)
69ba3713d5 api: swagger: document MountPoint fields
b0b71dbe1c pkg/sysinfo: remove libcontainer dependency
2c97295ad8 daemon: remove v1 shim configuration for containerd
5979d6e7e3 client: add const for environment variables, and document them
c2c7e9d449 client: improve GoDoc, and minor touch-ups
8512cf076c client: TestNegotiateAPIVersion(), TestClientRedirect(): use sub-tests
25a336ab6a client: TestGetAPIPath(): update test to use more realistic results
65e4ea27cd client: various small test-improvements
c04dff7623 Correct type of Mounts in ContainerSummary in docs (v1.25-v1.40)
16e3ca35eb Correct type of Mounts in ContainerSummary in docs
ed843fe42f Correct type of Mounts in ContainerSummary
948c2c45bb client: use canonical names for HTTP Headers
a34fe9b422 Add locking to the ZFS driver
b94a319fdf remove deprecated builder/dockerignore
d89bfac728 remove deprecated pkg/symlink
7449ca078b remove deprecated pkg/locker
4a6dc85e40 remove deprecated pkg/term, pkg/term/windows
97a235196e remove deprecated pkg/mount
0759f013a4 api: docs: fix indentation of HostConfig.SecurityOpt (v1.39-v1.41)
a4567903a8 api: swagger: fix indentation of HostConfig.SecurityOpt
352d1bb8e0 api: docs: move ContainerWaitResponse to definitions (v1.39-v1.41)
e4c6ca36ae api: swagger: move ContainerWaitResponse to definitions
444b27910c api: docs: move VolumeCreateOptions to definitions (v1.39-v1.41)
0119f7973b api: swagger: move VolumeCreateOptions to definitions
5c0aae359f api: docs: move Volume examples inline (v1.39-v1.41)
e444ac3470 api: swagger: move Volume examples inline
9f3b1a9664 distribution: retry downloading schema config on retryable error
8e9c8ff7f2 api: docs: remove deprecated RootFS.BaseLayer (API v1.25-v1.41)
fd1f34cacd api: docs: remove deprecated RootFS.BaseLayer (current API version)
25c896fcc2 api: remove unused RootFS.BaseLayer
9aacaeb667 pkg/parsers: support Windows 11; drop ProductName
9ed8cd128a Dockerfile.windows; update containerd binary to v1.5.10
2c8f0a0c99 update containerd binary to v1.5.10
b4a943afab vendor: github.com/containerd/containerd v1.5.10
e781cf5f64 update to go 1.17.8 to address CVE-2022-24921
a0230f3d9a remove unneeded "digest" alias for "go-digest"
06df530b6d image: improve godoc for V1Image
34c2c14775 api: improve godoc for ImageInspect struct
d19dd22257 api: docs: fix warning about comment indentation (API v1.40-v1.41)
9565606222 api: docs: update docs for /images/{name}/json (API v1.39-v1.41)
697f42582a api: docs: fix warning about comment indentation (current API version)
3193d7e101 api: docs: update docs for /images/{name}/json (current API version)
90c54320c8 daemon/logger: fix data race in LogFile
9080e5a1f7 daemon/logger: add test to detect data races
5263bea70f daemon: move check for CPU-realtime daemon options
dee9f422c8 pkg/system: remove github.com/docker/go-units dependency
25ee00c494 pkg/system: move EnsureRemoveAll() to pkg/containerfs
d492101172 daemon: SystemInfo() extract collecting debugging information to a helper
ac2cd5a8f2 daemon: unexport Daemon.ID and Daemon.RegistryService
a27f8aecad daemon: SystemInfo() extract container counts to a helper function
82f96da04d layer: remove unused ErrActiveMount, ErrNotMounted, ErrNotSupported
de0eabbd66 vendor: github.com/vishvananda/netns v0.0.0-20210104183010-2eb08e3e575f
d8e1746466 vendor: github.com/tonistiigi/fsutil v0.0.0-20220115021204-b19f7f9cb274
931b455f27 vendor: github.com/hashicorp/errwrap v1.1.0
4d1c323796 vendor: golang.org/x/text v0.3.7
7f9c77b2fe vendor: golang.org/x/oauth2 v0.0.0-20210819190943-2bc19b11175f
a69cda092b vendor: golang.org/x/lint v0.0.0-20210508222113-6edffad5e616
c03ae0b726 vendor: github.com/cespare/xxhash/v2 v2.1.2
2634edec6e vendor: github.com/klauspost/compress v1.14.3
8bf694b427 vendor: github.com/google/go-cmp v0.5.7
89d39e5e77 vendor: gotest.tools/v3 v3.1.0
c35143f92e vendor: github.com/moby/sys/mount v0.3.1
9efa8b3500 all: fix typos
203fcd6997 layers: remove layerStore.getWithoutLock()
7d70d95d8e registry: add DefaultRegistryHost const, and improve documentation
9d6382f2b3 vendor: github.com/Microsoft/hcsshim v0.9.2
ace606fd75 vendor: github.com/aws/aws-sdk-go v1.31.6
0809bd6859 vendor: github.com/klauspost/compress v1.14.2
20e5d6b3e3 vendor: github.com/pelletier/go-toml v1.9.4
812dacb676 vendor: github.com/containerd/continuity v0.2.2
461845bfbc vendor: github.com/containerd/cgroups v1.0.3
7876c53424 vendor: golang.org/x/tools v0.1.5
1b829c2a6a vendor: golang.org/x/mod v0.4.2
6be521ccb8 vendor: golang.org/x/oauth2 v0.0.0-20210805134026-6f1e6394065a
8f106d4576 vendor: github.com/google/go-cmp v0.5.6
9393cf73f6 removed mentions of the archived Docker CE repo
ff408210da distribution: remove use of deprecated dial.DualStack
3c44ade6d0 daemon: fix error-message for minimum allowed kernel-memory limit
9f3c238c29 docs: add missing KernelMemoryTCP to api v1.40 and v1.41
203d97df59 api/swagger.yml: add KernelMemoryTCP to /info endpoint
3f0abde50d integration-cli: TestSlowStdinClosing: use sub-tests
496a4bd15e integration-cli: TestSlowStdinClosing: add logs, and potential naming conflict
821b4d4108 daemon/config: DefaultShmSize: minor tweak and improve docs
705f9b68cc some cleaning up of isolation checks, and platform information
1b3fef5333 Windows: require Windows Server RS5 / ltsc2019 (build 17763) as minimum
833139f390 pkg/archive: audit gosec file-traversal lints
e9bbc41dd1 Remove local fork of archive/tar package
79ea1b16b1 distribution/xfer: un-export DoFunc type
4d6c6a5000 distribution/xfer: smaller interface, rename to DigestRegisterer
047e032461 distribution/xfer: define DownloadOption type
69b0913e1f distribution/xfer: add TODO for return error on Registered()
3309ea9419 distribution/xfer: slightly more idomatic type assertion
4c7dc9806c distribution/xfer: un-export transfer interface accessors
849d8c2d02 distribution/xfer: un-export Watcher
96a750aab4 distribution/xfer: un-export Transfer interface
765844e419 distribution/xfer: un-export NewTransfer()
587c474b57 distribution/xfer: use "transferManager" in godoc
874b11495b distribution/xfer: un-export transferManager.setConcurrency() and .transfer()
d746a836fc distribution/xfer: remove TransferManager interface, un-export newTransferManager
cf31aa0fa0 distribution/xfer: fix some nits in tests
79cad59d97 daemon/images: ImageService.Cleanup(): return error instead of logging
dd4cf4b641 daemon: remove some unused stubs on Windows
1240f8b41d daemon: remove kernel version check and DOCKER_NOWARN_KERNEL_VERSION
c79a169a35 Remove opts.QuotedString implementation
699174347c daemon: use RWMutex for stateCounter
cad6c8f7f1 Update Go to 1.17.7
2ac898c232 vendor: github.com/moby/sys/signal v0.7.0
9c2646e486 vendor: github.com/moby/sys/mountinfo v0.6.0
c2b33f8684 vendor: github.com/fsnotify/fsnotify v1.5.1
3776fe6256 vendor: github.com/containerd/containerd v1.5.9
3ddf696a2d vendor: golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c
42d2f0bbc7 vendor: github.com/google/go-cmp v0.5.5
b9c8eca468 libnetwork/networkdb: remove some redundant fmt.Sprintf()'s
abaf4b25d7 integration-cli: remove some redundant fmt.Sprintf()'s
7e06add3c8 testutil/daemon: remove redundant fmt.Sprintf()'s
737e8c6ab8 api: POST /containers/{id}/wait: validate "condition" parameter
a832635e51 client.ContainerWait(): don't send empty "condition" query parameter
5e2b7dea02 docs/api: add missing 400 response for POST /containers/{id}/wait
41b137962d docs/api: update /containers/{id}/wait "condition" parameter (v1.30-v1.41)
0e5929f99d api/swagger: add missing 400 response for POST /containers/{id}/wait
0ac746fabb api/swagger: update /containers/{id}/wait "condition" parameter to match code
fada92c393 vendor: github.com/prometheus/common v0.10.0
147752ee05 vendor: github.com/grpc-ecosystem/go-grpc-middleware v1.3.0
f9f11050cc vendor.mod: don't replace github.com/stretchr/testify
738bd5a90e vendor.mod: don't replace github.com/containerd/containerd
be4144c153 vendor.mod: don't replace gopkg.in/fsnotify.v1
9f7280f2d2 vendor: github.com/google/uuid v1.3.0
24a7b61800 vendor.mod: don't replace github.com/hpcloud/tail
c1fa01deb8 vendor.mod: don't replace github.com/onsi/ginkgo, github.com/onsi/gomega
40bf5d414e vendor: github.com/pelletier/go-toml v1.9.1
8f6d58915d vendor: github.com/klauspost/compress v1.12.3
40b8495735 vendor: go.etcd.io/bbolt v1.3.6
03f45fafc5 vendor: golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2
368d680dfe vendor: golang.org/x/time v0.0.0-20211116232009-f0f3c7e86c11
ce4ca67d52 vendor: golang.org/x/text v0.3.6:
2deec80dba fix(check-config.sh): Check for existence of /etc/os-release before sourcing
624b3cfbe8 Freeze the namesgenerator package against new additions
eae20b1a1b client: extract FromEnv parts to separate WithXX options
0d9a37d0c2 oci: inheritable capability set should be empty
646ace6ee3 Dockerfile: update golangci-lint v1.44.0
89f63f476b integration-cli: SA5011: possible nil pointer dereference (staticcheck)
85ed9b8746 libnetwork: fix unhandled errors in tests (ineffassign)
99935ff803 client.NewClientWithOpts(): remove redundant type assertion (gosimple)
b88f4e2604 daemon/logger/awslogs: suppress false positive on hardcoded creds (gosec)
be63b7d7f6 vendor: github.com/docker/distribution v2.8.0
b79dec8138 vendor: github.com/opencontainers/runc v1.1.0
0d04359ec2 vendor: golang.org/x/sys v0.0.0-20220114195835-da31bd327af9
c55eb6b824 update runc binary to v1.1.0
325c3a457b hack/vendor.sh: run "go mod tidy" before vendoring
347a85787b pkg/namesgenerator: remove names-generator binary
2cff05e960 client/request.go:157:8: SA1019: err.Temporary is deprecated (staticcheck)
af819bf623 seccomp: add support for Landlock syscalls in default policy
f9fb5d4f25 daemon/graphdriver/fuse-overlayfs: Init(): fix directory permissions (staticcheck)
ab9796b0e9 pkg/system: rewrite IsWindowsClient() using golang.org/x/sys/windows
be463cbd6c pkg/system: remove unused HasWin32KSupport()
b36d896fce layer: remove OS from layerstore
da277f891a daemon.cleanupContainer() remove named return variable
cae1dbee01 ImageService.ReleaseLayer(): remove unused containerOS argument
e30a4a438b daemon: remove leftover LCOW platform checks
cfddecc3d2 builder/dockerfile: remove leftover LCOW platform checks
1ef0a5bb91 image: remove leftover LCOW platform checks
b2ef2e8c83 daemon/images: remove leftover LCOW platform checks
f9a1846ca2 distribution: PushLayer.Size(): remove unused error return
f5db4b01c0 daemon/images: ImageService.LookupImage(): minor cleanup
e1ea911aba layer: remove unused error return from .Size() and .DiffSize()
01ae9525dd Add support for platform (os and architecture) on image import
6b69de61f9 integration-cli: TestImportBadURL: use proper rfc6761 "invalid domain"
9839ddd800 api: postImagesCreate(): use local variable for platform
81ac487d71 api: postImagesCreate(): rename ambiguous err variable
5c870b421a daemon/images.NewImageService() don't print debug logs
bb66ebd621 distribution: xfer.LayerDownloadManager.Download(): remove "os" argument
0b0a995d9d distribution: remove RootFSDownloadManager interface
38e2e756c9 Avoid platform-specific NewPatternMatcher function in TestCompile
839e2ecc1b docs: remove HostConfig.LxcConf field from API docs
75a1ad0c9f api: remove HostConfig.LxcConf field
16cb04c2e8 api/swagger: move DistributionInspect to definitions
ebd709f80c api/swagger: rename PluginPrivilegeItem to PluginPrivilege
0b5a2e3c87 api/swagger: fix up event-types and move to definitions
a65804adc4 api/swagger: move DistributionInspect to definitions
24a43d934c api/swagger: rename PluginPrivilegeItem to PluginPrivilege
92ed6ca356 api/swagger: fix up event-types and move to definitions
62cf748df9 Fix swagger docs to match the opencontainers image-spec
6153c2f08d Extract PluginPrivilegeItem as explicit type definition
be93e50a58 Use explicit object names for improved swagger based code generation
8168d1877d Fix ContainerSummary swagger docs
0e719f8a00 Add "changes" query parameter for /image/create to swagger docs
d3d78c1ae3 Add RestartPolicy "no" to swagger docs
c0bc82cef1 Fix swagger docs to match the opencontainers image-spec
7248ebcd7e Extract PluginPrivilegeItem as explicit type definition
6e421a1823 Use explicit object names for improved swagger based code generation
9ac2d04617 Fix ContainerSummary swagger docs
050f5f29f7 Add "changes" query parameter for /image/create to swagger docs
90294e9bdb Add RestartPolicy "no" to swagger docs
037b4c0e8e docker-py: skip CreateContainerTest::test_create_with_device_cgroup_rules
ace8c7896c vendor: cloud.google.com/go v0.59.0 to remove some test-deps
3bd74488fd Makefile: use volume for go mod cache when running dev-container
e5d28115ee vendor: regenerate
a46f968229 vendor: replace vndr with `go mod vendor`
fa73c24471 Fixed broken links in project documentation files.
7b052cdc63 Removed the slack archives
f85ae526f0 Update Go to 1.17.6
8d250be008 Add unit test for (*Pattern).compile
483aa6294b daemon: load and cache sysInfo on initialization
df3ea5da03 update containerd binary to v1.5.9
9326ea5b99 Jenkinsfile: remove Windows RS1 as it reached end of support
436abb458c hack/ci: remove unused entrypoint scripts
745700d2ef remove unused poule.yml
5d96e09628 Do not panic on empty quoted string argument
71119a5649 awslogs: use gotest.tools/v3/assert more
f0e450992c awslogs: replace channel-based mocks
2145f3ba2c docs: fixing /exec/{id}/resize response code in API documentation
3dda7311cd xfer: fix a simple goroutine leak in unit test
7b692a421b libnetwork: remove more config bits related to external k/v stores
745ba3ecbc libnetwork: remove etcd-related code and tests
147173b099 libnetwork: remove consul-related code and tests
25594c33b9 libnetwork: replace consul with boltdb in test
a7d0f3060a libnetwork: remove zookeeper-related code and tests
e202ac3f38 remove pkg/discovery as it's now unused
00f9b23c3a libnetwork: remove external DS-based host discovery
c741ab0efa daemon: remove daemon/discovery as it's now unused
9492354782 daemon: remove daemon.discoveryWatcher
f28fc8bc8d daemon: remove discovery inits
d2c6602cac integration-cli: use unique names for custom bridges
ff2a5301b8 daemon: remove discovery-related config handling
9f2240c56f cmd/dockerd: produce error when using discovery options
65b92a730a integration(-cli): remove discovery related tests
702cb7fe14 daemon: remove discovery related tests
834272f978 Added error codes for exec resize in API docs
1a933e113d Fixed exec resize success code in API docs
ffd5a20ab8 vendor: bump etcd v3.3.27
cfd26afabe Use syscall.Timespec.Unix
4bdc208449 hack: remove a workaround for go-tools
22f19f8243 hack: do not exclude SQL-related checks
136f93ea05 hack: remove non-existent directories from golangci-lint's skip-dirs
c91e09bee2 daemon/logger: replace flaky TestFollowLogsHandleDecodeErr
7a10f5a558 daemon/logger: refactor followLogs to write more unit tests
5cbc08ce57 The flag ForceStopAsyncSend was added to fluent logger lib in v1.9.0
60f868c263 Ensure system clock was set
8b4c445f54 test: use os.CreateTemp instead of ioutil.TempFile
9a0b1f4f6b hack: use golangci-lint to find io/ioutil
3500d7e472 vendor: github.com/fluent/fluent-logger-golang v1.9.0
f415028976 integration-cli: delete existing docker0 bridge to prevent it interfering
dd66dcad9c fileutils: Avoid compiling a regexp for simple patterns
85eaf23bf4 seccomp: add support for "swapcontext" syscall in default policy
26dafe43a4 system: unbreak build for darwin
f2e458ebc5 daemon/logger: test followLogs' handleDecodeErr case
48d387a757 daemon/logger: read the length header correctly
d620cb6afc Update Go to 1.17.5
6bb3891c60 Update Go to 1.17.4
7c17ad8735 docker-rootless-setuptools.sh: use context after install
934f955e3d vendor: github.com/opencontainers/runc v1.0.3
53397ac539 update runc binary to v1.0.3
d78b883576 Fix grammar for "does not exist"
dd9782fe94 go.mod: golang.org/x/crypto 5770296d904e90f15f38f77dfc2e43fdf5efc083
bd61629b6b fluentd: Turn ForceStopAsyncSend true when async connect is used
e24d61b7ef vendor: github.com/fluent/fluent-logger-golang v1.8.0
9d9b8e0cf3 daemon.WithDevices(): use containerd's HostDevices()
55da5245de Fix missing parent info case in MatchesUsingParentResults
0f1b68df16 Adjust deprecation comments
7c216bcabe distribution: validate blob type
715e78631d fix image spec JSON example
4555d3aa54 pkg/fileutils: Track incremental pattern match results against each pattern
a715bfb857 vendor: github.com/Microsoft/hcsshim v0.8.23
cbb4aed0b4 vendor: github.com/containerd/ttrpc v1.1.0
ce25968008 vendor: github.com/moby/sys/mount v0.3.0, mountinfo v0.5.0, signal v0.6.0, symlink v0.2.0
875969251b vendor: golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359
6d92d2c7c4 TestConntrackFlowsLeak: use busybox "nc"
c3537ec24c Dockerfile.windows: update containerd binary to v1.5.8
238180d292 integration-cli: remove manifest v2 schema 1 push tests
cef0a7c14e vendor: github.com/opencontainers/image-spec v1.0.2
458b4aae19 vendor: github.com/containerd/containerd v1.5.8
aef782f348 update containerd binary to v1.5.8
615ff22437 vendor: github.com/opencontainers/selinux v1.9.1
c721bad8cc Fix flaky TestPortMappingV6Config
080529dfea Jenkinsfile: update check-config script to latest version
2a6a4587fa testing: skip TestBuildWCOWSandboxSize for now
eea2758761 TestBuildUserNamespaceValidateCapabilitiesAreV2: cleanup daemon storage
1a15a1a061 testutil: daemon.Cleanup(): cleanup more directories
24aaa7f8c9 log error message when receiving an unexpected type error
502b35c8f6 Fix windows rxReservedNames
61b43b1eb8 bump up rootlesskit from v0.14.4 to v0.14.6
582ef29426 vendor: github.com/containerd/containerd v1.5.7
c97d09b1e1 vendor: github.com/Microsoft/hcsshim v0.8.22
5f79e03624 vendor: github.com/imdario/mergo v0.3.12
ce668d6c1e Update Go to 1.17.3
b865204042 cmd/dockerd: create panic.log file without readonly flag
3a938df4b5 Make the network allocator handle IPv4 blocks too small for network/broadcast addresses.
894230b82d Fixed docker.internal.gateway not displaying properly on live restore
e7583ab859 testutil/daemon: ReadLogFile() trigger os.Sync() before reading
040b1d5eeb integration/daemon: use "windows" to skip tests
76016b846d daemon: make sure proxy settings are sanitized when printing
bad4b30e65 integration: skip TestDaemonProxy on rootless CI
427c7cc5f8 Add http(s) proxy properties to daemon configuration
a6ce7eff65 daemon: move maskCredentials to config package
1cdad98a7a distribution: do not retry unsupported layer media types
13cff6d583 Fix race in TestCreateServiceSecretFileMode, TestCreateServiceConfigFileMode
eadf839530 fix TestInvalidRemoteDriver() to check underlying error
195558de5a pkg/fileutils: escape additional regex meta characters
27ba755f70 Fix racey TestHealthKillContainer
0c887404a8 daemon: fix TestVerifyPlatformContainerResources not capturing variable
3e5e7a6de3 CI: update docker-py to 5.0.3
b4e056d556 buildkit: normalize build target and local platform
a8ce4d47c3 dockerd-rootless.sh: Fix variable not double quotes cause unexpected behavior
8f1b2a0fd3 Port testutil/daemon to FreeBSD
59511e1234 vendor: Update go-winio to v0.5.1
485cf38d48 oci/caps: limit available capabilities to current environment
79d6e935ad libnetwork: some minor refactoring / cleanup
d86a331fa4 libnetwork: improve consistency in log messages
fa4a9702be Update containerd binary to v1.5.7
b746a2bf9b Update containerd binary to v1.5.6
23abee412b compression: support zstd with skippable frame
1c7a47f709 Dockerfile: switch CRIU install to Debian 11 "bullseye" packages
13adcfafde Revert "Dockerfile: CRIU: disable GPG validation, due to expired signing key"
9a09448540 libnetwork: ServeDNS(): don't panic on unsupported query types
089a33e7c5 Dockerfile: CRIU: disable GPG validation, due to expired signing key
68e3034322 Add an option to specify log format for awslogs driver
e7fb0c8201 Update Go to 1.17.2
9f39889dee Fixes #41871: Update daemon/daemon.go: resume healthcheck on restore
9dbec13362 registry: EndPointV1.Ping() remove redundant "Standalone" and cleanup logs
37dc2582d1 registry: remove use of iota for consts
4a52c46e37 registry: trimV1Address(): simplify trimming trailing slash
542edf0c21 registry: inline newV1Endpoint() into newV1EndpointFromStr()
c8754f44d7 registry: remove unused ToV1Endpoint()
afbeec8bda registry: remove tlsConfigForMirror()
9f874e53b9 registry: remove unused registry.ErrAlreadyExists
cec4e69813 chrootarchive: don't create parent dirs outside of chroot
03f1c3d78f Lock down docker root dir perms.
ce715505bd Dockerfile: update test-registries to released versions
25381123d3 Makefile: update bfirsh/redoc to 1.14.0, and fix swagger warnings
b954e4793b Dockerfile: move installers into Dockerfile
ec9c8545f8 Makefile: remove passing proxy env-vars
3ce1dcc25d daemon.UsingSystemd(): don't call getCD() multiple times
7ccf750daa Allow switching Windows runtimes.
f3d3994a4b Port pkg/system/mknod.go to FreeBSD
e187eb2bb5 compression: add support for the zstd algorithm
0050ddd43b Update Go to 1.17.1
f586a473cf pkg/namesgenerator: replace uses of fmt.Sprintf()
1b8db06785 Dockerfile: update gotestsum to v1.7.0
14ff070469 Dockerfile: use "go install" to install utilities
a7a7c732c0 Dockerfile: use version for some utilities instead of commit-sha
3cec4b8cd4 Dockerfile: remove GOPROXY override (was for go < 1.14)
3c7c18a499 remove deprecated "nokmem" build-tag for runc
1de1d26eda api/swagger: move DistributionInspect to definitions
9c0ca67e95 api/swagger: rename PluginPrivilegeItem to PluginPrivilege
a207eea6a4 api/swagger: fix up event-types and move to definitions
303ea8e820 pkg/plugins: fix compatibility with go1.16
a826ca3aef daemon.WithCommonOptions() fix detection of user-namespaces
4045c4ceaf client: use subtests for TestNetworkInspect
c23eae3114 libnetwork/ipamapi: godoc fixes
92ea7df3d1 libnetwork: fix some linting issues
c425188bc0 libnetwork: remove API, as it's no longer used
accec292c1 pkg/sysinfo: use containerd/pkg/seccomp.IsEnabled()
7ce810c771 use defer to unlock mutex
073f8df0fe libnetwork/types: remove TransportPort.FromString() as it's unused
7c0d8fa5da libnetwork/types: remove PortBinding.FromString() as it's unused
513310f776 libnetwork/types: remove GetMinimalIPNet() as it's unused
1a67e9572e cmd/dockerd: add the link of "the documentation"
c55a4ac779 refactor: move from io/ioutil to io and os package
6f5beea146 Remove platform argument from Puller interface.
6a72e73c1d fix potential goroutine leak by making channel non-blocking Signed-off-by: Shihao Xia <charlesxsh@hotmail.com>
ee9e526764 Only check if route overlaps routes with scope: LINK
aa606307b7 vendor: update archive/tar to match Go 1.17.0
686be57d0a Update to Go 1.17.0, and gofmt with Go 1.17
21faae85ee vendor: update tar-split to v0.11.2
247f4796d2 api/types/events: add "Type" type for event-type enum
9ed88a0801 hack/vendor.sh: allow go version to be specified with .0
d48c8b70a1 vendor: golang.org/x/sys 63515b42dcdf9544f4e6a02fd7632793fde2f72d (for Go 1.17)
82c978ad95 vendor: github.com/opencontainers/runc v1.0.2
14189170d1 update runc binary to v1.0.2
b585c64e2b info: remove "expected" check for tini version
25dbeab78e Fix a typo in project/GOVERANCE.md
96e4adfdc2 api/types/versions: simplify compare if versions are equal
83ec46a7e6 libcontainerd/local: fix GoDoc
f68260ba22 Dockerfile: frozen images: update to bullseye, remove buildpack-dep
1effe7435a Dockerfile: add back libseccomp-dev to cross-compile runc
43c6a3d359 Dockerfile: update to debian bullseye
d7abbd01eb Jenkinsfile: windows 2022 LTSC mcr.microsoft.com/windows/servercore:ltsc2022
7e67bc067f integration/libnetwork: make delInterface() a t.Helper()
3ab8decad7 Dockerfile: remove aufs-tools, as it's not available on bullseye
882fd19f39 Dockerfile: update to docker/dockerfile:1.3, and remove temporary fix
d215d3477b libnetwork/resolvconf: remove README.md
98caf09f0f fix go-digest to make sure the algorithms are registered
572498be56 move pkg/ioutils.HashData() to libnetwork/resolvconf
c21be64e1a libnetwork: remove resolvconf/dns package
c9ba301a49 libnetwork: move resolvconf consts into the resolvconf package
8f75d8d4d5 Fix swagger docs to match the opencontainers image-spec
ef44b22085 Extract PluginPrivilegeItem as explicit type definition
52a9f1689a Use explicit object names for improved swagger based code generation
9275268110 Fix ContainerSummary swagger docs
6b53f2c5a2 Add "changes" query parameter for /image/create to swagger docs
d741c14f1f Add RestartPolicy "no" to swagger docs
a6692ccc0b Windows CI: Make sure that correct version of containerd-shim-runhcs-v1.exe is used
b90dd66bdd testutil: don't import "opts" package
427ad30c05 libnetwork: remove unused "testutils" imports
1285c6d125 Windows CI: Add support for testing with containerd
c44b90f3bf Test fix for Windows compatibility
97ede9df26 Rename Matches to MatchesOrParentMatches
9bae4f2f24 Add more optimal MatchesUsingParentResult method, use it in pkg/archive
002b38dc36 integration/network: remove unused CheckKernelMajorVersionGreaterOrEqualThen
8a25d752a9 integration/network: remove IsUserNamespace in favor of testenv equivalent
e53f65a916 pkg/signal: remove DefaultStopSignal const
3b316814f9 container: un-export DefaultStopTimeout
8e0d43dda7 docs/api: add node about concurrency on /system/df endpoint
135cec5d4d daemon,volume: share disk usage computations
5adc29ffe2 daemon: sort imports according to gofmt
4706e1c37d Jenkinsfile: update Windows 2022 insider to latest tag (10.0.20348.1)
d081e5d70c runconfig: decodeContainerConfig() return early if there's no HostConfig
e8e278c44f daemon: simplify networking config
b1f7ffea9f Update Go to 1.16.7
27aaadb710 daemon: normalize seccomp profile as part of setupSeccompProfile()
04f932ac86 daemon: move custom seccomp profile warning from CLI to daemon side
f8795ed364 daemon: allow "builtin" as valid value for seccomp profiles
68e96f88ee Fix daemon.json and daemon --seccomp-profile not accepting "unconfined"
ac449d6b5a daemon/config: rename the default seccomp profile to "builtin"
ee02257553 Add const for "unconfined" and default seccomp profiles
a6dd341ca2 client: remove deprecated SetCustomHTTPHeaders(), CustomHTTPHeaders()
8afb57e633 client: deprecate client.CustomHTTPHeaders()
0fdd23b7fe API: discard `/system/df` `type` parameter pre-1.42
6948ab4fa1 api/types: hostconfig: fix LogMode enum
5ae1c1f4cf api/types: hostconfig: clean up enum for Isolation
09cf117b31 api/types: hostconfig: create enum for CgroupnsMode
98f0f0dd87 api/types: hostconfig: define consts for IpcMode
a18cf3e4ef daemon: paralellize disk usage computations
58c4c120a8 oci/caps: simplify, and remove types that were not needed
fc3f98848a oci/caps: improve error message for unsupported capabilities
72b1fb59fe oci/caps: use map for capabilities to simplify lookup
d786a52364 oci/caps: generate list of all capabilities on "init"
0ec6f7ea23 oci/caps: minor optimization in init
b00b21b93c oci/caps: rename some vars that conflicted with imports / built-ins
94334153b5 oci/caps: remove hack for RHEL6 kernels
9499acc360 bump up rootlesskit to v0.14.4
c1c973e81b Revert "Temporarily disable CAP_PERFMON, CAP_BPF, and CAP_CHECKPOINT_RESTORE"
3af2217dc4 hack/test/unit: run libnetwork tests sequentially
b821590461 libnetwork/networkdb: consistently wait for nodes in tests
8fbba73f42 libnetwork: wait until t.Deadline() instead of hardcoded value
fb794166d9 seccomp: Use explicit DefaultErrnoRet
5f0703c549 client: remove containerd "platform" dependency
b33f3c7802 client: remove unused Platform field from configWrapper
3d58d13811 vendor: github.com/containerd/containerd v1.5.5
4a07b89e9a update containerd binary to v1.5.5
e3491ab56a pkg/archive: gzDecompress(): use local vars for MOBY_DISABLE_PIGZ
b321474747 pkg/archive: DetectCompression(): use bytes.HasPrefix()
ebeda658bc pkg/archive: remove some debug logs
dc7c06ce4e vendor: github.com/docker/swarmkit 3629f50980f6c0dd5ccd7dbfa0956b57ea0cd78d
e05fc8ca35 builder/dockerfile: make normalizeDest() platform-specific again
337500f374 builder/dockerfile: make containsWildcards() platform-specific again
131fac6eb4 builder/dockerfile: remove fromSlash() and separator() utils
190b6f64e3 builder/dockerfile: copy: remove LCOW code
c33b9bcfd4 libcontainerd/local: remove LCOW bits
13cb04e57c remove various LCOW bits (container, image, pkg/containerfs)
0998c7e363 system: remove LCOWSupported() utility
dc70e55c9b distribution: remove LCOW code
79f89ed9b7 hack/ci: remove LCOW from examples, and fix minor linting issue
0c84c322ae daemon, oci: remove LCOW bits
47ad2f3dd6 API,daemon: support `type` URL parameter to /system/df
9f6b562dd1 seccomp: add support for "clone3" syscall in default policy
384517218a volume/mounts: remove windowsValidateRegex() utility
71b0e47bee volume/mounts: add destination validation to "validators"
cff0276aaf volume/mounts: rename windowsSplitRawSpec() to splitRawSpec()
f77eb5349b volume/mounts: minor formatting and linting fixes
efb87ad106 volume/mounts: pre-compile regular expressions
3deac5dc85 btrfs: annotate error with human-readable hint string
a34d804572 integration: remove deprecated endpoint test
90f8d1b675 fileutils: Fix incorrect handling of "**/foo" pattern
17f39dcb4d fix a typo
28409ca6c7 replace pkg/signal with moby/sys/signal v0.5.0
dd01abf9bf integration: copy loop variable into parallel test closures
d5dbbb5369 storage-driver: promote overlay2, make Btrfs and ZFS opt-in
4fc2d4df03 vendor: github.com/containerd/containerd v1.5.4
22316ff1d8 Makefile: update buildx version to v0.6.0
cf1328cd46 update containerd binary v1.4.8
549060a1d3 vendor: github.com/sirupsen/logrus v1.8.1
82b264bd2d vendor: github.com/coreos/go-systemd/v22 v22.3.2
9f9a0b872c vendor: github.com/cilium/ebpf v0.6.2
1256aa0241 vendor: github.com/opencontainers/runc v1.0.1
f50c7644cf update runc binary to v1.0.1
8de724390e Makefile: do not tag docker-dev image with GIT_BRANCH
0ef7e727d2 seccomp: Seccomp: embed oci-spec LinuxSeccomp, add support for seccomp flags
bfd4b64600 seccomp: setupSeccomp(): update errors and remove redundant check
c815b86f40 seccomp: add additional unit-tests
c1ced23544 seccomp: use oci-spec consts in tests
b309e96b11 seccomp: improve GoDoc for Seccomp fields
6ff6913ac4 pkg/signal: remove gotest.tools dependency
0880df4644 pkg/signal: move Trap() to cmd/dockerd
ea5c94cdb9 pkg/signal: move signal.DumpStacks() to a separate package
7d63cbfd38 api/types: add GoDoc to Info.Warnings field
4ace1998e5 pkg/sysinfo: use correct name for AppArmor in t.Skip()
9b795c3e50 pkg/sysinfo.New(), daemon.RawSysInfo(): remove "quiet" argument
1fb62f455c pkg/sysinfo: collect warnings in SysInfo struct
208d3c6efb pkg/sysinfo: move cg2Controllers to be a field in SysInfo and unify v1/v2
5cc20ad9e5 pkg/sysinfo: adjust Opt to set new field
ca27b473cc pkg/sysinfo: move cg2GroupPath to be a field in SysInfo
e70c5ea1a9 pkg/sysinfo.newV2() remove redundant path.Clean()
6677ab6a63 pkg/sysinfo: move cgMounts to be a field in SysInfo
10ce0d84c2 pkg/sysinfo.New() move v1 code to a newV1() function
1d055267a8 updated names-generator.go for alphabetization
84df737f50 vendor: github.com/containerd/containerd v1.5.3
5ae2af41ee Update containerd binary to v1.5.3
3334fb9af1 Fix up vndr tooling
2af9bd3b26 API: add shared-size parameter to image queries
bf9c76f0a8 API, daemon/images: add ImageListOptions and pass context
fe6f1a4067 Bump go 1.16.6 (addresses CVE-2021-34558)
2837fba75f libnetwork: ensure all nodes are available in tests
cdd04a94bc vendor: hashicorp/memberlist, google/btree (dep) update
d7a2635537 libnetwork: make rejoin intervals configurable
a985655ac4 Move containerd.service from Requires= to Wants=
31348afa19 API: deprecate `BuilderSize` in API versions >= 1.42
115b37b8f7 daemon: use object literal for stats
0ff80c844d daemon/config.New(): rewrite to be slightly more idiomatic
5588a78ab3 daemon/config: restrict "unix" code is linux
96f843ef30 daemon/config: move "common" tests
9d9679975f daemon/config: remove CommonUnixConfig type
defeab7387 daemon/config: remove commonUnixBridgeConfig
a65f83317c daemon/config: reorganize code between unix and windows files
f7eaf2bf78 Update hcsshim vendor to v0.8.20
83e3dd68ca swagger: add BuildCache example to `/system/df`
aff02dbcaf Updated check_config
5d244675bd seccomp: Sync fields with runtime-spec fields
f2225933bb API: ensure empty build cache is represented as empty JSON array
68b095d4df API: fix 404 status description on container create
477244cca5 API: update API version to v1.42
42d2048b9d Dockerfile: update go-swagger to fix validation on Go1.16
8e3f9fd032 volume/mounts: use sub-tests, and use gotest.tools
73378d2042 volume/mounts: don't use global variable for fileinfoprovider
28b0f47599 volume/mounts: add constructors for each parser
df179a1d6a volume/mounts: split tests per parser
536818508d volume/mounts: move TestConvertTmpfsOptions
300c11c7c9 volume/mounts: remove "containerOS" argument from NewParser (LCOW code)
f3d08d59aa volume/mounts: move some code to correct location, and minor linting/formatting
af3e5568fc daemon/images: fix shared size computation for filtered requests
a8d92be6e8 Use crypto/rand
9f0e268b00 Fix use of unsafe ptr #42444
b308097ec3 daemon/images: refactor image listing
00a4f67ddf Reduce TestClientWithRequestTimeout flakiness
7a6cac2b23 Run s390x tests on Ubuntu 20.04
0c1a125644 libnetwork: processEndpointCreate: Fix deadlock between getSvcRecords and processEndpointCreate
345a180a55 there is no file named mkimage-rinse.sh in contrib floder, should delete it
2050e085f9 hack: remove proxy.installer
2bec9f607f Remove spurious libnetwork vendor entry.
116f200737 Fix gosec complaints in libnetwork
0645eb8461 Remove libnetwork/client package
e7cf711c02 Move proxy CLI to main cmd/
7266a956a8 Remove dnet libnetwork cli
42bcc2df68 Remove leftovers from libnetwork move
b5835646eb registry: remove const for 'Docker-Distribution-Api-Version' header
e93132e273 Add s390x to cross platforms target
3a208c0ff9 Add ppc64le to cross platforms target
f558056d2b Make validate flag description more generic
9973dc67dd Jenkinsfile: add stage for Windows 2022 on containerd
8f80e55111 Add configuration validation option and tests.
52744fccdd contrib: remove report-issue.sh script
7168d98c43 Remove libseccomp dependency in runtime-dev-cross-true image It turns out libseccomp is not used for building docker at all. It is only used for building runc (and needs libseccomp > 2.4)
7c97896747 libnetwork: processEndpointDelete: Fix deadlock between getSvcRecords and processEndpointDelete
72549d4ca1 Fix cross compilation in Jenkinsfile
64badfc018 update runc binary to v1.0.0 GA
af1e74555a vendor: moby/term, Azure/go-ansiterm for golang.org/x/sys/windows compatibility
8610d8ce4c rootless: fix "x509: certificate signed by unknown authority" on openSUSE Tumbleweed
967ec6f2e8 Fix typo in macvlan_setup.go
46c591b045 pkg/system: deprecate some consts and move them to pkg/idtools
26f5db7a1d pkg/system: remove unused system.Unmount() utility
5f04517c48 pkg/system: remove deprecated GetOSVersion(), consts, SecurityInfo utils.
6988f786f1 vendor swarmkit to 2dcf70aafdc9ea55af3aaaeca440638cde0ecda6
472f21b923 replace uses of deprecated containerd/sys.RunningInUserNS()
c7cd1b9436 profiles/seccomp.Syscall: use pointers and omitempty
d92739713c seccomp.Syscall: embed runtime-spec Syscall type
7cf079acdb quota: adjust build-tags to allow build without CGO
ff141d366f netutils: minor cleanups
888e75dfc9 netutils: remove unused ErrNoDefaultRoute
c21eaf9a07 portmapper: move mockProxyCommand to a _test file
ac8c80d6f1 portmapper: change userlandProxyCommandName to a const
f6be7f2945 portmapper: minor linting fix, and comment purpose of newProxy variable
4231dbca23 portmapper: don't compile linux-only code on Windows
c2c0b8dc4e docs: fix image name in testing guide
3eb1257698 revendor BuildKit (master branch)
8733144f8b vendor: github.com/tonistiigi/fsutil d72af97c0eaf93c1d20360e3cb9c63c223675b83
225f764652 vendor: golang.org/x/sync 036812b2e83c0ddf193dd5a34e034151da389d09
037c26d863 vendor: golang.org/x/net e18ecbb051101a46fc263334b127c89bc7bff7ea
e1ae2d28fb vendor: golang.org/x/time 3af7569d3a1e776fc2a3c1cec133b43105ea9c2e
28156f4a2e vendor: golang.org/x/crypto 0c34fe9e7dc2486962ef9867e3edb3503537209f
1dac53860c Adjust buildmode comment to link to commit
73aef6edfe ReplaceFileTarWrapper: permit to override file name
2cd68d5268 don't use buildmode=pie on ppc64
13828e430d Bump swarmkit to get fix for rollback failure
76640e5d39 drivers/bridge: format comments
da0a006b14 drivers/bridge: dont use types.ParseCIDR() for fixed value
31d3468146 windows: remove redundant init()
dc7cbb9b33 remove layerstore indexing by OS (used for LCOW)
3ed804aeca updated vendored archive/tar to go1.16.5
f400e84a43 update archive/tar patch for go 1.16
ae5ddd257c Bump go 1.16.5
594c972fc5 golangci.yml: do not limit max reported issues
22ce0f8faa golangci.yml: skip some tests
ea74765a58 golangci.yml: update regex for ignoring SA1019
e6dabfa977 graphdriver: temporarily ignore unsafeptr: possible misuse of reflect.SliceHeader
d61b7c1211 daemon: var-declaration: should omit type bool (revive)
16ced7622b daemon/config: error strings should not be capitalized
bb17074119 reformat "nolint" comments
dd1374f7b2 if-return: redundant if ...; err != nil check (revive)
4004a39d53 daemon/splunk: ignore G402: TLS MinVersion too low for now
7b071e0557 pkg/archive: RebaseArchiveEntries(): ignore G110
09191c0936 daemon/stats: fix notRunningErr / notFoundErr detected as unused (false positive)
7c91fd4240 unused: ignore false positives
b4c0c7c076 G601: Implicit memory aliasing in for loop
d13997b4ba gosec: G601: Implicit memory aliasing in for loop
f77213efc2 gosimple: S1039: unnecessary use of fmt.Sprintf
f7433d6190 staticcheck: SA4001: &*x will be simplified to x. It will not copy x
b92be7e297 client: S1031: unnecessary nil check around range (gosimple)
d43bcc8974 daemon/logger/journald: fix linting errors
6b0ecacd92 gosec: G404: Use of weak random number generator
c7b1e5ba38 portallocator: log instead of discard port-range failures
1f398f06aa portallocator: minor refactor for readability
1f90fdd973 portallocator: use const for default port-ranges, instead of init()
076d9c6037 daemon: remove graphdriver indexing by OS (used for LCOW)
350e303c7f endpoint: remove redundant doUpdateHostsFile() function
508a0979d9 bridge: remove unused "others" argument from isolateNetwork()
08ddbfbdac libcontainerd: remove LCOW bits
117bca149f libnetwork/resolver: fix minor linting issues
0d9b0ed678 Fix possible overlapping IPs
774b970cb1 libnetwork: remove MAINTAINERS and LICENSE
e90d6abfcd libnetwork: update Dockerfile to Go 1.13.15
a384f83e7a libnetwork: remove CircleCI config and code
bc8acc5b08 pkg/fileutils: PatternMatcher.Matches(): remove debug logging
9f6add406e networkdb: mark test-helpers as t.Helper()
25879d3134 Remove a lot of outdated "project/PACKAGERS.md" text
b6052669e6 vendor: swarmkit master (after libnetwork move)
d15ce134ef Fix log statement 'failed to exit' timeout accuracy
424c0eb3c0 docker pull: warn when pulled single-arch image does not match --platform
22186d2645 vendor: github.com/opencontainers/selinux v1.8.2
aa4dce742f daemon: improve handling of ROOTLESSKIT_PARENT_EUID
a7ecbd4b29 libnetwork: replace BurntSushi/toml with pelletier/go-toml
7c1c123555 vendor: github.com/containerd/containerd v1.5.2
989cd6e8f6 vendor: github.com/containerd/typeurl v1.0.2
0bc4035f76 vendor: github.com/containerd/go-runc v1.0.0 (add version comment)
0691addf6a vendor: github.com/containerd/cgroups v1.0.1
134b73a1ea vendor: github.com/containerd/continuity v0.1.0
bfb5b8017b vendor: github.com/containerd/fifo v1.0.0
778c8f787d Update AUTHORS and mailmap
7ef6ece774 Fix setting swaplimit=true without checking
ffc6d8d3dd contrib/check-config.sh: Remove awk dependency
e047d984dc Remove LCOW code (step 1)
0dd8bc6d31 Fix flakey test TestNetworkDBIslands
b3c883bb2f Skip libnetwork integration tests on Windows
7186fd8a95 More libnetwork windows test fixes
d414c0c1e8 replace uses of deprecated libcontainer/configs.Device
a927fc7831 vendor: github.com/opencontainers/runc v1.0.0-rc95
f0d3e905b6 vendor: golang.org/x/sys d19ff857e887eacb631721f188c7d365c2331456
8db4c4ca01 vendor: golang.org/x/net 6772e930b67bb09bf22262c7378e7d2f67cf59d1
b7dbed85b3 vendor: github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417
56481e899d vendor: github.com/cilium/ebpf v0.5.0
473817206e vendor: rename ebpf README
6c954ffd32 vendor: temp rename ebpf readme
4b981436fe Fixup libnetwork lint errors
b53b85ca40 Remove libnetwork leftover vendor stuff
00b2c13a1b Fix some windows issues in libnetwork tests
9184f7fdff Ensure ip6table_filter module on all ci nodes for libnetwork
20fd1dd7d2 Skip some windows network driver tests
72c4a7b496 Fix issues running libnetwork tests.
4da0dc974c Ensure docker-proxy is installed in unit-test ci
e837dd0fb8 Add urfave/cli for libnetwork cmd's
86c8b8f1a0 Move proxy build into hack/make
94017da880 Use buildkit fork which uses new libnetwork import
7abc3e83c9 Use tmp swarmkit fork for libnetwork import
a0a473125b Fix libnetwork imports
c8e6ad1adc Dockerfile: install criu from binary repo
bf07c06c63 daemon: move DefaultShimBinary, DefaultRuntimeBinary to config package
34b854f965 daemon: un-export ModifyRootKeyLimit()
95d69658be daemon: un-export VerifyCgroupDriver()
a506630e57 daemon: use sync.Once for systemd detection
e7ba5cacc6 daemon: un-export IsRunningSystemd()
61b04b3a02 vendor: github.com/moby/buildkit v0.8.3-3-g244e8cde
7a1716462c changelog: fix incorrectly named libnetwork label
cd40eb89ae Fix client request error handling
2865d17233 Update contrib/check-config.sh
f1e7d02a78 Update contrib/check-config.sh
0f77b22dbe Update contrib/check-config.sh
79ee285d76 vendor: github.com/moby/buildkit v0.8.3
a6a98d6928 vendor: github.com/fluent/fluent-logger-golang 1.6.1
1ce955ec83 contrib/check-config.sh: Make script POSIX
05f520dd3c pkg/signal: ignore SIGURG on all platforms
22b9e2a7e5 vendor: github.com/ishidawataru/sctp f2269e66cdee387bd321445d5d300893449805be
e4109b3b6b vendor: github.com/docker/libnetwork 64b7a4574d1426139437d20e81c0b6d391130ec8
fb5a9ec741 Limit the rate at which logger errors are logged into daemon logs
d72722f97c Add Samuel Karp as a maintainer
31b2c3bbd9 hack/vendor: add check for vendored archive/tar
8e3186fc8f update containerd binary to v1.5.2
b7ebf32ba3 pkg/signal.CatchAll: ignore SIGURG on Linux
719504b810 vendor: github.com/ishidawataru/sctp f2269e66cdee387bd321445d5d300893449805be
efec2bb368 update runc binary to v1.0.0-rc95
151ec207b9 Makefile: install buildx from binary release, instead of building
7070df3a3e integration: ensurePlugin: disable go modules when building plugin
8bae2278ba hack/ci/windows.ps1: disable go modules
fe54215fb3 Update test certificates
2fea30f146 hack: add script to regenerate certificates
2842639e0e pkg/fileutils: TestMatches: remove cases no longer valid for go1.16
466e21b273 hack/validate: skip DCO in "default"
22c0291333 update containerd binary to v1.5.1
85167fc634 builder-next: relax second cache key requirements for schema1
82c7e906ea Jenkinsfile: skip ppc64le and s390x by default on pull requests
35c1542ec7 contrib: remove unused "rpm" variant of systemd unit
2f0d6664a1 integration: remove KernelMemory tests
9303376242 Swarm config: use absolute paths for mount destination strings
8c019e830a Update runc binary to v1.0.0-rc94
3987dc264b vendor: github.com/godbus/dbus/v5 v5.0.4
7a956d1342 vendor: github.com/coreos/go-systemd/v22 v22.3.1
a40197328e oci/caps: remove unused GetCapability() and ValidateCapabilities()
e5ae83e503 volumes: only send "create" event when actually creating volume
8844c48523 vendor: github.com/moby/sys/mountinfo v0.4.1, github.com/moby/sys/mount v0.2.0+
4d3f64da63 API-client: remove unused ContainerListOptions.Quiet field
9b2f55bc1c update containerd binary to v1.5.0
56c88c94dd Added missing test cleanup for temporary directory
cf259eb8a0 Wait for `run` goroutine to exit before `Close`
489f57b877 Add security privilege needed to write layers when windows VHDX used as docker data root
4300a52606 rootless: disable overlay2 if running with SELinux
cdaf82ba3f dockerd-rootless.sh: avoid /run/xtables.lock EACCES on SELinux hosts
42b1175eda hack/dind: fix cgroup v2 evacuation with `docker run --init`
325668315c fix port forwarding with ipv6.disable=1
7c731e02a9 grpc: make sure typed errors handler is installed
42a485f7fa Update Microsoft/go-winio to version 0.4.19
b6a05b7371 Add John Howard to our alumni
c9a62831ba Move Michael Crosby to alumni
5a5f8564ba builder/dockerfile: add "ALL_PROXY" to list of default build args
e928692c69 dockerd-rootless.sh: use `command -v` instead of `which`
6d1eceb509 Fix panic in TestExecSetPlatformOpt, TestExecSetPlatformOptPrivileged
bffa730860 Prepare tests for Windows containerd support
f41a6d5c95 enforce order of lock acquisitions on network/controller, fixes #2632
1c7585a7da vendor: github.com/docker/swarmkit 5a5494a9a7b408b790533a5e4e1cb43ca1c32aad
2bef937507 vendor: github.com/coreos/etcd v3.3.25
6202322b60 vendor: github.com/containerd/containerd 19ee068f93c91f7b9b2a858457f1af2cabc7bc06
8b385fde57 vendor: github.com/gogo/protobuf v1.3.2
3980d0462d Remove needless check
825e9855b7 Remove lowenna (aka jhowardmsft) from maintainters
3cd025bc67 bump up rootlesskit to v0.14.2
c35cefb489 Dockerfile: update yamllint to v1.26.1 to fix build
225e046d9d Error string match: do not match command path
e57a365ab1 docker kill: fix bug where failed kills didnt fallback to unix kill
8e362b75cb docker daemon container stop refactor
1ec689c4c2 btrfs: Do not disable quota on cleanup
948e201c1c vendor: github.com/containerd/console v1.0.2
a0d1a1f78c Update contrib/nuke-graph-directory.sh
8f4b3b0ad4 pkg/archive temporarily skip some tests on Windowsd V19H1 (1903) and up
b5f0096584 Jenkinsfile: temporarily use insider build for Windows 2022 (SAC)
e13d41db1b Jenkinsfile: update to Windows 2022
0100a9ebc1 Jenkinsfile: windows-1903: send junit.xml results
fa194ec86c Jenkinsfile: add stage for Windows 1903 (SAC)
2834f842ee Use containerd's apparmor package to detect if apparmor can be used
42ef2c5036 vendor: github.com/containerd/containerd 55eda46b22f985cde99b599e469ff9c13994bf68
928227a456 vendor: golang.org/x/sync 6e8e738ad208923de99951fe0b48239bfd864f28
e538720da7 vendor: github.com/coreos/go-systemd/v22 v22.1.0
5761fca80d vendor: github.com/containerd/containerd fbf1a72de7da110187b7d3dace433914b9beca10
ab1dd80877 vendor: github.com/containerd/containerd b9092fae15f1814a5402bea1ceb0fa21ce1c785c
398cb1dc4f Fixes subvol delete on a non-btrfs volume
452f82d5fc Bump hcsshim to get some fixes.
eefb6c672a Fix typo on the v1.41 changelog
257b4db186 testing: update docker-py 5.0.0
a876ede24f Use docker media type for plugin layers
00cb3073f4 Fix flaky TestInspect
bedefacfd5 Jenkinsfile: update check-config.sh to latest version
2a7c1cc1d6 libcontainerd/supervisor: replace BurntSushi/toml with pelletier/go-toml
1d4a273487 validate/toml: switch to github.com/pelletier/go-toml
97a5b797b6 Use designated test domains (RFC2606) in tests
248f98ef5e rootless: bind mount: fix "operation not permitted"
b7c3548c82 Pin arm64 machines to a specific Ubuntu version
45021ee354 bump up rootlesskit to v0.14.1
b14bf43764 check-config.sh: add SELinux and AppArmor
6322dfc217 archive: do not use overlayWhiteoutConverter for UserNS
67aa418df2 overlay2: doesSupportNativeDiff: add fast path for userns
dd97134232 overlay2: call d.naiveDiff.ApplyDiff when useNaiveDiff==true
62b5194f62 btrfs: Allow unprivileged user to delete subvolumes (kernel >= 4.18)
0450728267 vendor: docker/libnetwork b3507428be5b458cb0e2b4086b13531fb0706e46
c8599a6537 fix assertPortList normalizing being too strict
5ffcd162b5 discovery & test: Fix goroutine leaks by adding 1 buffer to channel
d6ddfb6118 rootless: fix getCurrentOOMScoreAdj
cbc6cefdcb hack: use GOPROXY for rootlesskit to workaround issue with old git on CentOS/RHEL 7
1c72a68f2a check-config.sh: add SECCOMP_FILTER
a432eb4b3a ContainerExecStart(): don't wrap getExecConfig() errors, and prevent panic
6eb5720233 Fix daemon.getExecConfig(): not using typed errNotRunning() error
c6038b4884 integration-cli: rely less on "docker port" output format
f845b98ca6 integration: update getExternalAddress to prefer IPv4
54ca929a70 integration/container: wrap some long lines for readability
e166af959d update rootlesskit to v0.14.0
0f32beb4f8 libcontainerd: remove unused consts
9637be0e9d libcontainerd: remove unused win32 errors (leftover from TP4)
601707a655 TestPushMultipleTags: Add support for 20.10 CLI
5a664dc87d jsonfile: more defensive reader implementation
e31086320e Remove cli test for duplicate --net/--network opts
0c3be53107 integration-cli: Fix race in TestServiceLogsFollow test case
039e9670cb info: unset cgroup-related fields when CgroupDriver == none
fb886a119b vendor: github.com/spf13/cobra v1.1.3
a09c0276a2 builder: produce error when using unsupported Dockerfile option
4be98a38e7 Fix handling for json-file io.UnexpectedEOF
a8008f7313 overlayutils/userxattr.go: add "fast path" for kernel >= 5.11.0
11ef8d3ba9 overlay2: support "userxattr" option (kernel 5.11)
1600e851b5 Use buster backports to build with libseccomp-2.4.4
d10046f228 Add an option to skip create log stream for awslogs driver
7024564c48 Correct name (right) sort order
1a49393403 update containerd binary to v1.4.4
d39b075302 Enable `process_vm_readv` and `process_vm_writev` for kernel > 4.8
ae6cf966f9 fix typo in comments
f23c1c297d pkg/archive: TestUntarParentPathPermissions requires root
f2f1c0fe38 dockerd-rootless-setuptool.sh: create CLI context "rootless"
5f6db3a077 rootless: Set service type to `notify`
328de0b8d9 Update documentation links
088e6ee790 Include VPNkit binary for arm64
9bf93e90fa builder: fix incorrect cache match for inline cache with empty layers
9962a3f74e vendor: github.com/moby/buildkit v0.8.2
8dc6c109b5 dockerd-rootless.sh: add typo guard
9351e19658 dockerd-rootless.sh: prohibit running as root
80cc1f1d6f registry.Auth: try next endpoints on non-auth failures
588da41f52 distribution: fix errors tests
7a50fe8a52 Remove more of registry v1 code.
083dbe9fcd Dockerfile: switch to "stable" dockerfile front-end
cbd2f726bf Update Swarmkit to pick up fixes to heartbeat period and stalled tasks
0f3b94a5c7 daemon: remove migration code from docker 1.11 to 1.12
ff1d9a3ec5 Update v1.41.yaml
e8ceb97646 check-config.sh: add NETFILTER_XT_MARK
50f39e7247 Move cpu variant checks into platform matcher
8d73c1ad68 Check the length of the correct variable #42039
1cd1925acd oci.Device() fix FileMode to match runtime spec
4be5453215 Fallback to manifest list when no platform match
25ada76437 pkg/archive: Unpack() use 0755 permissions for missing directories
b53ea19c49 builder: fix pull synchronization regression
8128a9a478 Fix grammar in client function comments
1d2a660093 Move cgroup v2 out of experimental
fa480403c7 TestBuildUserNamespaceValidateCapabilitiesAreV2: verify build completed
26965fbfa0 TestBuildUserNamespaceValidateCapabilitiesAreV2: use correct image name
e32ae1973a Update rootlesskit to v0.13.1 to fix handling of IPv6 addresses
5c01d06f72 builder: fix blobs releasing via leases after pull
28e5a3c5a4 update runc binary to v1.0.0-rc93
2ad187fd4a Fix userns-remap option when username & UID match
8e2343ffd4 docs: fix NanoCPUs casing
2bd46ed7e5 api: fix NanoCPUs casing in swagger
58825ffc32 Fix for lack of syncromization in daemon/update.go
96e103feb1 Update TestDaemonRestartWithLiveRestore: fix docker0 subnet missmatch Fix docker0 subnet missmatch when running from docker in docker (dind)
ba7906aef3 archive: avoid creating parent dirs for XGlobalHeader
137f86067c Add test coverage for seccomp implementation
dd7ee8ea3e Dockerfile.simple: Fix compile docker binary error with btrfs
654f854fae reject null manifests
c747d9f8ee pull: Validate layer digest format
94c07441c2 buildkit: Apply apparmor profile
28a623aa3a vendor buildkit 68bb095353c65bc3993fd534c26cf77fe05e61b1
7f5e39bd4f Use real root with 0701 perms
4b5aa28f24 Do not set DOCKER_TMP to be owned by remapped root
66dffbec86 Ensure MkdirAllAndChown also sets perms
227687f2ef rootless: support --pid=host
7994443c15 integration: port TestRunModePIDHost from CLI test to API test
c23b99f4db Jenkinsfile: add cgroup2
c316dd7cc5 TestInspectOomKilledTrue: skip on cgroup v2
e192ce4009 Move container exit state to after cleanup.
05566adf71 rootless: set systemd KillMode to mixed
240d0b37bb docs: fix double "the" in existing API versions
54eff4354b profiles: seccomp: update to Linux 5.11 syscall list
30b20a6bdd Dockerfile.buildx: update buildx to v0.5.1
14fb165085 testing: update docker-py 4.4.1
d5d5cccb7e pkg/archive: allow mknodding FIFO inside userns
7ca0cb7ffa Use golang.org/x/sys/execabs
5d3b0102f7 Use hostIP to decide on Portmapper version
2db5676c6e swagger.yaml: Remove extra 'the' wrapped by newline
5cc1753f2c Fix daemon panic when starting container with invalid device cgroup rule
ec416c51b7 TestCgroupNamespacesRunOlderClient: support cgroup v2
42dba8c3f9 Fix spurious error from "docker load"
bb11365e96 Handle long log messages correctly on SizedLogger
00225e220f docker info: adjust warning strings for cgroup v2
8086443a44 docker info: silence unhandleable warnings
4f9af99194 Fix regression in docker-proxy
399695305c Fix builder inconsistent error on buggy platform
2903863a1d Add shim config for custom runtimes for plugins
4f36640553 volumes/local: gofmt
06d9020fac contrib/check-config.sh: fix INET_XFRM_MODE_TRANSPORT
18e0543587 contrib/check-config.sh: fix IOSCHED_CFQ CFQ_GROUP_IOSCHED
070f9d9dd3 contrib/check-config.sh: fix MEMCG_SWAP_ENABLED
03da41152a contrib/check-config.sh: fix NF_NAT_NEEDED
eeb53c1f22 contrib/check-config.sh: fix NF_NAT_IPV4
76b59065ae contrib/check-config.sh: support for cgroupv2
c9ec21e17a replace json.Unmarshal with NewFromJSON in Create
46dfc31342 integration: fix TestBuildUserNamespaceValidateCapabilitiesAreV2 not using frozen image
7c7e168902 builder: ensure libnetwork state file do not leak
a6d7b43dfc fixed IPv6 iptables rules for enabled firewalld
64465f3b5f Fix Error in daemon_unix.go and docker_cli_run_unit_test.go
e6591a9c7a Make test work with rootless mode
4e8f3bcee1 docs: fix typos in API docs
f47b27e590 API: fix typos in swagger
95eb490780 Use v2 capabilities in layer archives
33a82a26a8 Fix IPv6 Port Forwarding for the Bridge Driver
06308f4d37 setup IPv4 and IPv6 iptables chain
d14b7a5191 fixed ip6tables command in error message
b7c663c2ec Make sure IPv6 is enabled for IP6tables
273eae8a11 Revert "systemd: add multi-user.target to After list"
4886e5e5b1 Added improved IP validation for port mapper
27801b9ef8 vendor: update github.com/Microsoft/hcsshim v0.8.10 (back to tagged release)
19eda6b9a2 Update daemon_linux.go for preventing off-by-one
f4aafedc48 container: minor cleanup/refactor
5c0b694ef3 container: make hostconfig.json non-world-readable (0600)
1571e9331b Use specific APIs for shared mount-point behaviour
695b151a18 Work around small disk on Windows-RS5 CI nodes
db7b7f6df9 Parse storage-opt in GraphDriver init on Windows
56d378a88f Apply a 127GB default WCOW Sandbox size globally
142b2b785b Add TestBuildWCOWSandboxSize integration test
009639e0f4 Do not "Bind" docker "To" containerd.
21578530d7 systemd: set OOMScoreAdjust for dockerd
77096349e1 vendor: github.com/coreos/pkg v4
768ba77d37 plugin.Manager.setupNewPlugin() remove unused blobsums argument
959dfca7e6 service_linux: Fix null dereference in findLBEndpointSandbox
e9646aafa4 vendor: docker/docker 7ca355652fe0e2f7401d424d65a81dc248360127
b3b8f561f7 vendor: github.com/gogo/protobuf v1.3.1
77c68a7f6e vendor: golang.org/x/crypto 75b288015ac94e66e3d6715fb68a9b41bf046ec2
d321fc2f61 vendor: golang.org/x/sync cd5d95a43a6e21273425c7ae415d3df9ea832eeb
b14bf0e66e vendor: golang.org/x/sys ed371f2e16b4b305ee99df548828de367527b76b
3c90d159f8 vendor: golang.org/x/net ab34263943818b32f575efc978a3d24e80b04bd7
b95a3f1f23 vendor: github.com/coreos/etcd v3.3.12
5ce882207d vendor: runtime-spec v1.0.3-0.20200728170252-4d89ac9fbff6
64e852ee65 vendor github.com/Microsoft/hcsshim 9dcb42f100215f8d375b4a9265e5bba009217a85
0aad792f1d vendor: containerd/cgroups 318312a373405e5e91134d8063d04d59768a1bff
2fdc3e86b1 vendor: logrus v1.6.0
05701c485e vendor: go.etcd.io/bbolt v1.3.5
e11c7fe3ab vendor: vishvananda/netns db3c7e526aae966c4ccfa6c8189b693d6ac5d202
6cbe360e47 vendor: github.com/gorilla/mux v1.8.0
e18c7629c3 vendor: docker/go-events e31b211e4f1cd09aa76fe4ac244571fab96ae47f
3e1e9e878c vendor: gotest.tools v3.0.2
5186d9e1b1 vendor: github.com/pkg/errors v0.9.1
dc6e4d8881 replace github.com/docker/docker/locker with github.com/moby/locker
6796c2cc9b client/mflag: remove use of docker/docker/pkg/homedir
681196c8f2 Remove dependency on github.com/docker/docker/opts
bf28003c99 Replace use of deprecated functions
0e8b02bac4 Makefile: enable BuildKit
53688d374e CircleCI: update to Docker 19.03.12
6dde6cb0b0 drivers/macvlan: skip kernel version check
02d313ca15 drivers/bridge: skip kernel version check
304bb14ffc vendor.conf: reformat to match spacing in docker/docker
a65c65d801 systemd: add multi-user.target to After list
34f4706174 added TODOs for open IPv6 point
648d891827 reworked allocatePorts
9f98bd79d8 reworked comment of IPTable struct
1e1408f421 additional EnableIPTables check in isolateNetwork
a4fcced708 enabled ipv6 parameter in TestSetupIPForwarding
4d1c92c155 resorted EnableIP6Tables in driver configure
9bc2f88f04 isolateNetwork for both IP version
ccad03a139 split setupIPTables into setupIP4Tables and setupIP6Tables
9cf5335269 default DROP policy on firewall reload also for IPv6
ec7df93731 replace string.Contains* with net.IP.To4() check
3475f006b7 moved some ipv6 config to setupIPForwarding
dfd1925ed1 Renamed driver config variable to EnableIP6Tables
8dbb5b5a7d Implement NAT IPv6 to fix the issue https://github.com/moby/moby/issues/25407
b1a3fe4934 Add more error details on plugin get
570c5f9e76 testing: remove use of docker/docker/errdefs in tests
27345e8f8f log error instead if disabling IPv6 router advertisement failed
9fd12a5e31 client/mflag: remove use of docker/docker/pkg/homedir
42b87e6a4b types: remove some dead code
521ac858e7 doc: server API Correct ImagesCreate - platform parameter added in 1.32
e65003a722 bridge: disable IPv6 router advertisements
0c8ffda2ab Fix 'failed to get network during CreateEndpoint'
07ed00102d store.getNetworksFromStore() remove unused error return
efe0ab37a1 Resolver: fix error handling if we didn't receive a response
a24e5f5fd4 reduce parameters for func JoinOptionPriority
23d1ca4426 Add docker interfaces to firewalld docker zone
c30d55d067 vendor: update moby/ipvs v1.0.1
c7f0b0152e Fix NPE due to null value returned by ep.Iface()
1e02aae252 Fixes a panic in the DNS resolver
4dda50d226 Fixes moby/moby#40388
d846c2b1ab vendor: update vishvananda/netlink v1.1.0
a533fe7094 Use vendored ipvs package
76b5905cbe Macvlan: Separate empty parent and internal
d339e6d480 Don't disable socket activation when stopping docker service
c39ac9c05e Cleanup VFP during overlay network removal
41a91e9a5d fix InhibitIPv4 nil panic
7ca71f2c49 vendor godbus/dbus v5
add7253d68 Dockerfile: update to Go 1.13.8
129e28baa3 Fix gofmt in preparation of Go 1.13 update
847f469e76 regenerate protobufs with debian buster
6dc0d4ff60 Dockerfile: update to Golang 1.12.17
c18a3a075e Dockerfile: switch to debian "buster"
2a480d515e Bump the DNS library and revendor
9cd3fb6796 Re-vendor with newer vndr
c7f8bfa001 Fix internal ipvlan network to work in swarm
b0bce9159e Fix internal macvlan network to work in swarm
76bccc5ad4 Ipvlan internal network should not change gw
14fbe41991 Update design.md
9ced389e6e Improving load balancer performance
5cc6ffae0c Migrate from github.com/codegangsta/cli to github.com/urfave/cli
cc7847ddd2 Update vendored dependency hcsshim to v0.8.7
6492936018 Add Arko to maintainers
8899d916c0 Improving load balancer performance
c27bb1189d Added document describing libnetwork traffic flow.
fcb70a0e86 DOCKER-USER chain not created when IPTableEnable=false.
cd864b50a2 Fix panic in drivers/overlay/encryption.go
fdf46323f4 Update Golang 1.12.12 (CVE-2019-17596)
2c4a868f64 Added API to set ephemeral port allocator range.
f042605a42 Revert "Merge pull request #2339 from phyber/iptables-check"
0ca676db49 Revert "Always configure iptables forward policy"
34a636bf51 Fix flaky NetworkDB tests
87b082f365 Fix Error Check in NewNetwork
ff27bb0db4 Resolve "bridge fdb show" hang issue
edd44eede9 trigger new CI run
beb0c82841 Rerun CI
8c8a25d524 Support for com.docker.network.host_ipv4 driver label
0a99a5f152 adding the constants to the test file
4d1db69bcc weighted scheduling methods constants for ipvs Signed-off-by: Jakub Drahos <jack.drahos@gmail.com>
a1ab732711 return immediately on error
7e584c1d69 Configure iptables forward policy when ip forwarding is enabled
43a3151db2 Fixed getNetworkFromStore, which returned incorrect network information - notably, the 'resolver' field was empty. This fixes https://github.com/moby/moby/issues/38901
c4fcd7059c etchosts: additionally include the container's IPv6 address if available
226fde5cdd etchosts: allow adding multiple container ips
27fc6e9bae log the actual error when failing to add IPv6 route
049966bdc2 Shorten controller ID in exec-root to not hit UNIX_PATH_MAX
55adbae783 bump hashicorp/go-sockaddr v1.0.2
5ee62a9c70 bump hashicorp/go-multierror v1.0.0, add errwrap v1.0.0
f366d37c72 Updating IPAM config with results from HNS create network call. In windows HNS manages IPAM. If the user does not specify a subnet, HNS will choose one for them. However, in order for the IPAM to show up in the output of "docker inspect", we need to update the network IPAMv4Config field.
7ab62b791f Fix parseIP error when parseIP before get AddressFamily
4818e89751 Bump the GO Version to 1.12.8 which contains security fixes https://groups.google.com/forum/?utm_medium=email&utm_source=footer#!msg/golang-announce/65QixT3tcmg/DrFiG6vvCwAJ
f79533d720 Revert "Apply load balancer properly"
9a4025d79f Revert "Adjust LockOSThread"
402efabec5 Remove vlanLinkExists and dummyLinkExists since these are redundant
d22824dc11 Move dummyLinkExists into createDummyLink
5fa03a4a8e Dockerfile: use GO_VERSION build-arg for overriding Go version
66a82d7268 Log when endpoint joins internal macvlan network
ddd22a8198 Support dockerd and system restarts for ipvlan and macvlan networks
12a182e937 Ipvlan network handles netlabel.Internal wrong
d132acb485 Fix hardcoded AF_INET for IPv6 address handling
afcb9fb299 Allow network with --config-from to be --internal
ecc7bd0540 vendor: update netns to 7109fa855
e5353649f6 Macvlan network handles netlabel.Internal wrong
3eeda3d91c Dockerfile: Update to Go 1.12.6, matching moby/moby
84414583f0 gofmt: Fix formatting warnings
746e680871 vet: Fix format string warnings
0275b007c6 vet: Fix composite literal uses unkeyed fields warnings
e2b2318e14 Macvlan internal network shouldln't change gw
75bc82fe5c bridge: add riscv64 build tags
1f1d9898c9 road map loss tracing, just keep use 'Design' describe the 'Future'
c5c8653912 Update sctp package
1425fd4fcc controller.loadIPAMDriver: Unwrap error type returned by PluginGetter
e9e18d993c bump github.com/vishvananda/netns 13995c7128ccc8e51e9a6bd2b551020a27180abd
d152888722 Bump vishvananda/netlink to 1.0.0
0fce3b3653 Maintainers update
313d2b8a74 Make DNS records and queries case-insensitive
599e037a24 remove gosimple - package is gone and it's not important
c575631528 resolvconf: use /run/systemd/resolve/resolv.conf if systemd-resolved manages DNS
e9bd147bb7 Add Delete endpoint for plugin in test
cc38e3a35c Fix TestValidRemoteDriver GetCapabilities errors
6038ef390d bridge: Fix hwaddr set race between us and udev
ee574c1b7d Correctly clean up --config-only networks
a04a30717e Forcing a nil IP specified in PortBindings to IPv4zero (0.0.0.0).
74013a3899 add check on node LB in support.sh
301a7724fb Move hasIPTablesEnabled check into firewall_linux.go
b4d0319424 controller: Check if IPTables is enabled for arrangeUserFilterRule
1909ecb27a Pick a random host port if the user does not specify a host port.
6b5dc55e93 Use fewer modprobes
6ee0b5fcd8 update docker/docker and dependencies
0b40402976 Reformat vendor.conf for readability, pin to git-sha's
f126923aeb re-vendor with current version of LK4D4/vndr
5c6423fb29 Adding error log if peerAdd fails
94ab7b2df6 Adding synchronization to endpoint addition/deletion to prevent network connectivity issue
5ae7f4daf7 Use errors.Wrap to preserve original error
efeae5e7ee [ipvs] Add SetConfig test with timeout=0
8e650a9685 [ipvs] Add tests for get/set timeout
7374284841 [ipvs] Add support for timeout configuration (Get/SetConfig)
068ca7d046 Revert "debian has iptables-legacy and iptables-nft now"
cfde9c717f systemd: fix typo in TasksMax comment
e744b62f49 Update setup_ip_forwarding.go
23c763ef1c systemd: set --containerd socket patch to prevent race-condition
7ca0bc66d3 Cleanup the cluster provider when the agent is closed
916927d970 Bump Go to 1.10.7
d7f397c236 Touch-up error-message and godoc for ConfigVXLANUDPPort
151f42aeaa Fix possible nil pointer exception
d021af7d2d Start docker.service after containerd.service
d418337502 Fix gosimple
10027e8c01 Allow bridge net driver to skip IPv4 configuration of bridge interface
ef2741452c Removed roadmap
33d47f95e8 Build with latest docker stable engine
5338928eb8 account for removal of configs.HookState
bb3ae82008 vndr runc 96ec217
a937bc3825 Add docker.socket requirement for docker.service
6821d80881 Add socket activation for RHEL based distributions
03b2393a80 Improve error if auto-selecting IP-range failed.
38c8a3f84d Use sync.RWMutex for VXLANUDPPort
07c9fef311 Add the docker.socket back in
56ca280b27 VXLAN port configuration - late review comments update
d635844ed7 Do not add IP to Name records for aliases
077ccabc45 VXLAN UDP Port configuration support
387aed91bf Update golint tool
7adcd856fe debian has iptables-legacy and iptables-nft now
1caeac8b64 clarifications and typo fixes for the design documentation
6dd3f45248 Handle NXDOMAIN, REFUSED and log errors
a72bff0da3 Remove if/else and redundant brackets in resolver
013ca3bdf8 Make DSR an overlay-specific driver "option"
9a2464f436 Set east-west load balancing to use direct routing
0922883b7e Add a `DstStats` type to track Destination (real server) stats
e427c4ee2e Add `Stats` to the `Destination`
0fa3c8c277 Restore `Type=notify` in Systemd unit
4fd54c2aea Do not fail with an empty transparent IPv4 address
619e3d6706 typo fix about mismatch
b19e8d3319 Remove Environment, not needed anymore
08796e04ea Removing experimental driver interface
f7b7e74624 Moving IPVLAN driver out of experimental
212521b1e9 Use image artifacts as daemon and dependencies
14103caff2 systemd/docker.service: fix PATH
ea996b88c1 Add `/usr/sbin` to our path variable for systemd
ce5bc0079b allow propagating custom exec-root (e.g. "/run/docker") to libnetwork-setkey
55b80035ed Don't build portallocator on Windows
40b6ebfe75 Add init_windows.go for compilation
44094fae9f Remove unused syndtr/gocapability from vendor.conf
9ca55c7a60 Bump libkv to 458977154600b9f23984d9f4b82e79570b5ae12b
65860893bf Fix typo: assigment -> assignment
a906968a3f Bump Microsoft/go-winio to v0.4.11
c15a478047 Bump Microsoft/hcsshim to v0.7.3
d642cfdeb6 Increase max concurrent requests for DNS from 100 to 1000
03ba96c5cf Rolling back the port configs if failed to programIngress()
09e8b411dc Remove offline installer to install shim-process
1adcfa9aa1 fix error when make lint
36375881f3 Fix some typos
ce46100a27 doc: fix typo
cb95442fc7 systemd: set start burst limits
e7ad8e2b28 systemd: add support for reloading daemon configuration through systemd
f30757f439 systemd: set systemd KillMode
26eddc16a8 systemd: add "Delegate=yes" to docker's service file
7daf2db62a systemd: don't limit tasks
80039b4699 systemd: set Limit* to infinity
ef9ee10914 systemd: no limit on core size
53343f1bf3 added RestartSec
0c8e758012 Add post-stop
72eed906b8 bridge: fix error handling for stale default gateways
99c4c6d5fc ipvs support rs connection information
e56475aa14 Set containerd to be a systemd bind for docker
814f6c1f4b Add getter function for Default Address Pools
a478edc819 Added support for Swarm Service Driller (ssd)
52e85b4b9a Global Default Address Pool support
cdb1e7033d Some changes to get this working on CentOS 7
e086064b2c Revive pre / post steps, update offline location
a5c809e809 Round out systemd for RPM packaging
6cd66eaa2d Add systemd files, add containerd-proxy config
17966c940a Move SSD image to docker
05c05ea5e9 Add NetworkDB docs
f9442ee314 Apply load balancer properly
94af1e5af2 Adjust LockOSThread
72905ebb13 Dockerfile: Install a fixed version of gogoprotobuf
5041b74451 Give LB sandboxes predictable names
55ad3ef1a4 Fix handling of the resolv.conf
204ce3e31d Create internal directory
e88eed1d65 Add required imports to example code in README.md
012fcea177 Add support for Internal and Private network types on windows
6defa7c807 Make protobuf check silent
a06f1b2c4e Spelling fixes
b9223019c2 support.sh: also inspect stopped containers
4e6580c4c1 Refactor locking for join/leave to avoid race
56c4a6dd3f Makefile: Add check for out of date protocol buffer code
2b602bf3d0 Makefile: Add protobuf-local target, runnable within build container
3bebfbc34e Makefile: Document and organize into sections
348ed0a1a8 circleci: Rename 'lint' to 'check' to match build target
5fdfa8c52c Cleanup interfaces properly when vxlan plumbling fails
c699a1215e Makefile: Run containers with --init for proper signal handling
9da8e04c70 Updated handling of disable_ipv6 file
06d471d186 Migrate to gotest.tools :)
6c0f597a82 Remove unused deps from vendor.conf
ffe33f932e Create tag for master code
06922d2d81 Use fmt precision to limit string length
5ef4c59574 Fix error handling about bridgeSetup
1383aadf59 ipam: Test rejection of overlapping pool requests
6fd25eea33 ipam, types: Expand documentation
4cbba0da48 CircleCI use latest image
55e4cc7262 Optimize networkDB queue
b09cb39fa5 Enhance testing infra
9295e124bb Update stretchr/testify to v1.2.2
341845b5f2 ndots: produce error on negative numbers
b306706062 improve error message for invalid ndots number
7fc1795cdf Allows to set generic knobs on the Sandbox
6e260332e8 do not ignore user-provided "ndots:0" option
6e6ac3d2ac Remove redundant and faulty assert messages
ac0aa6485b Adjust warnings for transient LB endpoint conds
0b14b45f0c Prevent race between add-binding and net-delete
ea2fa20859 Add endpoint load-balancing mode
85a3483b4b Refactor [add|rm]LBBackend() to use lb struct
78b684a24a Add ability to alias any interface in a sanbox
f2c6009583 Add SrcName() method to return interface name
31d3de0994 Fix error handling in createLoadBalncerSandbox()
1449e88f7a Avoid default gateway collisions
04bfc61497 Add option processing to network.Delete()
1abac50c8d Generate LB sandbox/endpoint names in one place
5525c22635 Fix unknow driver test error
fe9a5a225d Fix net driver response loss on createEndpoint
f04280986e Reduce libcontainer dep
791700aed3 Use new plugin interfaces provided by plugin pkg
e07681c8ca Bump docker commit
62ebaeac7a Added back dockerignore
96c7cba64c networkdb, drivers: Regenerate protocol buffers
22a24df515 Makefile, Dockerfile: Add support for regenerating protocol buffers
500d9f4515 Adjust corner case for reconnect logic
4f3fb7ee6a Add retry to cluster-peers
705bf07f05 vendor.conf: Update vendored components to match moby
9b114971e5 controller: Unwrap error type returned by PluginGetter
5de876c7ae Add auto update to support.sh
9dbf55097a Create support as a container
8f1fca3e66 Multistage for build
24bdb26483 Dockerfile.build: Bump Go to 1.10.2
f5fa40f9aa Fixing the unit test for overlapping subnet
48196df4a2 Further makefile cleanup
fbf02c3794 Migration from CircleCI1.0 to CircleCI2.0
bef873c9df support.sh: add host links
e31e906e4e Add pool reuse test to unit tests
cc8b2cac28 Allocate subnets in order rather than restarting
f0c86fb56e Fix deadlock introduced in b64997ea
3d2b2f1c7e Possible race on ingress programming
01e6a24545 Update miekg/dns to v1.0.7
c4d507b566 Remove non-service cluster info on sbLeave
b0b5e14b77 test: update tests to use sub-benchmarks
e3c212c224 types: Handle IPv6 literals correctly in port bindings
328948d35a Fix type in error message
1784a46e64 Enable network-db test image creation
f6d9d22e6f test: fix ineffectual assignments
f9f3b1bdeb typo: fix misspells in code and comments
67dbb04852 Improve interface order
e7fcca2f9f Makefile: build image is a prerequisite of the shell target
35f505210b types/types: Correct docstring typo for (PortBinding)FromString
f6ddf88cec types/types_test: Rename test to match function
ebf0054912 ipam/allocator: Fix typos in error message
48eba3c2c9 Maintainers update
35a81f8173 ipam/allocator_test: Test pool double-release behavior
b4c09ceae2 Makefile: Add shell target
2f2811dd14 Adding logs for ipam state
dfa303e568 fixing test cases
9fe5cc10b2 Add check for overlapping subnets
5eb96dfbba fix markdown style in doc
c97bb41620 Remove race in encrypted overlay key update
40b55d2336 Remove race condition from ovnmanager
b64997ea82 Fix race conditions in overlay network driver
3df00a6c64 Add wait time into xtables lock warning
606e28015a Add test for parallel request pool
16e077b884 Filter xtable wait messages when using firewalld
0f6cb61f2d Switch from x/net/context -> context
a6ec9e673b Bump golang.org/x/net
96472cdaea Adding a recovery mechanism for a split gossip cluster
bc465326fe networkdb: Use write lock in handleNodeEvent
bab08251c0 Allow for larger preset property values, do not override
67ecbba4ff bridge: fix lint issue
6b782b4b82 Modify awk to use cut in check_ip_overlap
74d7da907a Vendor go-sockaddr
c67ee787da Adding goreport card
20faf0adf0 Retry other external DNS servers on ServFail
9b7922ff6e Fix README flag and expose orphan network peers
4ce05845db bridge: fix handling errors during setupIPChains()
6362d28969 Make go-tools happy
40923e7353 Use ordered array instead of heap for sb.endpoints
ed6d70c0c1 Improve scalabiltiy of bridge network isolation rules
7d7412f957 Gracefully remove LB endpoints from services
a360943a48 Fix golang.org/x/sync canonical import path
4c8d751400 IPAM tests
b8c14de74a Vendor golang/sync
a0085a47fd IPAM and Bitseq test cases
fe629b6eba Fixing concurrent map access
6a8a15dd9d Fixing Duplicate IP issue in IPAM library
9ba57c93b8 Add warning message for the failure of deleting link device
cf89f97a14 Add check for IP overlap in support.sh
c8a3950d8b Delete stale HNS endpoints when creating a network
d84f182717 Prevent ingress deletion when endpoint count == 1
1f55734d4c Fix crash if the len was < maxSetStringLen
83d1ce9fb5 fix for #1333, calling LinkDel to delete link device when the err of LinkByName is NULL
85791fb3fd Limit max length transient log
d1e6cfa6a1 Add an explicit flag to join network in diagnostic
4484ea17c3 Allow user to specify default address pools for docker networks This is new feature that allows user to specify which subnetwork Docker contrainer should choose from when it creates bridge network.
d5aab13c38 Various support script improvements
ba5b3ee8d9 Bump BurntSushi/toml for MIT License
71c0bc0b89 Revendor dependencies
2120ed2363 Support SCTP port mapping
f5c62864e9 Make ssd portable and usuable outside the default image. Add error check when network on a particular node has no services
a16d469867 Import the ssd tool in libnetwork
bbbfa21a94 libnetwork Windows driver support for outboundnat policy via generic options
5a658d4cc1 Fix user specified ndots option
2f6921cbba Diagnostic client
a59ecd9537 Change diagnose module name to diagnostic
b6f640a9ff Bump Go to 1.9.3
64da6b8889 Avoid delay on node rejoin, avoid useless witness
5f773281d2 Revendor memberlist
d5fef4ca1c Reload DOCKER-USER chain on frewalld reload.
e975f3caa0 Fix watchMiss thread context
5ab37a55a1 Delete service info from cluster when service is disabled
88df74659a Add unit tests for MX and A DNS queries
dd47466a4d Remove watchMiss for swarm mode
d28d679080 Enable IPV6 config on Sandbaox creation on live-restore
fe032eeb07 change base image version in Dockerfile.build to enable unit test in arm64 for multi-arch image issue
6a4c8d0ac9 Handle DNS querries of type MX
b190ee3ccf Cleanup node management logic
66b65b471a VETH interface cleanup when dockerD suddenly crashes
8c21351e3e Changed the name of the server pointer
1a2efea39e Call the Shutdown on the server
f7023e11c8 Remove useless error log
5b89af1bba Vendor latest netlink library
6736b223ec Set socket timeout on netlink sockets
3e544bc500 Avoid extra notification on node leave
b578cdce86 Diagnose framework for networkDB
4aab854d6d Addressing feedback from PR https://github.com/docker/libnetwork/pull/2011
f0fcb0bbe6 Fixed race on quick node fail/join
5a5b7fee33 Added a new network creation driver option (disable_gatewaydns) for the Windows driver
2a219a04cc Fix for docker intercepting DNS requests on ICS network
4037132b33 Fix listen port for test infra
ecb4442ab3 Fixing circleci. Signed-off-by: Pradip Dhara <pradipd@microsoft.com>
92f9f38103 Use containerId instead of sandboxid for windows
0d1f9c4c97 Move load balancer sandbox creation/deletion into libnetwork.
12891fe687 Support override of binary name
2c8670b496 endpoint_cnt store updates should not create an object
f864421ead bump docker/docker to master and unfork dependencies
276a452f17 Remove Solaris support
1b49b17ef5 wait for iptables lock in support script
e4f3bcb696 Add test for dns options
7fbaf6de2c Add test to confirm garbage collection
78627b6f14 Fix ndots configuration
aa81c6d265 Add test for cleanupServiceDiscovery
1732ab426d Handle cleanup DNS for attachable container
da1e931693 Explicitly pass the sha to codecov
d64c34e4a5 Bump Go to 1.8.4
1dcffbeb3f Disable hostname lookup on chain exists check
01688ba253 Fix typo in overlay log message
1fe48e8608 Fix IPMask marshalling
3d44975995 Adding a unit case to verify rollover
955b8b4593 Changing containerID to sandboxID based off feedback/conversation with Madhu.
b0888450a9 Enable Hot Add/Remove of Network Endpoints for Windows
ad577a25fe Changed ipMask to string
181115b350 Addressing code review comments
2bad0fbedf log for miss notification
3e7b6c9cb0 flush peerdb entries on network delete
711d033757 Handle IP reuse in overlay
b92d91d6a1 Fix comparison against wrong constant
813a24a51c Minor unit test change
a52bcf48f2 Serializing bitseq alloc
955c532735 Repair (*Broadcaster).run goroutine leak
8c31217a44 NetworkDB create NodeID for cluster nodes
a4e64d05c1 Avoid alignment of reapNetwork and tableEntries
8b400916ce Ignore failure to save hns endpoint to store
053a534ab1 Changed ReapTable logic
2d2a2bc568 Fix reapTime logic in NetworkDB
729d45379f Fix lint issues
7d466c6600 Fix concurrent CreateNetwork in bridge driver
a3c3a596dd PR feedback
495252723d Fixing a race condition that caused a Panic when deleting overlay network then quickly leaving swarm. This issue was uncovered in TestOverlayAttachableReleaseResourcesOnFailure.
89aeeb294c support flush services API
cc08cacfab Vendoring microsoft/hcsshim v0.6.3
b76166c110 Increase code coverage for set_matrix
43360c627f Enabling ILB/ELB on windows using per-node, per-network LB endpoint.
0482b29df1 Enable codeconv reporting
0fc6ce881f fix log
10c88fc3ab Ignore "no such file" error when docker cannot find `resolv.conf`
5ab9b5e6a9 Docker deamon doesn't work with --fixed-cidr on windows
663672b8c7 Lock goroutine to OS thread while changing NS
a6073649e9 Add a minimum value for the CP MTU
a15113e012 Remove useless flags on operations
998a93783e Fix test using com.docker.network.mtu
b7c258cf07 PeerDbDelete was passing the wrong field
0651183f84 gofmt and lint changes.
404a9ffa5a For RS3, tasks connected to a swarm network will have 1 endpoint .
3c1ebfaef9 Add service virtual IP to sandbox's loopback address
710e0664c4 Update logrus to v1.0.1
2e38c53def PeerInit for the sandbox init
5c52ff49e0 Funnel peerAdd and peerDelete in a channel
b8d514432d Revert "Avoid peerUpdate logic in swarm mode"
19fd1c37fb Fixes bug which makes restoring endpoint mess
b65a4ee10e Avoid peerUpdate logic in swarm mode
d261ccb89f Revert "Funnel peerAdd and peerDelete in a channel"
7bd4fc1de4 Improve debugging for resolver
3252a10845 Revert "Fixes bug that mistook gw6 for gw."
d6440c9139 optimize the rebroadcast for failure case
a3ecb8902a fix join/leave
e77c245e45 2x faster to converge
fee89e0490 Funnel peerAdd and peerDelete in a channel
115519e0b3 Fixes bug that mistook gw6 for gw.
d51ed8a97b Remove the error message on mac delete failure..
ecb3daa49e Fix warn log
e5bba51d4f Revert "use builtin package context rather than vendored one"
585964bf32 NetworkDB testing infra
60b5add4af NetworkDB allow setting PacketSize
1c67f2592b Fix the Gateway type in remote network plugin spec
daba67d67b Avoid flakiness of TestLinkContainers
5c01dcd401 iptables: jump to DOCKER-USER first
051a0d5ce9 NetworkDB incorrect number of entries in networkNodes
738fc5201b Fix debug statement in startResolver
a50e885121 When the gc_thresh3 value is reached kenel might remove existing neighbor entries. On an l3 miss try to reprogram the neighbor entry if the peer is valid. Its a best effort attempt because if the arp table is still at gc_thresh3 value, addition will fail.
680832b7b0 use builtin package context rather than vendored one
3dd1fb1217 Make node join event logging less noisy
746070c39a Adding a unit test to catch offset scenarios
b5d09df0c3 dnet: remove unused method for dnetConnection struct
af5e370627 Add gosimple check
6bd57f977d Fix go generate for protobuf
f969f26966 Service discovery race on serviceBindings delete. Bug on IP reuse (#1808)
c48c1a3748 Flavio as Libnetwork maintainer
2d278dece0 Fixes docker daemon not restarting after endpoint leak on windows with transaprent network
ba788519d6 Fix handleEPTable log
65860255c6 Fixed code issues
a018694f40 Added more code checks
d69db01eb8 Bump docker base image to 1.8.3
c0f59f9643 IPVS fix
39d2204896 Service discovery logic rework
7ae2b025be Fixing issue with bit allocation byteoffset calculation
2111d4cafb Create SetMatrix data structure
233aa636d7 Fix OS tweaks call
b8bcf7005c Use internal systemd scripts for DEB packaging
509b86caa2 Use internal systemd scripts for RPM packaging
bb68bc5ae2 Add initial systemd scripts
acf9c53292 Vendoring netlink library
d5c69190d1 Fix leak of watchMiss goroutine
4abd54d419 Set kernel specific config on linux
e49955988a Remove dynamic mac entry from fdb on endpoint deletion
ca9a768d80 Handle single manager reload by having workers reconnect
6d768ef73c Fix leak of handleTableEvents
26fb58d3a8 Removing the override for ipamdriver for local scope networks
ae9f1f9f04 Removed printfs
34ce7c7e6a Revert "Move Cluster provider back to Moby"
0f17689abf [Bug]Fix race between sandbox.delete() and SetKey()
79a76217db fix review comments
e777305c7f Moby vendoring
627da8bf04 Moved the cluster provider to Moby
9376cd3c63 Fix typos and review comments
81296dda15 Update GetService(*Service) api. Update UT with new apis and remove dependency from ipvsadm
f585f33042 Node failure timeout fix
000775b918 Initial Checkin GetServices and GetDestinations
c7d77e9e89 Simplify network scope setting logic
6d7e9ea6b4 Changes to support ICS network on windows
08d8cfa00f Restore isAgent || n.dynamic check
bf98dc6a40 Reject scope settings in config-only network
3fdce29e1d Do not accept swarm scope network creation if swarm is off
f566d6384e Added persistence to windows driver so that cleanup happens properly
f2db3987e1 Remove unused package in circle.yml
c348cebe99 Add a filter chain to allow persistent rules
f626582c16 Do not reset network scope during store read
047f7c0793 Add support for FreeBSD in portallocator
ece544627b Adding manager pkg for swarm visible network drivers
254d082cc3 Add ConnectivityScope capability for network drivers along with scope network option
06c3489bb8 retry once on a bulk sync failure
5e8c5d68fb Add network inspect -v to the support script
25082206df Support configuration networks
cc0b7e6aad all: Avoid trivial uses of Sprintf
da9ac65ea6 Remove explicit set of memberlist protocol
a2bf0b35d6 Fix for swarm/libnetwork init race condition
552c16dc92 Fix for remote addr parsing
3d7bc23901 Change GetRemoteAddr to return all managers
541cafdb30 Vendoring memberlist tag 0.1.0
95f6336157 Clarify endpoint definition in documentation.
1323730eca On send node envents, notify only if there are peers
102f9d230d Avoid nDB stale entries because of intermittent nw issues.
46ebc9613e agentSetup to first check if clusterProvider is nil
b4e5078bd5 Make sure sbJoin programming rollback happens on each error
e24adf94a1 Change wording for Endpoint description
a0e0231909 Add the data-path-addr
23b43b1557 Remove gw endpoint on gw nw join failure
421c089e98 ingress sandbox hosts and resolve.conf files location didn't respect the custom daemon root directory
3684df4a66 Flush container flows in conntrack (Bug #8795)
6f062c298a Vendoring the netlink changes
cddead94d2 Do not manage ipv6 for host mode containers
e5c1a4cabd Remove firewalld running log
18098ab1c8 Add AgentStopWait method
79bf46fd79 improve error for getStore()
b04b258243 Do not clear ingress network in libnetwork
69ad7ef244 control-plane hardning: cleanup local state on peer leaving a network
34f4304a71 Sandbox.SetKey() should not reset the osl sandbox on failure
6e31451d16 print name and id infomation when has active endpoints
a143df7d99 revendor x/net and gogo/protobuf to match docker/docker
869e907fcf Re-run vndr with latest version
9155e456b6 fix some misspells in api/api_test.go
9dc694de18 Always program the kernel state if triggered by l2 or l3 miss
ed935930b5 Fix rename for containers on swarm network
83837617b4 Handle kernel's l2miss notification in the overlay driver
495f534317 Fix typo
9c3c86a931 Do not invalidate table event messages
4b306ee83d Fix panic in networkdb test code
dce60f5afb Remove enpoint state from cluster on join failure
b9d820faf4 Fix misspelling fmt verb in dnet
9272c89bb7 Clear encryption states when joining cluster
bfab379411 swarm mode network inspect should provide cluser-wide task details
54d6daf95e Expose ingress network option
fc2414f988 Ensure iptables initialization only happens once
442640a8b8 Update maintainers file
d718efd92f Add anonymous container alias to service record on attachable network
c679b071f0 fix endpoint error
200410dd18 Lock linux namespace structure when adding neighbors
d07e1a02a4 Support for com.docker.network.bridge.container_interface_prefix label Signed-off-by: Wolfgang Nagele <mail@wnagele.com>
eb8c603046 Add logs around service records modifications
138c4b2a77 Serialize non-atomic jump rule programming in bridge
c00467aaac Removed unused integration test code
91f5b1669e Once a network is encrypted, do not accept clear packets from it
2243480e99 Fix typo in remote.md
8059597722 Fix typo in IPAM doc
4a04857a68 Fix bug in datapath key rotation in 1-1 NAT case
4208a2f75a Update the local VTEP in peerdb on receiving self discovery
66895dfdfc Clearing up windows overlay driver to just work in swarm mode
e94edd6d6b Ignore previous serf user events to avoid wrong fdb programming
dd10eb794c Do not hold the peer map lock during the peerDBNetworkWalk
242af665c1 handle err and fix t.Skip() in ipvs/ipvs_test.go
adb8720634 Report failure in subscribing to neighbor notifications
bee7d9219f Properly construct CIDR in policy selector
6a2d86f0a9 Do not leak ipvs netlink socket
2a9be357f9 Trust the endpoint state if we have a valid sandbox-id
71fff44c0b replace individual endpoint_cnt read from store with 1 bulk read
8e2ca0471c Revert "validate network and endpoint name more strictly"
4d1334c9ee Revert "Allow spaces in network names"
bb560a1f44 Generating node discovery events to the drivers from networkdb
a02b4ef4a4 Fix service logs
4e69afc4f3 Make virtual service programming more robust
d565d5f2d2 Gracefully handle redundant ipvs service create failures
53c84ac767 Fix GetNameServerAsCIDR
5713ca4694 Remove stale files
66197b7787 Fix incorrect error log message
6f507f53e3 Fix the data model inconsistency that breaks daemon upgrade to 1.14-dev
d3e7ca726d proxy: clean up code (addendum to #1598)
bfd1683e74 Use vndr for managing libnetwork dependencies
6ea22f2f50 carry docker/docker #29564
3178e13246 Godep update for docker plugingetter pkg
d94be29ec5 return an error on overlay subnet is overlapped with hosts
c6dfc70b33 Make use of GetAllManagedPluginsForCap to avoid loading v1-plugins
69cf4bc83e Updating Godeps to pull in plugingetter dependancy
32e713eca6 fix json
cdd56ba07e Prioritize nw endpoint which can provide both v4 and v6 connectivity
16af9918c0 ResolveName should return copy of IPs
11be70cf5e docs/remote.md: Remove unnecessary backquote
c702e19e44 fix typos
bc85efdb4f fix nits in comments
7c85ed3eac make network connect error message readable
9fb8d5696e proxy: fix an issue about half-closing net.TCPConn after io.Copy()
bf832ec2a7 Add embedded DNS server support for host loopback resolver
879d94edbd Defer PTR queries to external servers based on A/AAAA response
92efad001c drvregistry to allow overriding plugin
1b28c5e01d Internal interface to differentiate built-in drivers from remote
bc45d84e8d Handle the case of registering active plugins during remote init
721518279a Handling the new experimental daemon flag
6c3fc691e7 Fix fqdn hostnames not added to /etc/hosts
3776604aab Correct regexp to match v6 addresses with zone ID
0c2b4b267c Check for node's presence in networkDB's node map before accessing.
c80348596b fix review comments
bb8b9a6040 networkdb: Properly format memberlist logs
fac86cf69a Add missing locks in agent and service code
46b59b7964 Fix incorrect debug message
b495131861 Fix a bug in idm.GetIDInRange()
f89d6b0073 Fixed misspelling
5217602776 Create vxlan-id space from 0 instead of starting from 1
f195563a4e Control IPv6 on container's interface
e2f0070492 Fix xtables_lock message probe
23ac56fdd0 Remove unnecessary string formats
94845a80f7 Serialize embedded resolver Start and Stop
0f745fbb23 Refactoring logrus import and formatting Fix import name to use original project name 'logrus' instead of 'log' Removing `f` from `logrus.Debugf` when formatting string is not present.
69c2f8d6db Fix bug in link-local unmarshalling
684ea92515 Add a ICMP reply rule for service VIP
b6540296b0 Revert "Enable ping for service vip address"
1770ced6c0 Fix bug in needDefaultGW()
27500b1e35 Separate service LB & SD from network plumbing
85b22fabbe Allow spaces in network names
763f0fa1da Set a timeout on the netlink handle sockets
c3e00a2611 Update netlink @17ea11b
d07d6814f3 Add a nil check for sandbox.osSbox
6afe20096d Fix bug in DeleteNeighbor
5b4059e087 Fix new golint reported errors
236dc57a9e fix unsafe acces on arm
1066f9ed5c IDM need not be bound by default vxlan-id start index
cbe520b62c Add GetIDInRange API in idm package
1685e48b03 Increase timeout for local store client
83dd2c193a Respect auto allocation for --ipv6
e755b439fa Update libkv @1d84310
db69cfc151 Support attachable in network.
261fedba8c Default GW support for overlay networks
7f473c779a Refactoring logrus import and formatting This fix tries to fix logrus formatting by removing `f` from `logrus.[Error|Warn|Debug|Fatal|Panic|Info]f` when formatting string is not present. Also fix import name to use original project name 'logrus' instead of 'log'
0d32a1924e Check subnet overlap when programming of sandbox interface
0b4f68390d remove unused mConfig
99f84ff5a7 update reapNode interval
4ca7b01a5c Register remote network driver on Windows.
9f2ecdcd9d If enabling ip forwarding set the default forward policy to drop
3e11ddc4d9 Change vxlan-id start-idx to 4096
d1b012d97a Windows overlay driver support
93914ef0f6 Vendoring hcsshim to pick overlay changes
c52c8ca6eb Add NetworkDB API to fetch the per network peer (gossip cluster) list
3be080496d Fixing incorrect resovler error message shown on daemon startup
efc25da851 Allow concurrent calls to agentClose
807f14746d Modify the serial number from 1 to 9
a1ed5b7be2 fix nits in comments and log
4218a0a650 Respect icc option for internal networks
97915bde44 Fix some typos
a21d577b8b Block non exposed port traffic on ingress nw interfaces
ddc74ffced Enable ping for service vip address
a7e1718800 Add sandbox API for task insertion to service LB and service discovery
53bf987984 Fix issue for `--fixed-cidr` when bridge has multiple addresses
b859ce411b Do not update hosts file with internal networks endpoint IP
e98b152bac Reap failed nodes after 24 hours
0a2537eea3 Use monotonic clock for reaping networkDB entries
6293a1b8ca Updated vagrant box, ubuntu/vivid64 was remove from atlas.hasicorp.com
ef50edefde overlay driver support for Solaris Signed-off-by: Puneet Pruthi <puneetpruthi@gmail.com>
65356ed861 Do not use logrus for proxy
eae800acf0 Fix map access race in populatedEndpoints
761722395d validate network and endpoint name more strictly
3504ed88d9 Update loadDriver to use pluginv2.
a48b541da3 libnetwork support for Solaris Signed-off-by: Puneet Pruthi <puneetpruthi@gmail.com>
e18c1ffd0c Avoid controller/service lock AB/BA situation
8e37c3160a add Created to NetworkInfo
433e3dfe98 Remove driver endpoints on network deleting
795697d823 Check for presence before installing forward rules
2781cb0e1e Force go 1.7.1 in circle.yml to resolve failure to get golint
cff2573d1f Reset endpoint port info on connectivity revoke in bridge driver
c772d14e58 networkdb: fix race in deleteNetwork
a4f56880b2 Run API check to assert xfrm modules
7a51c79979 fix race in serializing sandbox to string
5c77ba43e2 Update plugingetter import path.
e2008b82e8 Handle containers with different network drivers
b48e25b44f Add support for NetworkAllocate and NetworkFree in remote driver
03088ace1b networkdb: fix race in access to nodes len
c7b9435004 Do not add names to ingress network
47759a5d4b WIP: Update golang version to 1.7.1
f649d5ae61 Do not hold ack channel in ack table after closing
ded6e1934a Clear ingress resources on graceful shutdown
003e04775b Make libnetwork understand pluginv2.
952520472f Godep changes.
22c322dded Avoid returning early on agent join failures
38338863dc bridge,portmapper: custom docker-proxy path
7b905d3c63 Purge stale nodes with same prefix and IP
d1f6eb1812 Allow the memberlist shutdown even if networkdb leave fails
bd7fc6431b Fix macvlan private mode argument vaildation
d6e596b3a0 Serialize overlay filter plumbing
a4d0e53f14 Fix test failures
b0a7084c05 Honor user provided listen address for gossip
3c9d05fba5 Delay port redirect until packet reaches container
2b0d5b1339 Check for ExecFunc failure
093a017f68 Use complete port configs when plumbing mark rules
8653b72786 Lock agent access in addDriverWatches
ce65a4cf2a Vendoring dependencies
7f43fd30f3 DNS support
5f5dad3c02 Recover from transient gossip failures
d4f3963a26 In overlay driver reset any state on setkey()
5b632d752c Make nodenames unique in Gossip cluster
e31db5d6af Name the ingress sandbox explicitly
989d9b2cc4 Check if IPv6 is enabled before restoring the network pools
c9bf3b594e Revert "Add sandbox API for task insertion to service LB and service discovery"
f43e4ec066 Fix bitseq.SetAnyInRange
c69d42d6b8 Update Godeps
ff59f1baab Serialize dynamic network creation
db9a7021ac Drop queries in root doamin when ndots is set
8d63e73522 Revert "add s390x arch build info at the netlink_deprecated_linux bridge driver"
8298e278be Add sandbox API for task insertion to service LB and service discovery
56175d6f97 add missed defer to unlock
ad10ae9b3b Move engine-api to docker/docker/api
68ed10ff07 Update Godeps
f5516d817d Add mflag package locally to libnetwork
56de900a7b Decrement epCnt only after all cleanup
2ba6c399ea Ensure purging neighbor cache for stale deletes
6bd15397b2 don't delete the bridge interface if it was not created by libnetwork
d46e5c83dd Remove pkg/tlsconfig dependency
6205a5d616 make sure the user-provided bridge interface is a bridge
7fac070519 uprev docker/docker/pkg/reexec for libnetwork Signed-off-by: Puneet Pruthi <puneetpruthi@gmail.com>
bace4fb6ff Cleanup on error in ProgramExternalConnectivity
bf7ef3fd7b Do not hold sandbox if not in distributed control
ddcc220eb7 Adjust WaitForDetachment to also accept networkID
92e20b70e6 Fix potential deadlock in getSvcRecords()
7912e19488 Fix CircleCI
b551a61694 Do not try LB populate on interface-less endpoint
416a730dad Allow reachability across services on different networks in the same host
9041996509 Nil check ingressSandbox before deleting
b29ba21551 Avoid double close of agentInitDone
02ef43380e Simple support script to gather libnetwork info
1f4c1cb75c Avoid k/v store endpoint update in swarm mode
547c342c1b Add network attachment methods to cluster provider
d39893a9a0 Updated godeps
ba8714e585 Propage the vxlan device creation error in driver to libnetwork
4f55b50f93 Cleanup service bindings when leaving cluster
8a1092fe78 Notify agentInitDone after joining the cluster
1b027335f1 Ensure add newly joined node to networknodes
2bead02c87 Ignore delete events for non-existent entries
4b80c3411d Cleanup ingress network and sandbox on leave
6e965c03ad Reset the encryption keys on swarm leave
6d877647e1 Add a narrower SNAT rule for LB egress
55564fda1d network: fix race in read access to map
149af45509 Relax SRV name validation and fix external SRV query handling
e28730d44b Fix a panic introduced by #1389
cd0b6bac4c For service name DNS resolution prioritize IP on user overlay network
2bab9b6bdb Cleanup networkdb state when the network is deleted locally
004e56a4d1 Fix spurious overlay errors
09da6a6f59 overlay: fix data race in map access
392b089170 networkdb: fix data races in map access
ab02b015ef Remove unused key handling functions
aced41a3d2 Make service LB work from self
d19e1f22cb Fix typo in error message
cd488c6d18 Do not add ingress loadbalancer on service tasks
bd5051931f Fix external DNS responses > 512 bytes getting dropped
b54a4b5936 Add container short-id as an alias for swarm mode tasks
cfd97fc7d2 Godep update for gogo/protobuf components
3f542419ac Check size of keys slice
82457d17b0 Make sure to not remove backends on stale notices
91ec1a2cf4 Ensure drivertable entries in joininfo is uptodate
4f8c645173 Allow reattempt of overlay network sbox join
1b899469a6 portmapper: touch iptables only for IPv4
d69747e19e fix typo in comments and log
7acedb94f3 Fix crash when remote plugin returns empty address string
83b0be7f1a Check for isAgent() outside the network lock to avoid deadlocks
849712f35d Better error handling in restoring sandbox states
8af5fdb9b1 Do not create network entry in networkdb for the local node based on table event from peer
bc6a60dae5 Fix bug in ipsec key rotation
8bc99ae906 Check for advertise IP when deriving ipsec nodes
147b646e79 On network creation, reset mangle rule
801bd7b3b2 Allow user to set the overlay network's mtu
e415b1f495 Do not use 4 byte ip addresses in encryption code
44fabf5343 Remove UDP connection cachig in embedded DNS server
b2603e895a Send truncated external responses to the client
902ead3109 Update service DB on deletion of containers in bridge networks
3c36b06cb3 Lock in isAgent() and inMaster()
b042dbe312 add s390x arch build info at the netlink_deprecated_linux bridge driver
df728f4e0c Remove commented code from libnetwork_test.go
47c071b654 Save the controller config on config reload
6368406c26 Adding Advertise-addr support
6aa25f33d4 Adjust container's veth MTU when encryption is on
ddff1b5a87 Use fnv1-a to construct the SPI
7301999c2a added locks for all other accesses to controller.svcRecords
1e0c61c3a2 added mutex on read from controller.svcRecords map
829a4ee4be Fix several typos on macvlan docs
253c103b8c Use aead for dataplane encryption
daf4c97f7a Actually retry LinkSetUp
744d5332bd ipvlan: remove endpoint from network on deleting endpoint
25f0573785 Make osl sandbox basepath configurable via execroot.
0b0678677f Update vishvananda/netlink to e73bad4
32e08e7700 Moving the UDS file out of /var/lib/docker and into /run/
4999c5707d Fix endpoint cnt decline overflow
804f93bdff Fix update endpoint cnt to store
46f525c7d6 Overlay driver to cleanup stale endpoints
2e88dfa406 Return proper error types on sandbox creation
d0192db0cd On agent init, re-join on existing cluster networks
f0292e04b8 Add Virtual-IP of an endpoint as a secondary IP
9d01c1fcd5 manage network dynamic flag appropriately under various scenarios
af3158ecdb networkdb: do nothing in bulkSync if nodes is empty
f2ae8467e3 Avoids panic when checking for conflicts against an uninitalized network
576267bfb9 Moving IPAM initalization out of drvRegistry into libnetwork core
5202f95604 Make the docker proxy a standalone binary not a re-exec
ccabedfbe3 Fix file descriptor leaks
dc4487dbb0 docs/ipam.md: spelling error
8936daab5e Retain deleted entries for longer time
2988086ab1 Do not remove service record while scaling down
de766cc7e6 ovmanager: Error out on vxlan id alloc failure
bc89397105 Index service on both id and portconfigs
3925ea0a2d Fix panic calling `ep` instead of `endpoint`
5146f05b33 Do not error on non discovery type messages in remote driver
d3b8412ac6 Update ovmanager to support maximum vni
91e8d5bfb9 Fix sanbox typo
fa68f9d017 Make sure route selected is direct Signed-off-by: Clint Armstrong <clint@clintarmstrong.net>
115cdb52b3 Remove Lock in datastore for global scope
64673bce0a Remove locator check on endpoint force removal
500a255181 Fixed missing v6 enable flag in macvlan doc
5f7577bbb4 fix typos
93cada0d94 make sure interface up successful
117131c41b Gracefully handle missing xfrm modules
b39f13f80e Update vishvananda/netlink 734d02c
165a1f6021 Added docs for macvlan driver
6538faa880 Do not bulk sync state which is getting deleted
d7d88ce37d Make getSvcRecords() more robust
ad35d257ff Match only locally destined requests for ingress
c963031a44 Bridge driver to detect and remove stale network
6034058dc3 Fix infinite loop in bulk sync
d5ce149555 Do not add loadbalancer to unpopulated sandboxes
48739b5868 Reduce overlay encryption log noise
ec17841ea4 Switch overlay encryption to use IPSec susbsystem keys
9328f1ea1e Refresh special drivers networks if present in store
acac7ee812 Add service alias support
e2b0934ac2 Delete endpoint from network map for macvlan driver upon endpoint deletion
f5f576ad34 Properly purge node networks when node goes away
5c5a43124a design.md: fixed anchor reference
929921a640 Add debugs for key change events in networkdb
1272f90eae Sequence non-persistent objects in cache
54f694c913 For cached connections ignore late replies after read timeout
8ee94f8349 Make sure sandbox GC is started after live-restore
2e9c30a4a1 Persist and restore overlay endpoints to handle daemon restart
41ca84c950 Populate nlHandle and use it on netns restore
8ca4ed0c68 IPvlan and macvlan driver to persist endpoints
c63b7b005f Bridge driver to persist endpoints
ae90761a21 Reserve addresses of existing local endpoints
055c5dd496 Add network restore to support docker live restore container
fe56a8d3dc Moving MacVlan driver out of experimental
8245296aa5 Make sure node map is valid before accessing it
d2cc81c023 Make sure to close nshandle in ipvs.New
297a7e9039 Change port names in agent proto
3859a7e394 Make sure to notify watchers on node going away
c79a49235d Purge vniTbl after cleaning up network sandbox
78a3cf5f6c Do not rebroacast bulk sync updates
04f3247c3d Add support for ingress LB in localhost
98b571a524 Make sure broadcast queue is valid broadcasting
64d8c5f87f Resolve host-name before trying the interface-name in agent bind
96b424b9b8 Process only misses on IP belonging to network
a70909792a Reserve IPAM pools before resource cleanup
8ded762a0b Update key handling logic to process keyring with 3 keys
fd72f6e318 Do not wait on ack in bulksync response
8d1adbd665 Properly cleanup ingress sandbox in controller
0e284be943 Handle the case of reseting the Cluster Provider for leave cases
1dbff60121 Do not panic if failed to get ipvs family
0deffeac4b Cleanup any stale overlay bridge with overlapping subnet in hostMode
96cc604cf1 Setup external DNS servers after daemon restart with live-restore
cd1362e370 Revert "Handle the case of reseting the Cluster Provider for leave caes"
f65ae3c742 Fix panic if miss notification sock is nil
74fdcb1f4b Handle the case of reseting the Cluster Provider for leave caes
10fcb9dd2a Add all backend ip into service records if no vip
a95260646a Allow maximum possible VNI
93b5073a7d Overlay driver to support network layer encryption
6d3fa9e0f2 Migrate libnetwork to use netlink.Handle
da61c5d37f Allow to program Endpoint link-local addresses
a2cc703dae Overlay driver's NetworkAllocate method must honor driver options
26ae9499f0 Set controller ingress state only if ingress
4d1a5ce968 Fix a lb rule race in loadbalancer
dea36fd997 Move ingress port forwarding rules to a chain
fdc385573c Do not plumb local peers as remote peers
3eff69860d Reset agentInitDone channel when leaving a cluster
6e47b07b39 Cleanup vxlan interfaces inside namespace
a63fca344f Add agent initialization wait method in controller
f98cfa5597 Fix a missing unlock on ingress sandbox failure
9054ac2b48 Provide a way for libnetwork to make use of Agent mode functionalities
3b3d49cc4c Do not attempt LB plumbing until sandbox is ready
c4d5bbad7a Use controller methods for handling the encyrption keys from agent instead of the Provider interface methods.
0f89c9b7bc Add ingress load balancer
b2b87577d4 Add support for encrypting gossip traffic
9f415d0cdb use grep to find a/an misuse
774399fd66 Fix couple of panics in networkdb
68de30a57c Update address-space in ipam-info for remote driver
1607b4be6f Update netlink to 7995ff5
de588f950d fix typos
d05adebf30 Add loadbalancer support
5889b279fb Separate pool parsing from pool auto-allocation
4b549ce428 Add IPVS netlink support
034f587706 for fix CI tools/cmd/vet has been deleted
87e023dfc2 Switch to golang 1.5.4
0051e39750 Add support for SRV query in embedded DNS
dec79c21f2 Convert overlay peer updates to use protobuf
b93c2c69ac Vendor vishvananda/netlink b824519
b1e5178bc3 Convert endpoint gossip to use protobuf
92f074c095 Fix flakiness in dnet_exec
77abea9c1e Use protobuf in networkdb core messages
9dd822b8cc Add gogoproto to Godeps
b52748bb26 Vendoring vishvananda/netlink f9bc7a684edbe780a09b87689db6cb1706bf327f
b82101c4cc Protect cap access in driver()
a9c9765b33 IPAM allocator to not accept a datastore update if already present
bc6203bd0a Do not allow network creation if datastore is missing
651f6ea0fa Avoid persisting ipam data if it can be reconstructed
abb3b9b12d Fixes #22466 Embedded DNS problem after renaming container
8c2a2ff471 Do not perform the overlap check on user chosen pool
22422dad64 Changelog for 0.8.0-dev.2
680ce6e69e changelog for 0.8.0-dev.1
f2c5ff41de Set persist flag on the dummy network object during cleanup
ffdceda255 Add service support
bd74df7b41 Dnet agent mode support and IT
d0f96c5846 Fix cleanup logic in case of ipv6 allocation failure
0580043718 Add libnetwork agent mode support
e57d2f987d don't add /etc/hosts record if ip is empty (issue #1146)
b1d422b6b5 Make overlay driver work without a kv store
84682eb59a Fix bug in osl.SetGatewayIPv6() function
ff2200b397 Fix default gw logic for internal networks
060aa49a70 Fix gossip network event overwriting self
24d11b1533 Fix cross compilation issues
87e4661332 Remove files for no longer used docker/swarm Godep
f09dae40f7 uprev docker/docker, dbus to v4.0.0, boltdb to v1.2.0 to vendor dependencies required for build clean on Solaris
43a2b083e8 Static ip support for windows
6fb69f0816 Add driver api enhancements for gossip
088c3cafb2 Increase concucrrent query limit
6a96717344 Fix a panic in handling forwarded queries
6149b1f32f Fix bad order of iptables filter rules
61510dc222 Move the iptables setup for embedded DNS into a reexec process
04f5343139 Make o/p of ipam DumpDatabase() consistent
716af1c1ee Need boltdb Register only in tests
89e72d8888 Remove kvstore deps from datastore package
64a2d2a3a2 Fix ipams builtin package for darwin
0eb215c7e6 Update libkv in godeps
4289ea637a Make IPAM work even without a backing store
7d7b9f2405 Add support to accepting arbitrary network ID
69cf50c305 Enable cross platform build check in circle-ci
c7684b5ff7 Get libnetwork to build on Solaris
c0162f53a6 Add overlay manager driver
e82b92182f typo fix
cf65861f59 Overlay driver to check for chain presence
39bc023caf Correct the check in l3 miss handling in overlay driver
83d8a3527a Fix broken CI because of newly introduced NetworkAllocate/NetworkFree api
b6d5c12ea2 Add NetworkAllocate/Free to driver api
15237db7d6 Fix IT test breakages
b0d046a1af Remove all netlink/osl deps from ipam/ipamutils
d81a91ebad Resolver sockets not flushed on default gw change
f539be8a63 Create driver registry package
8e6d52fa80 Use newly introduce plugins method to validate plugin response
28f4561e3f Add network scoped gossip database
01c9083626 Update Godeps
865951c6e8 Persist ipam driver options
d0c34749d9 tools/cmd/vet has been deleted and go tool vet works natively on 1.5+
5e4fa21005 Fix the panic when a query response comes after the read() timesout
a5aeffcb59 Fix when connecting/disconnecting to/from default gw network
12f04e292f Revert "Do not leave/delete gw endpoint twice"
3ad5bd6d88 Bridge driver needs to store the network config internal flag
c957564753 Do not leave/delete gw endpoint twice
0e7a19521c Have resources initialized before deleting overlay network
22801e071f Remove pre-defined networks from package init
30d649c3e8 Fix the handling for concurrent queries over UDP
cea4dd457c Do not allow overlay destroySandbox() to be interrupted
a9c3a9821b bitseq: fix races
7cbc3e76f6 Handle endpoint & network object in notifyEvent avoiding id lookup
bd0d8222aa Limit number of concurrent DNS queries
df975778fc Log time taken to set sandbox key
5b3524af9f Added maximum egress bandwidth qos for Windows
c92b196d2e Reload config should initialize only the appropriate datastore
70be85fa40 Change 'an user' to 'a user'
52da8bda47 modprobe when needed
ca06f1ed80 On network disconnect clear the cached connections to external nameservers
97ce9f457f Changelog for v0.7.0-dev.10
0c22e1bd07 Avoid V6 queries in docker domain going to external nameservers
2ac1e5b088 Changelog for v0.7.0-dev.9
7ad482ffc7 label support for networks on creation
4b9dc647be Honor enableIPv6 network flag on IP allocation
8d480263c0 Fix CI
2e566e3882 Add AAAA record handling in embedded DNS server
937702b74d Format network address using %v instead of %p
639fd9a131 Changelog for 0.7.0-dev.8
9c88ee206e Log stale resource cleanup
7089723ee2 Fixing support for static mac and updating dependencies
880d0ada95 Fix netns path setting from hook
4dde205544 Fixing a possible endpoint_cnt state inconsistency issue
c92a4e9fd6 Avoid network/endpoint count inconsistences
4e2e0f148b Fix nil pointer reference in ServeDNS() with concurrent go routines.
9a91bbeb4f Clear cached udp connections on resolver Stop()
2b2d011899 Reject a null v4 IPAM slice in exp vlan drivers
62c6bb12db changelog for 0.7.0-dev.7
dda75448c3 Removed experimental drivers modprobe check
fcf79b55ff Bumped ipvlan kernel version to >= 4.2
e052aeaaa0 changelog for 0.7.0-dev.6
60bd944921 ipvlan slaves must inherit the mac-address from parent
64edd40fcc Use osl.InitOSContext appropriately
af75e8a624 Added kernel version checks for macvlan/ipvlan
fe10aae30b Adding the missing ExternalConnectivity driver methods
ed9601e4c6 Make macvlan and ipvlan drivers as experimental
a971c561d1 Close dbus connection if firewalld is not started
5ada0fa920 changelog for v0.7.0-dev.5
8cf7270d06 Miscellaneous fixes
392750e74c changelog for v0.7.0-dev.4
dbf16c8302 Fix veth leak in overlay driver
679ee7a070 Fixed IP information not displayed properly in docker network inspect
dd48b1c688 If anonymous container has alias names use it for DNS PTR record
82f3d55fa4 Fix out of bound slice access in Delete()
1638fbdf27 Move exposed ports from Endpoint to Sandbox
51058eecec Implement DNS RR in the Docker embedded DNS server
093df0b922 Fixed a panic issue in clearNetworkResources
43e3da2f3a Source external DNS queries from container namespace
6b209991aa Fix IPAM driver documentation
ea30113303 Added macvlan and ipvlan drivers
9ba3f70d8e bridge/overlay driver should fail to create network with empty ip pool passed
ac1ec348ff Add nil ipam driver
13451d9a07 Fix some typos in comments and strings
92af10a0fe Extract hostname from (hostname.domainname)
0eb01bbbee Fix race in Statistics
67596cc84c Fix some typos.
b1c4ec6f05 Renaming driver name to lower case for usability and allowing portmapping to surface
c09c312f64 Update vishvananda/netlink package
2cb645bf57 Fix iptables.Exists logic
fb4e5ff417 Chen Chun as libnetwork maintainer
1417b4ba1d Fix error message on bridge network creation conflict.
48a7860211 Fix cross compilation breakage
9e57eb5467 changelog for v0.7.0-dev.3
935150ef95 Fixing bulid break because of gofmt
209cb0b476 Allow to pass global datastore config
3ff94689ef Fixed build tags for linux files
5dc5acfa58 Handle datastore update in Ipam and overlay drivers
2fb14185cb Add a check for invalid/junk messages
9871032e4d Windows HNS integration
421a3ec5d7 Use gofmt with -s instead of goimports
f6868a007f Make sure iptables chains are recreated on firewall reload
16a62955cd changelog for v0.7.0-dev.2
799369da81 getNetworksFromStore should not fail on inconsistent network state
f335e2c1eb changelog for v0.7.0-dev.1
b017aeb8ca Add Santhosh as libnetwork maintainer
dfe437eace Bridge driver to Warn if xt_conntrack not present
101e63f593 getNetworksFromStore should return all valid networks
5e5dc809cc Register natChain with portmapper
cbb59adbd8 Set the compress flag for the responses from external DNS servers to avoid sending DNS replies > 512 bytes
defcd4afb9 Change in programming iptables in container
9db2b791bc Allow inter-network connectivity via exposed ports
cfb3ce460b Don't allow passing EnableIPv6 as a driver option (a label)
83f1107e59 Delete the interface on endpoint delete in overlay
74cf622463 Fix some races in getNetworkFromStore
01d2ad412f Expose the enableIPv6 setting
247e8034b8 Introduce discoverapi.Discover interface
187e179e6b Remove overlay's ipAllocator
f719512ab4 Cleanup stale overlay sandboxes
dbfc99eb94 Change in bridge/setup_ip_tables.go
81c586e0e5 Stop referring to requested IP address as "preferred", since it is an error if that address is unavailable.
7086da757a Handle concurrent creation of default GW network
7a76968485 expose Endpoints API for a Sandbox
36fd9d02be Set Recursion Available bit in query response and reduce the ttl
1419d96a01 Reducing the complexity in default gateway service handling
a509244057 Fix predefined pool reservation
62b34aa361 Adding TCP listener for embedded DNS
411bc69949 Embedded DNS server should resolve only in docker network domain
30ef9bcf4a Retain V6 DNS server in resolv.conf; use only V4 servers for fallback
4e25ffc8d9 Loopback IP shouldn't be filtered from resolv.conf in host mode
5f22db217a Enable embedded DNS server on network connect to a user defined network
315004b575 Cache scope in network object
3d9c5a959c Fixes docker/docker#19404
a7c52918fd Force delete sandbox during sandboxCleanup
94f4fb0b10 changelog for v0.5.5
b48c479b17 changelog for v0.5.6
05bd52dbb6 Setup embedded DNS server correctly on container restart
21219731d3 IPAM to run consistency check over its bitmasks
854fe82ba1 Allow bitseq caller to run consistency check
b8d2ac9b65 Honor --iptables=false in bridge
f9e4b40e5e Allow network-scoped alias to be resolved for annonymous endpoint
0b07ad6202 Fixes some typo errors
4161ddd747 changelog for v0.5.4
e88b95c13f Remove `isNodeAlive` check while force deleting endpoint
5e78e49f76 Adding changelog for vendoring libnetwork into docker
02d6721763 dnet client update for -force unpublish and Integration Tests
ec622bf158 Forced endpoint delete
7b64b1c293 Add internal network support for bridge networks
c6dfe4b795 Fix etchosts.Update to not target hosts with given hostname as prefix
3e154b3cef EP lock shouldn't be held when trying network lock
3569adad28 Fix race in setting ctrlr for network
2db863e5d7 Global alias support
16ff947fb6 IpamOptions per network not per ipam subnet
be981267c0 alias support in dnet and integration-tests
63e20c2f3d Alias support
e22b54dee1 Check if present before programming IPv6 in bridge
fe2fa218d8 Delete veth on ep leave in overlay driver
cf7ed0a717 Embedded DNS server
1051418559 Fix golang.org/x/tools breakage in go 1.4
69fe328789 Add network options to NetworkInfo to display internal network option
31016faad5 Disable DAD for sandbox IPv6 addresses
5b82b93285 Fix default make target
797c32bcac Clean up docker chain of filter table as well on driver init
54145fdd20 Godep fixup to import miekg/dns library
abaaa23a8c Vendoring netlink - bfd70f556483c008636b920dda142fdaa0d59ef9
0ce2a2dba0 Fix regex for IPv6
95f1bcc249 Change isolation rules for multiple bridge networks
e026deb981 Fix up Godeps and update docker/docker packages
921be8b633 Fix up example code
2ecc6aa49e Add support for Endpoint's preferred IPv6 address
9b31fc50ba Don't treat non-nil output as error in ChainExists
6cff09f710 Check existence of network chain before creating
59e1e42ce7 Add tests for internal network
186a32acab Add internal network option
66141b879f Cleanup vxlan interface by id before creating
30ec1b5081 Bridge driver to honor IPv6 network gateway
29299b73df Allow remote IPAM driver to express capability
b7d0fefabc Add overlay network support < 3.16 kernels
294b858f2c Add IpamInfo() function to retrun ipamV4Info and ipamV6Info
4cb0d27cf9 Improve ipam test coverage
ad95559d74 Replaced reference to dockerinit by dockerenv for func isRunningInContainer()
256e15a6fc Increase test coverage in bitsequence
46077fcfb1 Fix mutex copy
6b40581ea5 Libnetwork to set container interface's MAC
158b2852b9 Skip defaultGw check if sandbox is being deleted
6b81e3a868 update maintainers file for parsing
44f532f16e When assigning an address for an endpoint set preferred address and options.
eef129c103 Do not attempt serf query when not initialized
141c51273f Add DisableGatewayService in JoinInfo to offering drivers the ability to disable default gateway
2eadfb8290 Don't connect sbx to default gw nw if default static route is provided
dc4285b9a4 Adjust ipam errors
a87a58e2be Changing image file-path in design doc
1d88c10f98 Adds cnm directly to repo
20e5a0503a Add nice image illustrating CNM
dee3acc574 Release address pool before removing the network from store
d0f3f77432 bitseq: fix race between CopyTo and set
0ae6d496bd Allow libnetwork to compile on freebsd
84abbcefa8 Fix a couple of edge cases in service discovery
ffbe62a8f7 sandbox_externalkey.go: split for cross compilation
b67e986b75 Multi-Arch Support
e758f136a4 Updating README
90711b0def Fix bug in bitsequence.pushReservation
f24b0aae51 English please.
d778845791 Fix in endpoint Info() method
c1b67065e6 godeps: update coreos/go-systemd to v4 and godbus/dbus to v3
1aa88fa870 Allow endpoint delete if sandbox identifier is stale
7ff429e32d Use documentation IPv6 addresses (RFC 3849) in tests
ea14d68757 libnetwork to honor explicit mac-address
7fa78a97c4 Remove redundant assignment to ep.network
af7bc494f9 Allow IPv6 allocation post endpoint create
6531b0c4cd Use Docker Machine for Test Environments
e4ce59b7aa Cleanup iptables after bridge network is removed
14b21d5d88 Fix bug in getAddressRange() in default ipam driver
229e735837 Clean unused variables and fix typo
dd85700005 Fix bug in bridge driver
1452fc31d4 Retain sandbox only if network is not available
d9ad8c961c Skip non-persistent endpoints in sandbox store
670302e66b Fix stale sandbox from store problem
967917c8b4 Fix race in os sandbox sharing
6c23d4073f Fix race in host sandbox creation
e636d8398b set cntlr sandbox before cleaning endpoints in ungraceful restart case
64547e43c0 Minor spelling fix ("likey" => "likely")
c8a66f5e72 Fixes a case of ungraceful daemon restart + unreachable store
ab0c0df288 Add IT case for external connectivity
71207b575e Reconcile persistent state after driver config
320219829b Fix in DriverInfo()
2f03577ec8 Use serf logger for memberlist log
7b4b56169b Some functions' logic cleanup
5a0dbbd986 log an error if advertise is configured with a non-local ip-address
fbb2269109 Format the code
e5d280edac Tidy up the IPAM driver doc
0e2ff9dd71 Add more integration test cases
824bdec0bd Add customer_prefix to the store URL for integration test
92f7f2e1a0 Add IT case for proper /etc/hosts handling
e5b34e1435 Cleanup service db for the network
4cc65d01a6 Clean hosts entries on endpoint leave
473ce7db08 Dont notify the leave if the serf is not inited
84b1ef9bd5 Fix an issue in overlay network peer EP list maintenance
a687e431c0 Default Gateway endpoints must be annonymous
4850c5f1e6 Avoid duplicate entries in /etc/hosts
36a8f5822c Use simple scanner instead of regexp for etchosts.Delete
de7607f509 Add benchmark for etchosts.Delete
aababdc1c7 Fix the issue to parse file path for boltdb
b339bb2707 Fix the issue for the --cluster-store URL with path
3da8471681 Handling container rename in libnetwork
115d2ec7d8 Do not manipulate bitseq length to reserve broadcast address
133ee32980 Fix Endpoint Unmarshal to retrieve the fields correctly
5ef8d0f038 Add watch retrigger when store restarts
c3c4825f80 Purge remote endpoints from watch if it is local
cdb82dc22d Synchronize /etc/hosts updates at file level
3cc33dc491 Update libkv
379609e362 Allow remote ipam driver to return nil address
f1b2705d5e Do not refresh the bitmasks on all operations in IPAM
07bb3dcdba Dont fail the Get functions if there is an error in one of the stores
e41a9cf59d Allow anonymous endpoint
d686fbb9c4 Handle maskable error during endpoint delete
33d336ac72 Cleanup dangling local endpoints
773648507d TC for ungraceful restart of default network
96d819cb06 Make sandbox cleanup robust for ungraceful exits
27908bfeb4 Update netlink library.
316a652e6e Fixes #680
4df4ba70ca Fix the daemon panic on consul server restart
afd6162240 Bridge driver should return maskable error
537ba03dd1 Use netlink.LinkByName instead of net.InterfaceByName
604753b43a Fix build image name
04126b850a Fixed Vagrantfile to use systemd script
79b37def48 Explicitly set namepsace for ipamutils.ElectInterface
e0f1ac4b2e Fix ipam state cleanup logic
33aa626bc9 Add etcd integrations tests
e8370e78d0 Changed Labels to DriverOpts
82e3c49b0a Fix docker daemon failed to start with multiple cluster store address
ac1cf3f784 Add support for selectively running a suite
b92b013820 Add overlay zookeeper test
72b8f80dc3 Ensure the parent directory for key prefix exists
c42e2cf44d Update libkv godeps
3365af97c2 Initializing generic to emtpy map
6b77f04e9b IPAM driver doc
71220e2a88 Made use of map[string]string for nw options in default-gateway impl
9ae62c93dd Updated Vagrant with the latest UX
8d56508190 Change in remote IPAM API payload
6d6490b91c Check if address space valid in getStore
ab8dfb54fe Separate endpoint count data from network object
74376e8676 Moved the default local and global store to new root
a6c2dd75b5 Synchronize datastore apis
93bc5ed4c7 Update libkv godeps
7391338323 Make ipamutils compile for windows
750671e633 Default bridge need not have persistence in bridge driver
c2064dc18d Reduce logging verbosity in allocator
6026fe772c Remove 2^32 bits restriction on bitsequence
50db985c1d Few more fixes identified during integration
dbbc561c18 Network ep count increment/decrement needs retry
24339bea43 Relax restriction on IpamConfig
af95bfd273 Preserve default ipam driver setting
0e04c8555e Network to expose ipam config
1ffe6fef02 Move sandbox resources when container restarts
bd45253fb5 move Labels from array to map to be consistent with cotnainers
0f8a6b392f Fixed a bridge driver bug in unmarshalling DefaultBridge
3d3bd9331f Fixed a couple of error messages to address UX related comments
2401496d2a Enable network labels in Rest API
02386e85d5 Enable Network labels in backend
b7c2b8111f Add netlable. KeyValue() and ToMap()
888f13d17b Make the integration tests robust
be700ec0eb Add default network restart test case
268d41835d Make bridge driver networks persistent
9a8c636a40 Retire ipallocator
af3eb25d44 Phase-2 bridge driver changes to support IPAM
284c9cd0f5 Revert "Share libkv store handles across datastore handles"
9c2541b774 Removing boltdb timeout
87f5a70f0a Godep update to libkv 1.9.0-integ branch
f2f536032b Phase-1 bridge driver changes to support IPAM
e41b4765bd Cleanup dangling sandboxes on boot up
50098e5c7b Add support for configuring TLS
2a392e5a98 Any newly added data to an existing marshalled object must nil check
e5ee4ada8b Removing the endpoint name restriction
b9596c89d6 libnetwork to handle allocation of ipv6
0cfaa590de Fix in handling aux addresses
3f7e26160e Share libkv store handles across datastore handles
a226c36b75 Pass down store configs to driver
344b653478 Remove unconditional debug logging
94b6e5e18b Default IPAM to use ipamutils pkg
a22ce0938c Add bridge network integration tests
a13f78369f IPAM watch removal and multistore support
71e14dd52a Remove always-on watch for networks and endpoints
d74384b1d4 Add local store caching support
782d9a4618 ipam must honor preferedIP ahead of random allocation from subPool
cc1e49cbbb Fixed a bug in AuxAddresses handling in libnetwork core
fd00a53019 Add ipamutils package
e5d44569fb fix the regexp for matching an ip address
b061382c5e Default IPAM to handle local ds
67b1e3c5f2 Fix in bitseq.NewHandle()
b75601e84d Updating the network driver document with IPAM data
ddcfab5f81 libnetwork <-> ipam driver interaction
2aaef377f3 IPAM driver - Add IPAM cotract and remote IPAM hooks - Add ipam registration in controller - Have default IPAM follow ipamapi contract
1081687e38 Allowing local joins to happen even when serf is not initialized
fac4e67c16 serfJoin doesnt happen if self notification comes later
0b40559c69 Fix the overlay cleanup in the multi-subnet case
0066225da5 Integration with Docker Discovery
19f466369b marshal/unmarshal for overlay multiple subnets
1b393486b5 Godeps update
aa3db80a5b Update overlay.md
6e327a5afb Support for multiple subnets in a overlay network
caab594ffb Moved InterfaceStatistics from osl into types package
e8593bdb65 Docker GCCGO CI is causing compilation errors as the varibale is declared and not used. Signed-off-by: Srini Brahmaroutu <srbrahma@us.ibm.com>
a41025e9c0 Fixed a few more issues observed during docker integration
7305922385 Moving overlay configure out of Init and into network create
e4e77353c9 Setting bridgename to be network-id[:12] if bridgename option is empty
a42e5f0663 Flip the default for the flag AllowNonDefaultBridge in bridge driver
ce44f2478d Add overlay network integration test
50ec2d3a50 Add Sandbox ID to `service ls` output
24f1845a18 Do not overwrite the /etc/hosts file on Join
08d9578e48 Updating tests to use controller.Stop() to cleanup states
27397dcbdf libnetwork to make use of boltdb ConnectionTimeout to avoid deadlock
dd6b8cb408 Update libkv to support boltdb timeout
e82989f845 Fix outdated docs and comments
725280d03f Providing KVObject option to skip persisting object in kvstore
72567c355b Various refactor and fixes for the previous two commits including: 1. Don't save localscope endpoints to localstore for now. 2. Add common function updateToStore/deleteFromStore to store KVObjects. 3. Merge `getNetworksFromGlobalStore` and `getNetworksFromLocalStore` 4. Add `n.isGlobalScoped` before `n.watchEndpoints` in `addNetwork` 5. Fix integration-tests 6. Fix test failure in drivers/remote/driver_test.go 7. Restore network to store if deleteNework failed
8babc3d4d3 Add local datastore to persist states of LocalScope network
56e3c1e9d5 Update godep to support boltdb backend
d565a4df48 Push driver config during `Init`
1cd9c4dcaa Serialize the endpoint join/leave at the sandbox level
6b1fcf3e6a fix bad docs format
f33a362b48 Introduce multi-node integration tests
09fec4e411 Allow to set bits in a range in bitseq
eb54ed5d42 Support for default gateway for containers
3342e5591b Remove unwanted lock
9e6378ad57 Correct formatting in remote.md
ba83cbc058 Set interfaces routes after the interface is up
bd20fd4813 Add cmd/dnet/dnet binary to .gitignore
437dfd3a43 Correct perms for directory creation
2479562e72 Introduce test remote plugin in dnet
d46d5178b5 Make integration-tests an indipendent target
d04c177a10 Fix for zookeeper backend
bb6449bedb Fix unmarshal error in endpoint interface
ea4cdf441e Add simple integration test cases
ebbca4814e Update libkv to latest commit
59fd1a605a Update Godeps and add codegangsta/cli
304bfd6261 Add negotiation process for driver scope
4104c0d0e5 Cleanup external sandbox from test
84ac14e295 Reexec external key handling
2682309a23 Limit valid object names
9ea1f56cdf Godeps update on libcontainer
a5bd12b963 Remove multiple interface in an endpoint
636a967df1 Fix CI failure due to mistaken imports
f59502e1bd Support to provide external key to sandbox
06d8585503 Make lookupSandboxID() reliable
27b37e7473 Remove possible stale containers first
aade3e7a92 remove the useless get netns code in createNetworkNamespace
0e40539ebc Add integration test infra
bc4160be38 Fix inability to detach service
72eb02d807 Add missing sandboxes routes
3528fd9830 Fix CI failure due to conflicting merges
5f69a077da Fix bug for `docker service ls`
cc02894a50 Move test specific functions to a testutils package.
46a773fba6 Fix libkv source out-of-sync with Godeps
84a0a0a98f Fix bitsequence set()
005d8f1f52 Fix bridge driver panic in CreateNetwork
33780a2ed5 Fix go fmt errors in the build
36e7a8b168 Add TestEndToEndErrorMessage
af323c7006 Don't discard error message on sending response Error messages are always discarded and it makes diagnostic difficult when error occurs.
1426728a64 For the endpoints on overlay network set the MTU to 1450 to avoid fragmentation when the vxlan header gets added
d216db6ef2 Do not print the word `nil` in a log.
b0dd4944f5 Add Refresh() to Sandbox
ddfa448536 Allow tests to be interrupted
ef659c9049 Fix resolv.conf and hosts handling in sandbox
bcd996f4c3 Explicitly set namespace for all network operations
27296caeb8 Add DNS 'options' support
cd3fbc2a95 Fixes ip allocation for multi bridge networks
fd43ee1323 Introduce Sandbox entity
27e0db309f Adding ppc64le build tag to compile on IBM Power Signed-off-by: Srini Brahmaroutu <srbrahma@us.ibm.com>
44cb162f3d lock port mapper when reapply iptables rules
c09fe6a7c1 Fix panic due to mismatched types
1f28387d21 fix typo
d7803ee53a Fix ip range allocation in ipam
b2ff78548a Fix preferred ip allocation in ipam
5c926bb344 idm and ipam to use bitseq atomic APIs
01d6585a31 bitseq to provide atomic functions
ee31009744 bitseq to only handle and return unsigned types
467876e723 Control exported types in bitseq
e5842be694 network byte order to bitseq serializer
d715041cd0 Fix typo
e4853a4ada Overlay driver should assign interface mac based on the IP
9169198dc6 Update vishvananda/netlink
61f3a2e253 Fix racy joinSandbox behavior
8d73de9722 Adding libnetwork support to publish on custom host port ranges. See https://github.com/docker/docker/pull/12927 for docker portion.
50ac01f7f4 Updated Godeps to the latest vishvanandha/netlink
960639fbb9 Pass the vxlan port in network endian order
1bf751ef93 Fix in bridge delete endpoint
26ac09e004 Simplify NetworkOverlaps function
021d71de29 Fix bug "...has already joined the endpoint"
5a259d55f0 modify /proc/sys only if needed
12df37fdd0 Seperates the driver-specific and network-specific iptable operations for the bridge driver.
7a5224afe4 Fix example package error
e8771c868e Bug in bridge network mask
c38d2d4601 Remove unused config check
0b458d70ce Fixing Vagrant to use ubuntu 15.04 to get Experimental docker working again
3da75632f7 Reorganize MAC generation functions
6901ea51dc Prefer Netlink calls over ioctl
c266c843a7 Incorrect kernel version check in bridge
0c2293e0a0 Fix bridge and br_netfilter modules loading. Signed-off-by: mikael.davranche <mikael.davranche@corp.ovh.com>
092437ad0e Fix data race in controller sandboxes
140616a7d6 Simplify and fix os.MkdirAll() usage
d6685f61a7 make sure the interfaces is cleared on error
6461057521 Misc fixes to ipallocator & bridge driver about FixedCIDR
88c2c05ce9 Misc fixes to ip allocation in bridge driver
2dd9a6fa75 Use sysfs to set hairpin mode
21b0927720 Fix ICC on Firewalld enabled fedora systems, add in missing firewalld functionality to re-apply configuration when reloaded
b62013c24c deadlock fix in RemoveStaticRoute
83b6a338a4 Reduced the two spaces for network help, required to pass tests at docker build
94ca1f5bba make libnetwork compile on freebsd (again)
524b3dca97 Sometimes fdb points to wrong vtep
951dcbe85e FIX incorrect usage about libnetwork.New() in README.md
55e7175f64 Remove dependency on libcontainer
850bdd0923 Expose the remote driver API structs publicly.
b4e87d5c98 fix for #14633, use original nexthop ip value instead of obtained via RouteGet
9487241f5c Fix duplicate POSTROUTING MASQUERADE rules
981686787b Fixed a bug in DeleteEndpoint to properly release v6 ip
90a410eb3d Refactor of docker PR #11405
f88ad7d340 fix file descriptor leak of ".../ip_local_port_range"
6692b6d072 BitSequence should unmarshal data during get
8c3c747c62 Fix incorrect error handling in bitseq constructor
6bba1cd7b1 Use IANA assigned VXLAN port
00456020f5 Adjust overlay driver for netlink api change
70429527b0 Honor driver side resolv.conf file
a22d29b7cf Update vishvananda/netlink package
10444cb448 Manually bring up the host side veth interface
15759edb38 Fix networking issues in RHEL/Centos 6.6
885056b243 Use ioctls to create bridge
a35025569e Updated Godeps
ca7aa81de8 Some users docs with a Vagrant setup
e714096b54 small typo in the requirements
1a52238be9 Use github golang tools mirror
1f1bb1700a Updating to latest netns to fix amd64 / RPI issues
a3879fc169 Endpoint interface stats read fails when invoked from docker
5ac330aca2 Endpoint to expose interfaces' statistics
1cba00c62b Fixed URL used by curl in overlay readme
2e64ce637b Minor spelling fixes in documentation and code comments
6ed26709bd multi-host overlay driver quick start doc
cacdd39761 netns: Update to latest for arm64
04bd8f67ad Datastore handles creating objects atomically.
1d5698936a Remove extra conditional.
df56ce5f47 Update error return in bridge driver's getNetwork
28c2445dad Do not update /etc/hosts for empty endpoints
63514b2749 Resurrect firewalld support
f7c37712ea Fixing a windows compile error in docker during vendor-in
34708355bd removed a duplicate and incorrect unlock
1ac72c85cb Add LeaveAll support
bdeeda1703 leave must not use join options in the defer during failures
49d9787749 Ignoring locally scoped endpoints/networks from distributed delete
7084bc27f9 set the kv-provider driver labels only if it is a valid config
271bcd7ba1 Service discovery
362568467d Add/Delete etc hosts record support
b40774bb02 Fix endpoint ip data-store sync issue
12ac5827e4 Updated Godeps
421ef35df2 Support driver labels
ec68d342d1 Add ovrouter binary
aac063b4b6 Add neighbor support to sandbox
6e4a572529 Overlay driver
cc6fb95c0c Fix datastore value handling in bitseq
8b59f48537 Reading the top level element (network) from datastore on init
b818ea981d Add datastore to IPAM for configuration
2677a461de Distributed delete processing
e39fc16c55 Rework push reservation w/ datastore
390a9702d2 Change subnet key schema in ipam
c395cf2eb6 Datastore additions to bitmask management
4c4f71e2ac Added a new RetryError to indicate the caller to possibly retry
883fc7bca4 Make bitseq.Handle thread-safe
d1a16bbb84 Add numerical ids manager
1f76a79bf7 bitseq to provide handle
3ff75bd42d Reorganize libnetwork ipam datastructures
a0e0d07250 Add locking to libnetwork ipam
75443aaf72 Add serialize/deserialize for sequence list
873ea8a224 Add libnetwork ipam implementation
3287a4c830 Add ipam contract
5034c9bb11 Add bitseq package
4d60688464 Update modprobe bridge output
3a8213e40a Fixed the tests.
9e7d2fe74e Fix duplicated iptables rules
f843e44805 Cleaning up iptables nat table on driver bootup
11094f2645 Pass proper regex to mux for query fields
c0bcb8dff3 Fixed a basic UI regression due to a recent godep update
678d50f5b5 Updating CallFunc to match the Docker CLI API changes
0969e192f2 Add implementation for lookupContainerID
04e96f3811 workaround to a minor bug in mux which filters out empty query
03504cab65 Few changes to the UI and API implementation
613e60bcec support for libnetwork daemon labels
c85a58b6df Return an empty config if nil
9f3d1ce3ff Moved the TOML based Configuration to dnet
b2a5ea49f3 Windows: Compiles again
3d805de246 Pass a canonical subnet to ipallocator
903fcbd154 enable hairpin mode on the bridge port & fix iptables rule
8c9c68bec9 Remove dnet binary
3b2d2aa3ee Replace swarm store with libkv
7de9f71eb5 Promote Service cli
8aaf82c5b3 Endpoint to provide ContainerInfo
0912ecfc05 Add Service hierarchy to rest api
b92d253d60 Make sure sandbox files are removed after tests
9e8974cc64 Replacing isReservedNetwork with Driver capability
f88824fb8a Reworked endpoint store operation to address a few cases
47a3f3690d datastore delete support for network and endpoints
8dcdbbabd0 GetObject support
dca35085f5 datastore support for Endpoint
0fda541b37 Updating to new Swarm discovery and store APIs
a14da7ba36 Updating to latest Swarm dependancies
fcca4484cb Generate container mac address based on IP
fc9b204f39 handling error condition for network and endpoint deletes
6628cf7f5a Check GC loop is active/necessary before triggering GC
8d7e5cbb68 Minor changes in bridge.go
cc6d1be37e Update ROADMAP.md
e27586de4e Provide isolation b/w bridge networks
a0cccbbcfa Moved services to dnet top-level and removed experimental
fa22255b2d Windows: Allow compilation (again)
4ceec05f1b Add support to add bridge to the sandbox.
f5c1c78179 Refactor sandbox code to use interfaces
6d6aeff780 Make GenerateIfaceName generic
991f50a10c Add note on EndpointInfo semantics
8ac0d7709f Add restrictions for default drivers/bridge name
15ddc3717a Add support to trigger immediate garbage collection
f770d4b448 make libnetwork compile on freebsd
65519600f0 Document the remote driver protocol
71f08ec63f Update netns to include support for PowerPC LE (ppc64le) architecture
031e09d888 duplicate endpoint error handling
e67f9f4f79 Copy default configs from default Bridge to new bridge if not user configured
5fff515028 Including hostdiscovery conditionaly under a build tag
9d1cc7d56a Fixing a few go-vet issues
3be66461ba Change in bridge EndpointOperInfo()
a93d08aef5 Add container join priority option to endpoint
36303270c6 Introduce UnsetGateway(IPv6) methods
c3d02744c6 Cleanup libnetwork test code
ea8580d1e2 Remove only the endpoint owned interfaces
5c153bd018 Add static routes to the remote driver.
5ad02e8c48 Change scope to LINK when setting device routes
0ae84dad55 Fixes https://github.com/docker/docker/issues/13426
bc70ed60cb Fix miscellaneaus data races
61993ec6c2 Modprobe bridge driver r specific kernel modules
db5f2f40fb Removee the init time cleanup of namespace files
7560ca63f5 Reworkkgarbage collection code to use tick
f429a2528d Loopback interface not t brought up
3ec19ff62b Workaround kernel bugs s related to namespaces
96295af687 Do not warn in packages
ce64bdbd9f Fix dnet service cli help o/p
8ec7f0d7ac Remove dead code
3c0d5c3a8b Update remote driver to use destiantion prefix.
cfc28a900a One port mapper per bridge network
12117f349d cleanup: remove unused variable
3ed8beaa4b json friendly struct field in API structure
800029abb6 Remove container data return value from Join
930d27c06c Add Alessandro as a libnetwork maintainer
a4de736345 fix typo
d56c6de9b2 Windows: Enable compile
65acaaf0b5 Allow drivers to supply static routes for interfaces
ae8643748d Libnetwork Host Discovery using Swarm Discovery pkg
ef1293ce5a Updating Godep to pull in Set functionality
481568035f TOML based Configuration support for libnetwork
8324230320 Godeps for TOML parser - BurntSushi
594361552e Avoid adding local reserved networks (bridge, none, host) to the datastore
87161e8935 Added Network Watch support
9b952fc982 Initial kv store integration and datastore implementation
c46a023902 Updating Godep to reuse Swarm discovery and store packages
9c9c79f1b0 fixed some typos
820712cae6 Fix RemoveInterface in sandbox
e20e7bbbfe Added API support for both /vx.x/networks & /networks
e244043eb3 In bridge, network config to be validated last
35fab0aa6f Bridge driver to support multiple networks
5d9c59e523 Support network options in rest api
a550562ad4 UI formatting applied on top of Experimental Service PR
f1712c0bf6 Moved all the service commands under experimental build tag
a1c3dce3e9 Added a catch-all root hierarchy for the API path
97adea5b77 Add dummy proxy on port map
49f742eaff Orthographic corrections
0653afc5f5 Service endpoint UI support
b5a6c849e3 Adding support for network/id/endpoints in api
5ee5e2452f Modified Client to make use of the corrected REST API
e97b1e05a8 REST API: Support query by partial id
89045ca381 Modify driver Join api to only allow dst prefix
7934979f40 Remote driver implementation
dbb71728f9 Revert "Added more test coverage for portmapper package."
8942de9410 Fix test failure in api
c70cfcb150 Provide interface to categorize errors
7d80a5a84a Changes in rest api
a9fa764cbb Move network types to types package
407e41d394 Fix /etc/resolv.conf permission issue
56375f3687 Porting https://github.com/docker/docker/pull/12437
8c5750558a Cleanup namespace files
36a0f91b5d Initial dnet tool to test and manage libnetwork end-to-end
57628535ba Godep update to pull in parsers and term packages
977fcdd952 Client to make use of REST API
2d3758619b Fixed some basic client UI issues for the "network" command
a794fa07b7 Fix Makefile
9d4b69df73 Fix panic on leave of host driver endpont leave
1589c43f9d Restore anonymus import in iptables_test.go
902e8746d3 Optional Userland Proxy
030817808c Change default namespace path
b323d571b5 Driver api refactor
80ca3c2330 Remote Driver integration with Plugin Framework
cb8bbd3ded Upgrading Godep to the Latest Docker Pacakages that brings in the Plugins infra
4aa71f337c Fix misuse urlNwName and urlNwID in api.
8dc3f3be47 fix createTestNetwork bug
f16db2c3ad Remove pkg directory
e2fea0f945 Ignore the OldHash if the resolvConfPath is invalid
1e91009978 Network and Endpoint query methods to return error on not found
d96e94897e Fix DNS entry update issue
4a3c7e1bb5 Changed portallocator New() method to Get()
7ae3e91c8d fixing a link in design.md
9fad1812d9 Initial libnetwork rest api
26a5a79374 Update resolvconf and iptables packages from docker
10fafb06eb Fixed an intermittent issue in the libnetwork test
79556b1ccc Fix issue in ipv6 when a non-default link-local ipv6 address is present.
382fe75607 Simplify the code in the RegisterSubnet method of ipallocator.
d69e66c894 By ID and By Name query methods to return error
1cd241686c Create a build image to avoid install-deps every time
614d82390c Make driver packages register themselves via DriverCallback
1739626f4d NewNetwork and CreateEndpoint to validate resource name
7f7d9abd87 Make endpoint Join and Leave multi-thread safe
2fc4f3154f Added more test coverage for portmapper package.
0db03ebaa3 Add some tests
fd04ef2d00 Cleaning up the Endpoint Joins with proper defered Leave
27d34d67ab Fixed some convoluted texts in remote.md and fixed a remote driver bug
e1003fb078 fix some typos
904a313396 Remote Driver Registration
0d45fb66b3 Added remote driver design doc
df3cde525a Small typo fixed Signed-off-by: Kunal Kushwaha <kunal.kushwaha@gmail.com>
067e8977d5 Updated godeps
9714bcac87 Brought in iptables package into libnetwork.
d10b8aca74 Updated Godeps
9a5217b514 Copied etchosts and resolvconf packages to libnetwork.
142825b2f3 Updated Design Document
570a76384a Handled endpoint delete with active containers attached to it
4f7eb502bf Add design documentation
3919b126a9 Added support for network specific enable ipv6 label
94a9f12280 Moved most of the driver configuration to network configuration.
c9b54861e7 - Moved label definitions to a new package - Added a network scope well-defined label to enable ipv6
dc3a4a007c In bridge.go: Join(), Leave(), getnetwork() are not thread safe
ff36e97f45 Properly handle Leave by - Removing interface from the sandbox - Deleting Iptable rules in the bridge driver
f055e06f3a Added RemoveInterface support to sandbox.
8c2d72096f Don't fail the build on coveralls upload
ec4e1da3c5 Separate ExposedPorts from PortBindings in libnetwork API
8265de6325 chang the type of ports form PortBinding to TransportPort in link.go
3b8b2ffee8 - Changed ContainerConfiguration to simply use strings - Made ContainerConfiguration fields to be exported so options package can access them.
eb98e212cb Reuse existing docker chain constant in link.go
706c01073d CreateOptionPortMapping to store a copy of the passed bindings
d4851b95ec Incorrect assumption with golang net package causes Overlapping IP
55099e9656 - Removed sandbox override option from the driver. - Reworked the host network mode support by introducing a new JoinOption.
a983569c0c Added mac address to EndpointInfo
560d156e36 Replaced all proto numbers in netutils with the defined const
db2f7c6f28 Added support for /etc/resolv.conf
4399989c53 Updated Godeps to the latest versions of docker packages.
5f8bfa8ade Added "host" driver and test code.
66eb3e1cd4 - Added support for JoinInfo so that driver can override certain container config. - Added JoinOption processing for extra /etc/hosts record. - Added support for updating /etc/hosts entries of other containers. - Added sandbox support for adding a sandbox without the OS level create.
68cae04fe9 Fixed a bug in bridge driver when docker0 has no IP address it doesn't select and configure a proper IP address.
30e2ee9793 Fix a minor but in utils parsing UDP/TCP ports
56741e7d60 Provide API to retrieve Endpoint operational data
446b158581 Link implementation in bridge driver
95c5eb2856 Ignoring Driver failure on Leave.
da97978469 Remove redundant code in endpoint.go
da1cddc320 Bridge to handle port mapping - libnetwork cares for list of exposed ports, driver cares for list of port bindings. At endpoint creation: - list of exposed ports will be passed as libnetwork otion - list of port mapping will be passed as driver option
781bcc94a7 Params of non-exported struct should be non-exported
bfc5721970 Re-arrange MAC election code for sandbox iface
9db6a1b8e4 Join / Leave Driver API
cc4f27f6af Minor API modifications
0d3ad0eaee Control scope of JoinOption functions
4bf442a510 Updated Godeps
b8f81862d0 - Added Join option support - Added basic /etc/hosts generation support in libnetwork
d684600cdf Added null driver support for handling --net=none and -n=false cases
713ff79ed5 Reorganized the libnetwork code to seperate Controller, Network and Endpoint
d438fd59cd Port PR #11526 to libnetwork
e2d8531a40 - Added support for Join/Leave methods to Endpoint. - Removed sandbox key argument for CreateEndpoint. - Refactored bridge driver code to remove sandbox key. - Fixed bridge driver code for gaps in ipv6 behavior observed during docker integration. - Updated test code, readme code, README.md according api change. - Fixed some sandbox issues while testing docker ipv6 integration.
35693a1a47 Issue #88: Handle default v4/v6 gw setting
263ee2dbbb libnetwork client base infra
d152bb91c4 Added docker mflag package to Godeps
8f63aa82b0 Initial bats based integration tests for testing daemon network configs
21ed154c79 Rename setGatewayIP() in sandbox pkg
6a5e4a83e4 Provide Query API for Network and Endpoint
1c7c0f371b Add methods to walk Endpoints and Networks
6e80af6ee8 - Re-enabled Bridge test case which got disabled because lower case test case function name
c6fd92a565 - Fixed an assortment of bugs in sandbox - Added more test coverage to sandbox
1fae5573d2 Refactor NetworkController interface
198e3d3ee9 Libnetwork bridge to handle MTU option
69437b1009 Libnetwork bridge to handle --mac-address option
f4fd5dacbf Rename simplebridge to bridge
468ebf3816 Issue #68: In bridge.go driver remove veth on endpoint delete
3da12c7219 Add TestSandboxInfoEqual in sandbox_test.go
7d24e974cf Refactor driverapi, sandbox pkgs
dee9e06bbb Fixing a few typos
95958d7610 Enhance Endpoint interface
a004b52ab3 fix some typos
f151cc23ab Add Network method to return list of endpoints
88eb07fb8d Update Godeps docker/pkg/common => /stringid
8098113830 Fix libnetwork_test.go
0957eed04b Minor language cleanup in ROADMAP.md
d449658d91 Expose Endpoint IDs in their public interface.
e91ed59cb2 Changed all the naked error returns in bridge driver to proper error types, except the naked error returns which were just prefixing strings to previously returned error strings.
3e6a889cd6 Port Allocator as a libnetwork package
38ea74e2b5 - Fixed the makefile which was not checking failures in test code - Cleaned up the makefile to remove output clutter
b0a38a0d1b Fixed a bug in bridge driver where when the bridge already exists the bridgeInterface.bridgeIPv4 is not getting initialized properly
56c3adda07 - Added more testcases for libnetwork API testing - Added new error types for all of libnetwork errors
ec7d417a37 Added a test binary to test README.md code
8fe2d88db1 Fix typos and formatting in docs. Add Godoc badge.
e797f80ad4 Added driver specific config support - Added api enhancement to pass driver specific config - Refactored simple bridge driver code for driver specific config - Added an undocumented option to add non-default bridges without manual pre-provisioning to help libnetwork testing - Reenabled libnetwork test to do api testing - Updated README.md
d8f88b2afb Name/Mac generation and libcontainer dep removal
2c797384ff Report Code Coverage and Add Status Badges
6c0ffdd70a Added unsupported implementations for sandbox and sandbox test code
0a25032277 Converted IP address and gateway values to be proper types rather than strings in the sandbox and driverapi protocol
53c755b79d Updated godeps
68ae284db5 Libnetwork refactor for container network model - Added controller, network, endpoint and sandbox interfaces - Created netutils package for miscallaneous network utilities - Created driverapi package to break cyclic dependency b/w driver and libnetwork - Made libnetwork multithread safe - Made bridge driver multithread safe - Fixed README.md
1f3f37b2f8 Sync libnetwork code to latest docker/master
2d364e2c34 - Added support to bridgeNetwork.Link - Removed MAC and MTU configuration via AddInterface
7b05ee2ac4 Added initial README and ROADMAP files
d1a6ee35ea Run libnetwork test case only when it's specifically enabled
5d7b430801 Issue #33: Move portmapper and portallocator into libnetwork
bc59294da8 Point to Docker contrib guidelines in README
18d485a466 Add Makefile
4ac519f7b6 - Added initial test cases for libnetwork api - Introduce delete api
f76372ed74 Add MAINTAINERS
68d223a0e0 Issue #18: IP Allocator rework
f2d7564f2c Resolve Godeps
694c5ee788 Reimplement create namespace and move interafec to ns without reexec This removes the dependency on reexec so that libnetwork can be used as a library.
2d16187d8c Refactor the drivers interface to get rid of reflect way
6311a96710 Add implementation and test for SetupIPTables()
fc6b36e2bb Fix Godeps in CI
db5d4c3de3 Use Godeps
0ac3833edb Circle CI
2457d2549f Fix govet warnings
edebcebfee Circle CI
e718ea9d2a Circle CI
4e22b7b1f7 Add circle.yml
6424c7a875 Remove golint warnings
58a3934282 Add a diagnostic message to ip forwading code
e40794cdc4 Fix minor static analysis issue in setup_ipv4.go
80809c42c6 Add implementation and test for SetIPForwarding()
b9bd3a7dd0 Add network name
ba111871ea Renaming and comments
cb96e4149d Test coverage
94e8db8774 Next steps
882f4d7e74 Add FixedCIDRv6 test
3845ec20c4 Test coverage on bridge
8ca185e2ee Move bridge to drivers/
38f01266e3 Add tests
3125c1f7c7 WIP - Code moves
4a8b8498a7 WIP - Remove commented code
46864de1d7 WIP - Fixed CIDR v4 and v6
796d58af9e WIP - Bridge refactoring
1f3b1febc7 WIP - Bridge refactoring
76a8cbba11 WIP - Bridge refactoring
8ad4ec910b Generic argument passing to drivers
79ae90940c Generic options model
7d4450e647 Unexport reexec symbols
8ebeb1da5c Rename strategy to driver
0d29ca540f Initial import
d7c688f0f6 Initial commit
cli: update to -tip
Bumping docker-cli to version v23.0.0-beta.1-8-g83ca73f9a, which comprises the following commits:
0f6023a9c vendor: github.com/docker/docker v23.0.0-beta.1
016846e95 update to go1.19.4
0e15d73c6 Dockerfile: update buildx to v0.9.1
006c94638 cmd/docker: make feature detection lazy again
20ba591b7 Fix bug where incorrect response is returned
121c61387 cil/command: use dummy client for build-tests
21e45ff85 cli/command: add WithAPIClient
60833d204 docs/reference: exec: update some examples
cac78c237 docs/reference: info: update example output
9ba371f66 docs: update examples to not use deprecated images
74086bc93 doc/reference: update attach reference
82805ad71 docs/extend: remove note about first supported version
3da0e959d updated additionalHelp text
e547881e2 Fix ssh process killed when context is done
1b0d6fc80 Dockerfile: add ALPINE_VERSION build-arg
60b09ea7f vendor: docker/docker v20.10.3-0.20221201203946-b21e8f72f254 (v23.0.0-dev)
1768240bc cli/command/container: runPort: sort ports before printing
c5613ac03 cli/command/container: TestNewPortCommandOutput improve test
58487e088 cli/command/container: runPort(): slight refactor
f0435fd3f cli/command/container: runPort(): update godoc, and add todo
f2566760a Update AUTHORS header to indicate it's generated
b81acd7c4 Update mailmap and AUTHORS
25c06c755 vendor: docker/docker v20.10.3-0.20221201081640-bb2eab21c6db (v23.0.0-dev)
2c9dff143 cli/command/context: context ls: always show current context
ed4b0a67b cli/command/context: context ls: add ERROR column, and don't fail early
14f97cc10 cli/command: DockerCli.ServerInfo() load info lazily
3b7235edc cli/command: initialize client and load content lazily
2c41bbc49 cli/command/task: taskContext.Error(): use ellipsis utility
0ed80a3a5 cli/command/formatter: NewClientContextFormat(): unconvert
30a0d0c6d cli/command/formatter: define const for error column-headers
60987b8d7 cli/command: DockerCli: keep reference to options for later use
181769f18 cli/command: remove DockerCli.loadConfigFile()
36441fc5f cli: NewTopLevelCommand: don't use unnamed assignments
6ba7de3b5 cli/command/context: "docker context show": don't validate context
a7e2c3ea1 cli/command: add Cli.CurrentVersion() function
536aef9c6 vendor: update github.com/moby/term to fix interrupt handling
a52d922f8 vendor: golang_protobuf_extensions v1.0.4 - prevent incompatible versions
13493edcd Add Sam Thibault (sam-thibault) as curator
da6b2ab9e docs: update version to v23.0.0-dev
7c123d37c Update version to v23.0.0-dev
7d597de96 vendor: docker/docker v20.10.3-0.20221124164242-a913b5ad7ef1 (v23.0.0-dev)
dbffb29ff vendor: github.com/moby/swarmkit/v2 v2.0.0-20221123162438-b17f02f0a054
9c42cd9a3 cli/command: TestInitializeFromClientHangs fix unhandled error
e36d5a092 cli/command: DockerCli.CurrentContext: improve GoDoc
793f09705 cli/command: resolveContextName() move conflicting options check
2f5698511 cli/command: resolveContextName() don't validate if context exists
592d90caf cli/command/context: minor cleanup in runList()
0cc3f688d cli/command: use more descriptive const in test
acb934cc9 cli/command: move default context description to context itself
3499669e1 cli/flags: merge CommonOptions into ClientOptions
6a734df1c cli/context/store: make sure we handle wrapped errors
a51ce7ca9 go.mod: github.com/google/certificate-transparency-go v1.1.4
7d4450dbb vendor: docker 394f6c14add7c1a5a80257c9111f43b7edc78d0b / v22.06-dev
d4b51a343 vendor: github.com/moby/term v0.0.0-20221120202655-abb19827d345
1158788c8 Remove deprecated note
700099159 update gotestsum to v1.8.2
e064f893a docs: docker inspect --size
802c53fa9 docs: docker inspect: reformat with prettier
bf3f419b6 cli/command/stack: TestConfigMergeInterpolation: various fixes
4d2fb68b9 cli/compose/loader: fix error messages, and various tests
5aba4860d cli-plugins/manager: TestPluginError: don't use yaml.Marshal
0644aa390 cli/compose/types: UlimitsConfig.MarshalYAML() fix recursion
c18dd2719 cli/compose/loader: TestMarshallConfig: fix duplicate version
845f002d3 vendor: docker d15be0c54de92a4d868ebd66dbb1065e264554f2 / v22.06-dev
722cde068 vendor: golang.org/x/sys v0.2.0
275b7ddd1 vendor: github.com/sirupsen/logrus v1.9.0
f51c4ff31 vendor: docker cd8873dd3d21b1fc1b957c98dcd0f5c7a507fb70 / v22.06-dev
86038fdb6 vendor: github.com/containerd/containerd v1.6.10
88b33a667 vendor: github.com/moby/buildkit v0.10.6
af3007960 vendor: github.com/moby/swarmkit/v2 v2.0.0-20221102165002-6341884e5fc9
633ef7a09 vendor: golang.org/x/crypto v0.1.0 (fix OpenSSL > 9.3 compatibility)
880b7fc67 vendor: golang.org/x/net v0.1.0
0f568cfa9 vendor: golang.org/x/text v0.4.0
63ea1e424 vendor: golang.org/x/term v0.1.0
57b6ed34c vendor: golang.org/x/time v0.1.0
7b3900145 vendor: golang.org/x/sys v0.1.0
c855e4ba3 vendor: gotest.tools/v3 v3.4.0
46ba87dcf vendor: github.com/google/go-cmp v0.5.9 to remove golang.org/x/xerrors
85eee32f4 Update to Go 1.19.3 to address CVE-2022-41716
997846918 build: keep "buildx install" behavior
d1cabdff9 build: set default context builder if not specified
8dec4bcce cleanup leftovers for --stream build flag
d978d0dd5 go.mod: github.com/spf13/cobra v1.6.1
02e782692 Add compose support for cluster volumes
7c0d6ecf6 docs: update link to docker cp
bfcadab0b docs: improved docker run cli reference
684dcd7b6 Fix the max-concurrent-downloads and max-concurrent-uploads configs documentation
a7717513b docs: fix links to BuildKit backend
67e6ba0d0 vendor: docker 5aac513617f072b15322b147052cbda0d451d389 / v22.06-dev
5d78cc13a vendor: docker v20.10.3-0.20221021122114-f9cb47a052b (22.06 branch)
6fe31557c vendor: docker v20.10.3-0.20221006185438-87d9d96ab0b6 (v22.06-dev)
9505330b0 Remove "experimental" gates around "--platform" in bash completion
759f3aa10 vendor: github.com/moby/buildkit v0.10.5
3da9499e5 fixed the plugin command docker-runc
68330e099 add ability to override ints in compose files with 0
aea2a8c41 docs/reference: run.md update confusing example name
bacc5e3aa docs: update deprecation status for "overlay2.override_kernel_check"
4648c0084 docs: use correct separator in --security-opt
485f1f79c Update to go 1.19.2 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
c2f167159 Use gofumpt if available, and enable gofumpt linter
616124525 format go with gofumpt (with -lang=1.19)
1da95ff6a format code with gofumpt
cd7c493ea cli/context/store: rename removeAllContextData(), removeAllEndpointData()
09c94c1c2 cli/context/store: List(): don't interrupt listing for not-found errors
951bb481c cli/context/store: New(): return concrete type
de6020a24 cli/context/store: simplify error handling, and make it more idiomatic
38f54e792 cli/context/store: remove filePath(), make contextDir() accept name
9720d5b45 cli/context/store: listContextData(): accept name instead of ID
712cc9a1c cli/context/store: remove(): accept name instead of ID
0bcdff257 cli/context/store: getData(): accept name instead of ID
3b7f13a5e cli/context/store: createOrUpdate(): accept name instead of ID
c3eb116f9 cli/context/store: removeAllEndpointData(): accept name instead of ID
42e275eaf cli/context/store: TestTlsCreateUpdateGetRemove(): use correct ID
d0398c423 cli/context/store: removeAllContextData(): accept name instead of ID
f843c42c0 cli/context/store: listRecursivelyMetadataDirs(): use filepath.Join()
c6dfff131 cli/context/store: metadataStore.get(), .remove(): accept name instead of ID
90f1238fb cli-plugins/manager: add IsPluginCommand(() utility
7af8aac16 fix broken alias check is buildx is installed as alias for builder
a9ccb6552 cli/compose: remove redundant reflection from tests
9a493b1bf docker context rm: allow --force to ignore non-existing contexts
ef2a82663 vendor: gotest.tools v3.3.0
28b0aa9f1 replace uses of deprecated env.Patch()
843e71672 vendor: github.com/docker/docker-credential-helpers v0.7.0
de2105d15 vendor: docker v20.10.3-0.20220922131805-e143eed8bc4f (22.06 branch)
90db6b82a cli: use N/A as placeholder for old CREATED dates
0253634f5 cli: hide old CREATED times, instead of "52 years ago"
beb92650d vendor: docker v20.10.3-0.20220909113731-8af2e62556de (22.06 branch)
8771b956e vendor: github.com/klauspost/compress v1.15.9
3a17d8a90 Update to go 1.19.1 to address CVE-2022-27664, CVE-2022-32190
07ac2d8dc update to golang 1.19
fc7e831a6 vendor: golang.org/x/net v0.0.0-20220906165146-f3363e06e74c
1061f7449 Update to go 1.18.6 to address CVE-2022-27664, CVE-2022-32190
0dd2c1808 golangci-lint: update to v1.49.0 for compatibilty with go1.19
3dfdaa645 linting: assigned to src, but reassigned without using the value (wastedassign)
98654202c linting: G112: Potential Slowloris Attack
b58731fa4 linting: ST1005: error strings should not be capitalized (stylecheck)
b508b0fc3 linting: ST1017: don't use Yoda conditions (stylecheck)
7cec7101c linting: tabwriter: ignore stylecheck
cef858170 linting: os.Setenv() can be replaced by `t.Setenv()` (tenv)
ce01160e7 linting: ST1019: package is being imported more than once (stylecheck)
491407b54 linting: remove unused nolint comments (nolintlint)
d3d9301d2 linting: use consts from stdlib (usestdlibvars)
c645c9928 opts: remove unused RuntimeOpt
0e4f0e4a7 vendor: github.com/docker/go-units v0.5.0
67ae2c097 cli: createContainer() remove intermediate variable
23a0fb071 vendor: docker v20.10.3-0.20220831131523-b5a0d7a188ac (22.06 branch)
fb0788f18 build: replace uses of archive.CanonicalTarNameForPath
e484243c2 cli/command: NewDockerCli(): use WithStandardStreams()
eaf6461ee vendor: golang.org/x/sys v0.0.0-20220825204002-c680a09ffe64
0e3d54261 replace pkg/system Sequential funcs with moby/sys/sequential
948482b77 vendor: docker v20.10.3-0.20220826112928-d2590dc3cd4f (22.06 branch)
b105b22f1 vendor: github.com/moby/buildkit v0.10.4
649aa6175 vendor: golang.org/x/sys v0.0.0-20220728004956-3c1f35247d10
440fb75c9 vendor: github.com/containerd/containerd v1.6.8
da81c096b ci: add concurrency check
fd5590dcd chore: dependabot to keep gha up to date
d598646f1 ci: update github actions
304c100ed complete the "-g" / "--graph" daemon option deprecation
c24ec2502 Update issues form
6eec719d3 update cli-docs-tool to v0.5.0
ad2bff2c0 Dockerfile: update buildx to v0.9.0
f41cbf9dc Move notes about required buildkit
2475b07d0 Update link to libnetwork docs
6191b662b Update golang to 1.18.5
1d9ab7803 cli: set timeout connection ping on sockets as well
f87d7ed86 context use: don't create/update config file and directories if not needed
cee286ff6 context use: skip validation for "default" context
50893d72d also treat DOCKER_CONTEXT='' as unset
aa7b1b24a command: treat DOCKER_HOST the same if it's empty or unset
6f799c1a1 dockerfile: llvm needed on debian for cross comp
87b085c8c missing DWARF symbol table
049811fef cli/command/context: remove newContextMetadata() utility
5ed92699f cli/command: remove WithContextEndpointType() as it's unused
6874c2e80 cli/command: remove unused args from ResolveDefaultContext()
07113638c vendor: docker v20.10.3-0.20220720171342-a60b458179aa (22.06 branch)
f175f5d17 vendor: remove replace rule for github.com/gogo/googleapis
65d45664b vendor: golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a
82427d1a0 format (GoDoc) comments with Go 1.19 to prepare for go updates
046e7e61f update golang to 1.18.4
a4caf8e89 remove uses of client.IsErrUnauthorized()
0b1b5957c Removed feminine reference
e7a1f14d3 maintainers: Add Paweł Gronowski as curator
c25ff58cb maintainers: Add Bruno de Sousa as curator
80b1285fe cli: use custom annotation for aliases
190dac77b container: validate --pull option on create and run
2d88c896b cli: print full command as aliases in usage output
5a434d8f7 cli/command/container: rename variable that collided with import
a929ac0f3 vendor: Bump github.com/spf13/cobra to v1.5.0
f3ed630f8 docs: dockerfile reference moved to buildkit repo
a141f1c26 command/exec: Fill ConsoleSize
9373b2611 vendor: github.com/docker/docker 4eb1c5bd52afa08595d9a082a9ba05c81f79be07
e458cf1af Improve doc code formatting
7227c0145 docs: fix misleading example of setting an env variable for a single command
a51ea675b opts: fix potential panic in trimQuotes
0929bed42 Fix psFormat's Size handling in config file
8e0afc648 bake: align platforms
0f6a0eb2d bake: use no-cache-filter for outdated stage
0c17225df Dockerfile: update xx to 1.1.1
c47aa3dfa info: fix output including "Labels:" if no labels were set
787077d41 docs: add missing --no-trunc in example
cc78788bb vendor: github.com/docker/docker 38633e797195643580ce5c4af7c5422aad3eb7de
1f179ac65 vendor: github.com/docker/docker cf4595265e7703e1e9745a30f1dd265acbc075d3
a4ffbcd95 update AUTHORS and mailmap
1d85b4d0e Deflake TestVolumeCreateClusterOpts
2119f425b docs: reference: version: add info about API version negotiation
99bb525f9 docs: reference: version: improve description
aa720f154 update golang to 1.18.3
b9e2659a0 info: update plugin section to show installed path
86a7a7aa7 vendor: github.com/docker/docker 3e32104e0e39af9019a3ea9aa7093bb7c97fcf05
73c6231b4 vendor: github.com/docker/docker cb01202de88e20d5699c76efe948dfb065da873f
baafc8f28 vendor: github.com/docker/docker 8abb84c7342a19009d777ef3d871c0b2a5c032a5
d945856e6 vendor: github.com/docker/docker d633169483bbe22b92b8310c47e827451b594364
8378b4277 vendor: github.com/docker/docker c9d04033d443e359e73e5da58a6b46ec1b8f2373
6d3bda1e7 cli/container: Move filling ConsoleSize to create
3997f3431 Added Swarm Job support to Stack Deploy
77e8c6f68 Update version to 22.06.0-dev
a1c4af764 docs/deprecated: update version to 22.06
86c30e6a0 add --signal option to stop and restart
5eb24bfd1 completion: remove options related to deprecated cluster-store
1fafae3ef info: remove cluster store from docker info output
28e2b92b5 docs: remove documentation about deprecated cluster-store
7236f7824 man: use "console" hints in markdown
a7c8cb514 remove unused poule.yml
a2e9ed3b8 cli/command/container: use RWMutex for stats to allow concurrent reads
34dd43bf1 cli/command/container: some small performance optimizations for formatting stats
7bcc03d97 cli/command/container: add BenchmarkStatsFormat()
868adb13c lint: update some nolint comments:
0fab8ecf3 volume: annotate cluster-volumes flags for API version and swarm
3455580eb Add cluster volume support
9bf28fc00 vendor: github.com/docker/docker f1dd6bf84e28930e1ccd903361f9284fb22d3b8a
20138a81b docker kill: don't set default signal on the client side
66b905650 completion v2: some small follow-ups
cbec75e2f Adopt Cobra completion v2 to support completion by CLI plugins
b59219f0e vendor: github.com/moby/buildkit v0.10.3
ef3790757 vendor: github.com/docker/docker 7c69b6dc08c7
1629df514 vendor: github.com/containerd/containerd v1.6.4
05279c7c6 vendor: golang.org/x/sys v0.0.0-20220412211240-33da011f77ad
f5d16893d update golang to 1.18.2
13e053387 Fixing stats race condition
9dc54f3fb info: don't print server info if we failed to connect
e96e17d10 info: improve handling of empty Info
2585b6a79 Fix dead external link
b901f5d14 TestSaveFileToDirs: use filepath.Join()
0c2d0072c Sleep for 1.5 seconds before looking at the resize error
db141c21e hide swarm-related commands based on the current swarm status and role
374d0f88c cli: initializeFromClient(): detect swarm status from ping (if available)
9598c4c90 Retry initializing TTY size a bit more
f1632c0dd remove some swarm annotations from flags
2d74be89e contrib/completion: remove orchestrator flags from zsh completion
ea0ae30d8 contrib/completion: remove unused options variable
6cee6085d Add example get API version
863780d0d vendor: github.com/moby/buildkit v0.10.2
b3f3beb73 vendor: github.com/klauspost/compress v1.15.1
acf6aee91 vendor: golang.org/x/sys v0.0.0-20220405210540-1e041c57c461
165c5da00 vendor: github.com/Microsoft/go-winio v0.5.2
11924f498 vendor: github.com/moby/swarmkit/v2 v2.0.0-20220420172245-6068d1894d46
7aa0b273e vendor: github.com/docker/docker 2ed904cad7055847796433cc56ef1d1de0da868c
15301e7cf vendor: github.com/containerd/containerd v1.6.3
57e28d64d vendor: github.com/miekg/pkcs11 v1.1.1
15be07a07 vendor: github.com/opencontainers/image-spec v1.0.3-0.20220303224323-02efb9a75ee1
381fb1dbd Remove unsupported alias from `docker stack config` help output
6712447e4 Remove bash completion for deprecated orchestrator flags
14d7fe441 Add bash completion for `docker stack config`
0ea587b0d Add --force option to network rm subcommand
052b4086b cli/command/image: remove use of docker/docker/pkg/urlutil
7b4d7717b Always set the console size
fd2bc1fa5 use our own version of text/tabwriter
e9a4d7e61 introduce `context show` command
9fc2dd497 Add Djordje Lukic to maintainers
c3fe1b962 update golang to 1.18.1
05ae1fdd2 Add Nicolas De Loof to maintainers
95b0c43e4 docs: deprecated: add entry for "fluent-async-connect" log-opt
b66f4b2c2 cli: use "Swarm Subcommands" instead of "Orchestrator"
aaa912c9f move commonly used top-level commands to the top of --help
a058f9774 remove exec, push, pull, ps, images, info from "legacy" commands
cea26ac86 commands.AddCommands(): re-order/group commands
ed71a5091 move global flags to end of --help output
ae611f4c0 move orchestration commands to their own section in --help output
bb610a59b cli: annotate "stack" command to be a swarm subcommand
bbc95c7bb remove "Experimental" client field from "docker version"
51a84fe86 cli/command: fix documentation of CopyToFile mentioning ioutil
cff702d88 Add merge to ShellCommand properties in config
fbea85d47 Change merge strategy for service volumes
dfc214115 Add stack config command
51aa683a8 cli/command/system: remove printStorageDriverWarnings()
f3a6e7ede docs: update deprecation status of "experimental" cli
47cad508a docs: update deprecation status for overlay(2) on backingfs without d_type
60a0e67e0 docs: update deprecation status of legacy overlay networks
9630e1490 docs: update deprecation status of aufs, overlay, and devicemapper
41fd1c49b update deprecation status of --kernel-memory(-tcp)
49a7d75a2 docs: reformat table for compatibility
167a624bd Update v21.xx to v22.04
f06606f60 Update version to 22.04.0-dev
ee218fa89 Deprecation: config: remove support for old ~/.dockercfg
b1f18b700 fix: remove asterisk from docker command suggestions
94e08f2e2 Makefile: don't warn "outside container" for some targets
90b60b5d8 Dockerfile.dev: set prompt, add nano and jq, and set MOTD
258640ab4 Makefile: add missing help messages for some targets
62bf7b703 update mailmap and authors
8fd92f186 scripts/build: make sure build-time is in UTC
72ed7bd3e scripts/build: fix date formatting on macOS
bcd4101f3 tweak description of login/logout
028d5c39b Dockerfile: update buildx to v0.8.2
4b35192d7 docs: reference: remove trailing space to fix yaml formatting
b7b923db4 tweak description of "docker push" and "docker pull" commands
6e6652b70 tweak description of "docker run" command
ac22b2bf5 tweak description of "docker exec" command
9688f62d2 fix race condition in TestRemoveForce
22edabb58 fix version quad logic that trims 0 digit so returns an empty one
525845572 trim leading 0 for minor in the version quad
391e6ad94 use GO_LDFLAGS instead of LDFLAGS to prevent inheriting unrelated options
801113fb8 cli/registry/client: remove unused IsNotFound(), and slight refactor
48745da16 cli/registry/client: remove unused RegistryClient.GetTags()
e83d6cd2c cli/registry/client: remove unused GetRegistryAuth()
04347f793 context: Endpoint.ClientOpts(): use client.WithVersionFromEnv()
1db2da57c use client consts for environment variable names
2b976720f docs: add anchor-tags for flags
885f44a5b docs: fix (table) formatting, fix some broken links
b87a0c1b0 docs: build: add named anchor tags for flags
7d4ae1375 docs: build: fix minor markdown and syntax issues
ccbaaf072 search: remove client-side default for --limit
2dc178c80 search: change "the Docker Hub" to just "Docker Hub"
f00c06f6c docs: commandline/index.md: reformat tables
a3c4a42d4 Dockerfile: update buildx to v0.8.1
8e2d63d5d Fix flaky TestContainerList tests
635c55d52 update go to 1.18.0
bf29b40a8 staticcheck: ignore SA1019: strings.Title is deprecated
a1e67401d vendor: github.com/docker/docker 8941dcfcc5db4aefc351cd5b5bb4d524823035c0
dce592979 Update to debian bullseye
d45030380 Dockerfile: prefer ld for cross-compiling arm64 in bullseye
3ffe6a337 lint: update golangci-lint to v1.45.2
4ab70bf61 linting: fix incorrectly formatted errors (revive)
d7c1fb911 linting: ignore some "G101: Potential hardcoded credentials" warnings
5a65aadd8 cli/command/container: unnecessary use of fmt.Sprintf (gosimple)
d382a7103 update run.md
c569d2574 Bump cobra to v1.4.0
bc2b48aaf e2e: cleanup TestGlobalHelp() to be less brittle
4cd2d9ddd Change "COMPANY_NAME" to "PACKAGER_NAME"
a0f057829 gofmt with go1.17
f3a05eb80 vendor dependencies with go1.17
6119e4ba9 update go to 1.17.8
3a1fc21e7 Dockerfile: use xx-apt-get instead of xx-apt
e20572d04 scripts/build: make sure osusergo is set for static with CGO enabled
40d801662 Dockerfile: update xx to 1.1
5f74020de vendor: github.com/moby/buildkit v0.10.0
adadd5472 vendor: github.com/prometheus/client_golang v1.11.0
7408799ec vendor: github.com/prometheus/procfs v0.7.3
29f799aae vendor: github.com/containerd/containerd v1.6.2
b2cef834f vendor: google.golang.org/grpc v1.44.0
51ef2ccff docs: hyphens are not dashes
bc2c8d759 vendor: golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
994d6b7fc Dockerfile: use syntax=docker/dockerfile:1
4f118c763 vendor: github.com/docker/swarmkit 616e8db4c3b0
02a06cf9a vendor: golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac
bc54802f5 vendor: golang.org/x/term v0.0.0-20210615171337-6886f2dfbf5b
56f51a35c vendor: golang.org/x/crypto v0.0.0-20211202192323-5770296d904e
1bb259144 vendor: golang.org/x/net v0.0.0-20211216030914-fe4d6282115f
ce2e036ad vendor: github.com/opencontainers/runc v1.1.0
fdbb5953a vendor: github.com/klauspost/compress v1.15.0
2b7cb5b1b vendor: github.com/cespare/xxhash v2.1.2
119c7fb84 Fix CMD --ignored-param1 example
b4ca1c736 registry: don't call "/info" API endpoint to get default registry
9c0234bbc Output compact JSON by default for --format=json
d8ecb00dd Update shell completion scripts
b4af79968 Update reference documentation
0611be0f0 Update man pages
a4a734df4 Update list commands with better format flag description
eb27a94c3 Added "json" as specific value for --format flag in list commands, as an alias to `{{json .}}`
84d47b544 Add "json" as default value to format flag in all inspect commands.
c700bbcb4 Add specific "json" value to format flag with inspect commands to output json, as empty flag does. Added tests on that new behavior.
831704e56 search: do not sort results by stars on client side
4f1ba37e1 docs: remove note about buildkit not supporting git subdirectories
ab35e3fac Handle relative source mounts
e5f5d946e docs: dockerd: fix broken link in blockquote area
de0549926 align wording of push --all-tags parameter description
dc9e069ff vendor: github.com/docker/docker v20.10.3-0.20220309172631-83b51522df43
e90cb7515 vendor: github.com/docker/distribution v2.8.1
30e47e5a0 vendor: github.com/prometheus/common v0.10.0
576e4dce4 vendor: golang.org/x/text v0.3.7
7880acb05 vendor: golang.org/x/sys v0.0.0-20220114195835-da31bd327af9
6da0fc299 vendor: github.com/moby/sys/signal v0.7.0
4adea808c vendor: github.com/google/go-cmp v0.5.7
12b06fa37 vendor: github.com/coreos/etcd v3.3.27
16554e999 vendor: github.com/containerd/containerd v1.5.10
41a5e0e4d improve cp documentation with some illustration examples
fe8a12c62 vendor: github.com/opencontainers/image-spec v1.0.2
3669aa351 vendor: github.com/Microsoft/go-winio v0.5.1
257f6149b Remove ClientInfo as it is not practically used.
ac06c971f remove unneeded "digest" alias for "go-digest"
e40529aa3 use consistent alias for api/types/registry
b7e4f3daa remove alias for cli/config imports
cc08fc1af Implement WithDefaultContextStoreConfig() DockerCliOption
d35b50c0c NewAPIClientFromFlags: rename variable to not collide with import
398026d31 vendor: gotest.tools/v3 v3.1.0
58747a631 vendor: github.com/google/go-cmp v0.5.5
9f0430b8f vendor: remove redundant replace rules
5b9256333 vendor: move github.com/moby/sys packages to "requires" ("indirect")
8a3e3b22a vendor: gotest.tools/v3 v3.0.3
20b5dfa59 vendor: gopkg.in/yaml.v2 v2.4.0
a26de1de0 vendor: golang.org/x/text v0.3.4
7917946a5 vendor: golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1
109cc4ea4 vendor: golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359
25366b6a5 vendor: remove replace rules for k8s.io packages
1d4431c1e cli/command: Add quiet option for create and run
bdfeae899 docs: daemon: remove LCOW configuration options
6c16afe1d docs: unify "docker create" and "docker run" reference
7eb61e2ff docs: add missing documentation for --pull flag
60c383636 cli/compose/schema: make version: "3" equivalent to "3.x" (latest)
a3d53e319 dummy circleci config
f160fd3e3 remove circleci
7dc35c03f validate manpages target
a650f4ddd switch to cli-docs-tool for yaml docs generation
76a2a1945 fix inherits for vendor bake defs
bea6c0d24 validate authors target
ede32747b add common args bake target
8c3ae386c golangci-lint: prevent io/ioutil from being used
6c06950cd cli-plugins/manager: remove uses of deprecated io/ioutil
38e62571f opts: remove deprecated io/ioutil and use t.Cleanup()
85754c9ab man: remove deprecated io/ioutil and use t.TempDir()
7491c5ac6 internal/test: remove deprecated io/ioutil
e89af84ff e2e: remove deprecated io/ioutil and use t.TempDir()
39ace6806 docs/yaml: remove deprecated io/ioutil and use t.TempDir()
0e3197ebd cmd/docker: remove deprecated io/ioutil
86db51e86 cli: remove deprecated io/ioutil
1e54bca83 cli/trust: remove deprecated io/ioutil and use t.TempDir()
58cf16da4 cli/manifest: remove deprecated io/ioutil and use t.TempDir()
cca80cddd cli/context: remove deprecated io/ioutil and use t.TempDir()
71575ab3b cli/config: remove deprecated io/ioutil and use t.TempDir()
b9f0340b6 cli/compose: remove deprecated io/ioutil
3f7e7bf9d cli/command: remove deprecated io/ioutil and use t.TempDir()
cca73bff4 cli/command/volume: remove deprecated io/ioutil
b5dce3c9e cli/command/trust: remove deprecated io/ioutil and use t.TempDir()
e0299ff86 cli/command/system: remove deprecated io/ioutil
78cb61c61 cli/command/swarm: remove deprecated io/ioutil and use t.TempDir()
d59330f40 cli/command/stack: remove deprecated io/ioutil
d1f26de64 cli/command/service: remove deprecated io/ioutil
c558df7ce cli/command/secret: remove deprecated io/ioutil
3b3a0b898 cli/command/registry: remove deprecated io/ioutil
f61aab59f cli/command/plugin: remove deprecated io/ioutil
9bdeb09ae cli/command/node: remove deprecated io/ioutil
f28c063e2 cli/command/context: remove deprecated io/ioutil
43795ec8f cli/command/manifest: remove deprecated io/ioutil and use t.TempDir()
d14b5bff8 cli/command/image: remove deprecated io/ioutil and use t.TempDir()
76b47359c cli/command/context: remove deprecated io/ioutil and use t.TempDir()
e946bf080 cli/command/container: remove deprecated io/ioutil
bc1790c5c cli/command/config: remove deprecated io/ioutil
8dc53344e cli/command/checkpoint: remove deprecated io/ioutil
e7a8748b9 build: use legacy builder for wcow if not opt-in with a builder component
e38e6c51f bring back and expose BuildKitEnabled func
ee9d17cae cli/context: update package documentation
242857dd8 update/remove various tests and options related to kubernetes support
7ccee6d60 remove unused KubernetesEnabled() test-utility
2d268392d publish RunExec for use by docker/compose
467e650d4 formatter: mark KubernetesEndpoint templating option as deprecated
6ea276728 config: mark stackOrchestrator option as deprecated
b7d0f5c66 docs: add more details to stack kubernetes deprecation
6dcfbe662 docs: update list of supported filters for stack services
039018b6d docs: remove deprecated orchestrator flags
869370a3f docs: remove mention of DOCKER_STACK_ORCHESTRATOR env-var
16ece9bb8 system/version: remove dead-code
1924bc9f0 stack/swarm: remove unneeded getStackServiceFilter()
cff010c61 context export: remove docker context export --kubeconfig options
013a74f00 document kubernetes feature as "removed" in 21.xx
d9a2a555d introduce plugin.RunningStandalone as utility func for a plugin to know it is run standalone
ee97fe95b Fix incorrect pointer inputs to `json.Unmarshal`
193ede9b1 remove obsolete mutli-orchestrator support
1d48749c1 warn user kubernetes is deprecated and options won't be stored in context
7b9580df5 Drop support for (archived) Compose-on-Kubernetes
a7778806a cli/compose/schema: make version optional, default to "latest"
a9fd69773 cli/compose: add schema 3.10 (no changes with 3.9 yet)
d44eca129 cli/compose/schema: Validate(): normalize version before validating
a3c131496 vendor: compose-on-kubernetes v0.5.0 to remove use of github.com/golang/glog
8b408372f Describe privileged mode in terms of capabilities
16edf8bff builder: conditional warning for wcow
fd2274692 Update deprecation docs
bce65f0ed builder: simplify error generation, and rephrase error/warning
4d8e45782 builder: fallback to legacy
6fef143db Set buildx as default builder
0ca2d25ba Update dockerd.md
2d6ebd1e3 Correct device syntax to --gpus
0d5b24b01 Dockerfile.vendor: use GOPROXY=direct
5c4a395c5 scripts/vendor: run go mod tidy when vendoring
08a1ccc60 Remove support for encrypted TLS private keys
ae3a61439 docs/daemon: replace deprecated '-g' option for '--data-root'
663f01b9c use uuid to invalidate cache
77b1031be make compose plugin detection in bash completion work on Mac OS
dfb39e9e5 Fix Typos
2725f0987 Fix typo
caa31d937 fix linguist with .gitattributes
7e560ae76 vendor with go mod
a1204a50b Update stats.md add example json output
5fab1b2b1 ensure version quad for goversioninfo
3425e9dc3 ci: add glibc to build matrix
418dbc4e7 docker exec cli docs: show 2 env vars, not just 1
a18514370 added missing closing parenthese
c6636d4d6 Change IO order in description
6ad2ceba3 Update Ubuntu version number references in push.md
4d93717ae ci: github actions test workflow
dedd4b79c Update Go to 1.16.11
62ea2bf1a GitHub Actions e2e tests
a4e746087 Bump moby/sys
8b85274d2 Fix typo
e285f1500 Update Go to 1.16.10
83c253770 fix .dockerignore to avoid dirty working tree
417f97605 Update most links in docs to use https by default
dbac82681 Fix checkout behavior and FileVersion
75284bd1d Use goversioninfo to create Windows Version Info
8c73a9392 docs: some minor touch-ups in checkpoint reference
bf310f863 Update Go to 1.16.9
795c9c96b docs: remove trailing space to fix generated YAML format
1f8cb1fbb registry: ensure default auth config has address
a3832808f docs: create.md: typo fix
cbda0760b docs: man page: typo fix in docker_1
c4619fb34 Update deprecated.md
1de937c14 docs: fix search results by filterd is-official
d9f4352c2 GitHub Actions cross
a90532e29 doc: Add `default-runtime` opt to daemon.json
47e5cfa9e docs: fix description of restart-delay to mention max (1 minute)
221bf5761 bump imdario/mergo v0.3.12
6482f3f9b Use private network address for default-address-pools setting in daemon.json example
47c7a096f Dockerfile: update tonistiigi/xx to 1.0.0-rc.2, add XX_VERSION arg
01fa5d925 Update Go to 1.16.8
2621af848 docs: fix some broken anchors
ea98f6c92 experimental: fix broken link to "checkpoint and restore" page
b0ec87afd format create.md table
172b2dc37 Fixing typo (his --> its)
214cd05aa create/run: remove default --stop-signal
61a1775ad vendor: golang.org/x/sys 63515b42dcdf9544f4e6a02fd7632793fde2f72d (for Go 1.17)
aa89e6847 docs: move checkpoint/restore doc from experimental into reference
463746ff2 docs: add missing redirect, and remove /go/experimental redirect
b5f4a6e45 fix innocuous data-race when config.Load called in parallel
47ba76afb docs: use "console" code-hint for shell examples
16466f1ce docs: rewrite reference docs for --stop-signal and --stop-timeout
af1bb80c3 Enable ssh forwarding when building a remote target
7e15d136b cli.SetupRootCommand(): minor cleanup
818564af5 cli/compose: use go1.16 native embed functionality for schemas
509cc3218 vendor: google.golang.org/grpc v1.5.2
2ef71e502 vendor: genproto 8816d57aaa9a, google.golang.org/protobuf v1.26.0, github.com/golang/protobuf v1.5.2
fc85fe4eb vendor: update docker to current master (API v1.42)
3e50224fd vendor: github.com/docker/swarmkit 3629f50980f6c0dd5ccd7dbfa0956b57ea0cd78d
847aef321 build: fix AddDockerfileToBuildContext not de-referencing tar header template
fcc2ce349 vendor: github.com/containerd/containerd v1.5.5
cfb07a75a vendor: github.com/opencontainers/runc v1.0.1
ecad24d47 vendor: github.com/sirupsen/logrus v1.8.1
23ed50c10 replace docker/pkg/signal with github.com/moby/sys/signal
3112b382a Update Go to 1.16.7
698c15547 GitHub Actions for lint
896459569 info: skip client-side warning about seccomp profile on API >= 1.42
b86f5135f docs/yaml: add TODO for conditionally skipping root command
c509ef710 yamldocs: various improvements
a477a727f Update to go1.16.6
0b2eaa7f7 cli/command: don't use client.CustomHTTPHeaders(), and simplify asserts
8916855c2 docs: update deprecation status of LCOW
40c6b117e change TestNewAPIClientFromFlagsWithHttpProxyEnv to an e2e test
60fe32243 e2e: update gotestsum to v1.7.0
15535d459 context: deprecate support for encrypted TLS private keys
2688f25eb cli/context: ignore linting warnings about RFC 1423 encryption
0695578d4 CircleCI: update BUILDX_VERSION to v0.6.0
ecaaa35be Add doc for BUILDKIT_PROGRESS env var
48dbf6f3c Update Dockerfiles to latest syntax, remove "experimental"
13e822500 vendor: cpuguy83/go-md2man/v2 v2.0.1
ef14ae09b vendor: github.com/russross/blackfriday/v2 v2.1.0
7a0dc924f Add support for ALL_PROXY
5a8d7d506 Detect compose plugin
f3d1b02e2 Dockerfile: remove custom go build for windows/arm64
d9f17025c Fix typo in documentation - build.md
0ebdad749 vendor: github.com/containerd/containerd v1.5.3 to reduce indirect dependencies
4ce521c50 info: print errors to stderr
1148163c3 Add completion for docker-compose plugin
d738e7c48 docker info: skip API connection if possible
a033cdf51 Deprecate Kubernetes context support
c05f0f595 Deprecate Kubernetes stack support
7190255a6 Deprecate Kubernetes stack support
0c723fd68 Fix the (dead) link for docs for Dockerfile syntax reference
384b59b73 Updated docker attach example.
918168c40 Bolded SIGKILL & fixed backslash escaping.
2a167065d Cleaned up formatting/typesetting.
64b2e9528 Document `--validate` daemon option
711334e9a vendor: github.com/moby/buildkit 9f254e18360a24c2ae47b26f772c3c89533bcbb7 (master / v0.9.0-dev)
678c2fde9 UX: don't reverse progress-bars when rolling back
a04c8210a vendor: github.com/docker/docker 25917217cab38eab40c3db0010b915258f4a8491
29fed6bff vendor: github.com/docker/swarmkit 2dcf70aafdc9ea55af3aaaeca440638cde0ecda6
f647fce89 vendor: github.com/containerd/containerd v1.5.2
f269e7fc3 vendor: github.com/coreos/etcd v3.3.25
83c915857 vendor: github.com/tonistiigi/fsutil d72af97c0eaf93c1d20360e3cb9c63c223675b83
79a9fd61f vendor: github.com/opencontainers/runc v1.0.0-rc95
579279ce0 vendor: github.com/Microsoft/hcsshim v0.8.16
ab46952ba vendor: github.com/Microsoft/go-winio v0.4.19
f114f6c87 vendor: github.com/json-iterator/go v1.1.10
c451d82af vendor: github.com/containerd/typeurl v1.0.2
3ea82da31 vendor: github.com/containerd/continuity v0.1.0
9ee3d08ae vendor: github.com/containerd/console v1.0.2
945f1237e vendor: github.com/containerd/cgroups v1.0.1
adb118d29 vendor.conf: sort alphabetically
6d25af0cd vendor: golang.org/x/time 3af7569d3a1e776fc2a3c1cec133b43105ea9c2e
8ebe404df vendor: golang.org/x/sys d19ff857e887eacb631721f188c7d365c2331456
af1687406 vendor: golang.org/x/sync 036812b2e83c0ddf193dd5a34e034151da389d09
dea997614 vendor: golang.org/x/net e18ecbb051101a46fc263334b127c89bc7bff7ea
716291337 vendor: golang.org/x/crypto 0c34fe9e7dc2486962ef9867e3edb3503537209f
2cbb88f4c vendor: github.com/modern-go/reflect2 v1.0.1
d6c55a105 vendor: github.com/moby/sys mountinfo/v0.4.1
f44563747 vendor: github.com/gogo/protobuf v1.3.2
b5bc27990 vendor: moby/term, Azure/go-ansiterm for golang.org/x/sys/windows compat
e12aade59 Update WORKDIR command information
524e3b215 e2e: update docker-compose to 1.29.2
c6cd0493a circleCI: update docker engine to 20.10.6
661b87ac9 Jenkinsfile: update old engine version to 19.03
2849437f2 Jenkinsfile: update labels to prevent running on cgroups v2
79638e6ea feat(docker): add context argument completion
f3b6ed744 e2e: make sure that os.environ is preserved
7672267e1 vendor: github.com/docker/docker-credential-helpers v0.6.4
49f607153 vendor: github.com/docker/docker v20.10.7
3b502ca00 Fix minor wording
16131fb45 Slight cleanup/refactor of attachContainer
04e6884f6 docs: fix link to command-line reference
cedaf44ea Ignore SIGURG on Darwin too
57e768059 docs: Fix broken jump link
f3034ee92 docs: dockerd: fix broken link and markdown touch-ups
782192a6e Swap "LABEL maintainer" for the OCI pre-defined "org.opencontainers.image.authors"
05ec0188f printServerWarningsLegacy: silence "No oom kill disable support" on cgroup v2
731f52cfe printServerWarningsLegacy: silence "No kernel memory limit support"
3c8d65963 docs: cleanup / refactor cli doc
276e7180f docs: add reference for "docker config" commands
68284ff59 docs: update some examples for proxy configuration
be327a4f0 cli/config/configfile: various test cleanups
f3886f354 Use designated test domains (RFC2606) in tests
caa4742e5 docs: remove experimental ipvlan docs, as they were migrated
12370ad1f Add progress bar to copy into and from container
30359cbdb docs/reference/builder: update "syntax" section
17a9eb60e docs/reference/builder: update example output, and some rephrasing
22b14dac8 docs/reference/builder: remove outdated example Dockerfiles
168173a3f Use net.JoinHostPort() to fix formatting with IPv6 addresses
5dd7a2826 docs/reference/builder: touch-up code-hints and some minor changes
2586decba docs: document log-opts for "dual logging" cache
83e9eeb8a scripts: Allow skipping windres when WINDRES= (empty string)
2c40960ba scripts: use WINDRES env var if set
6e45f4bfe scripts: fix VERSION_QUAD corner case in windows resource
26b633d37 set default version from git
b099c9c9e update readme with new examples
706e857a9 remove unused targets
bd3e853c7 update circleci cross target
a2a1de5f0 add windows/arm64 target
8b822c921 update windows resources generation
6423da8dc dockerfile based binary building
41d169d21 Update stop.md
75dd73f64 vendor: github.com/theupdateframework/notary v0.7.0-21-gbf96a202
09ddcffb2 config.Load() remove unneeded locks
25dc8034f vendor: github.com/spf13/cobra v1.1.3
e05e66f4b docs: remove trailing spaces to prevent yamldocs using "compact" notation
d051df994 docs: improve example for "remove all stopped containers"
b83bc6713 config: print deprecation warning when falling back to ~/.dockercfg
a54577b75 vendor: update notary to 5f1f4a34
e50cf7957 vendor: update x/sys to 134d130e
10e909a26 docs: Fix wrong bridge driver option
e1a751751 Fix `docker start` blocking on signal handling
9342ec6b7 ForwardAllSignals: check if channel is closed, and remove warning
cb1bb72fd Fix mistake with env var example in docker run docs
040210bfa Update the list of log drivers
b43b85203 context: Add tarball e2e tests
8c2872d2a context: Ensure context name is valid on import
a2f0cf527 context: Ensure import paths are valid
f52a9e2fe Add docs and completion for docker node ls --filter node.label
8d199d5bb Use golang.org/x/sys/execabs
7bef24876 vendor docker, docker-credential-helpers and golang/sys for execabs package
c0b7b5813 fix docker-run man page table formatting
852fe0599 docs: Fix wrong variable name
a4fb01f95 docs: add redirect for old reference URL
104469be0 service rollback: always verify state
ce26a165b docker service rollback: fix non-zero exit code in some cases
c85a37dbb cli/config: prevent warning if HOME is not set
26a6a724a fix --update-order and --rollback-order flags
fff164c22 Ignore SIGURG on Linux.
9f6966d4e vendor: github.com/theupdateframework/notary v0.7.0
697c3a5b4 docs: fix typo in deprecated.md
c2820a7e3 Fix panic when failing to get DefaultAuthConfig
fb2ea098a deprecate blkio-weight options with cgroups v1
69b5487e3 Remove duplicate word in push.md
ba2fef9bc Add bash completion for `dockerd --ip6tables`
5a252fb3a Update bash completion for fluentd --log-options
8242fe1fc Add bash completion for `docker run|create --pull`
b04241d95 Removed format flag for inspect
584c08e1f Added zsh completion for docker context subcommands
6e2607c6a Rename bin/md2man to bin/go-md2man
a4e86b543 Add bash completion for jobs
fc9ca9a94 Fix reading context and dockerfile from stdin with BuildKit
9d40c7464 scripts/build/.variables: Support SOURCE_DATE_EPOCH
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
| |
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
While the insane.bbclass upstream-status check hasn't been made
default, users of meta-virtualization may have it enabled in their
distros .. so the effect is the same. We must have this tracking
tag in out patches.
This is a bulk update to add the tag and silence the QA message.
As packages get updated, the normal/routine process of checking
the patches will continue, and the status fields may (or may not)
get more useful.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
| |
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
We drop a patch that has been merged upsream, and also bump the
version to lxc-5.0.2, which comprises the following commits:
d57173681 Release LXC 5.0.2
17c85aac6 Fix build error on sparc64 caused by using the gold linker
b7dfb1312 lxc-default-cgns apparmor profile: allow overlay mounts
5cde898f4 lxc_user_nic: fix get_mtu() error handling
80553b5b4 Patching an incoming CVE (CVE-2022-47952)
1089f49c5 build: force linking against liblxc
0d2a03118 checkconfig: Fix filesystem capability check
e17429580 checkconfig: Tweak cgroup handling
4ab76611d checkconfig: Tweak layout
0bca9bb18 checkconfig: Hide version if no lxc-start
957e0a5d9 checkconfig: Fix mixed tabs/spaces
4916a16bd src/lxc/meson.build: fix build without apparmor
a330126b4 build: use cc.get_define to detect FS_CONFIG_* symbols
c89be8325 cgroups: fix cgroup layout detection in __initialize_cgroups
7802f3647 state: additional check in lxc_wait to prevent OOB
4b434bf52 cgroups: check snprintf retval in unpriv_systemd_create_scope
0eca8d2ea cgroups: fix buffer out-of-bounds access in enable_controllers_delegation
4ce8345d6 network: always initialize struct nl_handler
28a1591cd apparmor: properly check lxc_strmmap ret value
bd56c89ea github: fix coverity (add libpam-dev)
a1ead0dcc github: fix coverity build
9e35b3ecd conf: ensure mount tunnel is a dependent mount
2ff447445 apparmor: allow shared mounts in start-container.in
58e878209 conf: create separate peer group for container's root
06b4612ee cgroups: only allocate user namespace if we have to
2662959b8 cgroups: use userns_exec_full() during cgroup removal
4dcc84c6b README: remove lgtm
748720ceb tests: lxc-test-reboot: Fix build on ia64
5749e2e20 Unroll IN_SET since the max usage is 2 elements check
495b1bbf4 tests: lxc-test-checkpoint-restore: use trap to do cleanup
77e08b887 tools: lxc-destroy: update help message for --force
9165ff1ed lxc/attach: Detect EACCES from execvp and convert to 126 exit status
011faff36 lxc-attach: Fix lost return codes of spawned processes that are killed
931693945 Update README.md
a6287882e conf: allow cross-device links
8fa6d765a build(deps): bump actions/checkout from 2 to 3
e08c1b740 Update cifuzz.yml
0e9e64db8 fix error message when use tools with -? option
f1a61a5f0 use sd_bus_call_method_async to replace the asyncv one
ca863bd72 tree-wide: split open helpers into open_utils.h
02900160c build: prevent the inclusion of linux/mount.h with a hack
51b8763b0 mount_utils: remove conf.h include
460243f40 mount: move mount utilities from syscall_wrappers.h into mount_utils.h
d5d7e2036 tree-wide: minimize liburing.h inclusion
e2b8776bb meson: fix docbook2x detection
d1dfce9c5 tree-wide: use struct open_how directly
c9bca3326 tree-wide: use struct clone_args directly
497479ea3 tree-wide: wipe direct or indirect linux/mount.h inclusion
02f4bd00f build: check for FS_CONFIG_* header symbol in sys/mount.h
c222fb567 gitignore: Simplify
22e8a7941 meson.build: strip newline for variable assignments
d5600cf76 meson.build: strip newlines from git output
7d6b53438 src/lxc/meson.build: fix the static library path
1d5c7e771 build: drop build-time systemd dependency
59f69162c build: only build init.lxc.static if libcap is statically linkable
062c2d980 build: fix handling of dependancies to fix build on openSUSE
2a9743bba cgroups: fix -Waddress warning
e510d6bd8 build: detect sys/pidfd.h availability
b7b269680 build: detect where struct mount_attr is declared
5313e5048 meson.build: allow explicit distrosysconfdir
0539095ac Release LXC 5.0.1
a1329fefe README: update security mails
315d4cec6 meson.build: fix build without stack-protector
aba631cd4 meson.build: fix build with -Dcapabilities=false
c2ee9b440 src/lxc/log.h: fix STRERROR_R_CHAR_P
d441ee585 meson: add remaining still-in-use config checks
00a79876b Store mount options in correct variable
da0f35646 Fix off-by-one error constructing mount options
31bff905a add check for statvfs
242289b6b start: fix namespace sharing
41f602361 conf: fix append_ttyname()
ea4fd7f85 start: record inherited namespaces earlier to make it available for idmapped rootfs setup
e74fd55bc start: don't overwrite file descriptors during namespace preservation
dcfd75bb4 conf: log file descriptors on error during idmapped mount setup
c3e648700 fix for issue 4026: set broadcast to 0.0.0.0 for /31 and /32
cfcbdb75f use systemd dbus StartTransientUnit for unpriv cgroup2
28726f215 Fix uninitialized read in parse_cap when libcap is not used
d663495ee meson: Generate compile commands by iterating over an array
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
We'd really prefer to bump the vendor SRCREV and allow the fetcher
to bring in the pending change without needing a patch, but there
are other API changes that trickle through the code.
So we extract just the patch we need, and leave the SRCREV info
in the recipe, to document the source. When the upstream updates
its vendor/ directory, we can drop this (as the patch will no
longer apply)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
We'd really prefer to bump the vendor SRCREV and allow the fetcher
to bring in the pending change without needing a patch, but there
are other API changes that trickle through the code.
So we extract just the patch we need, and leave the SRCREV info
in the recipe, to document the source. When the upstream updates
its vendor/ directory, we can drop this (as the patch will no
longer apply)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
| |
| # github.com/containers/storage/drivers/btrfs
| vendor/github.com/containers/storage/drivers/btrfs/btrfs.go:387:11: args.lim.max_referenced undefined (type _Ctype_struct_btrfs_qgroup_limit has no field or method max_referenced)
| recipe skopeo-v1.8.0+gitAUTOINC+b95e081162-r0: task do_compile: Failed
Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping buildah to version v1.25.0-547-gcfefbb64, which comprises the following commits:
ea9b705a [release-1.28] Bump to c/storage v1.43.1 for s390x sigsegv fix
6eb52c6b [release-1.28] Bump c/image to v5.23.1
5fb010fe version: bump to 1.28.2
69d3fcd8 Stop using ubi8
9fa3c167 Define and use a safe, reliable test image
9136e86e version: bump to v1.28.1
ff08605b copier.Put(): clear up os/syscall mode bit confusion
6bc044dc retrofit, test: ubi8 changed architecture string
79f41e32 Bump to v1.28.0
1deec7ce No longer modify buildah.spec
a53f342f Update for https://github.com/klauspost/pgzip/pull/50
3c5f9886 Update vendor containers/(common,image)
88615e98 [CI:DOCS] Add quay-description update reminder
95bb0250 vendor: bump c/common to v0.49.2-0.20220929111928-2d1b45ae2423
aaba84ff build(deps): bump github.com/opencontainers/selinux
675a7332 Vendor in latest containers/storage
28195ac9 Changing shell list operators from `;` to `&&`
fc458032 Fix buildahimage container.conf permissions regression
9ae09bf7 Set sysctls from containers.conf
e67bb090 refactor: stop using Normalize directly from containerd package
3cd0fa2b config,builder: process variant while populating image spec
899ecaaf Proof of concept: nightly dependency treadmill
31dc089c Run codespell on code
07ab5a5c Check for unset build args after TARGET args
ea81614a pkg/cli: improve completion test
bb285e53 vendor in latest containers/(common,storage,image)
f3a73b70 copier: work around freebsd bug for "mkdir /"
16a4eee2 vendor: update c/image
02d4a6b5 test: run in the host cgroup namespace
5cde04cd vendor: update c/storage
e3d48600 vendor: update c/common
94ab98d6 cmd: check for user UID instead of privileges
4c9fc47f run,build: conflict --isolation=chroot and --network
de9c3841 Fix broken dns test (from merge collision)
8d5d7632 Fix stutters
b4135818 Fix broken command completion
fc3ae53b buildah bud --network=none should have no network
3c092e5e build: support --skip-unused-stages for multi-stage builds
87d4ae88 Prevent use of --dns* options with --net=none
fd14bfe5 buildah: make --cache-ttl=0s equivalent to --no-cache
ac30ed23 parse: make processing flags in --mount order agnostic
deb2d903 Minor test fix for podman-remote
a30b71db build: honor <Containerfile>.containerignore as ignore file
46db0211 Update install.md: Debian 11 (Bullseye) is stable
4e5be719 build(deps): bump github.com/docker/docker
4407875a Use constants from containers/common for finding seccomp.json
4808f3b7 Don't call os.Exit(1) from manifest exist
9f435de8 manifest: add support for buildah manifest exists
0bdbd1a8 Buildah should ignore /etc/crio/seccomp.json
9c147ab8 chroot: Fix cross build break
309f714b chroot: Move isDevNull to run_common.go
363bf9c5 chroot: Fix setRlimit build on FreeBSD
dc49c3cb chroot: Move parseRLimits and setRlimits to run_common.go
b64d8143 chroot: Fix runUsingChrootExecMain on FreeBSD
4d963eb5 chroot: Move runUsingChrootExecMain to run_common.go
0a61e4b2 chroot: Factor out Linux-specific unshare options from runUsingChroot
3b42b515 chroot: Move runUsingChroot to run_common.go
350c509e chroot: Move RunUsingChroot and runUsingChrootMain to run_common.go
188dcc36 chroot: Factor out /dev/ptmx pty implementation
f9814601 chroot: Add FreeBSD support for run with chroot isolation
b9db9574 build(deps): bump github.com/docker/go-units from 0.4.0 to 0.5.0
64534a88 Replace k8s.gcr.io/pause in tests with registry.k8s.io/pause
168a39dd build(deps): bump github.com/onsi/gomega from 1.20.0 to 1.20.1
514ff3dc Cirrus: use image with fewer downloaded dependencies
a96eb0b0 build(deps): bump github.com/opencontainers/runc from 1.1.3 to 1.1.4
9934b173 run: add container gid to additional groups
f46ef3b2 buildah: support for --retry and --retry-delay for push/pull failures
811741fe Makefile: always call $(GO) instead of `go`
010ac5e0 build(deps): bump github.com/fsouza/go-dockerclient from 1.8.2 to 1.8.3
0c4b19ba test: use `T.TempDir` to create temporary test directory
90cf4fc0 mount,cache: enable SElinux shared content label option by default
354f96f6 commit: use race-free RemoveNames instead of SetNames
491ad027 Drop util/util.Cause()
9637a244 cmd/buildah: add "manifest create --amend"
7533aa56 build(deps): bump github.com/fsouza/go-dockerclient from 1.8.1 to 1.8.2
17e6fe01 docs: specify git protocol is not supported for github hosted repo
da4647bd Scrub user and group names from layer diffs
2eb519fb build(deps): bump github.com/containerd/containerd from 1.6.6 to 1.6.8
3a6919b5 version: bump to 1.28.0-dev
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
