| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
| |
Signed-off-by: Jaeyoon Jung <jaeyoon.jung@lge.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping lxc to version v6.0.5-17-gf9ff9ea2a, which comprises the following commits:
f9ff9ea2a build(deps): bump actions/checkout from 5 to 6
c21296262 apparmor: skip /proc and /sys restrictions if nesting is enabled
be5ce5529 Update lxc.spec.in to use meson
e716bd6c8 config/apparmor/abstractions: Drop manually generated container-base file
5d0182b0d config/apparmor/abstractions: Fix meson build generation of container-base
539424964 build(deps): bump actions/upload-artifact from 4 to 5
fdc302322 builds workflow: make .orig.tar.gz unique per build
d0d4f9896 github: Drop focal source packages
944118acd add MFD_EXEC and MFD_NOEXEC_SEAL flag to memfd_create
ca9ecef01 Automatically detect compression format in the lxc-local template
50bddb8e3 lxccontainer: check if target exists before remove in create_mount_target()
d692ba5a9 Standardize log file create mode to 0640
0e84c43d7 Enable systemd to create /var/lib/lxc at runtime with StateDirectory
277634689 commands: Fix indent
9184960a8 README: update links
7e0e0d1ae Rename CONTRIBUTING to CONTRIBUTING.md
675ffcd71 README: Fix CI links
9e4e69ed1 Release LXC 6.0.5
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
| |
podman needs gpgme in order to run. In some usages, this
is being pulled in transitively by skopeo, but since skopeo
was removed as a podman dependency last year, it now needs to be
direct.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping umoci to version v0.6.0-3-gd631328, which comprises the following commits:
d631328 deps: update github.com/AdaLogics/go-fuzz-headers to latest
35992ba VERSION: back to development
1c44d6f VERSION: release v0.6.0
7fb9b5a man: umoci-stat: update output examples
0242283 umoci new: include host ARM variant by default
74874af config: add support for platform variants
2ac8e55 oci: config: fix annotation precedence
a8b1c9a test: config: add umoci-stat verification checks
737f534 test: config: add tests for config.json annotation conversions
4a95896 test: check annotations for config --{os,architecture}
61f658e config: add "platform" prefix to "os" and "architecture" setting names
21806cb deps: update to runtime-spec v1.2.1
f7fb0ec test: disable oci-runtime-tool validation
8873e3a build(deps): bump golang.org/x/sys from 0.36.0 to 0.37.0
b3e5a6a build(deps): bump github/codeql-action from 3 to 4
bce0b02 mutate: only embed <=10kB blobs in embedded descriptor test
a058839 gha: reduce ClusterFuzzLite time limit
b7bb5d2 gha: use mode=min caching
94a7c04 gha: run rootless and rootful integration in parallel
b3f2eda gha: add 'complete' job
9726fba CHANGELOG: add image-spec v1.1.1 reference
fe8c448 stat: do not error out for "invalid" config blobs
3668aa9 casext: add handling for empty JSON media-type
b668139 casext: add basic support for embedded descriptor data
a41097f cas: dir: use image-spec-defined constants
cb23ce1 stat: pretty-print image-spec v1.1 fields
eb9098b deps: bump to image-spec v1.1.1
157f759 mutate: handle DescriptorPath rewriting more delicately
5aaf54e pprint: add tests for manifest and config pprint
de8512a casext: improve Blob.RawData sanity check
210b31f assert: move most panics to be in an assertion form
4d6497e build(deps): bump google.golang.org/protobuf from 1.36.9 to 1.36.10
f294007 oci: config: use generics more effectively
8b8f449 cmd: add more info to --version
bf94833 CHANGELOG: mention --created and SOURCE_DATE_EPOCH
5be7a47 pprint: add tests for struct pprint
38b2ebe pprint: quote-wrap strings that contain spaces
f8a27d2 pprint: add (empty) suffix when printing collections
97e33f2 pprint: add unit tests
0b3bab0 pprint: quote map keys as well
3856c27 pprint: copy value slice before quoting
1a963c5 make: add empty TESTS variable declaration
72fe818 pathtrie: add benchmarks for PathTrie operations
01fc37c README: move repology to install section
e224b24 test: add 'umoci raw mtree-validate' tests
31e611a tests: use --strict mode for gomtree validation
560465e gomtree: switch to umoci branch
3b97fab test: use "umoci raw mtree-validate" in tests
d207716 umoci: add raw-mtree-validate helper to replace "gomtree --rootless"
0b657e2 oci: layer: truncate mtime when generating archives
b7c5f9f build(deps): bump github.com/cyphar/filepath-securejoin
a5ade2f *: use personal email
a821fb8 build(deps): bump golang from 1.24 to 1.25
b431280 gha: switch to buildx-friendly caching
41a35b9 Dockerfile: migrate to multi-stage builds
7f961b3 test: add SOURCE_DATE_EPOCH tests
ad66eeb oci: add SOURCE_DATE_EPOCH support for reproducible builds
f11b243 CHANGELOG: mention new umoci-stat features
65a984b test: add 'golden output' tests for umoci-stat
fa4d5be stat: include manifest information
4bf1adc umoci stat: include image config information
0fce71a umoci stat: improve quoting of control characters
60e4744 test: only check for history subset of umoci-stat
4a02437 casext: provide raw blob data when fetching parsable blobs
33be2bc dockerfile: build with go1.24
a96b1bb build(deps): bump github.com/vbatts/go-mtree from 0.5.4 to 0.6.0
f87f803 build(deps): bump golang.org/x/sys from 0.35.0 to 0.36.0
52d147a *: apply go fix
6bf0ba1 *: apply gopls modernize
e3d8f81 go: update to Go 1.24
37a7b99 build(deps): bump google.golang.org/protobuf from 1.36.8 to 1.36.9
911252e gha: use registry.opensuse.org for openSUSE image
2cbd4c4 dockerfile: update to Leap 16.0
44f6ab8 oci: config: gracefully fallback if /etc/resolv.conf doesn't exist
fb3f860 VERSION: back to development
4ff26a3 VERSION: release v0.5.1
df3a23e tests: fix failures on SELinux-enabled systems
c5ac633 oci: casext: properly return errors for GetVerifiedBlob
38fc012 pkg: hardening: disallow negative ExpectedSize
3037f87 oci: casext: explicitly disallow negative-size descriptors
5f31a52 oci: cas: use blob file size as ExpectedSize
8438892 pkg: hardening: improve trailing data test
848aba9 build(deps): bump actions/setup-go from 5 to 6
a90680d build(deps): bump google.golang.org/protobuf from 1.36.7 to 1.36.8
88b22f2 dockerfile: install 'file' explicitly
8eaf1be build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1
bb31198 build(deps): bump golang.org/x/sys from 0.34.0 to 0.35.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping skopeo to version v1.20.0-87-gd2a1740f, which comprises the following commits:
144e9151 Add missing newline to the output of (skopeo generate-sigstore-key)
a45ceb03 fix(deps): update module golang.org/x/term to v0.36.0
d287ec07 Fold the test cases of TestSyncTLSPrecedence to a single line each
286c5990 Remove the explicit test name
5699f10b Construct the source context from CLI instead of manually
6d2144e6 Use a real YAML fragment instead of constructing inputs manually
1e6817a1 Merge the two TestTLSPrecedence tests
d80c776b Update dependency golangci/golangci-lint to v2.5.0
c7a3a907 Update github.com/opencontainers/image-spec digest to 6519a62
dbd18b97 sync: honor CLI/global tls-verify unless YAML explicitly sets tls-verify
a489ea39 test-integration-local: use SKOPEO_BINARY if set
f59e8938 Add --sign-by-sq-fingerprint and an integration test
9753a1a1 Also build+test with Sequoia
cba21646 Update CI images
b258da23 Update conditions for signing tests
86853ba4 Update module golang.org/x/term to v0.35.0
0114569b Use strings.SplitSeq
24c2a374 Use bytes.SplitSeq
afc0c0f0 Rely on Go-maintained commit value instead of handling that ourselves
509ed8e1 Update to Go 1.24
53bba51c RPM: build with sequoia for F43+
85e4414c RPM: Re-org distro conditionals
af27d1d8 Packit/RPM: Epoch and version fetching fixes
193b5136 Update CONTRIBUTING.md
cf5b488b [skip-ci] Update actions/stale action to v10
a3cb7bf3 Packit: re-enable CentOS Stream jobs on PRs
8675dece Packit/TMT: enable ELN testing on PRs
e5cf4ec7 Update to tagged container-libs releases
5489763c Update module github.com/spf13/pflag to v1.0.10
4e452f97 Add --dest-force-compress-format option on copy
31ca77ce Packit: enable ELN
9558c9c0 Packit: replace files_to_sync with prepare-files
cd978903 RPM: skopeo-tests only installs dependencies
d5881b94 TMT: additions to make local TMT runs similar to testing-farm
dea3a8f1 Update module github.com/spf13/cobra to v1.10.1
11dedf8b Update module github.com/spf13/pflag to v1.0.9
75eb26e6 Update module github.com/ulikunitz/xz to v0.5.15 [SECURITY]
19f1202c TMT: run systemtest via `make test-system-local`
02055fb0 Makefile: inline logic for test-integration-local
7e235ea3 Makefile: test-system-local checks for SKOPEO_BINARY
bb1f0575 Makefile: validate-local depends on tools
885a4fba fix(deps): update module github.com/stretchr/testify to v1.11.1
d6463199 Migrate storage, image and common to monorepo and remote go.podman.io imports.
2451f10d Allow running CI from rawhide images
8602d2e5 Stop using fgrep
0a70844b Update tests to work with the Sequoia c/image backend
01252ab8 chore(deps): update dependency golangci/golangci-lint to v2.4.0
056d83e6 Adding mohanboddu as community manager to MAINTAINERS.md
2d34849c fix(deps): update module golang.org/x/term to v0.34.0
5538ce8c fix(deps): update module github.com/containers/common to v0.64.1
12340b3e fix(deps): update module github.com/containers/image/v5 to v5.36.1
94ef22e9 fix(deps): update module github.com/containers/storage to v1.59.1
f9d10b3c chore(deps): update dependency golangci/golangci-lint to v2.3.1
af9f6d73 Bump to v1.21.0-dev
e2c1eecd Bump to v1.20.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping runc to version v1.4.0-rc.2-13-g13a5c4ed, which comprises the following commits:
ae199719 ci: only run lint-extra job on PRs to main
8bb53e42 ci: bump golangci-lint to v2.5
52ee0fed all: format sources with gofumpt v0.9.1
61070cc0 CI: remove deprecated lima-vm/lima-actions/ssh
42b405d5 libct: refactor setnsProcess.start
e8e22ae1 libct: close child fds on prepareCgroupFD error
5aa229f7 [1.4] libct: switch to (*CPUSet).Fill
18fbdbe9 [1.4] deps: update to golang.org/x/sys@v0.37.0
46331735 VERSION: back to development
8aeb2a4b VERSION: release v1.4.0-rc.2
a2f2cf31 CHANGELOG: add note about cpu shares changes
0b8a41e3 fix(seccompagent): close received FDs, not loop index
1f9157d6 libcontainer/intelrdt: add support for EnableMonitoring field
d792f9fd [1.4] runc exec: use CLONE_INTO_CGROUP when available
33382519 [1.4] libct: use manager.AddPid to add exec to cgroup
7db9930f [1.4] libct: move exec sub-cgroup handling down the line
f19a4c71 [1.4] libct: split addIntoCgroup into V1 and V2
207a497c [1.4] libct: factor out addIntoCgroup from setnsProcess.start
c443aee7 [1.4] script/setup_rootless.sh: chown nit
910f1345 [1.4] Add memory policy support
12ed7f73 [1.4] events/intelrdt: report full schemata
517e7996 [1.4] libcontainer/intelrdt: add support for Schemata field
3009f9d7 [1.4] libcontainer/intelrdt: refactor tests
a0858eaf [1.4] Update runtime-spec
fb0268a0 libcontainer: remove deprecated package "userns"
edef954c test: runc run with personality syscall blocked by seccomp
a6efa62d libct: setup personality before initializing seccomp
b72f4a8d tests/int/cgroups: Use 64K aligned limits for memory.max
bce56e00 libcontainer/validator: allow setting user.* sysctls inside userns
6297cb16 [1.4] VERSION: back to development
b2ec7f92 VERSION: release v1.4.0-rc.1
081b8c25 CHANGELOG: forward-port v1.3.1 changelog
1931ebf7 CHANGELOG: forward-port v1.2.7 changelog
edc2eb60 build(deps): bump actions/setup-go from 5 to 6
779c9e1d libct: user: remove deprecated module
c04d9c44 ci/validate: add modernize run
76281949 libcontainer/configs/validate: add doc.go
ba68a17a libcontainer/configs: add validator unit tests for intelRdt
b8a83ac2 libcontainer/intelrdt: support explicit assignment to root CLOS
89e59902 Modernize code for Go 1.24
b042b6d4 types/events: use omitzero where appropriate
26602650 Add go 1.25, require go 1.24
237cc980 libct/sys/rlimit_linux: drop go:build tag
a38f42ab tests/int/help: simplify and fix
c5e7bc87 tests/int/selinux: fix for non-standard binary name
121192ad libct: reset CPU affinity by default
d1f6acfa tests: add RUNC_CMDLINE for tests incompatible with functions
ea385de4 tests: add sane_run helper
a8faf925 CHANGELOG: document breaking change of runc update
a876347d build(deps): bump github.com/coreos/go-systemd/v22 from 22.5.0 to 22.6.0
eedec9c5 build(deps): bump google.golang.org/protobuf from 1.36.7 to 1.36.8
96f4a90a Switch to packaged criu on arm
9e0f9890 ci: bump golangci-lint to v2.4.x
cfb22c9a build(deps): bump actions/checkout from 4 to 5
10567484 ci: use criu built from source on gha arm
1cf09680 CI: switch to GHA for arm
db26a717 build(deps): bump golang.org/x/net from 0.42.0 to 0.43.0
8f0bb877 build(deps): bump golang.org/x/sys from 0.34.0 to 0.35.0
bf33fe5f build(deps): bump google.golang.org/protobuf from 1.36.6 to 1.36.7
620956c2 libcontainer/intelrdt: use Mkdir/Remove instead of MkdirAll/RemoveAll
f6a52d7f build(deps): bump github.com/seccomp/libseccomp-golang
3b533b23 script/lib.sh: remove obsoleted comment
3a962655 libcontainer/intelrdt: use SecureJoin in NewManager
e6b4b5a1 tests: bfq: skip tests on misbehaving udev systems
ceef984f tests: clean up loopback devices properly
f73e2837 libcontainer/intelrdt: refactor path handling
85801e84 runc update: refuse to create new rdt group
e846add5 libcontainer/configs/validate: check that intelrdt is enabled
57b6a317 runc update: don't lose intelRdt state
314dd812 tests/cmd: simplify getting net.UnixConn
87b8f974 setupIO: close conn on error
7d2161f8 setupIO: simplify getting net.UnixConn
1a26cf3a ci: speed up criu-dev install
1c2810be ci: bump golangci-lint to v2.3.x
66a533eb tests/int/events.bats: don't require root
3620185d rootfs: remove /proc/net/dev from allowed overmount list
46dac589 tests/int/update: fix getting block major
6a0644df build(deps): bump golang.org/x/net from 0.41.0 to 0.42.0
859feb8e build(seccomp): Add audit support for loong64
fc8162e6 build(deps): bump github.com/opencontainers/cgroups from 0.0.3 to 0.0.4
b3432118 tests/int/cgroups.bats: exclude dmem controller
4a6ef6b9 build(deps): bump golang.org/x/sys from 0.33.0 to 0.34.0
a09e7038 docs/systemd.md: amend
aa0e7989 libcontainer: close seccomp agent connection to prevent resource leaks
da909478 deps: bump cgroups to v0.0.3, fix tests
f24aa06e libct: State: ensure Resources is not nil
1b39997e Preventing containers from being unable to be deleted
d22a4211 libct/configs: stop using deprecated id
b25bcaa8 libct/configs: fix/improve deprecation notices
a10d338e libct/configs: add package docstring
8d180e96 Add support for Linux Network Devices
889c7b27 update runtime-spec
ed5df5f9 libcontainer/configs package doc
0b01dccf runc update: handle duplicated devs properly
7696402d runc update: support per-device weight and iops
99a4f198 build(deps): bump github.com/urfave/cli from 1.22.16 to 1.22.17
31d141e2 build(deps): bump golang.org/x/net from 0.40.0 to 0.41.0
8b0e7511 build(deps): bump github.com/containerd/console from 1.0.4 to 1.0.5
ce3cd423 criu: simplify isOnTmpfs check in prepareCriuRestoreMounts
f91fbd34 criu: inline makeCriuRestoreMountpoints
b8aa5481 criu: ignore cgroup early in prepareCriuRestoreMounts
0c93d41c criu: improve prepareCriuRestoreMounts
04be81b6 fix rootfs propagation mode
995a39a4 ci: add scheduled run of GHA CI
74209b73 ci/gha: allow to run jobs manually
62e6ab6d gha/ci: allow validate/all-done to succeed for non-PRs
b39bd105 ci/gha: fix exclusion rules
b206a015 deps: bump opencontainers/cgroups to v0.0.2
ae00c2bd tests/int: simplify using check_cpu_quota
fbf1a320 build(deps): bump github.com/vishvananda/netlink from 1.3.0 to 1.3.1
5cdfeea7 CHANGELOG: forward-port entries from 1.3.0
e0282287 bug:fix runc delete run before delete exec.fifo
0623ea10 build(deps): bump golang.org/x/net from 0.39.0 to 0.40.0
c1958d88 build(deps): bump golangci/golangci-lint-action from 7 to 8
9f86496c ci: Check for exclude/replace directives
67b8a685 go.mod: Delete exclude directives
b0aa863f ci: bump golangci-lint to v2.1
d920a722 build(deps): bump github.com/seccomp/libseccomp-golang
8e3ee502 ci/cross-i386: retry adding ppa
c12c99b7 runc: embed version from VERSION file
d54eaaf2 runc --version: use a function
3e3e0482 ci: upgrade to criu-4.1-2 in Fedora
58c3ab77 rootfs: improve error messages for bind-mount vfs flag setting
30302a28 mount: add string representation of mount flags
87ae2f84 Unify and fix rootless key setup
b520f750 ci: install newer criu for almalinux-8
d7285e46 Fix "invalid workflow file" github actions error
5f4d3f36 libct/apparmor: don't use vars for public functions
08ebbfc8 tests/cmd/remap-rootfs: fix mips builds
1d78cb21 Completely remove --criu option
c8991936 ci: add check for toolchain in go.mod
e34c1a04 CHANGELOG: Port 1.2.x changes
c5ab4b6e runc pause/unpause/ps: get rid of excessive warning
fda034c9 pause: refactor
75a4546b go.mod: rm toolchain
0a9639e3 build(deps): bump golang.org/x/net from 0.38.0 to 0.39.0
c5e0ece4 build(deps): bump golang.org/x/sys from 0.31.0 to 0.32.0
19c65154 tests: Add env var tests
09501d96 libct: Override HOME if its set to the empty string
bb5aa116 build(deps): bump github.com/moby/sys/user from 0.3.0 to 0.4.0
bf386464 libct: we should set envs after we are in the jail of the container
4a0e282b test: check whether runc set a correct default home env or not
7fdec327 Use any instead of interface{}
17570625 Use for range over integers
f64edc4d ps: use slices.Contains
ef5acfab libct/configs: use slices.Delete
0fc2338d libct/specconv: use maps.Clone
7a58d823 .golanci-extra: disable staticcheck QF1008
0b536265 build(deps): bump golang.org/x/net from 0.37.0 to 0.38.0
5cfd1a62 build(deps): bump bats-core/bats-action from 3.0.0 to 3.0.1
131bdac1 tests/int/selinux: test keyring security label
c735c073 tests/integration/selinux: collect user_avc as well
491326cd int/linux: add/use Recvfrom
e655abc0 int/linux: add/use Dup3, Open, Openat
c690b66d int/linux: add/use Exec
431b8bb4 int/linux: add/use Getwd
8cc1eb37 Introduce and use internal/linux
b68cbdff criu: Add time namespace to container config after checkpoint/restore
127e8e68 ci: bump to golangci-lint v2.0
9b3ccc19 libct/intelrdt: fix staticcheck ST1020 warnings
30f8acab Fix staticcheck ST1020/ST1021 warnings
9510ffb6 Fix a few staticcheck QF1001 warnings
6405725c libct: fix staticcheck QF1006 warning
fdb69163 notify_socket.go: fix staticcheck warning
4622bb87 build(deps): bump google.golang.org/protobuf from 1.36.5 to 1.36.6
a638f133 .golangci.yml: add nolintlint, fix found issues
d00c3be9 ci: bump codespell to v2.4.1, fix some typos
65e0f2b7 libct/int: use destroyContainer
1aebfa3e libct/int: don't use _ = runContainerOk
f55400dc .github: Improve issue template description
bac33825 build(deps): bump github.com/opencontainers/selinux
bc96bc85 libct/seccomp: use maps and slices pkgs
370733b7 libct/cap: rm mapKeys, use maps.Keys, slices.Sorted
3a33b6a3 Make state.json 25% smaller
9c5e687b libct: Use chown(uid, -1) to not change the gid
d31e6b87 ci: bump bats to v0.11.0
8e653e40 script/setup_host_fedora.sh: use bash arrays
a76a1361 script/setup_host_fedora.sh: remove -p from mkdir
af386d1d tests/int: rm some "shellcheck disable" annotations
b48dd651 ci: bump shellcheck to v0.10.0
6e5ffb7c Makefile: bump shfmt to v3.11.0
53931553 libct: log a warning on join session keyring failure
9aeb7905 tests/int/selinux: fix skip message
5ac77ed6 libct/int: add/use needUserNS helper
1d9bea53 .cirrus.yml: install less dependencies
1afa1b86 signals: replace unix.Kill with process.Signal
346c80d7 libct: replace unix.Kill with os.Process.Signal
135552e5 CI: migrate Vagrant + Cirrus to Lima + GHA
d5fe5303 build(deps): bump golang.org/x/net from 0.36.0 to 0.37.0
000cdef7 build(deps): bump golang.org/x/sys from 0.30.0 to 0.31.0
79e9cf53 doc: update spec-conformance.md
12c2e21f build(deps): bump golang.org/x/net from 0.35.0 to 0.36.0
05e83fc6 deps: bump go-criu to v7
5d6e7e12 VERSION: back to development
6a3f8ea3 skip read /proc/filesystems if process_label is null
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping podman-tui to version v0.9.0-587-gcf755526, which comprises the following commits:
cf755526 Bump to v1.8.1
f4dd02c0 Windows style use default colors
6c7ddd29 Bump to v1.8.0
c95ae167 Bump github.com/containers/podman/v5 from 5.6.0 to 5.6.1
d4632385 Bump actions/setup-python from 5 to 6
7d786a06 Bump actions/stale from 9 to 10
e862e758 Bump actions/setup-go from 5 to 6
0929eb9f Bump github.com/spf13/cobra from 1.9.1 to 1.10.1
31a6ba04 Bump github.com/ulikunitz/xz from 0.5.12 to 0.5.14
3991403a ui adoption to tview v0.42.0
80c42437 Bump github.com/rivo/tview
ac941ce9 Bugfix ui views - update selected row after last row removal
97377e57 Bump github.com/gdamore/tcell/v2 from 2.8.1 to 2.9.0
e2f0ce0a bats functionality tests update
f378359d System and secret view sort dialogs + code enhancement
8185525e Network view sort dialog
d13317c9 Image view sort dialog
57a2e0f7 Volumes view sort dialog
7bfde770 Pods view sort dialog
7aeb812e Containers view sort dialog
4f9d6429 Bump github.com/containers/podman/v5 from 5.5.2 to 5.6.0
ced73692 golangci-lint v2.3.1 update for podman v5.6.0
2d5c903e golangci-lint update to v2.3.1
5e752b13 Bump actions/checkout from 4 to 5
9320b4b5 Bump golang.org/x/crypto from 0.40.0 to 0.41.0
7e7e0198 Enable packit EPEL10 build
e120c2a1 Bump to v1.8.0-dev
611535d9 Bump to v1.7.0
2affb5c0 Bump golang.org/x/crypto from 0.39.0 to 0.40.0
a28f4f98 Remove unused BUILDTAGS
e6cf0675 Bump github.com/containers/podman/v5 from 5.5.1 to 5.5.2
04b6c478 Bugfix invalid error when default remote connection is not defined
a2eb9b48 Add feature to use podman remote connections config if exist
58b4fbdc Using json format for app config file
9ed811d2 packit - set rpm build for fedora-all
6e59fa69 Added pod create namespace category
cd74eeb5 Added pod create namespace category
196004fe Added container create namespace (ipc, userns, uts, ...) category
e3242f37 Bugfix - connection list lock
92b96533 UI code cleanup + set max with for container view image name
5fc35157 Bump github.com/containers/podman/v5 from 5.5.0 to 5.5.1
5a9541f9 Bump golang.org/x/crypto from 0.38.0 to 0.39.0
5ab12464 Bump to v1.7.0-dev
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping netavark to version v1.16.1-1-g64b453a, which comprises the following commits:
c95689f release v1.16.1
72706df release notes for v1.16.1
b032159 Revert "[skip-ci] Update actions/download-artifact action to v5"
00c8234 update nftables to v0.6.3
99f73d4 release v1.16.0
97ee174 release notes for v1.16.0
ebe61f2 sync release notes from 1.15 branch
38b098f fix new lint warnings on rust 1.89
e6ef79e [skip-ci] Update actions/checkout action to v5
9b3e332 [skip-ci] Update actions/download-artifact action to v5
e5a773a fix(deps): update rust crate tokio to 1.47.1
6c72a58 fix(deps): update rust crate clap to ~4.5.42
8bc9a2d fix(deps): update rust crate serde_json to 1.0.142
6eed183 fix(deps): update rust crate tokio to 1.47.0
9002adc fix(deps): update rust crate hyper-util to 0.1.16
f7c3883 exec_netns macro: update comment
dbc9200 test: add new test program for connection checks
c984a9f add .cargo/config.toml to runs tests via unshare -rn
43e979d fix(deps): update rust crate rand to 0.9.2
2369c96 fix(deps): update rust crate serde_json to 1.0.141
1614faf fix(deps): update rust crate zbus to 5.9.0
2fee844 log default route mtu
57e37bb get_mtu_from_iface_attributes: return error without mtu
fbedef9 make get_default_route_interface return the full LinkMessage
38cbf3a bridge: early break out of loop
047ef70 change exec_netns macro to return result
cd4d1ff Set bridge MTU to match default route.
5c39692 fix(deps): update rust crate zbus to 5.8.0
c40ee94 fix(deps): update rust crate hyper-util to 0.1.15
4c5833d fix(deps): update rust crate tokio to 1.46.1
e2d1f6e fix(deps): update rust crate tokio to 1.46.0
e5b23f0 fix new rust 1.88 lint errors
083e525 fix(deps): update rust crate clap to ~4.5.40
7e93c15 fix(deps): update rust crate hyper-util to 0.1.14
7105bee make more use of NetavarkError
bc1eeda drop DhcpProxy error type from NetavarkError
8188984 update nix to v0.30.1
6a08cd6 fix(deps): update rust crate clap to ~4.5.39
204dc49 fix(deps): update rust crate zbus to 5.7.1
060f55d write bridge sysctl to config file
b67d91b extract systemd path check to core_utils
35f1db6 move sysctl code into separate module
1d5ee4e wrap sysctl name in error
cdf7302 drop sysctl dependency
f6604eb update MSRV to v1.83
acd3949 dhcp_proxy: set timeout_sender only if required
769a2ac cargo: bump mozim to 0.2.6
b6e12b2 fix(deps): update rust crate hyper-util to 0.1.13
03f1269 Revert "remove search domain from response"
0a6db8d fix(deps): update rust crate tokio to 1.45.1
fca86bb update netlink-packet-route to v0.23.0
3514007 update nix to v0.30.1
23ba475 remove unused nispor from Cargo.toml
ecb32b3 fix(deps): update rust crate zbus to 5.7.1
c24391b fix(deps): update rust crate hyper-util to 0.1.12
a1046af rpm: update description
8f6f84d bump to v1.16.0-dev
c382840 fix(deps): update rust crate zbus to 5.7.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping lxc to version v6.0.5, which comprises the following commits:
9e4e69ed1 Release LXC 6.0.5
a0fb994a5 build(deps): bump actions/checkout from 4 to 5
93a06e70f lxc/conf: do not leak opts.data memory in __lxc_idmapped_mounts_child()
97eeb8a9a lxc/network: null-terminate ifname string in lxc_network_recv_name_and_ifindex_from_child()
7a94d11d9 tests/lxc-test-snapdeps: try to load overlay kernel module
0bf6aedf0 tests/lxc-test-rootfs: add idmapped rootfs testcase
98ebede63 lxc/lxccontainer: stop printing misleading errors in enter_net_ns()
7111f9d83 lxc/process_utils.h: use strsignal() or sys_siglist[] for Non-GNU distros
032290ec8 meson.build: use has_header_symbol() instead of get_define() to improve compatibility
85c5312be meson.build: fix checks for fsconfig and calls
4da694582 meson.build: set `LXC_DISTRO_SYSCONF` when `-Dspecfile=true`
e4cddef06 Add loong64 to list of recognized architectures
e9980ac90 Revert "re-add onexec for apparmor, move label assumption until after container has been setup for attach"
ab55d52a5 src/tests/oss-fuzz: pin meson to 1.7.2 to workaround build failures
9041ae313 lxc/conf: support flag kind of mount options in lxc.mount.entry options
859f736f0 lxc/conf: support nosymfollow mount flag
c42951b71 conf: Add support for "move" mount flag
e6bce2a2d src/tests/lxc-test-unpriv: prevent fail on cleanup path
601576a08 src/tests/lxc-test-apparmor-mount: prevent fail on cleanup path
b12d1bf89 src/tests/lxc-test-apparmor-generated: enable test
e35133a54 meson.build: remove quirk for Ubuntu 14.04 libcap-dev
cbe34bcc2 apparmor test: add an overlay container start
1541bd8f2 re-add onexec for apparmor, move label assumption until after container has been setup for attach
8ab6ad25b lxc/conf,start: fix setting container_ttys environment variable
b185e523f selinux: fix typo (AppArmor)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping kubernetes to version v1.34.1-54-g03a5f06c269, which comprises the following commits:
30fd2664059 Do not validate etcd version for aggregated server conformance test
f3b637f6c3a Bump etcd to v3.6.5
6ebab3f180f Include relevant dimensions in pod controller indexing
8cd6b631ceb update setcap and debian-base to bookworm-v1.0.6
2674d8a049a Bump images, dependencies and versions to go 1.24.9 and distroless iptables
bddc18b0948 Add integration test for invalid SAN certificate handling
f40e4ce5529 Remove invalid SAN certificate construction
ed6bf3e5db3 kubeadm preflight checks: fix host URL construction
5be5dc9d54a With new changes we will also have a VolumeModifying condition
ea75d2aa00a gce: Fix etcd manifest
61c0fb13a70 Disable SchedulerAsyncAPICalls feature gate due to a known regression
40899107c1d upgrade to cos 121
2bfc98b313c Update pod resize test to accept new cpu.weight conversion.
3ffc54a9e96 kubeadm: rework the FetchInitConfigurationFromCluster node flags
e9f5e892f74 kubeadm: use JoinHostPort in WaitControlPlaneClient
663664c6171 kubeadm: ensure waiting for apiserver uses a local client
3f170932be0 Revert "Merge pull request #133213 from sanposhiho/second-trial-conor"
09ddc5ebbf2 Bump images, dependencies and versions to go 1.24.7 and distroless iptables
b245b551f74 Split preemption integration tests to mitigate the timeout
560cc36db21 fix incorrect warning whenever headless service is created/updated
07ac83c146b fix: use iifname for input interface name matches
35b87e4c188 Wait for quota to report used before creating pvc
856ac4923d7 release-1.34: pin system-validators to v1.10.2
7d43ddbbfb6 Fix ClusterIP load balancer disappearing when InternalTrafficPolicy: Local is set.
4a40ddf1e6b gofmt and review feedback
4ae3b64b736 fix: Update unit test to catch actual nil Labels case and fix functionality to handle nil Labels
16e3f7c1793 Update CHANGELOG/CHANGELOG-1.34.md for v1.34.1
93248f9ae09 Release commit for Kubernetes v1.34.1
988bdd12587 Do not remove PVC ClaimRef to fix flaky VAC test
b97399727e0 DRA kubelet: avoid deadlock when gRPC connection to driver goes idle
76ab5f06640 kubelet/metrics: fix multiple Register call
04fd1ada6f4 kubelet/metrics: misc optimization
7bd2900b1e6 fix: Only warn for unrecognized formats on type=string
f779cf63819 Disable estimating resource size for resources with watch cache disabled
96739661c7c Disable collecting stats for resources not setting prefix to prevent error logs
2631a5f21ea Fix linter
94c0e478827 Fix completion of resource names
08515c751b0 Fix missing control plane health check timeout
a75938d9e5f Fix DaemonSet misscheduled status not updating on node taint changes
3ebbe57311f Add a note about Conflicts return value
98dca817c91 Fix SELinux label comparison
3e75f388199 Add missing cases to SELinuxMount tests
d1337421461 Update CHANGELOG/CHANGELOG-1.34.md for v1.34.0
f28b4c9efbc Release commit for Kubernetes v1.34.0
f2170bc6c3d kube-proxy: log but don't exit if ipv4 or ipv6 is not available
f47e9696d72 CHANGELOG: Update directory for v1.34.0-rc.2 release
78405b2c893 Update CHANGELOG/CHANGELOG-1.34.md for v1.34.0-rc.2
ed3ccdbe323 Release commit for Kubernetes v1.34.0-rc.2
db01f940320 Remove patch/update from ServiceCIDR API conformance test
d49e3d67cb3 Fix storage counting all objects instead just objects for resource
747a295caca fix flake in dra test 'TestPlugin'
4ebe560c74f DRA allocator: fix data race around `claimsToAllocate`
41013e7bf0a e2e_dra: use latest release if stable doesn't exist
e49f6116f9e clarify that staging repos are automatically published
ada2ed84877 add pointer to CONTRIBUTING.md for more details on contributing, clarify read-only
8919ac43c81 special case that kubectl staging repo is currently used to track issues, and only pull requests should be redirected back to the main repo.
011d5001975 link to what a staging repository is
7c43e6d2fdb docs: clarify that this is a staging repository and not for direct contributions
f8bad82c212 update go version for publishing bot rules
bf6c86b562d DRA: wait for stats to converge in "creates slices" e2e test
020b7052ca8 Bump dependencies, images and versions used to Go 1.24.6 and distroless iptables
c8ab780edbd dra plugin: assume claim after api call in bindClaim
81affffa1b8 CHANGELOG: Update directory for v1.31.12 release
8311c1d3d70 CHANGELOG: Update directory for v1.33.4 release
edfa9a5bd28 added WithFlaky() to the device plugin test case: supports extended resources together with ResourceClaim
48a4967718e CHANGELOG: Update directory for v1.32.8 release
064b5916172 improve CRD handling in VolumePopulator test
944b0a49235 do not allow the node to update it's owner reference
0bd039e89af Update CHANGELOG/CHANGELOG-1.34.md for v1.34.0-rc.1
4d6b49b3fd4 CHANGELOG: Update directory for v1.34.0-rc.1 release
a956ef48629 Release commit for Kubernetes v1.34.0-rc.1
e073a91256e Add release-1.34 configuration
cbd6fb867ba Remove DeprecatedVersion for apiserver_storage_objects, adjust help text
89b5034d562 Make podcertificaterequestcleaner role feature-gated
2629fe25faa Use Delete() instead of DeleteLabelValues() for etcd metrics
13ced7b7ddc CHANGELOG: Update directory for v1.34.0-rc.0 release
40e8ad9517f Release commit for Kubernetes v1.34.0-rc.0
b7969189866 reduced numPods to 5 from 10 to fix flaky test (supports reusing resources) due to timeout.
2a026f6d659 1/ added retries to AssumeClaimAfterAPICall for the object which is not present in the cache (dynamicresources.go) 2/ modified the assume cache verification to not error out as long as the expected claim is in the cache, no matter its latest and api object are different or not. (dynamicresources_test.go). 3/ fixed nil panic as seen from https://prow.k8s.io/view/gs/kubernetes-ci-logs/pr-logs/pull/133321/pull-kubernetes-integration/1952472629470302208
01470d973b2 Fix memory limit decrease test on cri-o
aca402f25b3 e2e: node: skip breaking tests
0fbc8cd44ce Remove integration-test labels from long running scheduler_perf workloads
e83e5815e5e always pull pause image for eviction tests
418e96bf1af Update prerelease lifecycle to v1.34
65fda6dd34e fixed exended resource scheduling performance test, added more nodes for scheduling the init pods
9eda4789c02 Fix potential race in PodStatusPatchCall implementation
dbfeb9c351a Fix potential race in closing API dispatcher
c7db6362fe6 Move NominatedNodeName preemption-related integration tests to a new package
46b858aa130 fix: return false to apply the patch
07c71097d33 Split DRA scheduler_perf tests into multiple packages
988c9b03fd1 Demote KEP-5278 feature gates ClearingNominatedNodeNameAfterBinding and NominatedNodeNameForExpectation to Alpha
0a12f00e9d3 fix nil panic in hasBindingConditions, it cannot assume claim has allocations
7f052afaef5 KEP 5075: implement scheduler
3e3b2447ffe Promote PodLevelResources to Beta (#132999)
59bba927178 KEP-5075: generated codes from make update
5ad969588d5 KEP-5075: API updates
29d1951eb76 fixes scheduler nil panic due to empty init container request&limit
23d6f73e720 extended resource backed by DRA: test
34a64db2c73 extended resource backed by DRA: implementation
a3a767b37ec WIP: fix e2e tests
4ca47255a8b node: disable resource managers when pod-level resources are enabled
3068b60b830 extended resource backed by DRA: codegen
1f2fd18ac86 extended resource backed by DRA: API types.go
7fbf63a23fc HPA support for pod-level resource specifications (#132430)
6e9b60e3fd8 Add / update kubelet and DRA API owners
60fa65db883 Clear pod.Status.NominatedNodeName when pod is bound
15b1a7fd317 Revert "CPU and Memory manager event when using pod level resources"
aea0a3cca29 Run all relevant test cases with the feature gate enabled and disabled
856e7d2383c scheduler: Stop clearing NominatedNodeName on all cases
6653ef652b3 KEP-5007 DRA Device Binding Conditions: Add dra integration test
9e82c133010 KEP-5007 DRA Device Binding Conditions: Implement DRA logic
e8c3af1f5cc KEP-5007 DRA Device Binding Conditions: Implement scheduler logic
ac81b829e4a KEP-5007 DRA Device Binding Conditions: Run make update
987ad395167 KEP-5007 DRA Device Binding Conditions: API Related code Update
34c3b093835 KEP-5007 DRA Device Binding Conditions: API Update
ac9fad60301 feat: trigger PreFilterPreBind in the binding cycle
48eef9ce9af test: fix TestStructuredAuthenticationConfigReload flake by handling expected network errors
4874d41665b Pod Certs: Fix kubelet volume host arg order
f9bb14fcf06 Fix apiserver service proxying e2e test flakiness
8ace0fb89fb remove failing test that depends on expired credential, remove credential, add TODOs
f07dcd443d7 fix flake on TestStreamTranslator_WebSocketServerErrors
7ba22700bfd websocket streamtranslator increament metrics before writing status
0aea6a1e45d TestStreamTranslator_BlockRedirects use subtests
4b698656bec Returning early if podResources is nil to avoid nil pointer dereferencing
766d011bba2 E2E tests for no hints nor aligment of CPU and Memory managers
5672750e6a3 Unit tests for no hints nor aligment of CPU and Memory
7804b51f420 CPU and Memory manager event when using pod level resources
fd206a0efb3 Add comments for restart rules not used for unknown container status and probes
4b479da4b5b Remove the feature from e2e test
6997fbd1edc Fix incorrect validation on the kubelet
48f8458c41f validation: Fix user-namespaces test case name
50a7a8af4d2 validation: Align usage of hostUsers in error messages
5f7e611f736 validation: Return error if hostUsers=false && volumeDevices
f3466f8adc1 fix: flake integration test
ed74d4cd52f Revert "Revert "fix: handle corner cases in the async preemption""
e8dc272c533 Update etcd to 3.6.4
0f7cd149596 Fix prerelease-lifecycle for volumeattributesclass
9c8dacb0374 ContainerRestartRules feature gate should work with probes
48fd30113c6 [PodLevelResources] Add missing label to Downward API test
57ceb56c6fa Bump etcd sdk to v3.6.4
b562335cb36 Build etcd v3.6.4 image
17d733e2433 KEP-5229: Send API calls through dispatcher and cache
40a90df3b36 DRA E2E: remove stress test
b956484c25a KEP-5229: Add metrics for async API dispatcher
006d7620a8c Revert "fix: handle corner cases in the async preemption"
727a6e6db50 Reject pod when attachment limit is exceeded (#132933)
a652896307c Allow white-spaced CABundle during webhook client creation and validation (#132514)
f1737db166b Update DRA Pod spec comments
b7de71f9ce7 feat(kubelet): Add ResourceHealthStatus for DRA pods
d4a83b9a522 fix(golangci-lint): skip config verification when -c none is used
252513a1b99 Add WithFeature and WithSerial, also check if cgroup v2 is used in test
1bc995c195e Generated files
f925e555483 E2E tests for container hugepage resources immutability
9f5b09eb7bb Unit test pod level hugepage Default and Validation logic
845e94d3707 Validation logic and Defaulting update for pod level hugepages
c15a54f8c0c draadminaccess: move metrics test from e2e to integration
d176808d3a9 Rename hack/*-yamlfmt to -owners-fmt
7adcd21148f Replace cmd/yamlfmt with k-sigs/yaml/yamlfmt
79833578f66 KEP-3695: add kubeletPodResources feature gate to Beta
2cb955d8cca Add KYAML support to kubectl
8182a27f3b0 Re-vendor sigs.k8s.io/yaml @ v1.6.0
94bf8fc8a9d Promoted API `VolumeAttributesClass` and `VolumeAttributesClassList` to `storage.k8s.io/v1`.
8e3f93c8796 Unit test propagate pod level hugepages to containers
52b457421a9 Pod level hugepage cgroup when unset in container
add7132a6db E2E tests for pod level resources Kubelet Preemption
976a617d059 E2E tests for pod level resources eviction manager
13b122b6ffe Unit tests for pod level resources eviction manager
9a3ca05f6bc Use pod level resources for eviction manager
b34f8782e2f Add e2e tests
9086e52feeb Implement restart rules in kubelet
af595a44aef Add container restart rules to API
5dc2030c027 4033: GA KubeletCgroupDriverFromCRI feature gate
27e16751538 Make PSA host enforcement honor emulation version
32053b1d2f3 chore: replace ptr caster with unified ptr.To
83a0d0c660a kubelet: add metric for version CRI implementation will lose support
ffe306d6795 client-go, kubectl: Replace deprecated ErrWaitTimeout with recommended method (#132718)
cb33accc8fc JSON & YAML output for kubectl api-resources (#132604)
8a2db4da426 fix: adjust the log level in the preemption
4c9bf4719b8 fix: handle cornor cases in the async preepmtion
bf98e45afb3 Migrate pkg/kubelet/volumemanager to contextual logging
aecd37e6fb4 Moving Scheduler interfaces to staging: Move PodInfo and NodeInfo interfaces (together with related types) to staging repo, leaving internal implementation in kubernetes/kubernetes/pkg/scheduler
c954e13255a Revert "DRAAdminAccess: add upgrade downgrade test"
12d67506661 client-go/metadata/fake: sets opts.Watch to true
b37fd0cab28 [KEP-4816] DRAPrioritizedList to Beta
6767d54bba6 Bump DRA API version to "v1" in "deviceattribute" package in "k8s.io/dynamic-resource-allocation" module
449763fb115 e2e: podresources: disable memory manager integration
b768c1d1d5b DRA API: bump storage version to v1beta2
24de875cebc DRA: graduate DynamicResourceAllocation feature to GA
d8df1dc1b89 DRA RBAC: fix kube-scheduler bootstrap policy
21d929f5992 integration: use --runtime-config-emulation-forward-compatible
5c4f81743c2 DRA: use v1 API
cff91579e80 DRA API: v1 registration + tests
4e592f6c145 DRA API: s/v1beta2/v1/ and generated files
1f2f433f76d DRA API: verbatim copy v1beta2 -> v1
837b7395d29 kubelet: DRA: Close gRPC connection when removing DRA plugin
c7d6c096833 List available endpoints for kube-apiserver (#132581)
5f4a1aa58c3 chore: ptrTo util removal with ptr.To
a82187cf11a [PodLevelResources] Update Downward API defaulting for resource limits
4c87e60d0db Tests using .host field in probes must be at priviledged level
f94fcac8680 Add new fixture testData for 1.34 PSA
fc0474d7718 Copy test fixtures to 1.34 from 1.32
9540a963964 Copy test fixtures to 1.33 from 1.32
4a3ebf886c4 update the minimal version to fix unit/fixture tests
333b19b4416 Add PSA for blocking .host field on pod probes and lifecycle
c7bf3b81f6a Add flake debugging for admission test
a806e069e26 Remove WinDSR feature gate unit test
765d84e9bff Test only EndpointSlices, not Endpoints, in dual-stack e2e tests
2cb48f77f0f schedule pod availability checks at the correct time in ReplicaSets
61cc6cf8072 draadminaccess test make it serial
33b45c8383e Update "should proxy through a service and a pod" to look at EndpointSlices
d70e7e223cf Port aggregated apiserver discovery to EndpointSlices
41dc2d3b024 Add utilities for getting EndpointSlices for a Service
f7109ed281a [KEP-3751] Allow PVC VACName to update to nil or empty when status.currentVAC is nil
c35e4ad2b24 add codes for drop disabled pod fields
8d65e1e98ee Add e2e tests.
f31aeca4256 Add code for overriding hostnames
88b76214343 Add validation for the HostnameOverride field.
c889ee17a2f Convert kubelet plugin manager from gogo to protoc
abb1b26d508 DRA: Add experimental allocator variant
17cc5e9ecd8 e2e: node: podresources: exercise with dynamicresources enabled
ee8ef383bec Update kubectl kustomize to kyaml/v0.20.1, cmd/config/v0.20.1, api/v0.20.1, kustomize/v5.7.1
af6c97bd14f add Feature Gate.
8b3814c4ab8 Add the HostnameOverride field to the Pod API
c2a06e7912c DRA: skip flaky test case on Windows
f6061605fb5 DRA E2E: run multi-node control plane tests also with two nodes
f0e29208985 DRA E2E: simplify "control plane" test names
603751ee80d DRA E2E: remove redundant test
21ed19798ea kubelet: DRA: Handle grpc.ErrServerStopped in plugin tests
61bd5789be4 Updated to not directly change the global variable `claim`
4f0a5771abd test: add e2e case for mutating named port
db9b9b5a429 Build etcd v3.6.3 image
179551a7cb3 feat: Implement warnings for unrecognized formats in CRDs
437a2ad693f feat: Add func to export the supportedVersionedFormats
d943239c57b added debug_redact to cri api secrets
88af8b6060a Add PodLevelResources to the Windows OS limitations in the API doc
c2b26617bec Check OS for PodLevelResources in kubelet
e2c308aff93 Check OS for PodLevelResources in API server
f6aee636906 add validation logic for APIVersion fields of HPA
6f3b6b91f08 KEP-3721: Support for env files (#132626)
0b60c121947 KEP-4222: Adopt text and JSON transcoding support for CBOR.
917659269af Bump to github.com/fxamacker/cbor/v2 v2.9.0.
216f7485bd9 DRAAdminAccess: add upgrade downgrade test
303a7056ffc e2e: node: podresources: enable multi-container tests
38a9a8a59dc e2e: node: podresources: add tests for missing pod
19b00ecc941 update CCM image to v33.1.1
b070b0a5c5f chore: residual boolptr and intptr removal
407bcf88645 kubelet: add metrics for userns pods
e5ccc31e704 chore: replace float64Ptr with ptr.To helper in validation and integration tests
545b36ba295 fix uncore e2e check
b97decb7d91 client-go/dynamic/fake: sets opts.Watch true
f626e847e72 Migrate pkg/kubelet/winstats to contextual logging
ce2d979390e Run Unschedulable scheduler_perf test case with SchedulerAsyncAPICalls feature gate enabled
0da0897c18d Bump external snapshotter for vgs tests
78bf3410c88 DRA E2E: revisit conformance classification of tests
911df655d3b chore: migrate kubelet lifecycle to contextual logging.
872f0682d58 Use "k8s.io/api/resource/v1beta2" instead of "k8s.io/dynamic-resource-allocation/api" for resource API imports.
31d2de59dd9 Split the symlink target error cases into for each condition
a4fb1562f4a introduce resolvePCIeRoot instead of resolveSysDevicesPath
f3d4b216f3a assign return value to a variable instead of using it directly
7f27c88d0fb Update staging/src/k8s.io/dynamic-resource-allocation/deviceattribute/pci_linux.go
ee26a5837c4 Update staging/src/k8s.io/dynamic-resource-allocation/deviceattribute/pci_linux.go
8b558a1bc3e fix(validation-gen): correct typos in comments and documentation
63a958ff344 chore(validation-gen): remove TODO regarding ratcheting behavior for slices and maps
c659b418265 e2e test for mirror pod with pod generation
a5b9c7a7981 bump resource claim controller concurrent syncs to 50
6d4000f844e Pod Certificates: make update
4624cb9bb92 Pod Certificates: Basic implementation
facbb66142e Temporarily revert restart-on-node-IP-change behavior of proxy NodeManager
e2d37f3cd7e kube-proxy: merge OnNodeAdd and OnNodeUpdate into OnNodeChange
0dc51b16f9e kube-proxy: merge NodeEligibleHandler with NodeManager
d4892fef768 kube-proxy: merge NodePodCIDRHandler with NodeManager
373fb487f60 kube-proxy: add NodeManager to manage life-cycle based on NodeIPs
d21ca8674ce kube-proxy: add NodeTopologyConfig for tracking topology labels
8acda3631f7 Belatedly add tests of proxy NodeConfig and ServiceCIDRConfig
edf4654d76d generate proto
18918e20085 add CSR declarative_validation_test.go tests
69a8a169d59 add WithOrigin and MarkedByDeclarative, update hand-written to error at list instead of list item field, add additional tests for approved+denied case
6a2d5a1e644 feat: add CSR status.conditions approved+denied declarative validation tags and associated declarative validation tags to v1 and v1beta1 types.go
248ad21610b graduate prefer-align-cpus-by-uncorecache to beta
6e77bff18b8 pod sandbox image is not being used by kubelet any longer
43706d6b7a8 add warnings when creating headless service with specified load balancer ip,external ips and/or session affinity
53aa4332b56 fix integration tests
8996e81fc87 fix unit tests
dd4dd3d8ea4 feat: Enabledeclarative validation in CertificateSigningRequest subresources updates
ccc82775f45 expand test coverage for uncore alignment
cb29414b44f Extend E2E test coverage for PSI metrics under pressure
4ed231da063 kubelet/imagePullManager: add benchmarks for image pull record accessors
5486e6f44e2 DRAAdminAccess: move to beta
5d4010d2d24 Mark KubeletServiceAccountTokenForCredentialProviders feature gate as beta
4fc9546e0e2 KEP-5229: Implement API dispatcher
549f7c4fc98 image pull manager: add in-memory LRU intents/pulled records caching
ea326373ef3 e2e: node: cpumanager cgroup v1 compatibility
b8d74e75c7b Add test case to prove MaxElements correctly set on IntOrString
7e5aafcb164 ci: remove unnecessary test harness
457df1cf981 ci cleanup: make sure to remove test KUBECONFIGs
3026020b44a Convert `k8s.io/kubelet/pkg/apis/deviceplugin` from gogo to protoc
4f9f6c05363 scheduler_perf: hide "metric ... not found" errors
b8758ac31b7 node: mm-mgr: migrate to contextual logging
2e756e7412c fix data race in OIDC integration tests by serializing test server starts
03acd266a31 chore: residual uint64ptr removal with ptr.To
b84271a7795 DRAAdminAccess: add e2e
ab839c93ff8 feat(kubelet): migrate kuberuntime to contextual logging
30e5cdd6412 kubelet: don't fetch image credentials if the image is present and if we don't need to check if the pod is allowed to pull it
cbba3281a3a integration: fix etcd output handling
d0fc938a07f DRA client: fix conversion of watch channel
f77ce8951e6 DRA: debug output for list/watch client
9d7d3a61722 Bump sample-device-plugin base image to alpine:3.22
7ddb0426266 feat(cmd/kubelet): support structured and contextual logging
fb4e2522240 test: add batch pod deletion for kubelet e2e tests
4b8dd9612ff cleanup: remove example plugins
067bd16b154 Add unit tests to check if right feature gate is checked based on resize request.
f71080c930e Create separate feature gates for static CPU Manager and static Memory Manager support
07ef7842be2 Change memory manager static policy to a public const
ae5247afc18 address feedback
65951744564 unit test for HandlePodReconcile retrying pending resizes
0d24c3b57f0 add sourcesReady parameter to fakeKubelet constructor
6e86af48ccb fix check if requests have shrunk
6a40bcb4268 Retry pending resizes if a status update leads to aggregate requests shrinking
22d724969c9 kubelet: record container_resize_requests metric for all resize updates
13a6d2121c1 check a couple extra failure scenarios
8957109b76b only record resizes in progress and pending after all pods are added
d51375dccf2 record 'kubelet_pod_deferred_resize_accepted_total' metric
b8fc1b6750f record 'kubelet_pod_infeasible_resizes_total' metric
d845e1fd6b8 record 'kubelet_pod_pending_resizes' metric
23005281f74 record 'kubelet_pod_in_progress_resizes' metric
0595ddaafa6 record 'kubelet_container_requested_resizes_total' metric
468aa5e30c4 record 'kubelet_pod_resize_duration_milliseconds' metric
12966276334 define and register ippr metrics
3964fbeab14 kubelet: integrate sa creds in image pull manager
f1728bd584a Add ServiceAccount coordinates to ImagePullCredentials v1alpha1
b9dd2fdec03 credentialprovider: track service account cred source in ext provider keyring
9a4c0f9b2f1 scheduler_perf: Add memory tracking to performance tests
8a42f4ccce5 Add support for CEL list library.
5d31866313a dedupe fetching allocatable and available resources in node test
79dc0b8a414 Add jitter to priodically executed process in storage to avoid too concurrent executions
a48420e3ceb promote PodObservedGenerationTracking to beta
336b5aff452 Check for valid UID range when runasnonroot is true
e9492239b24 Promote windows graceful shutdown to Beta
00bf3b37a74 Graduate PodLifecycleSleepActionAllowZero to GA
99059895f4f Account for caching and maximum object size when estimating LIST request
2256f5747dd Add resize completed event after Inprogress conditionCleared is cleared
d42a1d58d0e DRAAdminAccess: add metrics
f5d12ed39a1 fix: Compare versions instead of pointer comparison
8dc20a0f62d Fix IntOrString cost estimation when schema has a MaxLength constraint
a2e9e9f6677 fix pass ctx into a revised HandleError function
729cd583ad9 scheduler integration: fail test instead of existing
bfa33b18a08 fix(kube-proxy) avoid add zero-masked loadBalancerSourceRanges to ipset
d6e85b504d0 Add kubelet_credential_provider_config_info metric
14a5ef56a34 fix pipeline failure
21e2fcea9ec Add automatic_reload_last_config_info metric for auth configs
5f829195e6b Only warn when AppArmor annotation doesn't match pod field
f2c48ffec9e Add generic config info custom collector
11921f75857 [KEP-5100] WinOverlay feature gate to GA
e417232f92b Warn when using AppArmor annotations with a pod field
4fdf09fdc1b Stop syncing AppArmor fields to annotations
3ecb3d230f3 Remove unused appArmor*InUse functions
75ae2d727a0 Add an E2E test for memory limit decrease usage check
2a9388c3036 Move memory limit decrease e2e test to success cases
c7a78185c25 Remove the restriction on memory limit decrease
d9c91127d06 Check memory usage before decreasing limits
465f7281419 use gomega.BeComparableTo instead of Equal for resource quantity check in resize test
cedcbfb94c3 Update cel-go to v0.26.0
24065780ed7 Add e2eendpointslice.WaitForEndpointPorts, use in some tests.
f456a70bdea use CreateBatch and MakeResizePatch
5cea72d5649 DRA integration: add test case for FilterTimeout
241ac018e25 DRA integration: remove unnecessary anonymous import
bc338e7505c DRA scheduler: implement filter timeout and cancellation
430c79b53fc chore(validation-gen): hold uniqueness check of listmap
1745094c405 Update VolumeAttributesClass API Description
2cb30c77949 Refactor target check
86bc1bf0a45 more complex e2e test for deferred resizes
66de1960a5d Increase maxSeats for List requests
025c606e398 DRA scheduler: add plugin configuration
ee38a001311 DRA scheduler: add DRASchedulerFilterTimeout feature gate
837ef29f5a2 scheduler: enhance and document Filter cancellation
7910b43cd39 scheduler_perf: document benchstat usage
b9ce92d50eb edit versioned_feature_list.yaml
070621bf776 Remove unit tests that rely on feature gate enablement check
3f847d97c32 GA the NodeSwap feature gate
1a7630c0979 Remove deprecated LegacySidecarContainers feature gate
300c7b815a2 set the timeout to Get method
2b13b87e609 chore: replacing timer ptr with ptr.To
532d48fe6ad Convert `k8s.io/kubelet/pkg/apis/podresources` from gogo to protoc
cf68f75fc33 Deprecate apiserver_storage_objects and replace it with apiserver_resource_objects metric using labels consistent with other metrics
db342010f46 kube-controller-manager: enable WatchListClient
cef9f9edb6e kubeadm: fix a bug where it should generate default etcd command based on etcd version when the etcd image tag supports semver
ace2a224926 drop rules for release-1.30 as it is EOL
6737c31d0f7 update publishing bot go rules for release-1.31/1.32
a1a85ddb161 SSA: test optional map keys
4d34975a466 sigs.k8s.io/structured-merge-diff/v6 v6.3.0
3357e8fc057 SSA: add integration tests
a2a3839a8ee DRA scheduler: add pohly as approver
4bc2ad6eea7 migrate pkg/kubelet/preemption to contextual logging
b96e3cac741 migrate pkg/kubelet/pod to contextual logging
0cb31bc4073 migrate pkg/kubelet/nodeshutdown to contextual logging
75ccd69babe migrate pkg/kubelet/kubeletconfig to contextual logging
1d0fd592881 kubectl: add port names to describe pod output
7dad9e2af6f migrate pkg/kubelet/apis to contextual logging
f141907ddd8 DRA kubelet: add v1 gRPC
1b5a08cbfb5 cleanup: fetch individual PodResourceInfo from allocated resource state
6e7e6b37c7e Fix the cost issue to match the bug fix for target being nil in CEL side.
ad220eb6c32 chore: remove residual int64ptr usage with ptr.To
a9644686381 Add PodCPUAndMemoryStats to stats.Provider interface
8f4a624a593 Fix pipeline errors
e8536c01910 add item + union and item + zeroroneof output tests
be72d963b88 add validate/zeroorone_test.go and add +k8s:zeroOrOneOfMember output tests
10b20852e3c feat(validation-gen): add +k8s:zeroOrOneOfMember tag validator and associated validate method
81f18759e6e add validate/union_test.go and add +k8s:unionMember and +k8s:unionDiscriminator output tests
5bc9b691141 feat(validation-gen): add +k8s:unionMember and +k8s:unionDiscriminator tag validators and associated validate methods
bfb42fc31c9 refactor item.go with buildMatchConditions, make itemTagValidator a LateTagValidator
5d1c5ebd8cb add ParentPath to context, remove Parent from context and plumb changes in validators
c50da38aa18 allow field validators to generate variables
e7aeb4ff5c1 Promote MutableCSINodeAllocatableCount to Beta
9bcaa8c86b1 Fix conversion-gen caching incorrect memory equality comparisons
b35ad4e9b01 Add e2eendpointslice.WaitForEndpointPods, use in various test
dbecdd18763 Use e2eendpointslice.WaitForEndpointCount in more network tests
b7998a397b5 Add e2eendpointslice.WaitForEndpointCount, use it in some network tests
dd3691b1698 refactor allocator, removed claimsToAllocate from NewAllocator(), instead, passed it through Allocate()
8e6651520e6 Convert `k8s.io/kms/apis` from gogo to protoc
2f605f49fcf CHANGELOG: Update directory for v1.34.0-beta.0 release
9cf00ec6d17 kube-apiserver: promote WatchList feature to beta
e4320fe25cf e2e_node: DRA: test handling fatal serving failures
ea05ad8887b e2e_node: DRA: add errorOnCloseListener
fc21d3f37dc e2e: DRA: enable test plugin to cancel main context on error
1981c985b17 e2e: DRA: support test and public options
d44b737447f DRA: handle grpc.Server.Serve failures
169965350cc e2e_node: Refactor DRA tests to use variadic options
52fab5969cc Add NominatedNodeNameForExpectation feature flag
fd23fa3d423 Graduate ListFromCacheSnapshot to Beta
665599417ab Add e2eendpointslice.WaitForEndpointSlices, use it in a few places
b5931f53dd7 Auto update openapi spec
a100dfdfaa5 Using alpha as the stored version for one release.
6e932445326 Add validation of volumeClaimTemplates in StatefulSet
ae4a43de6dd Refactor: isolate flag registration to kube-apiserver to eliminate global state
5b4c1872a0f chore: residual intptr removal with ptr.To
e9aab4648fd CHANGELOG: Update directory for v1.31.11 release
dc0ca0be3f8 CHANGELOG: Update directory for v1.33.3 release
d6caa36dcc7 CHANGELOG: Update directory for v1.32.7 release
d460611e77c Add more checks
b69fd9d42c4 Add egress selector support to JWT authenticator
e9c1ca724f0 Add conversion-gen memory equality test
62521d83508 fix observedGeneration in pod resize conditions
38637260281 add unit-test for ensuring authn latency annotation
760eb7d5dea fix: record authentication latency before audit filter wraps up
26c8ee7b858 DRA: Improve allocator with better backtracking
d383c8e0243 Update history of checkpoint support in Kubelet
20914ef4e90 Prevent running two HPA cachers for different API versions
bc5088cbf35 Revert "Kube proxy node manager"
f8c7131b46b Drop experimental- prefix from etcd flags
d8747d716e4 Use object size estimation for non-recursive list
05e1c4b4893 e2e: node: fix podresources API feature label
6e1875fac94 local-up-cluster.sh: don't require to be invoked in the root
356be5ae30f DRA E2E: move upgrade/downgrade test into test/e2e_dra
c8ca9249acd DRA integration: add upgrade/downgrade testing with local-up-cluster.sh
60e9316c0cc DRA E2E: refactor helper code
2e3228e2ca9 DRA E2E: support deploying driver on localhost
e5f57d2cfab ktesting: add WithoutCancel
e01603b2e33 ktesting: document side effect of SetDefaultVerbosity during init
0b1bed1a1e0 ktesting: WithCancel does not cancel on test completion anymore
f381d737247 DRA E2E: retry exec of hostpathplugin
c2080e7e45d DRA E2E: support using ktesting
906505281fc ktesting: add step Begin/End
b7c2d6aba50 ktesting: skip logging error when capturing it
4977163860b DRA E2E: reduce port proxy verbosity
5721c927e6a DRA E2E: increase verbosity of resource claim controller
1a284472f17 E2E framework: retry also on EOF errors
6a7b9589f61 E2E framework: support setting REST config
bd30b0adef6 remove general avaliable feature-gate DevicePluginCDIDevices
9c0e65b085d test/apimachinery/watchlist: server supports sending resources in Table format
2dfc4e25a9a endpoints/handlers/respone: include metadata when IncludeNone and watchlist requested
e1a0cf6244f handle stoppedCh and listenerStoppedCh returned by cc.SecureServing.Serve
6cd00cdcba0 Auto gen
a3ecea296c1 manual change
4f3334b7cee Promote feature gate
0d8fd61e64c address review comments
32afbd9ea5d Inconsistency resets cache snapshots and prevents collection of new ones until cache is marked consistent again
4f77a461863 Generated files
a04e7cf5eb8 KEP-4601: Graduate selector authorization to stable
6f4be0d8c93 DRA allocator: skip unsupported test cases
740e568468e address review comments
61542e7a987 Cleanup: Remove field name from invalid field detail message
14f3c26842d Remove redundant metric field.
ad03cb87336 chore: residual strPtr utility removal with ptr.To
af249fb2e97 DRA E2E: test mixture of extended resources + ResourceClaim
9a7dddf5a71 fix test
09ec6f74483 chore
85adda5e68f Use object size to estimate list cost assigning 1 sear per 100KB
f20be4c094c add test which checks release method calls Get
7d9eb2b3d0d test/apimachinery/watchlist: update tests that receive resources in Table format
da7c55e0d2f reflector: detects unsupported meta.Table gvks for watchlist
ebc1ccc491c Bump k8s.io/kube-openapi to latest SHA (f3f2b991d03b)
8d1cbc83d8c endpoints/handlers/get: remove watchListEndpointRestrictions
14d1bbf36f4 chore: maxPtr utility removal with ptr.To
6462ad918e7 codegen tool: resolves GOBIN via `go env`
1073b3b9055 Add unit tests for AddPod()
fcb595a2df7 service-ip-alloc: delay ip processing on service recreate
8de14b526e9 service-ip-alloc: make repair loop consumer clock interface
e3836172845 Fix TestProgressNotify for etcd v3.6.2
e0f9914ef72 chore: replace int32Ptr usage with ptr.To
cf4912eb4e5 chore(validation-gen): reorder imports
419e70b7637 run update-codegen
4c8f489b817 add +k8s:neq tests
fc1c832c495 feat: add +k8s:neq tag which enforces field is neq to a specified comparable value
fb971325c39 feat(validation-gen): add new test cases for item validation
5cc2721f6c6 feat(validation-gen): add k8s:item
af05aa61d9c feat: Add validation ratcheting for subfields tag
daef13ecc36 chore: improve error rendering and add unit tests for ErrorMatcher
f40ee6f996d feat(validation-gen): add new test cases for validation of slices and maps
b059bb55143 feat(validation-gen): enhance validation functions for slices and maps
0b1fa64a920 refactor(validation-gen): streamline type validation logic
7ad89e19971 feat(validation-gen): add FieldValidator
ba45e37b24b chore: removed boolPtrFn helpers with ptr package implementation
5971802fdda chore: intPtr removal with ptr.To
a091fa607ea Add apiserver_resource_size_estimate_bytes metric
e6cf7dbf063 Enable running cache inconsistency detection by default
a06b3d356c8 Bump dependencies, images and versions used to Go 1.24.5 and distroless iptables
cba38b62932 DRA allocator: fix linter hint
5eab2b7a6e4 Remove unuse runtimeCache parameter from stats.Provider
46e2c22fd76 kube-proxy: merge OnNodeAdd and OnNodeUpdate into OnNodeChange
fa9e466945c kube-proxy: merge NodeEligibleHandler with NodeManager
c6735d9b3bc kube-proxy: merge NodePodCIDRHandler with NodeManager
45c355ca58b Move unschedulablePods struct to a separate file
bfeaae3310f Compact watch cache based on last observed etcd compaction
c43104cbea8 kube-proxy: add NodeManager to manage life-cycle based on NodeIPs
af7abde0e55 kube-proxy: add NodeTopologyConfig for tracking topology labels
98c4514eae2 add e2e_node tests for uncore alignment
70191dd21ca fix uncore cache alignment for odd integer cpus
65e0cff3c5a add Replicaset -> ReplicationController conversion test
9df4c35a60a Disable SchedulerAsyncPreemption feature correctly in integration tests
3636d5bd3a5 Added NodeSelectors field to DriverDefinition
4f0d3eaa36b enhance exec probe logging with pod and container context
ffe90820710 DRA allocator: select tests based on supported features
b1a35c640eb Build etcd image v3.6.2
7e37711d6ee kubelet: Add service account UID to token cache key for proper invalidation
45dfb46448a Add TokenRequestServiceAccountUIDValidation feature gate with UID validation
237fbde8b1e clean up e2e test and sorting code
4d2566eb5a1 credentialprovider: wire in service account mode cache type
03db2278d52 kubelet: Add CacheType field to ServiceAccountTokenAttributes with validation
ff4746af139 increase verbosity of kubelet preemption log
f2de8897e77 Add metrics for mutation
bfa7f38c6af fix TestPodResourceAllocationReset for windows
e8b914c4b83 address comments
6052c569db3 prioritize resize requests by priorityClass and qos class
c126870ebc9 Bump RecoverVolumeExpansionFailure to GA
7b906f204a6 DRA allocator: fork the code
5caf7bca15b DRA allocator: refactor code
03e32bd260f Expose compaction revision from compactor
5e3ea8e279c Add test for compactor
bbab5941103 local-up-cluster: stop running Docker
f57662856f9 local-up-cluster: store logs in artifacts directory
81b6e1d3a34 local-up-cluster: start containerd before Docker
27a77370dde local-up-cluster: simplify installing packages
ddda1dca33c local-up-cluster.sh: add dry-run mode
0950b9ee508 DRA allocator: export DeviceClassLister
bc5aa94d8d1 local-up-cluster.sh: allow configuring all ports
a4b1d26b14b local-up-cluster.sh: dump config on KUBE_VERBOSE >= 2
5665bafaa86 CHANGELOG: Update directory for v1.34.0-alpha.3 release
381b3f376bd clear just the errors rather than the entire in-progress condition when a new resize is allocated
b89ab301f5c feedback round 2
67aaa956da3 Update docs on shutdown and draining
7a6f6fdf721 Delete unnecessary mutex
271233a62ae Prevent the failure of releasing the lock by updating the resource version in case of a resource conflict
d9de590a26b test: increase test coverage for pkg/kubelet/types
2dd07e92428 DRA E2E: ResourceSlice Controller test flake
26f54e5c0e3 chore: replace int64ptr with ptr.To
f2b24b98494 Increase verbosity of frequently printed loglines in binder plugin
621482d68b6 update pause version to 3.10.1
ce456c87f1c add SuccessCriteriaMet status for kubectl get job
bb6bd520126 Add feature gate enable test for KubeletPodResourcesGet
c925243779a address feedback
c6fef9752c2 fix: improve the pod level request validation (#132551)
89344dc2391 feat(validation-gen): add k8s:enum validator
345641f106b feat(validation-gen): add Enum validator function
adb71d041d6 Forcefully expire lease in integration test to fix flake
637bf55cbc2 bump golang.org/x/vuln/cmd/govulncheck to v1.1.4
e0cc07af866 Promote PSI metrics feature to beta
b46a124db31 skip pending resize evaluation if sources aren't ready
35bf1522b0e update allocation manager unit tests to cover push and retry of pending resizes
e6d165b879b move resize allocation out of the sync loop
87fe2491a11 add some additional helpers to kubelet status manager
cb2baef9122 move handlePodResourcesResize unit tests into allocation_manager_test
1a62ade7428 cleanup conntrack entries test for UDP service
8f92a81787e node: e2e: podresources: add more e2e tests
380ed8d9b3a e2e: node: memory manager: build everywhere, run only on linux
bc56d0e45a2 podresources: list: use active pods in list
30a3bfdbcba chore: remove residual uint64ptr usage with ptr package
006b2a3b52c e2e: node: cpumanager: fix cpu quota non-regression tests
54f86a22e88 chore: removing redundant type conversion
25d9d8d9ba7 refactor: use getLocalNode() to avoid code duplication
bc9e8e1a910 add a context argument to prePodCreationModificationFunc()
83584d13c49 fix: TestPatchResourceTimeout flaky test
994e106dc0d ci: update sample-apiserver version to v0.33.2
3379d5ac4b6 make sure all streams are created before starting demux websocket
1cec0acebf2 Short circuit CategorizeEndpoints when there are no endpoints
c53b41e98c2 Add testing compaction in storage List tests
1ac60e35e96 e2e test: Add a container_swap_limit_bytes metric
bdd662f7c6b unit test: Add a container_swap_limit_bytes metric
341957a367c Add a container_swap_limit_bytes metric
c530b022576 chore: depr. pointer pkg replacement for pkg/security and plugin/pkg
dfe6a5c9c13 Clean up `unversioned_feature_list.yaml` file
e909e0cf738 chore: replacement of toPtr helper functions with ptr packge
841886df76f Convert externaljwt from gogo to protoc
1b730abf8dc cleanup: use HandleErrorWithXXX instead of logger.Error where errors are intentionally ignored
075abb07a91 ci: redis removal for e2e test dependency simplicity
830a088d1bc chore: remove strPtr usage with ptr.To instead
838f3afc521 storage/etcd3: add back missing errcheck
604cc2b51f4 hack/update-openapi-spec.sh
5adc3bf08a6 hack/update-codegen.sh
ae7d637b893 Delete unused ResizeContainerPatch function
f1b35cae913 Use MakeResizePatch instead of hand-written patch strings in resize E2Es
00c1c1a58e8 Generate an E2E resize patch from original & desired ResizableContainerInfo
cfd65c5f74d chore: replacement of helper functions to ptr packge
ff7c781e251 Loop over all IP address from each node
d9de37d9316 chore: typo invaILd occurrence replacement
1ae1964e88e chore: depr. pointer pkg replacement for pkg/apis
31156514102 chore: remove uint64Ptr using ptr.To instead
38080c082e1 kubeadm: use named ports in static pod manifests
baf71997f53 chore: depr. pointer pkg replacement for pkg/controller
8abcdf0885a chore: depr. pointer pkg replacement for pkg/controller
f966647b4de chore: depr. pointer pkg replacement for pkg/apis
6cef8492e71 chore: depr. pointer pkg replacement for cli-runtime
bc72fb81c35 chore: depr. pointer pkg replacement for test/e2e
d193ffe57ff Use sets.Set instead of a local impl
277c665e8bc use early return
81be9065d12 improve the log message to clarify what users should do
e74bbd5db48 chore: depr. pointer pkg replacement for test/e2e
2f7148782b2 chore: depr. pointer pkg replacement for test/e2e and utils
1802c556524 chore: depr. pointer pkg replacement for test integration
b22ffdb48f2 golangci-lint: exclude naming convention check for swagger docs
0e8424fcf00 chore: depr. pointer pkg replacement for the e2e_node
bb24afe586c chore: depr. pointer pkg replacement for component-base
bd8d5f9798c chore: depr. pointer pkg replacement for controller-manager
fe61e825e04 chore: second depr. pointer pkg replacement for apiserver
4a61b817013 chore: first depr. pointer pkg replacement for apiserver
4625908a640 remove unused file
995a7872c55 chore: remove utilpointer usage in pkg/api/pod
ebae4193371 feat: add PreBindPreFlight and implement in in-tree plugins
c5b0c9fdc01 chore: depr. pointer pkg replacement for psa policy
88d885e4073 chore: depr. pointer pkg replacement for psa admissiontest
dc947510da6 chore: depr. pointer pkg replacement for psa tests
35e118a4794 chore: depr. pointer pkg replacement for apiext. apiservers validations
4a205cc7fd3 chore: depr. pointer pkg replacement for apiext. pkg/cntroller
107c58eeea3 chore: depr. pointer pkg replacement for apiextensions in general
b8ec161d7f1 chore: depr. pointer pkg replacement for apiext. integration
ca1d7fff7f1 chore: remove utilpointer usage in pkg/apis/autoscaling
0ad351281bc Cleanup duplicate function to get port number from named port
1ac5f661ed8 Don't log irrelevant zone hints message on no endpoints
27812e44bce chore: depr. pointer pkg replacement for apiext. pkg/registry
b72ab8a4e14 chore: depr. pointer pkg replacement for the cloud-provider
b464bbeb8f7 Remove gogo-protobuf from CRI
ce7b3694f7c chore: remove utilpointer usage in package test/integration/service/loadbancer_test.go
9016f9cb1bf chore: remove utilpointer usage in conversion package
90bbce56b95 PriorityMemoryEvictionOrdering: allocate more memory when swap is provisioned
25498cd34d7 Eviction tests: small refactor
43b22a24395 Apply fix to namespace deletion test (#132691)
0766a3c6b14 chore: depr. pointer pkg replacement for the kube-aggregator apiregistration
6c3146e3557 chore: depr. pointer pkg replacement for the csr
9345552274d chore: depr. pointer pkg replacement for the reflactor
ebea328f173 Fix volume limit e2e test cleanup
38bf213271e podtopologylabels: update topology.k8s.io->topology.kubernetes.io
2e966244ed8 DRA resourceslice controller: fix recreation after quick delete
fa313170001 Remove unused PodIndexLabel feature reference
8c6c7df736d remove apiserver_storage_objects metrics after crd deleted
a7e8a505c25 Improve ignore-not-found behavior (#132542)
1c1f00a5f47 fix: add RV check on GC delete calls
84f6d742c5b Make dynamic and metadata clients plumb DeleteOptions
ad0b2bf4f57 DRA E2E: serialize costly test
33cd2e1ba08 Fix AuthInfo godoc for Token / TokenFile precedence (#132659)
c6f87f6e64a Fix offline expansion tests for case where no node expansion tests is required
b44b0fbf129 Update github.com/emicklei/go-restful/v3 to v3.12.2
58e620cc440 Bump go.yaml.in/yaml/v3 to v3.0.4
00f8cbae6b8 Bump sigs.k8s.io/json to latest - no code changes
22138ef552b Add DNS e2e test of NameIsDNSLabel validated Service names
97c1974e9c2 Add integration test for RelaxedServiceNameValidation.
19e7e38af29 Add unit test for Ingress service ref relaxed validation
37a90b7c244 Add unit test for Service relaxed validation
b430159c86a Allow Ingress service refs to be validated with apimachineryvalidation.NameIsDNSLabel
487eb8a9e47 Allow Service names to be validated with apimachineryvalidation.NameIsDNSLabel
9043afae6d9 kubectl: Cache Verifier.HasSupport calls
179c4398f35 use defaultImage per OS
998776d80bb remove breaking test
a17b0d7f66d gofmt
1514568ddfe rename sortedfeatures -> sorted
9e1a21816d2 update README
5cebe66b646 update log line
dcbed2fbdce Graduate PodLifecycleSleepAction to GA
977c6707333 Add unit tests for minReady new behaviour
4b99dc5f1e0 document hostnetwork <> port implications
952d2727a66 Add OrderedNamespaceDeletion to conformance.
12330a6c426 Drop BoundedFrequencyRunner from pkg/util/async
5d4a85f9f6c Enable versioned validation fuzz testing for certificates v1/v1alpha1/v1beta1 group
0fd4a0acc10 CSR: Add declarative validation test suite
5db2056682f CSR: Enable declarative validation
eecba765de0 Enable validation-gen on certificates/v1,v1alpha1&v1beta1
ec6471f63ef Remove gnostic-models gopkg.in/yaml.v3 unwanted dependency
d04ee27c98b Update vendor
b41d375b888 pin kube-openapi to v0.0.0-20250628140032-d90c4fd18f59
6d5e0bf2a21 review remarks
95b1151d2ab use format specifier
459188ce25c Port BoundedFrequencyRunner from flowcontrol.RateLimiter to clock.Clock
eae17c21b02 Change how BoundedFrequencyRunner retries work
c16ee887efc Remove burst syncs from BoundedFrequencyRunner
0298e04ea0f Updates to BoundedFrequencyRunner
6da9d363f36 Copy BoundedFrequencyRunner to kube-proxy
799aa8b2a8c Graduate streaming list encoding feature gates
5bae9fa8939 Graduate ConsistentListFromCache to GA
d4e49b2eed7 Ensure Loadbalancer internal port is set to container port from endpointslice if the targetPort is not specified in service info creation.
6a25bdaac8f kubeadm: fix missing log of health check
764a8bc8b61 chore: remove utilpointer usage in package pkg/apis/admissionregistration
a55318fe149 fix: versioned validation test avoid incorrect conversion
4c09aa9073f review: feedback
776382daa58 review: assert
43f6bd45f59 review: assert
fa87098ae30 fix: kubelet CRI portforward concurrent map write on error
a0ea2569a76 chore: remove utilpointer usage in package staging/src/k8s.io/apiserver/pkg/registry/rest/delete
7236f3fc2c2 graduate APIServerTracing featuregate to GA
75fc2b1cf6d promote TracingConfiguration to v1
a8068e27b1d scheduler_perf: Fix version emulation for empty featureGates map
5a20c38da61 remove usage of KubeletTracing featuregate from kubelet
7faf797a946 promote KubeletTracing featuregate to GA
d28791fa625 Remove unused sysfsPath's methods
6e5c99dd059 Review remarks
ee8c265d350 Move Code and Status from pkg/scheduler/framework to k8s.io/kube-scheduler/framework
08dd9c47b36 improve the log message to clarify the cause of the failure
a6e2cd4e8d3 scheduler_perf: add logs to report the failure of measuring SchedulingThroughput
7e816ca9b1e Commented out for unused sysfspath methods
2bc45ca4666 Make test only helpers private (sysfspath methods, touchFile, createSymlink)
94973ba3fc9 Fix typo: s/smock/mock/g
ac86e67b7d2 Commonize filtering of Pods by Owner with all orphans in namespace
ca314b9f561 Fix validation for Job with suspend=true,completions=0 to set Complete condition
1134220e011 Add RelaxedServiceNameValidation feature gate
f644e35d193 kubeadm: cleanup after WaitForAllControlPlaneComponents GA
cfe8604504a kubeadm: graduate WaitForAllControlPlaneComponents to GA
f437aa4aa67 scheduler_perf: Set version emulation only when QueueingHints is disabled
b2f27c0649f fix: Truncate too long Deployment name in RS name (#132560)
d67e7937e63 Remove recovery related featuregates
fa6f27c8f7a Add extra validations for newer resizing related fields
00dd610c93e DRA E2E: run some tests without feature label
f93b4408a77 Drop test that checks openAPI resource name since we currently don't guarantee name stability in the API
3eefb05a2c3 Fix gRPC listener error message in kubeletplugin and some minor renaming
e54e01e0abb Enhance help text for the 'top' command
7d5ab756277 Re-generate applyconfigurations
9af684ae098 Applyconfig-gen: Only the root type is an applyconfiguration
d50e1a684cd Ensure all the files have the updated sorting
f2d8b7ec2cc Add linter to report on unsorted feature gates
efcb03759dc E2E framework: sort tests in JUnit report
dfd34a5b189 fix pod template spec validation missing in sts
a57f15e0816 DRA kubelet: remove v1alpha4
005cef332da DRA kubelet: API clarification
f1845218e2d fixup! DRA: fix deleting orphaned ResourceClaim on startup
585ed0a5cb3 [client-go #1415] Use transformer from provided store within internal stores in reflector to limit memory usage bursts
8632257c934 Cleanup: Remove redundant detail messages in field.Required
e82d4f8e559 review: feedback
5cca0379274 resolve linter check
ce86fca8cd5 Add warnings for use of Alpha features with Emulated Version Warn for both api and feature flag use of alpha features with emulated versions. This is an unsupported use case and users may run into issues.
00d37505033 Move ClusterEvent type to staging repo, leaving some functions (that contain logic internal to scheduler) in kubernetes/kubernetes (#132190)
74af3ac8ad1 Revert "pop respects the context"
2dcce93336e Revert "modify tests"
31667cc7412 Avoid killing kops etcd-manager
6d6a749c62e DRA kubelet: add dra_resource_claims_in_use gauge vector
75432a14108 component-base metrics: allow usage of Prometheus types in tests
1639b090839 Add benchmark for SizeBasedListCostEstimate feature
c75d425ae2e CHANGELOG: Update directory for v1.34.0-alpha.2 release
292679a28ae Handle consistent LIST in watch cache to avoid incorrect semantics while setting ResourceVersion on options
c6c15bbe441 bug: Remove duplicate DaemonSet update validations
39dda2b88dd tests: runtime units
8bd8c14312e tests: add more units
f9a5aec318b Added unit tests
5390f75360d Added podutil.HasAPIObjectReference to deny admission for static pods referencing API objects
8b2eb9090e9 chore: Remove vet target and associated script from Makefile and hack directory
7d85134caee improve unit test coverage for pod observedGeneration
1a59c250eab feat: make CLE timers configurable
ef117edf356 DRA: fix deleting orphaned ResourceClaim on startup
c5b4b133ce3 switch to latest sigs.k8s.io/yaml v1.5.0 (run update-gofmt.sh as well)
e2c6b7fdf97 Override getKeys when cacher is enabled
7cb24179993 Run background cleanup goroutine
ec78b8305ad Estimate average size of objects in etcd and plug it into request cost estimator
190c8c7abc5 Use per-policy marker names for VAP integration tests.
6795d5366f1 feature(kubectl): support mem-percent,cpu-value,cpu-average-value,mem-value,mem-average-value flag to kubectl autoscale
9de075def7d replacing deprecated pointer pkg with newer package version
b8b3984874e client-go/reflector: stop exposing UseWatchList (#132453)
0028ea8e993 Improve containers lifecycle test output parsing
7e0d71fc14b apiserver/storage/cacher/listwatcher: error when the WatchList FG is disabled
ec6ea2213ed test: code coverage increase for kubelet_client
cb4014fb75f cleanup: Migrate more usages of deprecated function ExtractCommentTags
b50d5081766 bugfix(hpa): introduce buildQuantity helper for consistent resource quantity creation
cbba973b6c9 Fixing go-vet finding "call of reflect.DeepEqual copies lock value" by just asserting on the basic fields that should be reset when ClearState() is called
35ecb00f1c5 fix: Add wait for cache sync for customresourcediscovery tests
d6d186ece06 Activly poll for namespace termination instead of sleeping
e1daa69de8c Add printer column validation tests
369e6a25a28 Introduce k8s-short-name and k8s-long-name to the OpenAPI formats supported by CRDs
6f1295ae9d2 fix: prevent SSA from creating CR while CRD terminating
3b0fd328106 e2e: serial: cpumanager: continue on failure
f76e1381d08 e2e: node: fix quota disablement testcases
dc323756cea Bump to latest kube-openapi
d180fe28ad5 Add json-patch v4 compatibility test
2ca4ffe6532 Add evanphx/json-patch/v5 to unwanted dependencies
5a7e04b6cc7 feat: optimize ListAll and ListAllByNamespace to return directly when nothing to select
ae13d101958 KEP-5229: Add SchedulerAsyncAPICalls feature gate
dce69afadea apiserver/cacher: properly wire listwatch options to the listwatcher
0276769c2c8 kubectl: avoid logging during init
6040344a65c kubelet: DRA: fix TestRegistrationHandler
cc7893a42c6 kubelet: DRA: fix unit test failure
cf544da6f7a e2e_node: DRA: add tests for different socket setups
7f6389e7709 e2e_node: DRA: pass socket path as a parameter
3ae99f25471 kubelet: DRA: fix test failure on Windows
c90c2e0d402 kubelet: DRA: fix linter warnings
165bb1da58e DRA kubelet: use TimedWorkersQueue
4ee7374b24e DRA kubelet: add connection monitoring
f927cd01088 DRA kubelet: simplify plugin creation and connection handling
cfeab03ade4 remove kvh.exec
75862f3f461 show namespace on delete (#126619)
56d97283afb fix: Improve error messaging on updating a deleted object
fd8bf1c8211 e2e: retry getting status on restart policy tests
c5f061e0df0 Fix pod and container level swap metrics for CRI
e1d74f1d335 Update etcd image revision to 3.6.1-1
7e3945808d3 nftables: remove filter-output-post-dnat chain
91f2256b34e update filter chains and priority
72305f82f9a Move UnsafeCorruptObjectDeletion outside of etcd3.New function
59dd2bd60dd ci: update test image base: nginx, nginx-new
af89044a78c conntrack: clean stale entries on endpoint port change
861e7b8fae2 fix unit test flake for authn config on windows
2fd93c08988 fix: data race for patchResource func
ccdef28acd3 fixing large resourceversion and limit for storages
fe84377458b e2e/watchlist: new test for checking metadata informer
d6ba9e1b9f7 replacing depr. pointer pkg with new ptr pkg on src/apimachinery
db32c4cf7ca fixing syntax issue for etcd builds
8454093f09e DRA: add e2e test with initContainer using external claim
138e363e413 cleanup shellcheck for temporary HOME directory
66c611125c7 Add namespace-aware orphan pod indexing
5e54df3e72e Fix [Failing test] [sig-node] [Feature:GPUDevicePlugin] [Serial]-related tests
280cecb8fb0 fixing location to ensure the cp commands dont fail
d2945a21fda bumping revision
fa1832484d1 handling the etcd 3.6+ build directory location change
e68d6013449 Don't panic in case of an unknown API error code
4ca91a03052 WIP: Fix tests
2b2c9adef38 Nicer value rendering in API errors
cfff359b419 fix for gimme when $HOME is not writable
6a654e5be0c Deprecate StreamingConnectionIdleTimeout field, that is not being used for a long time
b8cd05881c5 Address PR comments
6f97f5bbf87 Use Mock CSI Driver for MutableCSINodeAllocatableCount storage e2e test (#132373)
176095ac30e [KEP-5100] WinDSR feature gate to GA
64c44e1fa63 Test that generated applyconfigs are a runtime.ApplyConfig
a5d42f56939 Re-Generate applyconfigs
d5527b51930 Update applyconfiguration-gen so acs implement runtime.applyconfiguration
3fe4ea550e8 Add an interface that all applyconfigs implement
b0b52f4fb29 CHANGELOG: Update directory for v1.30.14 release
2bc98f123d7 CHANGELOG: Update directory for v1.31.10 release
20e9f160c97 CHANGELOG: Update directory for v1.32.6 release
9e126a37720 CHANGELOG: Update directory for v1.33.2 release
df32f10e069 apimachinery/pkg/util/errors: deprecated MessageCountMap
de2f22ee8ee e2e/watchlist: intro verifyStoreFor
017c9b94daa e2e/watchlist: rename toSecretPointerSlice
caa64afd017 merge constants.go into attribute.go
73d65f830a1 Put _linux suffix for linux specific go files
88b34ea1f1d Move bdfRegexp from global constant to local variable
fc854a9a861 Introduce DeviceAttribute{Name, Value} and change return type of 'GetPCIeRootAttributeByPCIBusID' with it
8ed8217e9ab Moved device attribute constants from api to deviceattribute package
f7461a12dcb Revert "Add StandardDeviceAttributes and StandardPCIDeviceAttributes helper functions"
6b9ac7c5160 cluster/gce: rm KUBE_LIST_FROM_CACHE_INCONSISTENCY_DETECTOR
512563e7b08 pkg/proxy/conntrack: refactor
91b4816c230 Optimize job controller performance: reduce work duration time & minimize cache locking
18dd1daaeb9 Add Windows Server 2025 (ltsc2025) to BASEIMAGEs (#132235)
44b4682a320 Use jq docker image for pause windows build
3827d3bc4f1 Drop usage of forked copies of goyaml.v2 and goyaml.v3
2869b6f42c4 Add StandardDeviceAttributes and StandardPCIDeviceAttributes helper functions
a8ab9eb5fea Simplify the implementation: just provide GetPCIeRootAttributeByPCIBusID
d390902b99a Verify scheduler resource metrics account for Pod Level Resources
32fcaf14067 client-go/util/consistencydetector: move IsDataConsistencyDetectionForWatchListEnabled
72654620a2f removing WaitIntervalString from iptables
bad49390493 client-go/util/consistencydetector: remove CheckListFromCacheDataConsistencyIfRequested
15ca38b521d apimachinery/meta/types.go: remove InitialEventsListBlueprintAnnotationKey const
690790257fd Add test verifying KUBECTL_KUBERC can be turned on and off
45449a78d5e Removing setting KUBECTL_KUBERC env var, now that it's on by default
3f32edeace1 chore: Remove the dependency of the volume manager on the container runtime.
3dc1810bb7e fix: failed unit test.
b8a2127d277 Add random interval to nodeStatusReport interval every time after an actual node status change update or restart
fbf4b47d150 chore: clean up probemanager for shutdownnamager.
3fa23d06af6 Adjusting AdminAccess Type for API v1beta1
2a5e4d55824 add script for verifying dead code elimination
891e7fec6e1 add seperate health check/probe for multi etcd override servers - grouping health checks for exclusion purposes & add exclude integration test
28573e373fd Add error prefixes for authn config load or validation failures
4cb6d3d7761 Validate requests sent to etcd in TestList "test List with limit" scenario
03afe6471bd Add a replacement for cmp.Diff using json+go-difflib
32ec4e68cc8 adding omitempty tag and opt tag
e654deba630 CHANGELOG: Update directory for v1.34.0-alpha.1 release
f4a45862556 fix APIServerTracing test data race
2004ee50f5d Fix -Consistent paginated lists serve from cache
bccc9fe470f KEP-3939: Job Pod Replacement Policy; promote to GA
fc198b92c0d apiserver/handlers/watch: stop encoding initialEventsListBlueprint (#132326)
854499f986b clean: use correct pod template
fae2fdd052c DRA: wrap e2e finalizer update in retry
7a95f3e4787 Fix NetworkPolicy podSelector comments
233a0aeedbf DRA E2E: label tests which need a certain minimum kubelet, II
2cd5dbbdaab modify tests
59f0ab97c25 Add boilerplate header to go files
1c33d987625 pop respects the context
f67d30b3529 handle context in process loop
384240b4d95 Use "Invalid" errors rather than "TypeInvalid"
bdfa8839bec calculateStatus should use the same now time point for each pod
ce44bcdf52b conformance servicecidr read status endpoint
c2988884f34 fix kubeadm e2e tests
cb26d065d39 Validate PCI Address (domain is 16 bits, bus is 8 bits, device is 5 bits, function is 3 bits)
752a043692f fix lint: apply De Morgan's laws to simplify conditionals
76ef6a388f8 fix kubeadm e2e tests
79601d13569 Fix CRI fake_runtime RemovePodSandbox
666f38f4189 DRA: Introduce a helper function producing standardized device attributes for DRA drivers
7a3af908c64 add securitycontext OWNERS to be SIG Node as the package is mostly used and contributed by SIG Node
7f1dde2a0fe test/apimachinery/watchlist: properly wire modified config to informer for fallback case
40c718864b7 chore(apiserver): avoid using html template which disables dce
6a37976848b client-go/rest: rm watchlist
4372c59ebf0 update go version for publishing bot rules
e09b042d34b Bump etcd to v3.6.1
901441c66eb Promote SeparateTaintEvictionController to stable
85bc3cb0960 Remove GetExec method from VolumeHost
9251b2a7a58 Expand webhook test to check rejection metrics
f8b4ea50e8d ./hack/update-internal-modules.sh
71b2f32d70f DRA E2E: label tests which need a certain minimum kubelet
3908550c0dc Update to latest github.com/modern-go/reflect2
d8bfafe07af test/apimachinery/watchlist: prove typed client's List method not streaming
601065a7c6b bug: Fix misleading response codes in admission control metrics
5882df8beb3 promote env test to conformance
69a5bda836e Bump base image used in nonewprivs to alpine:3.22
04110fce1bc Correct error message to print `ResetConfigurationKind`
3443c1115ae make update
798c6ebab85 client-gen/code-generator: remove watchList
db2555628c1 Fix: HPA suppresses FailedRescale event on successful conflict retry
2f943293ed8 client-go/gentype: remove watchlist
f0dde38234f Remove pluginName param from GetMounter and GetExec
fb611f4c93e kubectl delete: Update interactive delete to break on new line
d46e13b9c5f change the command of the terminated container
226c0d10959 Bump ipc-utils base image to alpine:3.22
e75ccce83fc feat: optimize label selector match performance
ac467d3aea4 add ratcheting testcase for validateFalse tag
9384285c604 add ratcheting testcase for minimum tag
1574001a1cd run update-codegen.sh
f574115f14f feat: add default ratcheting support
e9eabb2007d feat(validation-gen): Refactor type handling and introduce utility functions
03c6e15f845 bump to alpine 3.22 and bump apparmor-loader to 1.6
b86b4632b3f disable selinux relabeling when mounting sourcedir to shellcheck
dc3836c49ed Remove deprecated encryption config controller metrics
5a2844a766b Update to etcd v3.6.1 in vendor/
a9108e8f532 Adding `grpcnotrace` tag for production (non-debug) builds
11abb0042d2 Fix outdated links in VolumeSource godocs
4b2fe2a544d pkg/kubeapiserver: use utils/ptr package instead of utils/pointer
69eddde89b4 using finalizer
57d55fbb106 test: Add test case for createNodeOp
1d69a2fbc3a ./hack/update-vendor.sh
edadfee47d3 test/apimachinery/watchlist: prove dynamic client's List method not streaming
348ff7497c3 Build etcd image v3.6.1
3038f3530d1 client-go/dynamic: rm watchlist
86c709cd817 skip nfacct test in IPv6 clusters
e5f36796e34 Bump dependencies, images and versions used to Go 1.24.4 and distroless iptables
07151bb0f4c chore: Add validation error for unsupported map of slices in validation-gen
89f5453e314 Allow system:monitoring role to access kubelet metrics endpoints
2810f6e65f5 add bentheelder to cmd/preferredimports *reviewers*
00a6d2c99c0 add bentheelder to conformance related test *reviewers*
1dd055774cd backfill some sig-testing-reviewers (tech leads aojea and pohly)
ad68a4b4cdd emeritus spiffxp
512f000d0f3 Update tests for StructuredAuthenticationConfiguration feature gate GA
efebfe9e3a5 Set StructuredAuthenticationConfiguration feature gate to GA in v1.34
769d71b3045 Remove unused Expect methods in testscheme
105dd3b0ab0 Add ExpectMatches to ValidationTester
28e973c0447 Better formatting of matcher errors
b39741b5062 e2e: node: serial: fix cgroup path with crio
26b188aaa8f KEP-4633: Graduate to Stable.
fd5d7a18ed1 reduce logspam when calculating sandbox resources
0baeccd32f0 KEP-740: promote ExternalJWTSigner feature to beta
ef2c18a5a0e Add more test cases
eb3c9a3184a Promote feature OrderedNamespaceDeletion to GA.
f8b70124350 Revert "improve display format"
449320a54a2 update github.com/spf13/cobra v1.9.1
260a720a851 Rate-limit the LoadBalancer rolling update test
0a86ca40615 Add healthChecker to the kubeDeps
dacafec88c2 KEP-3015: PreferSameTrafficDistribution to Beta
b2ab0ba1938 Drop unused testing manifest
96b39187c5f Add context to Count()
9d1bc51cbb7 adjust durations for sleepAction
c85ac59df41 Build k8s using latest commit of golang
4a7e68a3555 fix: Fix the issue where kubelet's slow startup causes it to be mistakenly killed by the watchdog.
b02fba7e0e6 Fix incorrect logging of insufficientResources in preemption
fc7ba63ee8b support parsing of iperf 2.2.0 output
1755a9e5455 fix: iperf version in comments
0ca9c380add update all api files
32aa52adf66 tolerate newer golang/oauth2 version
3cfa73bc17b add -q flag for git worktree
97ec8618d3e Fix kubelet iptables startup, clarify semantics of utiliptables calls.
6a4751da7fa Graduate RelaxedEnvironmentVariableValidation Feature gate to GA
f4ab6c2befe cleanup: Migrate deprecated function ExtractCommentTags
0d468f58c07 kuberuntime_manager: don't log entire container spec.
858b88bceef kube-proxy: log ipt errors during platformCheckSupported
1f46b3fdbff Clean backoff record earlier
7b1f4990677 DRA kubelet: rename Store + Plugin -> DRAPluginManager + DRAPlugin
fad670c27b9 DRA kubelet: move RegistrationHandler into Store
494a129d02a DRA kubelet: clarify plugin vs, driver name
0d5578b8395 test/apimachinery/watchlist: prove metadata client's List method not streaming
5b0f0d2efa2 update pr template issue links section
a38ad3a2c67 client-go/metadata: rm watchlist
beb86a8391b KEP-3329: drop PodDisruptionConditions feature gate
b5a8f5d0a50 KEP-3715: drop ElasticIndexedJob feature gate
10de6780cf6 DRA API: remove obsolete types from v1alpha3
0896693693d fix TestNodeAffinityPriority: calculate the priorities correctly even if PreScore is not called
087554448ca Make nodeports scheduling plugin sidecar initContainer aware
1876c544511 Remove unsupported map of slice validation for non-byte elements in validation-gen
50139381006 Change option to a slice
990cb7547ca Use slice.Contains()
28e99ef2ee6 Add type information to tag Docs() and use it to typecheck tags
31aa3c20297 Switch to using named args in output_tests
7892fd95f24 Use codetags in validation-gen
249801b7ccc Fix windows-pause-image-base:<tag>@<digest> invalid reference format
2c4c3037b6a Fix field path for embedded fields in root types
d1bddfd779f Forbid github.com/pkg/errors in k/k
efaaece0fbc go.mod: drop pkg/errors as a direct dep
cbbfabe7fec Support embedded fields properly
d1a858ca9f6 kubeadm: fix one missed pkg/errors location
036f4bfe282 hack: fix KUBE_RACE in benchmark-dockerized.sh
5be254650f8 kubeadm: start using util/errors
f522d7cb858 kubeadm: add a local implementation of wrapped errors
2bf3d8b7336 KEP-3335: drop StatefulSetStartOrdinal feature gate
1d1d0c154c2 promote agnhost to v2.56
258961cb350 pkg/appis/apps: use utils/ptr package instead of utils/pointer
7b664a11352 pkg/volume: drop pointer wrapper functions.
253a08d7e39 pkg/util: drop pointer wrapper functions.
ac5cb23000f Bump gengo/v2 to latest
d6ec03a1302 Preempt based based on allocated resources rather than desired
7d47165e3ec Replace queue.FIFOs with k8s.io/utils/buffer.Ring
705e89b046f Only set pod allocation if admission succeeds
f8b893489c1 Update pkg/kubelet/kubelet_test.go
147073102b7 fix: prevent data race in metric LabelValueAllowList initialization
8cdbbf5cdae Update k8s.io/utils for new generic ring buffer
daae472fe1b e2e_node: verify restart looping container correctly
109ae1bacad feat: Allow leases to have custom labels set when a new holder has the lease
8d3fb9ee0a5 [KEP-2400] kubectl top: add a --show-swap option (#129458)
4c7840ec5d2 podResizeMutex cleanup
c7fdf6abde1 Handler will return the server port number instead of address
6a495241ef3 KEP-3331: Add test to simulate revocation via user validation rule using unique identifier (jti)
466fb815287 test/e2e/apimachinery/namespace.go: make OrderedNamespaceDeletion test serial
7e7aa6d810d e2e: node: cpumanager: require cgroup v2
68efb079aab kuberc: add tests for DefaultGetPreferences
ad3a13e014f Graduate NodeLocalCRISocket to beta
b9d9dea03f4 Update npd from v0.8.20 to v0.8.21
47dead1c403 unexport allocationManager IsPodResizeInProgress
de1d6fbf242 fix: ResolverTypeProvider data race
9b8d7ce4987 pr review feedback
a512de6e094 Clarified the token scope and future plans for the next security scan to refer to it
032a9eaede4 DRA kubelet: code cleanup
a6e22689946 Ensure github.com/pkg/errors is used only in kubeadm
7ccb9657f7c sched: Apply EnablePlugins to CoreResourceEnqueueTestCases
6cb14884b61 test-integration: allow enabling race detection
545fbc99c2b test: drop dependency on github.com/pkg/errors
899f76159f1 add unit test for IsDNS1123SubdomainWithUnderscore function
0a7d9f9bfd9 KEP-4427: Promote Relaxed DNS search string validation to GA
2aa7ef3d273 Address comments
dbdd6a3b435 FieldManagedObjectTracker: Fix to work with unstructured
b7d16fea7fd disable terminatingReplicas reconciliation in ReplicationController
ee33c1a9fc9 e2e: fix userns test
be049397dfd Fix IsDNS1123SubdomainWithUnderscore to return correct error message
4f91a69f2b0 DRA integration: move and extend device status test
0a96613754b proxy: remove iptables wait interval flag
a5aabf9f7e0 DRA kubelet: validation pass before changing claim info cache
5420dcec553 Promote two more EndpointSlice tests to conformance
b9496d1a9d7 Update client-go template with backticks
d70fcf731bd Update client-go PR template
d75af825fbe Extract interface CycleState and move is to staging repo. CycleState implementation remains in k/k/pkg/scheduler/framework
be6807e6a57 Allow specifying a directory for image credential providers json/yaml configuration
aac00c1f0ed add orphanedPods parameter to getRSPods
d13dcbbf95c kube-dns bump to v1.26.4
96b5ae792bc Add code for not expanding volume if it has NodeExpansionNotRequired annotation
2b0b3435078 DRA: Improve implementation of counter management in allocator
1cd71cbb14e ManagedFieldsObjectTracker: Reload scheme
4654496c395 Add code to not expand certain types of volumes
741d0e2b81a Gradute ResilientWatchCacheInitialization to GA
c8f1a653014 agnhost: added server address for conntrack cleanup entries
5058e385b09 DRAAdminAccess: update label key
ee2d3b6a2c2 DRA: Exclude individual devices when PartitionableDevices feature is disabled
ab6fdf46d89 Move the autoscaling e2e tests to be ran in parallel (#131091)
4e3634bbbfb Update security contacts for sig-cli owned repos
b0847b47697 Add unit tests for fsGroupChangePolicy accessors
74167f9041b Fix typo in the `--anonymous-auth` flag name
6410329a07e update go version for publishing bot rules
60b5338d460 Promote automatic_reloads of authn config metrics to BETA
f694c58c6cc feat: graduate QueueingHint to GA
1310fc027a5 kubelet: drop dependency on github.com/pkg/errors
346fe182bea DRA E2E: fail test when ResourceSlice publishing fails
dc2f33f9d8a Update Perl to 5.40
7c0f968ab25 Drop usages of deprecated otelgrpc methods
157903b09b6 Skip backoff when PodMaxBackoffDuration is set to zero
54b2fad0330 kubectl: drop dependency on github.com/pkg/errors
b461d80f3d9 etcd: update etcd image to v3.6.0
df2857e7777 Revert shorthand for kubectl explain --output
1d17ca9b7e9 generate code
8ae7171041b Simplify subresource matching
9715c90b31c Clarify errors and improve tests
4cac349f86b Clarify group version lookup in validateDeclaratively
c2eef42cf4d Add output_tests
6284a0f50bb Tag types with +k8s:isSubresource and +k8s:supportsSubresource for scale
7dc8660d036 Update testing to fully track subresources
6ca6b7bb6ab Add +k8s:isSubresource and +k8s:supportsSubresource tags
105391403fa Enable scale subresource in generated validations
a3eddf7d854 Add declarative validation testing for replicationcontroller/scale
356f395f0de Enable declarative validation for replicationcontroller/scale
030b4ab9cc9 Add declarative validation testing to Scale.spec.replicas
48e1079cf03 Add subresource mapping support to ValidateDeclaratively and introduce configs
8c5c5fb7618 Add origin and use apivalidation.ValidateNonnegativeField for Scale.spec.replicas validation.
d0f6fe30bf1 Add k8s:minimum validation to Scale.spec.replicas
ffb4e003f70 Enable validation-gen for scale group-versions
e63019a8701 DRA integration: refactor code to support other tests
1ffda045cbf update to latest ishidawataru/sctp dependency
50f152440be DRA integration: start scheduler on demand
488c94735ce Bump dependencies, images and versions used to Go 1.24.3 and distroless iptables
699dce0a579 DRA kubelet: fix gRPC timeout flake
7215de79b3c DRA kubeletplugin: some doc updates
24c0e91d295 DRA resource slice controller: disable resync
01820ff7c27 chore(scheduler): add filter integration tests for missing part plugins: NodeAffinity plugin
151d9d79f4a Remove package protected field updatePodOther from ActionType. Make ActionType.None public
76f95271a5d kuberc: make update and update-vendor
b8e6de08e1b kuberc: add API violation exceptions
c29accaf581 kuberc: introduce fuzzing for kuberc types
b0370c483af Promote kuberc to beta
1f355e5b441 kuberc: pick the first known version when decoding + tests
0341b27c5d0 kuberc: align internal and v1alpha1 go-types with v1beta1
39195f9a463 kuberc: add v1beta1 types
35870c480d6 client-go remotecommand: avoid "unexpected error" log when there is no error
7287dcd2fb3 vendor: update system-validators to v1.10.1
b35c5c0a301 e2e: Fix shadowed error in reboot test and clean up containers after reboot test (#131699)
f79012a0db3 renamed SIG Node google groups
50fe29e524b Add accessors for fsgroup change policy
17946fe7994 Add Stress Tests for VolumeAttributesClass
32c45ecf10c Bump github.com/vishvananda/netlink to v1.3.1
aea2743e4e9 vendor: update system-validators to v1.10.0
96e4cc65fbc update baseimage
c5f368522d5 kubeadm: fix dryrun-latest e2e by updating cluster-info fixture
d7b6049099e e2e: node: always declare testcase CPU requirements
b571840d00f bug: Remove duplicate ReplicaSet update validation
67345417c03 Update tests to use v1 for AuthenticationConfiguration
aea874e5e47 Duplicate v1beta1 AuthenticationConfiguration to v1
c509e22d11d Add a list of modules that should be pinned at current versions
c4421fc13e7 address more feedback and some cleaning
637d234aae3 feat: Add support for ECDSA-P384 encryption algorithm
b98b86bd6ab DRA: Add scheduler perf test for partitionable devices (#131771)
4cc2bded914 DRA: Add an allocator test that uses an attribute selector
60c36432f2a DRA integration: set up nodes for scheduling
1c3beb47a5c Fix goroutine leak in unit tests
f6fafba424a fix flacky test: ResourceQuota should verify ResourceQuota with terminating scopes through scope selectors
8cf5e8db78d Deprecate kubeconfig's preference field in favor of kuberc
1ce8503e91e add UT for volumepathhandler
a8ed33bc646 feat: add metrics for compatibility version
c4a59afe9dc Fix incorrect URL in build/dependencies.yaml file
5bb3f862a06 DRA: Clean up allocator tests
5834476681c fix lint and unit test failures
676978641e1 address feedback
88e1909e518 move pod admission and resize logic into the allocation manager
35307319740 Kubectl: check version skew (#127365)
3878f7e7489 E2E ResourceQuota: ensure consistent ResourceQuote during scope selector test
4a353d07e4f E2E ResourceQuota: fix pod creation flake
4b10ba9eef8 E2E ResourceQuota: dump last ResourceQuota
f712b01ddb5 Unify references to group resource in metrics
d3afe8a87eb hack/local-up-cluster.sh: remove kubelet --cloud-config
772d0106651 client-go workqueue: clarify parallel reenqueuing
d043beb223b HealthChecker has a List method
9b3830fba23 Bump google.golang.org/grpc v1.72.1
be5d8c767b2 Update cmd/kubeadm/app/cmd/upgrade/apply.go
c0885e018ae Fix --config option from suggested kubeadm command
8f49fb5ce7e future-proof csi test mocks
adc4916dfe4 feat: introduce pInfo.UnschedulableCount to make the backoff calculation more appropriate
968e19d1b6f docs: avoid broken link
a271d3e5339 cleanup: remove error comment of AddIndexers func
5def7fadf3e Drop dependency on x/exp package in mount_linux_test.go
b9e2a160832 e2e_node: dra: test plugin registration retry
aef61622aed e2e: dra: implement ResetGRPCCalls
e8be3e575b9 e2e: dra: simulate GetInfo failure
2f50d0a510d Add kube-api-linter plugin to golangci-lint
0e5eab042c3 test: Use sub-tests in watch tests
5da12b5aee9 Add tests that validate the return value of resize operation
c369e3cd493 etcd: build etcd image v3.6.0
65a27eb97d6 restrict the use of scheme internally to client-go
671d1a07a58 Bump the busybox image
88b23605404 ResourceQuota E2E: more informative failure message
ba77d27560a DRA E2E: reduce risk of flake in ResourceSlice stress test
6b0ebedccc1 Set non-experimental WatchProgressNotifyInterval config field
079d4e52c24 Fix kubeadm etcd client interface
cf0bbf1171e bump etcd client to 3.6
7bccb1acb5e Update pkg/scheduler/framework/plugins/defaultpreemption/default_preemption.go
139fab0ebdc kubelet: don't import testing dependency in non-test code
90b256537c2 Add suggestChangeEmulationVersion if setting locked feature.
5314fcece31 Promote automatic_reloads of authz config metrics to BETA
1b9bb3393f5 test: Fix CURL download of Windows busybox test image
b0ab168a71e CHANGELOG: Update directory for v1.30.13 release
ec7e732cbcc e2e: dra: move gomega matchers to dedicated package
fcfd87812f1 CHANGELOG: Update directory for v1.31.9 release
2b7f8e1682c CHANGELOG: Update directory for v1.32.5 release
1ab54ffa642 CHANGELOG: Update directory for v1.33.1 release
bba9c49e101 e2e: DRA: test 2 claims with the same name
8d8fd92966b DRA: test mismatched claim UIDs
96da66054db DRA: genTestClaimInfo: add claimUID parameter
69e16d2f544 DRA: kubelet: check for duplicate claim names
b9fec8bf4ff fix scheme import
cf8acf5cb73 package bootstrap matches dir
e9fcdabcf50 feat: kubectl debug: add label for debugger pod
b13cf0a65ae tests: userns: Add framework.WithFeatureGate()
9549c111551 fix e2e network test flake because of network programming latency
ef0547741db verify scripts: preserve exit code
0114d33c346 datapol: compare types directly
a1a4bc8fec8 fix: add BackoffExpiration to DeepCopy
2fe65bbf48b fix(kubelet): update lease duration when config changes
094466539e0 Add rotation and clean up for logging
125600e7458 Remove unused GetHostname method
ee94ba913ad Run codegen
4eb9fb21b69 applyconfig-gen: handle non-pointer embedded members
c374ab81185 Add a breaking example for applyconfig-gen
70e05132645 Separate getList and watch errors to prevent TestGetCacheBypass flakes
5121115711e Add sig/scheduling label to scheduler integration tests and staging repo OWNERS
1ed6cf21966 Add e2e tests for kuberc
0ad8e65d90e e2e pod readiness gate network flake
fe1b1fff7c6 Remove unused GetHostIP method
504b681ae14 Adding Joel Speed
47f85960638 DRA: prevent admin access claims from getting duplicate devices
c5e4cab9b1e e2e: add corresponding featuregate label to node features
c4d6fcb1974 Remove misleading comment from NodeTaint TimeAdded field
d0b6ea36b60 update got to 1.23.8 for the active release branches
3043257b838 remove release-1.29 as it is deprecated
9fd545bcc46 [sig-scheduling] SchedulerPreemption [Serial] validates various priority Pods preempt expectedly with the async preemption: replace finalizers with preStop hook and TerminationGracePeriodSeconds
74e9b27e56e Port "Service endpoints latency should not be very high" to EndpointSlices
e5f7fc25e71 TestNodeAffinityScoring: wait all nodes
e42aba6c0ce Optimize RS Controller Performance: Reduce Work Duration Time & Minimize Cache Locking
28602c66fcf Update pkg/scheduler/framework/plugins/defaultpreemption/default_preemption_test.go
52e7aa37daa gofmt
a507e64fe4b Have separate tests for custom selection vs ordering, add comments around system pod eligibility
283c5e6b61f Have IsEligiblePod be supplemental to priority check, update tests
3ed73e058ae Clean up the affinity explanation, fix for new lint rule
d4bc527a7b8 Update comments: affinity info, default behavior, priority->importance
95ebc2c10e9 Apply suggestions from code review
7f57c6e52dc Update factory to use generics, keep single New function
137da6a4882 Remove line about equal priority, fix typo
b8ac1714370 Apply suggestions from code review
224e6a3a355 Rename EligiblePod* to IsEligiblePod*
4bf6841495e Update the customizations to operate on individual pods, for more flexibility later
c34f8db5594 Remove unnecessary context and typecheck, switch to cmp.Diff
c6f2d3879b8 Fix gofmt in default_preemption_test.go
78b059c064e rename OrderedPods -> OrderPods
2616202ac9e Implement tests with example customizations, add direct constructor
760daaf1100 feature(scheduler): Custom pod selection/ordering in DefaultPreemption
721947a5703 Update staging/src/k8s.io/apiserver/pkg/audit/request_log_test.go
153233c677d review from tallclair
e418ee3a92c Avoid encoding in LogResponseObject when we are not going to use it
26c198dc202 Some fixes
0b915a538fd Cleanup after rebase
a6586aa610a Addressed comments
e262cccf23b Cleanup after rebase
86104043588 Add e2e tests for Partitionable Devices
ece35e58828 Update DRA e2e test framework to allow publishing advanced ResourceSlices
a437a269f18 Fix comments on ginkgo label functions
85734ac6b38 DRA E2E: don't run prioritized list tests twice
808a5cfd469 e2e tests: remove all cloud provider calls in storage/volume_provisioning.go
51407868295 feat: improve the backoff calculation to o(1)
cfe7d042435 Account consumed newlines properly in YAML decoder
d5a56739cee use framework.ExpectNoError instead
699ec0a538a Remove wrong comment
f718096b744 NoExecute taint should be added when a Node's ready condition becomes Unknown
3911b677bd4 test: wait for nodes to be in scheduler's cache
ea6b4ea7e9d kubeadm: bump supported etcd version
9d963298a3b test: Close response body in watch tests
d1fb42a4000 fix: fixes a possible panic in `NewYAMLToJSONDecoder`
960a4939f25 Eliminate AuditContext`s SetEventLevel
c39705281c9 Self nominate adrianmoisey as sig-network reviewer
b09d034a570 DRA E2E: revise test labeling
13bd0b4ee82 e2e: node: rewrite the sidecar related tests
f4265638be9 e2e: node: factor out reservedCPUs
a8c8b0987dd e2e: node: dissolve skipIfNotEnoughAllocatableCPUs
32d4724ab8c e2e: node: add comment about reserved CPU
daf2fc71002 e2e: node: rewrite multi-pod tests
ccc662c228e e2e: node: initial multi-container tests
2419d9ccc5f e2e: node: rewrite: multi-cpus single-container pods
e4726719a75 e2e: node: rewrite more compatibility tests
74fda8c700a e2e: node: rewrite compatibility tests
dd3f9b60741 e2e: node: rewrite CFS quota tests
b9ce058ab67 e2e: node: rewrite strict-cpu-reservation tests
3eb2e65fc30 e2e: node: rewrite cpumanager tests
94dd0b8402a Move test cases from mounted_volume_resize into testsuites/volume_expand.go
4aa3c968a78 Build etcd image v3.6.0-rc.5
641834d030e Fix broken recursion
eb4641d6512 Add container Resources to the backoff key
080d6f9ead7 test: pass the test context to http requests
3f188e5d86b refactor: Use http method constants in apimachinery
75afa1e0acf Fix API server crash on concurrent map iteration and write
f93e4645c18 refactor: Stop using ioutil in apiserver
9e3a1b0a908 Add comment describing the feature gate with a link to KEP
e3f3da5e795 Swap KUBECTL_COMMAND_HEADERS to use the proper feature gate mechanism
d1b5f268b48 Drop KUBECTL_ENABLE_CMD_SHADOW featgure gat entirely
a6abd717eae DRA: Fix failure to allocate large number of devices
6cca37b36fe Add integration test for log verbosity
69682b75e50 Manually read verbosity before kubectl command construction
ee4c6b90ce9 add HirazawaUi to kubeadm approvers list
77b1236a523 fix: Kubernetes versions in unit tests
f40892f4813 client-go: call out WithContext inconsistency
871cabeedb0 deflake e2e tests: StatefulSet Non-retain StatefulSetPersistentVolumeClaimPolicy should delete PVCs after adopting pod (WhenScaled)
8b81a3d883e Rename GetStableKey to GetBackoffKey
861682235cf DRA: Fix incorrect behavior for AllocationMode: All in ResourceClaim when used in subrequests
a3097010faa Change the implementation design of matchLabelKeys in PodTopologySpread to be aligned with PodAffinity (#129874)
ce02da8daba generate code
4821604f83a Reorganize scheme type converter into apimachinery utils
e81887276c6 refactor: Add request method constants
af1d60f30bc Add hpa reviewers
0acc7bd4dcc HPA: Fix int overflow in GetExternalPerPodMetricReplicas
b9cb3cb3339 update klog flags
57218ac969d Revert "kube-proxy: log errors during proxy boot"
9def40c9e7b DRA E2E: fix "must manage ResourceSlices"
c71e29ff12b DRA E2E: fix flaky "sequential update with pods replacing each other"
d28c8cd4887 fix: not removing the plugin from the unsched plugins after PreEnqueue
47d296d62d7 feat: introduce pInfo.GatingPlugin to filter out events more generally
441dd305150 userns: Wrap more errors
43f61e80de3 userns: Improve error returned if userns is not supported
c5efc843dac Fix rudimentaryErrorBackoff to only be created once
97e64e80c3e Fix typo in comment
68f0204e3e1 Better logs and debugging
8a571f7fb80 Rename discover() to discoverType()
eb3c061cafb Reorder and merge blocks handling named types
67bab26ea13 hasValidations should return cached values first
bb10f55fd1e Fix lint warnings
22fa3c747b1 add retries to exec command in cgroup verification
8652b6ab283 Update sig-network-approvers/reviewers
b1bb9a5885a Kubelet: Randomize ClusterRole name in e2e
863168e4749 e2e: stabilize Windows memory pressure eviction test
4ed3768dc95 userns: Use len to handle empty non-nil slices
97a2cb39ce2 Make sig-scheduling-api-approvers actual approvers
6d927c3c250 Comment out sig-scheduling-api-reviewers, since it's currently empty.
038bb1a9a5c Remove alculquicondor who is stepping down from sig-scheduling-api-reviewers
55b5827d8f0 integration: etcd data
aa9f156d7aa integration test for compatibility version
3be3051fb77 Adding test case for the webhook behavior change
cf82fd7e9ce Treat error decoding a mutating webhook patch as error calling the webhook
9bcec340f88 modify unit test for compatibility version
15ab88f88bf remove networking v1alpha1 and make update
54b014be1cd use networkingv1 as default storage for servicecidr and ipaddresses
b2fe862ae3d graduate disableAllocatorDualWrite and lock MultiCIDRServiceAllocator
d2fa246b069 Update codegen
d78b295a845 Reenable guard to only validat root and scale subresources until ratcheting merges.
94d043b149b Drop KUBECTL_DEBUG_CUSTOM_PROFILE feature gate entirely
d52f05dad3a remove hwdef from hack reviewer
2e6ec2414c8 Remove unused function
2e8b409a5ff Rewrite Subresources godoc.
164fefa9483 Update codegen
2119555e02b Add subresource to operation, do not special case subresources in validation-gen
2073ba2372b pkg/storage/cacher/cacher_whitebox_test: deflake TestWatchNotHangingOnStartupFailure when ResilientWatchCacheInitialization is on
2b3f2aa705c propogate error
10c5bdd6a1a Apply feedback
36685c6f1ce Add information about expected status
6c89041043c fix(scheduler): node pre-check logic to consider NoExecute taint effect
e36a168a630 test/e2e/node/kubelet_authz.go: fix SAR to include service account groups
aeb43eb22f6 Migrate ExtractCommentTags to ExtractFunctionStyleCommentTags
1ec7231f633 DRA node: reject static pods which reference ResourceClaims
2ea4b1aba60 golangci-lint: don't warn about conversion and defaulting functions
15d9a93d7c8 golangci-lint: redirecting stderr raced with termination of script
3b5cfeaf204 DRA: use v1beta2
b262d56165f DRA: client-go wrapper with latest API as types
8e9abfaf217 DRA: v1beta1 <-> v1beta2 conversion
d7a64d68b56 DRA resourceslices: clarify code
a171795e313 DRA resourceslices: better error reporting
6392b54e12a DRA resourceslices: avoid update loop when partitionable devices feature is off
5af026120a1 test: bump agnhost image to 2.54
e5ffec242a3 Bump CNI to 1.7.1
47fddb08f75 Expand has() tests for omitempty and omitzero
c2c003a71fc update k8s.io/utils to bring fakeClock.Waiters()
b3bf5ed0ee1 verify-shellcheck.sh: normalize KUBE_ROOT using pwd -P
a1a6208863e use the minimal shellcheck image instead
e0983dbee87 remove unused shell imports in verify-shellcheck
7b50c8a510f jwt: support CEL expressions with escaped names
784c589a77a Check for newer resizing related fields after expansion is successful
6bb6c993429 Drop null creationTimestamp from test fixtures
41805aff915 Update runtime convertor to honor IsZero()
bc605171713 bump cbor to add omitzero support
06b0784062f bump structured-merge-diff to add omitzero support
fdf0bb41a44 Omit null metadata.creationTimestamp
79891eac8bb agnhost: bump version to 2.54
09912f35219 Make ToUnstructured match stdlib omitempty and anonymous behavior
49f765e2b3c Remove redundant Required validation for IngressRules
c78556fb4b9 agnhost pause: report signal, support termination message
a6549edd1a7 kubeadm: use named ports for coredns probes
0faeb5a0d09 golangci-lint: move into hack/tools/golangci-lint
5d9a2f30f28 golangci-lint: finish migration to v2
9bada79de10 DRA node test: fix useless gomega.Consistently
4adb58565cb chore: bump golangci-lint to v2
f6d0498017f Continue alias creation when __completion is used to enable completion
dceae3b3889 DRA e2e: avoid terminationGracePeriodSeconds
56e533f4a08 servicecidr: only patch status if necessary
7fedcc34e49 refactor default service cidr sync status logic
edda4b02d61 fixup! Introduce special handling for updates involving a single resource slice.
6d8b41fac66 Introduce special handling for updates involving a single resource slice.
2e98d87c561 api: Fix typo in word "immediately"
5441f5fdef7 jwt: add unit tests for using CEL with deeply nested claims
43ce37ed481 Address feedback
7e1cec680e5 e2e: Deduplicate cgroup verification
cc4c14d4cb2 Disable size check for xfs/ext3/ext4 filesystems before expansion
48054afd6ac Relax external signer path validation to allow relative paths
5712881cac1 Disable disk size checking when calling NeedsResize function
e500f94519c add missing space in string concatenation (kubeapiserver)
c5a2c69b943 add missing space in string concatenation (kubeadm)
43a0da5880e add missing space in string concatenation (kube-proxy)
66b8a8427cf Fix CEL equality bug for structs will nil field not marked as omitempty
1b9386aac37 Add comment explaining the metric sampling logic for plugin execution metrics
0a4ab936763 fix incorrect comments
4d5d48da706 Remove unused volume limit constants
3a5dda78afd e2e network: blue green deployments
ea644182714 Appease linters
43d6ea12e3f jwt: refactor CEL eval to drop unstructured and map[string]any
064074c07ac Add lazy reflective CEL object wrapper
903d6d4f030 Don't reinitialize test framework during each test case
a56378d9fcb Update UserNamespaceSupport feature gate name
3cadb6ff808 DRA test: update examples
c6f652d5fe0 Refactor pod failure policy defaults
68b1a950f9b kube-proxy should check global IPv6 enablement
2080bafa154 Add sunnylovestiramisu as Reviewer
d6b45bc98d9 [FG:InPlacePodVerticalScaling] clean code resize test
dddfeb4a0e4 Handle unsupported node expansion for RWX volumes
62ddcfba575 kube-proxy: conditionally skip e2e
8bb7b056378 dependencies: github.com/client9/misspell -> github.com/golangci/misspell
ad40bc88568 kubectl describe service: Add Traffic Distribution
28e7acf0f93 improve display format
f30c23a7831 kubectl: sort configmaps alphabetically to avoid random order
db960d10078 Fix openid discovery docs with external jwt signer.
1869f6f23a9 Fix typo in service account config test.
c7a870135a3 nftables: cleanup service chain checks
494b2b563f8 use testing.TempDir and delete helper function
efcceee903b reduce assignment
f42ee7a2d67 use slices package to reduce the codes
9cb3dfb5d3c kube-proxy: log errors during proxy boot
2d337f5151b Retool validator utils realType and unaliasType
835bb2ecc5c Change v8n context.Type and Parent on typedefs
6ea1db51a75 Disallow pointers as listmap keys
fc7f0173577 Handle typedef fields in optional validations
9d519c7c46e Fix immutable validation for structs with pointers
0b190b81748 Add test cases for immutable to verify pointers
855918f75c2 Add tests for optionalness of typedef fields
7a24c4ce5d9 chore: update github.com/google/cel-go dependency to v0.25.0
addaf680aed remove v1.31.0 api testdata
86a43f4b539 Add v1.33.0 API testdata
89156452aeb fix nil pointer panic on windows node
00908ce2d13 Wait for resource quota status to be populated
d5bf33e7d71 update-codegen.sh: automatically install protoc
8a2f367ec3e automatically install goimports when running update-codegen
1473aeaac4d add goimports to tools module
540ea5949f3 skip kubectl proxy env tests when the host is localhost/loopback and would not be proxied
1214dc223c7 kubelet: Use node addresses from informer
c0b2f341a72 clean up cloud provider code because cloud provider only supports empty or external and cloud is nil
187b43d5ada enable dep-approvers for staging go.mod/go.sum
f50ad91ed76 Create a single TypeDiscoverer for all inputs
08794974b79 track gopkg.in/yaml.v3 as an unwanted depdendency
aee4945252f alculquicondor stepping down from sig-scheduling approvers
58e5dfd45c4 attempt to re-introduce dep-approvers for go.mod/go.sum
74e84dbf5a3 Add more test cases to TestDescribeSecret test (#131422)
6eff9db0f10 chore: Add VeryShortWatchError typed error
92359cdc69d update godoc for and rename observedGeneration helpers
932cff5dd41 add more error details to the failing cgroup check
c3bb59d078a Fix etcd3 watcher flake
0d3d2733f60 Update go.opentelemetry.io/contrib/instrumentation/github.com/emicklei/go-restful/otelrestful to v0.44.0
a2281f97bb0 bump fsnotify v1.9.0
44d7132afbf Update hnslib version in Windows KubeProxy.
7c53a5aaa4d Remove feature label NodeOutOfServiceVolumeDetach
f74424bd7c1 etcd: better logging
24257f2d316 Remove deprecated scheduler cache metrics
269d3ae5147 Fix comment for default gRPC log level in DRA plugin
2ea68920776 Always check for Immutable selector in Deployment Replicaset Daemonset (#131017)
947a9f26fa3 Move pod resize e2e utilities out of e2e/framework
609e4a9ba04 Unhandled panic crash on rollout_history printer.PrintObj (#130503)
fa8e37f7805 Allow disabling caching for webhook authorizers when using `apiserver.config.k8s.io/v1{alpha1,beta1}.AuthorizationConfiguration` (#129237)
1db2d6a0184 Mark NodeExpansion finsihed without featuregate check
70ebe90b139 Also change final status by removing featuregate check
849924b6ba5 Increase delay in kuberuntime termination order test to prevent time rounding flake.
0e40ed642bc Check for newer fields when deciding expansion recovery feature status
4fa090bd812 Remove alculquicondor from test framework OWNERS
6a17858ff9b CHANGELOG: Update directory for v1.33.0 release
90de4b58943 Remove warning about resizing failed for unknown reason
41809284025 Update cri-tools to v1.33.0
f63702de0f9 scheduler: return UnschedulableAndUnresolvable when node capacity is insufficient
d10eb869276 fix: Fix non-constant format string in framework.Logf call
b9a6a257b7d add TODO for unifying .go-version
5c84ee07eee test/images: read .go-version instead of duplicating
722581f5f68 Expand etcd data test to n-3
c21f26895c2 Fix VAP test for v1.34
bfcee664500 Bump DefaultKubeBinaryVersion to 1.34
27815acee14 remove outdate comment
64b4c96e20f fix: use correct apiextensions v1 API instead of apiregistration v1
a53ea3357c2 Updates prober_total_total to BETA and updates the list of stable metrics
f844abfc6f9 Fix typo in ResourceEncodingConfig comment
ff108e72a52 DRA device taints: fix rare unit test flake
97dd6dc2846 Add warning message for attach
8672956f730 etcd: use Unix Domain socket for testserver
33f16a55ba2 etcd: fix 5 second delay during shutdown
ff2e6dddc8b DRA device taints: work around fake.ClientSet informer race
638abf03396 DRA device taints: more logging in test
40f2085d68a DRA device taint: clean up test initialization
091d09b4479 deflake e2e tests: CustomResourcePublishOpenAPI works for multiple CRDs of same group and version but different kinds
db1e107150d Job: Fix API comments for SuccessCriteriaMet
ac3274521be scheduler: remove duplicate nominatedNodeName clearing in preemption
373866eee99 Build etcd v3.6.0-rc.4 image
7fcc1bcf1d1 chore: move watch handler tests to handlers pkg
3fcb26f0179 reduce etcd install log noise
3e609ecf6e9 fix: Watcher deadlock from Stop not being called
c704025a0eb Fix error handling and csi json file removal interaction
1654aa619c2 deflake intergation test: TestEndpointHandlers
3d53bfec09f Typo fix: watchActcion
4e3026fdb81 pr fix
7d6f86594fc kubectl: sort secrets alphabetically to avoid random order
8f1326251c2 Improve Job API comment for the backoffLimit
9d5f78a990a Update OWNERS_ALIASES add aojea to sig-network-api-reviews
e8dbfc0b6ff add miss Shutdown call for selinux_warning controller
405b9e80221 Check expected emitted events with assert.Equal
5ebeb8defac don't only run events in nested lists consecutively
614b1e90170 Run all permutations of events in ResourceSliceTracker tests
29b499e2ba4 simplify applyEventPair
45b0ddff12c make input events a slice
3883e050fc1 Use shared test fixtures for ResourceSlice Tracker test cases
7f21df6ab14 resolved review comments
5928fc0e600 Add ContainerIter utility for ranging over pod containers
3b2cd123479 fix(kubelet): acquire imageRecordsLock when removing image
6d6abaab7d1 Simplify etcd3 watcher
b82fd6c2888 add e2e test for healthz/
8bc7e6c10e0 add etcd server overrides to etcd probe factory for healthz and readyz
b141ac6a235 adjust container_spec_memory_limit_bytes e2e to range: ppc64le is 44*1024 less
2aa39a0c77c Update the busybox test image to 1.37.0
f9c1876b45d Make proxy CleanupLeftovers methods quieter
b61ca041b45 Add some missing cleanup to "kube-proxy --cleanup"
c1ff9cf4e81 chore: Upgrade the mockery version to v2.53.3.
ffe235d2dd3 replace context.TODO with context.Background in tests
4bd0c024e9d add goleak to kubelet vendor via hack/update-vendor.sh
161b44d04ed add missing header in httpstream_test.go; whitespace in imports
79150d1ecf1 add unit tests to verify the fix
42d3716d727 fixed the formatting
268033a5116 Fixed go routine leak in kubelet tests
30f1bcadea4 Add a unit test for iptables.CleanupLeftovers, improve ipvs test
94530dad7b7 Move iptables/ipvs/ipset interface creation into CleanupLeftovers
975e653af44 RWX tests should create RWX volumes
5ad90c3b63a merge RunBenchmarkPerfScheduling and runBenchmarkPerfScheduling
780c0d67251 add license description in options.go
4f33b74a35c Use Go 1.24 os.Root instead of filepath-securejoin
5677f7ab0b1 Make Request#RequestURI honor configured context root
b206264ffba Shorten long directory names with e2e pod logs
2800c16c8b9 Remove FlowSchemas handling non-leases-backed leader election
16f4a5c4eac cleanup unneed code
88fbccd6982 Fix the allocatedResourceStatuses Field name mismatch in PVC status validation
302a8505833 Update coredns version to v1.12.1
d4fd41285b8 update the log message to reflect success and failed jobs
cc42846187b Fix for HNS local endpoint was being deleted instead of the remote endpoint.
551f3c7824d merge the integration tests into a single one
de98a71ff57 Update PodSecurityLevel used during Service CIDRs tests
58ff3129add update kubelet_authz.go to new test framework
c7d0ed5c488 add integration test for job failure event delay and remove the unit test
6747bf7a9cb Clean up leaked goroutines in cache unit tests
04d0715e663 scheduler-perf: add option to enable api-server initialization
16af0d79d87 update sig-autoscaling maintainers
653f48d8867 Certificate store: ensure data is written to disk
5a14fdbf7f3 e2e: Keep original error when exec in container fails
9c228e81d24 Increase kubectl cp command timeout to 30 seconds
310b395a04f [cloud-provider] respect the "exclude-from-external-load-balancers=false" label
ae08504ca62 Remove unneeded return values
2c94112a026 Disable thresholds for PreemptionBasic and PreemptionPVs tests
f7d8853213d Add dom4ha to SIG-Scheduling approvers
8e65a62b3fd Deduplicate MilliCPUToQuota function & constants
3067bbfe159 hack/ginkgo-e2e.sh: fix misplaced brackets
5e4600e46ba e2e service ip preservation test
f7e82d8059d clarify mutual exclusivity of service account annotation keys in godoc
4fa96391457 kubectl http proxy e2e: do not append os.Environ() redundantly
f7f4aa02baf kubectl e2e: debug appended environment variables
5aa61f84797 Test tooling: fix agnhost pause command
65b8fba34bb Mask Linux thermal interrupt info in /proc and /sys.
0ff1e3778f1 Remove general available feature-gate PodDisruptionConditions
fe14689f221 bump k8s.io/utils
1c3dc397ae1 make update
8af1629f7ae remove inaccurate hostNetwork doc comment
bad6c7e4cc5 Set LANGUAGE env variable in TestDiffProgram for consistent locale behavior
c005b85d4df Reduce locking duration on cache to fetch data from Cache
252d584cb73 Implement validation-gen lint for CI
1a694bfd328 Make validation-gen lint errors easier to read
8dc6806d26d Expose NodeInfo to PreFilter plugins and Framework
5413d0edfa4 chore: correct the comment on UnschedulablePlugins
8db5f061838 adding commits of the original PR
1b8bbcac44c Add integration test
1402a54917e Removed unused function UncompressLog.
88a3c000e5b Implement CSI e2e test for MutableCSINodeAllocatableCount
d868eeb0889 Migrate pkg/kubelet/status to contextual logging
7f263b057dd Tag api change instead of apimachinery on generated openapi. changes
4120ed1df05 chore: `make update` for doc changes
356e148045e fix: comment on preferred PodAntiAffinity
a2624f9c64b make update
21f7026c25c clean up CSIDriverRegistry
a68501da72b Add check to see if promote worked within the retry loop
53499d97eec prefer error over bool, prefer Should(gomega.Succeed())
d54ff7441e1 test: don't panic during an Eventually retry loop
cab6045a40f hack: remove verify-e2e-suites.sh
73afab1856c handle review comments
51fdd55e87e use sync map for the cache
3a5f8b4b99c Update OWNERS_ALIASES for sig scalability
547c005cb7f handle job complete update delayed event
410ada00220 Made the unsupportedError msg more readable
780fac5a37d chore(kubelet): migrate network to contextual logging
125b8d2809d Removed kubelet test duplicate line.
c1efa2e1618 delete test/e2e/common/storage/volumes.go
42943796244 e2e storage test: intree driver adds the support for nfs v3
6df869347bc remove outdate comment about pv controller
32999059054 Based on the issue #8304 add mfahlandt as ne Co Chair for Contributor Experience
9a60ea01f9f fix getPodMatches should call /runningpods endpoint
5da366e3efa Update pkg/quota/v1/evaluator/core/resource_claims.go
ce7d3ea00cc fix wrong api version in toExternalResourceClaimOrError
0f0f9d01c0d remove out-of-date comments about version
c2b455f55c6 remove unnecessary functions
44d31af29bf Add example in etcd override flag help text
3dc611e6666 fix container lifecycle e2e tests
4a4fb0a11ce Fix LC_CTYPE for kubemark start scripts
ea644981df4 Update pkg/controller/certificates/cleaner/cleaner.go
1e1e2dee909 Update pkg/controller/certificates/cleaner/cleaner.go
006ebbc33a8 Fix comment typos
4bf5f1a6b31 kubelet: add coverage for identical kubelet config and drop-in config content
eae133919f0 fix: killPodOptions support JSON serialization
55ba8f063b1 kube-scheduler: Fix a misleading error message in the VolumeRestrictions plugin
a52863827ba [kubectl] drain daemonSetFilter with other APIVersion
9f50740b7bc Simplify span handling
c64b6f80eb7 Trace across start handler invocations, nesting spans
6fd8954fe86 kube-controller-manager: also support context for record.NewBroadcaster
bea35b1f565 remove non-lease resource locks in tests.
ff74405bd39 kubelet: remove --register-schedulable flag
05be83b3848 tracing: set audit-id on incoming requests
eda71f9e958 cleaner.go should use time.Until instead of t.Sub(time.Now())
1354bb9e2ea Update log verbosity for node health and taint checks
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
We drop a patch that is now in the upstrem project, as well as the
new commits below:
Bumping distribution to version v3.0.0-63-g76fe6170, which comprises the following commits:
0e77b285 chore: labeler: add area/client mapping for internal/client/**
2f1a51dc client: add Accept headers to Exists() HEAD
ad5d9994 build(deps): bump github/codeql-action from 4.30.7 to 4.30.8
6d764586 build(deps): bump github/codeql-action from 3.26.5 to 4.30.7
11519e6d build(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3
99c47b61 build(deps): bump actions/labeler from 5 to 6
e1e5d051 build(deps): bump actions/setup-go from 5 to 6
f5512709 build(deps): bump actions/upload-pages-artifact from 3 to 4
0fb77d6a Fix broken link to Docker Hub fair use policy
251bf1b9 build(deps): bump actions/checkout from 4 to 5
6e59b824 Fixes #4683 - uses X/Y instead of Gx/Gy for thumbprint of ecdsa keys
b559f27a Switch to UUIDv7
b39441b1 Fix markdown syntax for OTEL traces link in docs
53dde7fc fix: set OTEL traces to disabled by default
68cd681b docs: Add note about `OTEL_TRACES_EXPORTER`
1fc84617 fix tests
02b1f6e3 fix(registry/handlers/app): redis CAs
bb278c2b fix: fixed data race in TestSchedule test
b09be3d6 build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2
6970080b s3-aws: fix build for 386
e629f886 docs: Add OpenTelemetry links to quickstart docs (#4270)
fea36383 refactor: replace map iteration with maps.Copy/Clone
369663e4 Fix S3 driver loglevel param
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Along with the listed updates, we also update the cli, adjust our build
path (it is now under moby), refresh patches and explicitly export
trimpath to avoid QA warnings.
Bumping moby to version docker-v29.0.0-rc.1-54-gd1a720cb15, which comprises the following commits:
5fa3c65682 client: Client.PluginList: add options-struct
aa36c44ef9 api/types/volume: move `UpdateOptions` to `client.VolumeUpdateOptions`
709336a2c3 api/types/network: EndpointSettings: make MacAddress "operational data"
e84bbc09b1 integration/container: fix daemon min API version
1caf3dd3b2 integration-cli: TestDockerCLIBuildSuite/TestBuildEmitsEvents: reduce logs
acfe4e8613 gha: add support for docker-v* tags
b87ed4512a integration/container: fix test using wrong daemon
ecd7551310 daemon/server/router/container: fix back-filling of top-level network fields
865cfe9a7f client: VolumesPrune: rewrite to use option structs and result
b11d9d410f client: NetworksPrune: rewrite to use option structs and result
0672a0f999 client: ImagesPrune: rewrite to use option structs and result
91323b7a35 client: ContainersPrune: rewrite to use option structs and result
d9a03a374f daemon: consolidate "log-level" and "log-format" options and flags
4e6c955e78 daemon/command: configureDaemonLogs: don't panic
06ff7d9cd4 daemon/config: add validateDaemonLogConfig function
c73fe6d26e daemon/config: move daemon log-config to a separate struct
a6cf5e19e8 daemon/command: remove placeholder
c584855329 daemon/command: configureProxyEnv: accept smaller struct
0a2ab376ff daemon/config: slight cleanup of Config struct
69702bd821 fix minor linting issues
3b075a79b9 api: remove image inspect `Parent`, `DockerVersion` from swagger docs
d62a521c7d daemon: initialize volumes if nil on decode
a65293c036 libnetwork/osl/kernel: ApplyOSTweaks: don't log errors if not found
adb4269928 api/types/image: remove deprecated Summary.VirtualSize field
2537eae6f3 api/types/container: remove support for config mac address
e77f116c9c integration: remove some version-gates for API < v1.44
2c59be7011 daemon: raise default minimum API version to v1.44
47fe719b33 api/types/build: remove deprecated BuildCache.Parent field
36f1c830bb add back replace rules and re-vendor
45caa74e3b api/types/sytem: remove deprecated DiskUsage.BuilderSize
a5d9619093 api/docs: remove BuildCache.Parent field for API v1.42 and up
e1722eb8d8 daemon/command: disable c8d snapshotter when userns remapping enabled
1aa73144f2 update to go1.25.3
5e9e261107 vendor: github.com/moby/moby/client v0.1.0-beta.2
01a19e9d95 vendor: github.com/moby/moby/api v1.52.0-beta.2
b1e57881c3 gha/labeler: disable sync-labels to preserve human-added labels
3848b16bca Removed all occurrences of wrapError in libcontainerd/remote
28018a51d8 update to go1.25.2
39cf847787 api: regenerate with go-swagger v0.33.1
b4c3b29245 Dockerfile: update to go-swagger v0.33.1 (for go1.25)
bbdd24d145 api/templates: align with go-swagger v1.32.3
b3f74e85aa Dockerfile: bump gotest.tools/gotestsum v1.13.0
ac3960a44c api/types/container: omit `Config.OnBuild` when empty
0ee0283c9d gha/labeler: Some more file-based rules
15289ad2dc client: Filters: add Clone method
a6206f2da9 dockerd-rootless: default MTU 65520 for slirp4netns
7e63d2a81b dockerd-rootless.sh: if no slirp4netns, try pasta
cfdb9068f0 client: ImagePullResponse: use sync.OnceValue
3c44bd67b2 client: ImagePullResponse: don't panic without reader
4210e4ad16 daemon/internal/netiputil: make "MaybeXXX" functions a function, not var
4c6e571d38 api/pkg/stdcopy: move stdWriter to daemon/internal
8cf0529a8c api/types/swarm: add documentation to clarify virtual IP address type
c2812dc285 api: fix swarm network field from addr to prefix
9912ccd7b3 Clean up bridge device on network create error
e6bac8983b introduce ImagePullResponse to manage JSONMessage stream decoding
7652f38c28 client: remove API-version compatibility for API < v1.44
7ea066c8d1 client: add Filters type
778e5bfad3 api/types/filters: move to daemon/internal
96b29f5a1f client: remove support for negotiating API version < v1.44 (docker 25.0)
ef5feb4992 vendor: golang.org/x/net v0.45.0
3f75e2116f vendor: golang.org/x mod v0.28, net v0.44, text v0.29, crypto v0.42, tools v0.37
6de0417884 vendor: golang.org/x/sync v0.17.0
4bc628581d vendor: golang.org/x/sys v0.36.0
9169ed2873 client: touch-up some godoc
04318e0d86 client: update some tests using obsolete API versions
ca9c5c6f7b vendor: github.com/moby/swarmkit/v2 v2.1.1
1b1608f2cd hack: add patch to buildkit tests
3c418bea4e vendor: update buildkit to v0.25.1
0aed907a86 update to go1.24.8
0cc04d0c5c Network restore, don't update config to match state
b1e20b6a3a api/types/system: remove deprecated Commit.Expected field
1a7d7cc015 builder: use proper percentage calculations for default gc policy
dbcbe87d52 ci: fix cache for go modules
f8d3c4e4a7 api/types/image: InspectResponse: remove deprecated Parent, DockerVersion
1a81903854 api/types/image: InspectResponse: remove deprecated fields
a8dd9c5025 daemon/pkg/plugin: stop propagating Plugin.Config.DockerVersion field
1d3687aeee ci: update gha cache attributes
a99b7947e1 daemon: stop propagating Image.DockerVersion field
f6e1bf2808 Rework Go mod tidy/vendor checks
45a728a13b image inspect: fix legacy fields for API < v1.52 response
fdd61821da use consistent alias for docker image spec
c4fda95bea api/types/plugin: deprecate Config.DockerVersion field
a9a1ac3c45 Dockerfile: update compose to v2.40.0
94ab6a9c5e Dockerfile: update buildx to v0.29.1
b9ac2cea0c Dockerfile: update cli to v28.5.0
222a3fe94e integration-cli: remove deprecated buildImage utility
bd8a99b400 api/types/image: InspectResponse: deprecate Parent, DockerVersion
288b9f033b integration-cli: remove deprecated buildImageSuccessfully utility
15bef6ff1a daemon/server: move GetImageOpts, ImageInspectOpts to imagebackend
95e77d6861 daemon/images: minor linting fixes
e204ba1dca daemon/internal/compat: add extra fields recursively, and don't replace
50269e6e39 api/types/swarm: remove `PortConfigProtocol`
ea76dbefeb api/types/swarm: deprecate PortConfigProtocol
c646091d57 api: move container port type to network package
038bfbfbd4 api: omit legacy fields from image inspect if not set
f289cb2d7c api: docs: sync v1.52 yaml
d6899ca5a5 api/types/registry: use netip types as appropriate
fd4329a620 api/types/container: use netip types as appropriate
d5c838dc5e internal: move sliceutil from daemon/internal
a90adb6dc1 api/types/network: use netip types as appropriate
ef31514a9f api/t/network: move IPAM validation to daemon
4d6a2be79d api/t/network: validate EndpointIPAMConfig in daemon
2da472b1a5 api/types/system: use netip types where appropriate
cc082add87 api/types/swarm: use netip types as appropriate
46ab36ae46 daemon/internal: move netiputil from libnetwork
470f5b50a5 internal/sliceutil: map nil to nil
df506c107e negociate content-type used by /events API
0ad35e3ef0 Add existence check for go.mod and go.sum files
cb3abacc52 api/types/container: add network port and port range types
c46704a80f client/build_prune: Wrap result in a struct
a35b3cd149 client/build_cancel: Add options struct
3f3bbe4430 vendor: github.com/moby/buildkit v0.25.0
9a32a7e0d1 daemon, client: remove version-gate for daemon-side AutoRemove
af5988238a client: reduce uses of obsolete API versions in tests
eafca64a6b daemon/server: implement image-inspect with "compat" package
51cbd2ed16 api: swagger: remove VirtualSize fields for API > v1.43
a7edbe8e5f api: remove support for `KernelMemoryTCP`
fb2f8115c8 api: deprecate `KernelMemoryTCP` support
eff4f064a3 daemon/libnetwork/internal/kvstore: remove unused ErrBackendNotSupported
1697aecbd5 daemon/libnetwork/internal/kvstore: remove unused BOLTDB and Backend type
94bcf89412 Eliminate warning about endpoint count store delete
08d014cac8 api/docs: remove email field from example auth
344ab458a1 api/types/registry: remove deprecated AuthConfig.Email field
3241d46525 client: Client.doRequest: adjust error matching for TLS1.3 handshake
b8fbd0539e vendor: github.com/deckarep/golang-set/v2 v2.8.0
178d697484 integration-cli: adjust TestHTTPSInfoRogueCert for TLS1.3 handshake
efa077848f api/types/storage: define generic `Storage` type for container inspect
77bf85647c contrib: add docker_client SELinux policy module to access socket in container
b48fcf6cdb client/checkpoint_list: Wrap result in a struct
646e068cf1 api/checkpoint: Don't return null if no checkpoints
38fb0dd10c Add build tag "no_libnftables"
062479f95c vendor: github.com/hashicorp/go-memdb v1.3.5
3912ffacd6 integration/nw: TestEmptyPortBindingsBC use context
e80e2908ba dockerversion: use t.Context() in tests
aca0adfb97 daemon: use t.Context() in tests
8905c3052b daemon/libnetwork: use t.Context() in tests
01f9186d6d daemon/logger: use t.Context() in tests
c1c9087404 daemon/containerd: use t.Context() in tests
544f8f53ed daemon/builder: use t.Context() in tests
415274d62a vendor: github.com/opencontainers/cgroups v0.0.5
73ed41ef79 vendor: github.com/coreos/go-systemd/v22 v22.6.0
0f393630f8 vendor: opencontainers/runtime-tools v0.9.1-0.20250523060157-0ea5ed0382a2
6db6de2c20 Use libnftables in dynamically linked binary
e8d3609031 hack: use custom ref for buildkit tests
21d2d55500 vendor: update buildkit to v0.25.0-rc1
de5e64b3bd Add option WithSetNsHandles for testutil SetupTestOSContextEx
0fb46d08ad api: docs: remove deprecated BridgeNfIptables, BridgeNfIp6tables
362d4d9538 testutil:SetupTestOSContext - don't leak namespaces, netlink handles
a32a53ae01 daemon/containerd: pass custom metaHeaders to resolver
2223b7f582 daemon/server/imagebackend: add PushOptions struct
9d53093db6 daemon/server/imagebackend: add PullOptions struct
cbafff64e4 project: mark 23.0 branch as unmaintained (EOL)
5d22d9bec9 integration/service: rename var to prevent shadowing
471f24bafc daemon/server/backend: CreateImageConfig: change "Pause" to "NoPause"
bad3dfe9cb client: ContainerCommitOptions: change "Pause" to "NoPause"
1135ab0283 Dockerfile: update xx to v1.7.0
f5847040cc client: Client.negotiateAPIVersionPing: trim v-prefix before handling
af3f971431 client: TestNegotiateAPIVersionAutomatic: gofumpt
a8cb35f01a client: TestPingHeadFallback: check method, path, and fix example response
87d1da50f0 test: migrate test api network get defaults and filter
d9cdfd2887 client: remove unused Client.HTTPClient() method
d4d93bf558 daemon/container: remove State.ExitCode() method
ee4b7a8374 daemon/container: remove NewState() constructor
d06f0d008d explicitly access Container.State.Health.Health
0df791cb72 explicitly access Container.State instead of through embedded struct
aa492314a1 ipams: Re-enable legacy remote plugins support
41a6ad5def client: remove deprecated ImageListOptions.ContainerCount
02c4bb6a0c daemon/config: More tests for DNS addresses
f7ed1b84d2 client: ImageList: don't discard reference filter on API < 1.25
d60b4ea278 client: fix version-gate for readonly-recursive mounts validation on service
0673d43663 client: remove "version" header for service create, update
9fc12daf80 client: remove version-gate for "--force" on "volume remove"
839c2709af client: WithMockClient: match version behavior of actual client
8f8a2db52c client: rename validateAPIVersion to validateServiceSpecForAPIVersion
0468dac252 client: Client.ContainerCreate: fix panic when passing a nil config
6d0551e13a api/types/network: CreateRequest: remove deprecated CheckDuplicate field
50ea842e17 client: separate exec methods to ExecAPIClient interface
94309db0aa daemon/server: Server.makeHTTPHandler: pass Route as argument
81506ad8b1 daemon/server/router: NewRoute: don't use un-keyed struct literal
82e5d3064a client: ImageBuildResponse: remove OSType field
5028ff1f40 integration-cli: remove startContainerGetOutput, runCommandWithOutput
2a867f0c4d daemon/server/backend: remove ExecInspect, ExecProcessConfig alias
ff21989215 api/types/container: move ExecInspect type to client
c1be6ef5de api/docs: remove KernelMemory option from old API versions
c5991341eb remove support for deprecated kernel memory limit
20d8342a4b move endpoint API version constraints to API server
b70c1a439d gha: add missing dependency to Windows workflows
18b289f9df daemon/server: fix requests not logged with --log-level=trace
839e46f97c client: remove support for API < v1.22 filter format
a83d91f427 API: /info: remove `SecurityOptions` re-formatting for API < 1.25
082b4e8d77 client: move ExecOptions to client
6a642300f0 client: move ExecStartOptions, ExecAttachOptions to client
c8c13fe058 API: /info: remove magic `<unknown>` values for API < 1.39
c600f62c25 api/docs: sync swagger and update changelog
6084882b98 client: tidy go.mod
2bb0443ae9 Release IPv6 address if unused due to sysctl setting
252659278e Configure addresses before adding them to DNS or /etc/hosts
18b8e369ae Split OS-specific code out of Sandbox.populateNetworkResources
a8b9eff902 Don't set up DNS in Network.createEndpoint
ddf10ee1cd Delay Endpoint config until the osSbox exists
b043980e6f daemon/config: remove deprecated CommonConfig.CorsHeaders
4c7deaf832 Windows containers: restore network name after reboot
9129094b98 Windows containers: report HNS network name in inspect
aa78f19066 ipvlan-l2: do not allocate a gateway address from IPAM
468e3521b0 macvlan: do not allocate a gateway address from IPAM
caae209d25 api/types/container: remove deprecated ExecOptions.Detach
19edf44896 daemon/config: remove deprecated Config.
fabe66322f builder/remotecontext: remove deprecated "Rel()" utility
cf243b64aa daemon: fix build after revendoring api module
c2c2b80e90 daemon: report IPAM status for Swarm networks
b092c8ca64 api/t/container: drop NetworkSettingsBase
fc1ff44bc2 api/t/container: drop DefaultNetworkSettings
d5d3716705 daemon/i/compat: disable HTML encoding
8efe6b0183 Add TestJoinError
73413ea693 bridge_linux_test.go: gofumpt
52c9cfd016 Use sbLeave to roll back on error from sbJoin
53390f85dd Put clearNetworkResources() inline in its only caller
916fa31ab5 Acquire Sandbox.joinLeaveMu for Endpoint force-Delete
a9db1e9a26 Endpoint.sbLeave: don't load ep from store
b192d06ec7 Remove network info from container when endpoint join fails
1b74b3e1ce api/types/events: Message: remove deprecated Status, ID, and From fields
5815eb82ee daemon/events: omit deprecated event fields on API >= v1.52
c4eb791dba daemon/events: remove tests for deprecated API fields
33a05ac344 daemon/internal: add "compat" package for legacy responses
3f86797d3f api,daemon: report IPAM status for network
ee8abb845d d/libnetwork: move uint128 to its own package
65ffac3dbf internal/iterutil: add Chain, Chain2 iterators
ee24728b1e go.mod: replace client
139b6464b5 api/docs: fix events example response
f8925bac6f daemon: Do not default to c8d image store on Windows
bdd0a2a970 gha: extract vm test to a separate workflow
8c8324b37f Dockerfile.windows: remove deprecated 7Zip4Powershell
9d2e74d43d gha: Add automatic PR labeling for modules
705f26010e client/image_inspect: Unexport ImageInspectOptions
67c8064bb3 client: remove ImageInspectWithAPIOpts function
5303799297 go.mod: re-add replace github.com/moby/moby/api
2f1015482f libnet/d/windows: ReleasePorts: use errors.Join
fc86411353 libnet/d/windows: inline releasePort
9efc1cc264 libnet/portmapper: rename, move PortMapper to portallocator
4b230a4909 internal/testutils: merge with internal/testutil
d3e45f8743 testutil: move back to internal
af677b61a5 libnet/portmapper: clean up windows port mapper
90f31c6c27 libnet/portmapper: remove dead field bridgeName
f6e5b3afc5 libnet/portmapper: drop unused NewWithPortAllocator
9e7de1b679 libnet/portmapper: remove unused field proxyPath
f6c59f9779 libnet/portmapper: merge mapper.go & mapper_windows.go
b48442db4c libnet/portmapper: remove dead DeleteForwardingTableEntry
32710d3e5e libnet/portmapper: remove dead AppendForwardingTableEntry
eb2e296711 daemon: GetContainerStats: use errdefs for error-type handling
97eceb266a errdefs: remove deprecated IsXXX utilities
2d73fed24e update AUTHORS
37de02378c Prepare release notes for v2.0.0-beta.0
de4ae66d08 Update client vendor to use tag
b5dde0234c add back replace
1499623a9d go.mod: update client to v0.1.0-beta.0
0525ae2aed api: image inspect: remove temporary backfill for Config fields
d98a8c59ab testutil/daemon: fail gracefully if DEST is unset
8995619b9d testutil/daemon: fix DOCKER_USERLANDPROXY env var
b5035def03 Prepare release notes for client/v0.1.0-beta.0
76964752d3 Update client api version to v1.52.0-beta
a1e3a109ee api/docs: sync v1.52 docs with latest
0fe1af95f3 api/docs: remove temporary "full" example for image config (v1.50, v1.51)
7bfbb6e8ca api/swagger: remove temporary "full" example for image config
2d1af4e4e4 api/types/build: move build options to client and backend
5232d82c1b daemon/server/backend: move build options to buildbackend
8b8a3cb14c api/types/image: move LoadResponse to client
a8afc2c6fb api/types/checkpoint: move checkpoint options to client
f1da80e8d3 contrib/check-config: check SCTP protocol option
d904f3b625 Prepare api/1.52.0-beta releases
4e30076e4d Add mailmap entry for Austin
e656f39952 api/t/network: generate more structs from Swagger
ea1c2530da api/t/network: generate Inspect, Summary structs
26e335b647 api/types/build: move `CachePruneOptions` to client mod
798abe8965 vendor: github.com/spf13/cobra v1.10.1
02a50be1f9 vendor: github.com/spf13/pflag v1.0.10
aaa9dd4e26 gha: skip "vm" checks if `ci/validate-only` label is set
ccf1363680 api/docs: update v1.52 docs with current swagger
c208f90796 api/templates: vendor structfield template
57ce548341 client: move container options together with their users
4d20b6fe56 api/types/container: move container options to client
c441b2ef19 api/types/image: make `InspectResponse.GraphDriver` optional
1a86389419 api/types/network: separate Summary from Inspect
f8bd170b2a daemon: validate args in network.New*Filter
ea1dfbda9e daemon: prune networks using network.Filter
f0d10ae733 d/network: filter networks individually
a4a90c2248 api: fix deprecation of "keep-storage" /build/prune query parameter
e46a991dc5 api: remove unused DefaultVersion, MinSupportedAPIVersion consts
30406d42e3 update to go1.24.7
e2e9f36c5f api/types/system: move `SecurityOpt` type and `DecodeSecurityOptions` to client
d47b0db4f9 vendor: update buildkit to v0.24.0
ca97d071b7 fix: client vendor with config struct changes
37d6a1909b libcontainerd/remote: wrapError: don't convert c8d errdefs error
36303969b9 libcontainerd/remote: container.NewTask: move vars to where used
f37094ad4f libnet/d/bridge: CreateEndpoint: use d.config directly
ae24edfc0d libnet/d/bridge: merge configure into newDriver
2436458227 libnet/d/bridge: Register: pass a Configuration struct
386a3a6bba libnet/config: mv config_{unsupported,windows}.go
18f2e61d08 libnet/config: rm config_freebsd.go
e099f1e409 daemon: Daemon.ContainerExecStart: fix typo in log field
6e512cc292 libnet/d/ipvlan: Register: remove unused config param
459f4f431d libnet/d/macvlan: Register: remove unused config param
43014a891b libnet/d/overlay: Register: remove unused config param
18efa5513d libnet: makeDriverConfig: drop support for label-based config
1470048e00 libnet: remove drivers_freebsd.go
4ea085187a libnet/d/bridge: export Configuration
7b75f355e5 daemon/srv/r/ctr: handlePortBindingsBC: fix warning
fbad7b568d libcontainerd/remote: task.Exec: log warning on cleanup failure
e67b3b0b90 libcontainerd/remote: task.Exec: rename processID -> execID
003e17ff5a libcontainerd/remote: task.Exec: preserve parent context during cleanup
167b0e9ea6 libcontainerd/remote: task.Exec: make defer error-handling more explicit
55c929c97f libcontainerd/remote: rename var that shadowed import
023ae2e218 contrib: remove udev rules for hiding loopback devices
0ca7ac3258 daemon: backfill empty PBs slices for backward compat
4d2a293ff3 libnet/drvapi: make NetworkAllocate optional
cbd04b6f08 libnet/cnmallocator: use a list of local netdrivers
478d1fc8ba Bump go.mod minimum-go-version to 1.24
269960a4c6 integration-cli: TestConcurrentPush: refactor to improve failure logs
8031b077bc gha/arm64: Setup qemu
ce338dec81 integration/internal: Print Buildkit logs
27fca93b65 c8d/history: Fix non-native platforms
ad830a47af integration/internal: Handle Buildkit in GetImageIDFromBody
f66f555ad4 graphdriver/windows: Potential fix for access denied
ea73c88d12 libnet/cnmallocator: rm drivers_darwin.go
18b21a32a1 libnet/cnmallocator: rm drivers_unsupported.go
60fa39d559 hack: temporarily use custom buildkit ref for testing
5682f65cca hack/dind-systemd: collect firewalld logs
03df89b84a hack/dind-systemd: enable firewalld debug logs
77ce202515 vendor: update buildkit to v0.24.0-rc2
3c83038936 hack: use heredocs in generate-swagger-api.sh
854ec0a1ad d/libn/internal/addrset: add popcount methods
b7c597ec35 api/t/ctr: deprecate DefaultNetworkSettings
c9fdad2552 daemon: marshal legacy `registry.ServiceConfig` extra fields for compatability
d0de293513 testutil/daemon: remove unused FindContainerIP
80bb864fd6 api/t/ctr: deprecate NetworkSettingsBase
16dc39136c api/t/ctr: deprecate NetworkSettingsBase.Bridge
20b679b4a6 client: Extract clientConfig for opt applying
9ddf9d87e7 client: Remove newMockClient
7cd089edd9 client/volume_test: Use functional option to create mock client
72e11d78d7 client/task_test: Use functional option to create mock client
a1e304f76c client/system_test: Use functional option to create mock client
407af72993 client/swarm_test: Use functional option to create mock client
124bba478a client/service_test: Use functional option to create mock client
98434a5ea4 client/secret_test: Use functional option to create mock client
c99f2eaf34 client/request_test: Use functional option to create mock client
8581a15c25 client/plugin_test: Use functional option to create mock client
0b577c703a client/ping_test: Use functional option to create mock client
d401228b43 client/options_test: Use functional option to create mock client
643e94ebf5 client/node_test: Use functional option to create mock client
5a82c3397e client/network_test: Use functional option to create mock client
be76beee8f client/image_test: Use functional option to create mock client
005a289703 client/distribution_test: Use functional option to create mock client
bc1d436aa9 client/container_test: Use functional option to create mock client
c70aac772e client/config_test: Use functional option to create mock client
6452807fb4 client/client_test: Use functional option to create mock client
a3d073e160 client/checkpoint_test: Use functional option to create mock client
17396e5d94 client: Add WithMockClient opt
09ecd74cf3 CI: add oraclelinux-8 for running tests with cgroup v1
1570ca934d Dockerfile: install fuse-overlayfs
e15c51a03d Makefile: propagate DOCKER_IGNORE_BR_NETFILTER_ERROR
ed78637b9a nftables: iterate over rules
9dc0c094e6 cmd/docker-proxy: set O_NONBLOCK unconditionally
12897011fa vendor: github.com/ishidawataru/sctp v0.0.0-20250829011129-4b890084db30
785ae9a0f9 Rework the interface to libnet/internal/nftables
cf913f5b0a d/cluster: use lockedManagerAction in more places
4b866fdcef d/cluster: add context param to lockedManagerAction
8839f53175 d/libnet: TestUserChain: fix error matching for nonexistent chains
fbde2bcb9a nftabler,nftablesdoc: stringify numerical dstnat prio
a4949b669e iptablesdoc: remove -n from iptables -L invocations
fc045ad139 libnet/pmapi: remove firewaller arg from Map/UnmapPorts
9b1c4ad3b1 libnet/pm/routed: don't set up firewall rules directly
9d9b05446c libnet/pm/nat: move back fw / proxy steps into the bridge driver
268e636b2b libnet/pmapi: let portmappers specify NAT/fwding rules
c6717f4387 libnetwork: provide endpoint name for IPAM drivers
5349095cd1 vendor: github.com/docker/go-events 605354379745 (main)
229a29649f vendor: github.com/moby/buildkit v0.24.0-rc1
071e6472db Unmap IPv4 addresses loaded from store
b721c4f4a8 daemon: minor touchups for backend system info response marshal
60c6e57b82 hack/make/test-integration: disable firewalld integration
1b4fcb8da7 api/types/network: move `CreateOptions` type to client module
b0b7260c77 ImageCache.restoreCachedImage: rename var that shadowed import
1e249cc309 api/types/network: move connect/disconnect options types to client module
3003c5fe45 d/libnet: fix CreateOptionIPAM capitalization
853aed171b api/types/image: move image option types to client
33066cddb1 api/types/swarm: move `SecretListOptions` type to client
33cdcd62f5 daemon: Daemon.getInspectData: also set Config
fae54e03af api/types/container: merge InspectResponse and ContainerJSONBase
c9a0c93b04 d/libnet: remove unused arg from CreateOptionIpam
b85c91f1b8 fix vendor
44972d7427 daemon: Daemon.getInspectData: inline struct-literals
94d0b10503 api/types/swarm: move `ServiceInspectOptions` type to client
a2291e5eac api/types/swarm: move `ServiceListOptions` type to client
3b1e16594b api/types/swarm: move `ServiceUpdateOptions` type to client
bb4125e89f api/types/swarm: move `ServiceCreateOptions` type to client
4dcc7af116 api/types/swarm: move `UpdateFlags` type to client
ad0fa5a872 api/types/swarm: move `TaskListOptions` type to client
2718f953f0 api/types/swarm: move `NodeRemoveOptions` to client
7d2b87e95f api/types/swarm: move `NodeListOptions` to client mod
b1260cd493 api/types/swarm: move `ConfigListOptions` to client
bdce1608c8 api: move authconfig package from types/registry to pkg
ff0e644c88 daemon/cluster: use authconfig package for decoding
9f1d8be252 docs/contributing: minor fixes
dbe19a506e fluentd logger: add read timeout configuration.
28ba0fcaae vendor: github.com/fluent/fluent-logger-golang v1.10.1
3bcaf1c4da vendor: github.com/tinylib/msgp v1.3.0
27b609b401 vendor: github.com/philhofer/fwd v1.2.0
1d6c7663c4 d/libnet/i/nftables: move golden files into subdir
28afa75c39 d/libnet: TestIptabler: move golden files into subdir
ce4a331287 d/libnet: TestNftabler: move golden files into subdir
c5e75cc485 daemon/containerd: remove convertError utility
6fbea5f5c1 image delete: inline some variables, and touch-up TODOs
7f8ce05f6e client: check for Digested reference instead of Canonical
eed354379c api: docs: update v1.52 swagger with latest changes
0de3d2ec51 Dockerfile: update rootlesskit to v2.3.5
70d096313f vendor: github.com/rootless-containers/rootlesskit/v2 v2.3.5
fe8516cf4b client: refactor `InspectOptions` to `NetworkInspectOptions`
5eaed0366c api/types/network: move `InspectOptions` to client mod
6084c6ae78 client: refactor `ListOptions` to `NetworkListOptions`
d6aa6ae9bd api/types/network: move `ListOptions` to client
d867f9f0f1 api/docs: update description for AuthConfig.Email field
6cfff7e880 api/types/registry: update deprecation comment for AuthConfig.Email
7aa50424e3 daemon: decouple daemon backend from client volume list options
9fc6a1e437 api/types/volume: refactor volume options to prune report
ee22a62dd5 client: refactor `ListOptions` to `VolumeListOptions`
c48585f104 api/types/volume: move `ListOptions` to client mod
56626a1222 api/types/system: move `DiskUsageOptions` to client mod
4665aa11ce client: refactor `SearchOptions` to `ImageSearchOptions`
40025bdf43 api/types/registry: move `SearchOptions` to client
e8d0aba254 vendor: golang.org/x/sync v0.16.0
60125b888c contrib: update dockerfiles to debian 13 "trixie"
39d4dbea9c Dockerfile: update debian frozen image to trixie-slim
15f92925f0 vendor: go.etcd.io/bbolt v1.4.3
eb9774cbf9 client: rename `ListOptions` type to `EventsListOptions`
d73dd4990c api/types/events: move `ListOptions` type to client
db72cc28c7 Rename test helper function input parameters to not shadow client package
f07d359043 client: rename `ResizeOptions` type to `ContainerResizeOptions`
882fd68b1b api/types/container: move `ResizeOptions` type to client
14262696d7 libnet/pa: OSAllocator: retry allocations
201968cc03 libnet/pa: OSAllocator: listen after bind
86ae7a56d2 daemon: Fix container restore with automatic driver selection
555e3939c9 daemon: Fix forceful switch to containerd image store
47bdbf5a4b client/pkg/jsonmessage: remove unused fields
c4e82bab70 api/types/volume: move `DiskUsage` type internal to daemon backend
0d61b55add api/types/image: move `DiskUsage` type internal to daemon backend
566c44edfe api/types/container: move `DiskUsage` type internal to daemon backend
d588092be2 api/types/build: move internal to daemon backend
eac4c43aaa integration/system: remove TestEventsBackwardsCompatible
b0d9a90f45 integration/system: add TestEventsNonBlocking
000f5e8d10 daemon: Daemon.ContainerStats: small cleanups
f4ae01a38a daemon/server/router/system: getEvents: use event consts for filtering
6b52a16f14 integration/network/bridge: add "generated" header to markdown docs
48557f72f9 daemon/libnetwork: TestUserChain: rename golden files
ff8364a39f hack/test/unit: use empty default values
fbd3cdc007 fix vendor
da2b1a2930 Fix image prune events for containerd backend
b68ff62ab7 daemon/libnetwork/bitmap: add OnesCount method
be7a769b69 Dockerfile: disable CGO for building utilities
8de606beb1 Dockerfile: remove trailing slashes for GOBIN
aa80ad2572 Copy the daemon/internal/timestamp package to internal client package
812aa46d81 Move the api/types/time package to internal daemon package
033ec8be44 daemon/router/image: initialize default authConfig
f0c069ffc9 gha: Add conditional skip for jobs with 'ci/validate-only' label
8013d80c24 hack/test/unit: run in the right module when TESTDIRS is used
97587945ef .github/workflows: Add kind label validation to PR workflow
d2e0895b9b daemon: deprecate env vars set by legacy links
b13ea83488 api: bump github.com/google/go-cmp v0.7.0
56c48e8708 d/libn/bitmap: tidy up constants, branchy math
82ba7fef17 api/types/container: rename Port to PortMapping
48038347d7 Match device driver on name and ignore capabilities
2aba802ae6 daemon: don't strong-type filters
a2aa7be724 vendor: go.etcd.io/bbolt v1.4.2
1c34ff94bc client: consistently use defer for ensureReaderClosed
f6b63e6013 client.sendRequest: clean-up logic for error-handling
2a4f70309d client.doRequest: improve GoDoc to clarify behavior
d69fde4c60 client: Client.Ping: improve error handling and fallback
b2e6fd31cf Restore DOCKER_DRIVER environment variable for storage driver configuration.
80294ddb60 client: make checkResponseErr a regular function
423980614e daemon: use slices.Clone, maps.Collect in some places
6505e8d605 daemon/libnetwork/types: rename StaticRoute.GetCopy to Copy
1e11e64c9c daemon/libnetwork/types: remove TransportPort.Equal()
561e14ea3f daemon/libnetwork/types: remove TransportPort.GetCopy()
385297ee40 daemon/libnetwork/types: remove unused IsIPNetValid utility
7960f742a2 daemon/libnetwork: Endpoint.CopyTo: use maps/slices.Clone
a82a68a445 daemon/libnetwork: replace endpointJoinInfo.CopyTo with Copy()
2d5100749d daemon/libnetwork: replace EndpointInterface.CopyTo with Copy()
80452e5d4a daemon/libnetwork/types: PortBinding.Equal: use non-pointer receiver
7d5312ab56 daemon/libnetwork/types: rename PortBinding.GetCopy to Copy and non-pointer
e387dc977e daemon/libnetwork/types: cleanup GetIPNetCopy, GetIPNetCanonical
68a94ecbb5 daemon/libnetwork/types: remove GetIPCopy; use slices.Clone
115b801a3b daemon/libnetwork/types: remove GetMacCopy; use slices.Clone
cfad3ed6b9 daemon/libnetwork: replace IpamInfo.CopyTo with IpamInfo.Copy()
2f74f245b6 daemon/libnetwork: replace IpamConf.CopyTo with IpamConf.Copy()
796a4ce952 daemon/libnet/drv/bridge: stubPortMapper.UnmapPorts: fix slices.Delete
a4fbbc1570 Add context to restore and load containers
85b79f83f4 Fix hardlink handling in containerd snapshot remap
ead007f1f1 Use native snapshotter for integration tests and run
99181f56ce Fix symlink evaluation to a directory that may not exist
4816383c0b Add environment variable to define the threshold
185ae7ec2c docs: api: Tweak type of ForceUpdate to uin64
c8173c5c1f api: swagger: Tweak type of ForceUpdate to uint64
0a89d98bad daemon/libnetwork/types: remove errdefs aliases
892ebd2f17 daemon/libnet/drivers/windows: small cleanup in error-handling
11094e27b0 api/types/network: modernize EndpointIPAMConfig.Copy, EndpointSettings.Copy
b48df69b02 daemon: Daemon.ContainerInspect: move vars closer to where used
582ee7ea57 daemon/builder/dockerfile: copyRunConfig: use slices/maps.Clone
0ded8645b6 Fix custom runtimes handling on Windows
aa6838ae54 vendor: go.uber.org/zap v1.27.0
daf843b72f vendor: go.uber.org/multierr v1.11.0
aa85a44139 vendor: github.com/google/btree v1.1.3
fe32e4a999 vendor: github.com/golang/groupcache v0.0.0-20241129210726-2c02b8208cf8
76fc74317a vendor: github.com/golang/gddo v0.0.0-20190904175337-72a348e765d2
632fb0c89a Update graphdriver check logic to account for disabling of snapshotter
b41babafaa Fix windows test graphdriver setting
8700bca2bf Update migration test to use graphdriver env
00463b9216 Fix containerd image count
7f87cf9d8a Check for snapshotter plugin availability
632de98f75 Enable containerd snapshotters by default
9f5f4f5a42 Add containerd migration to daemon startup
2fff6b442e check-config.sh: report IP forwarding sysctl state
f71e86eed5 rootless: enable IP forwarding
f802d8a08e When cleaning iptables rules, warn on filter-FORWARD DROP
67ffa47090 nftables: don't enable IP forwarding
7dfeee8460 Drop FirewallCleanerSetter interface
200a75b34a Return concrete types from NewNftabler/NewIptabler
050fbbccca chore: use errors.Join instead of github.com/hashicorp/go-multierror
96f8c6395e chore: enable use-any rule from revive
c6be4ad999 libnet/pa: don't set SO_REUSEADDR on UDP sockets
3862a0875c check for net.ErrClosed instead of "use of closed network connection"
9cae3fb167 docs/contributing: remove GIT_BRANCH image tag references
04d95003fd Stabilize TestSaveAndLoadPlatform integration test.
1f323d5035 client: README: add badges
662154a940 api: README: add badges
b4e353c02b README: add license and OpenSSF badge
df3aea43aa remove references to "vendor.mod"
98790830eb Deprecate api/types/strslice.StrSlice and remove its use
b25b421f97 update to go1.24.6
677c2a19d9 vendor: github.com/docker/go-connections v0.6.0
50789e2bab testutil/fakestorage: inline go code and remove contrib/httpserver
d49a354cb2 testutil/fakestorage: use local paths, fix port-mapping and optimize
8be1b2372a Dockerfile: update containerd binary to v1.7.28
b9b52d59b8 download-frozen-image-v2: Use curl -L
359a881cea download-frozen-image-v2: handle 307 responses without decimal
12c6345d3a libn/d/overlay: don't deref nil PeerRecord on error
dcaf8893a0 windows: do not forgot IPAM configuration when re-creating networks
0ad765c67d add back replace and vendor, tidy
f5f984eec6 Dockerfile: update runc binary to v1.3.0
234349d173 api/docs: sync v1.52 swagger with current version
833dc69ad9 docs: improve the description of the `outputs` parameter for `/build` endpoint
c145229828 update some fixtures in tests
90c3d29bfb go.mod: tidy
78ccee32b3 update various "doc" links in code
d82f50557e Bump api version in client and main module to v1.52.0-alpha.1
a0a7d9a3d7 Add release notes for client/v0.1.0-alpha.0
32ec26be6c Update client and main module api version to latest alpha tag
e30b8e3393 update golangci-lint settings
57256a9b62 fix error-capitalization
c13266d2c0 api/types: move plugin types to api/types/plugin
c17d43ae67 api/types: move ErrorResponse to common/ErrorResponse
15f78b752c daemon: make buildSandboxOptions, buildSandboxPlatformOptions more atomic
77c2e3279d daemon/libnetwork: Sandbox.EnableService/DisableService slight cleanup
bfce6556c4 client: use stdlib errors
3fe93532e4 client: tidy go.mod
3b14c5488f go.mod: github.com/containerd/containerd/v2 v2.1.4
259eb259bc go.mod: dario.cat/mergo v1.0.2
d8b622b315 go.mod: github.com/docker/go-events v0.0.0-20250114142523-c867878c5e32
8e63b55146 go.mod: github.com/fernet/fernet-go v0.0.0-20240119011108-303da6aec611
044234f847 api/docs: add v1.52 swagger
59e8fe8479 Prepare release notes for v1.52.0
dfac16c297 hack: Update cosmetic occurences of the old package name
83267a0fda go.mod: github.com/docker/docker v28.3.3
5b3e1a6425 go.mod: tidy
0ae3cb000e validate/pkgimports: Fix package name
22bd59010e hack: Fix dockerversion not being set correctly
79148460b0 hack/make.ps1: Replace old package name with moby/v2
2dcd8b8def golangci: Replace old package name with moby/v2
cad3a5775b docs: fix URI fragment by changing it to the existing subheading
778d8e3a26 libnet/d/bridge: handleFirewalldReloadNw: fix deadlock
519adb26c3 libnet/d/bridge: driver: un-embed mutex
752a3b302c api/pkg/stdcopy: add example
26cf610e6e api/pkg/stdcopy: improve docs
c010c84ade api/pkg/stdcopy: don't use iota for consts
195a6bbb1e client: touch-up godoc
e7c784c270 Dockerfile: add GO_SWAGGER_VERSION build-arg
908895b9c3 api: update "interface{}" to "any"
51bbc37f64 api/types/strslice: use slices.Equal
dab42db691 contrib: remove editorconfig
5fbbf040aa contrib: remove mac-install-bundle.sh
5a40d4ed9f contrib: remove syntax (Dockerfile syntax) files
62545ddf90 daemon/internal/image: remove image-spec markdown
4cfc260a5f TESTING.md fix links to gotest.tools, and some touch-ups
1205a15db1 libnetwork/types: define RouteType type
6aab881534 libnetwork/types: make Protocol consts strong-typed
ec5dbaf233 libnetwork/types: define IPFamily options using syscall.AF_XXX consts
95eeb0b3b0 libnetwork/types: define IPFamily type for IP-family consts
ee560a3b23 api/types: fix Plugin.Config.Interface.Types def'n
2783f80ecf api/types: generate with latest go-swagger
5365f08ae2 daemon/config: make DNSConfig.DNS a netip.Addr
a43198845b daemon/pkg/registry: un-export ResolveAuthConfig
5fbf680f5d daemon/pkg/registry: move newIndexInfo to search
6a7f0008a3 daemon/pkg/registry: move searchRepositories to where it's used
17d0ac56f3 daemon/pkg/registry: remove session; make searchRepositories a func
0c73c459b4 daemon/pkg/registry: un-export GetAuthConfigKey
eda6a499e3 router/distribution: fetchManifest; detach from distributionRouter
aac2623115 integration/container: TestCheckpoint: inline containerExec util
03991f4846 builder-next: puller.Snapshot: cleanup handling of v1 images
0156a42200 daemon/libnetwork/resolvconf: remove unused code
bbec7a5150 migrated test container API rename to docker/cli
1e499bae79 daemon: consolidate platform-specific inspectExecProcessConfig
49aa38e9e7 update links to swarmkit v2 docs
c98e5cb60b update github links to moby/moby
cf15d5bbc6 remove obsolete //go:build tags
02b3f1cd99 integration: remove stray "distribution" directory
297ea75204 check_config: add nftables modules to optional features
83357620e2 Update unit test script for windows
58c95cde9b Replace uses of code which requires 1.24+
900a0516de Update hack/test/unit for go module
1d571e619d Rename build package to moby v2 module
65867642d3 Remove go module workarounds
f74e5d48b3 Create github.com/moby/moby/v2 module
a954a0f4a2 Remove profiles
53bd828853 Remove libnetwork
e55d294ea7 api/types/registry: add TODO/note about empty authConfigs
8b68b977b1 Revert "api/types/registry: EncodeAuthConfig: use empty string for zero value"
5bbf3af980 daemon: fix linting S1016 (staticcheck) false positive
d58dc493fe replace direct uses of nat types for api/types/container aliases
494677f93f api/types/container: add aliases for go-connections/nat types
f3ba0b2dc2 client/pkg/jsonmessage: remove Stream interface
19edf5c53c client/pkg/jsonmessage: remove DisplayJSONMessagesToStream
fdaccdb233 pkg/jsonmessage: stop printing deprecated progressDetail, errorDetail
94ac102e4b api: remove deprecated NoBaseImageSpecifier
0d8ca8eefe Move pkg/jsonmessage to client/pkg/jsonmessage
d00ecdc479 Move pkg/streamformatter to api/pkg/streamformatter
66862e14d1 Move pkg/progress to api/pkg/progress
1da417980c Move api/stdcopy to api/pkg/stdcopy
ebef4a44fd Split streamformatter from jsonmessage
5a144c40e2 pkg/streamformatter: reduce jsonmessage.JSONMessage dependency
f4127d76c5 pkg/jsonmessage: move JSONProgress to api/types/jsonstream
0515e1c991 pkg/jsonmessage: move JSONError to api/types/jsonstream
9a52e474a3 pkg/jsonmessage: suppress unhandled errors
02fcde0c18 Add separate const for daemon httputils to avoid jsonmessage import
e257027903 pkg/jsonmessage: remove github.com/morikuni/aec dependency
d7082848a6 tidy vendor.mod
6c7e2909c2 api/types/filters: remove deprecated ToParamWithVersion
5535e81a79 pkg/system: move to daemon/internal
d94171bfaa pkg/system: make XattrError linux-only
aa9de914ca pkg/system: remove unused ErrNotSupportedPlatform
28b822d5b3 pkg/system: remove Lgetxattr, Lsetxattr stubs for non-Linux
450ac30e4a pkg/system: LUtimesNano: remove stub for non-Linux
03f44e6d14 pkg/system: MkdirAllWithACL: remove stubs and unused os.FileMode arg
6f9e099fd3 pkg/system: remove deprecated IsAbs
53a3085256 pkg/system: remove deprecated EscapeArgs
1313b8caff pkg/fileutils: move ReadSymlinkedDirectory to daemon
ae0a3d6918 pkg/fileutils: move ReadSymlinkedDirectory internal to daemon
bae46854c5 pkg/fileutils: remove unused CopyFile utility
46854ca5ab daemon/pkg/registry: remove copy of rootless.RunningWithRootlessKit
f1c65c1dd6 daemon/pkg/registry: Service.Auth: remove unused statusMessage return
f797ced96a daemon/pkg/registry: remove unused ParseRepositoryInfo, RepositoryInfo
e30d541da0 daemon/pkg/registry: remove unused ReadCertsDirectory
d80e16bb18 daemon/pkg/registry: remove unused ParseSearchIndexInfo
4c1ab68c6c daemon/builder/remotecontext: remove detection of system.XattrError
1dc53e8ec7 Update client go.mod
03d7f47f31 Update api go.mod
5bbb7182e7 Move logdriver to internal under daemon/logger
d7cfe97984 Update logdriver to remove proto definitions
f866621303 contrib/check-config: fix kernel version range check
df8d45c7c9 contrib/check-config: fix MEMCG_SWAP
ee24dcec3d Move swarm runtime plugin storage type to internal
86190e7366 Move swarm runtime plugin spec to swarm types
d761d9d358 pkg/rootless: move to daemon/internal
17959aff2c remove pkg/stdcopy as it has moved to the api module
c055c3e098 remove pkg/stringid as it has moved to the client module
76e2ca1d41 pkg/stack: move to daemon/internal
f78d595c96 runconfig: move to daemon/internal/runconfig
75bc4c5292 daemon/server/router/container: request sysInfo from daemon / backend
02867f9473 runconfig: rewrite ContainerDecoder to DecodeCreateRequest
5e567a3856 daemon/server/httputils: remove ContainerDecoder interface
ec3e83a7b5 api/types/container: move StateStatus, NewStateStatus internal again
667cb4bec8 fix vendor
26fda349b8 runconfig: remove exported errors
969b293778 iptables: remove SCTP checksum rule
e6298db297 cli/ is not in moby repo (anymore)
83510a26b3 api/types: move backend types to daemon/server
be27300c6e daemon/server/router/checkpoint: remove unused httputils.ContainerDecoder
b448dc5575 daemon/server/router/container: postCommit: only decode Config
6b4dfb0135 integration-cli: migrate TestPostContainersCreateShmSizeXXX to integration
617326a40c testutil, integration-cli: fix minor linting issues
da92ea2837 integration-cli/daemon: rewrite CheckActiveContainerCount with client
6adbeff449 integration-cli: remove parseEventTime utility
281a3f6c41 integration-cli: remove deprecaed inspectMountSourceField
6124c00827 integration-cli: buildImageSuccessfully: don't wrap buildImage
877529c62d integration-cli: remove deprecated inspectFieldWithError utility
68480dc11d integration-cli: remove createTmpFile utility
29a7d4039e integration-cli: remove deprecated inspectFieldMap utility
d100fd6a77 integration/system: remove "hdr" utility
97827e1a58 integration-cli: TestContainerAPIGetExport: fix minor linting issues
f73aba83dc client: TestContainerStats: fix minor linting issues
f67e6555bf api/types/container.StatsResponseReader: move to client
4dda328af8 client: rename files for system-commands to their canonical name
96a6884cb3 api/types: move DiskUsage types to api/types/system
82c069c857 api/types/system: move DiskUsage, DiskUsageOptions to api/types/backend
24aa86991c api/types: move PluginCreateOptions to client
b93ad81898 api/types: move plugin client options into client
44ae4cd2b7 api/types: move HijackedResponse into client
f491b70aa4 integration-cli: remove "requirement" package
ca1c5ee08f pkg/stringid: move to daemon, and provide copy in client
0abcdb7405 Update golangci for lazyregexp
6514282136 Move internal/testutils/networking to integration/internal/testutils/networking
14eb2770b9 Move internal/unshare to daemon/internal/unshare
28de87fb28 Move internal/unix_noeintr to daemon/internal/unix_noeintr
5b913b3ea0 Move internal/sliceutil to daemon/internal/sliceutil
20cc1a6203 Move internal/rootless to daemon/internal/rootless
8042010175 Move internal/platform to daemon/internal/platform
c3b0e0130a Move internal/otelutil to daemon/internal/otelutil
b62b542c2e Move internal/opts to daemon/internal/opts
713d7f5ed1 Move internal/nlwrap to daemon/libnetwork/nlwrap
fd21e3b935 Move internal/multierror to daemon/internal/multierror
baea1c5092 Move internal/ioutils to daemon/internal/ioutils
50743e3f38 Move internal/containerfs to daemon/internal/containerfs
ca9c4dffb7 Move internal/cleanups to daemon/internal/cleanups
222b2b8b2f Move internal/lazyregexp to daemon/internal/lazyregexp
9566272f30 Move pkg/tarsum to daemon/builder/remotecontext/internal/tarsum
ca5d2348d0 Move pkg/idtools to daemon/internal/idtools
7bfb804dbe Move registry to daemon/pkg/registry
f1f83dae55 Move reference to daemon/internal/refstore
c74ba95583 Move oci to daemon/pkg/oci
f24455c90b Move image to daemon/internal/image
1ff6011e04 Move distribution to daemon/internal/distribution
fa9a3c383d Move layer to daemon/internal/layer
3003c56c57 Delete TestRunDNSOptionsBasedOnHostResolvConf
3205fcf6c7 pkg/stringid: TruncateID: touch-up doc
6ed00d5044 registry: ConvertToHostname: use strings.Cut
547a2db21d registry: TestNewIndexInfo: inline testIndexInfo (thelper)
5ea78575e7 registry: fix assorted gocritic issues
406ee2feb5 registry: translateV2AuthError: fix singleCaseSwitch (gocritic)
ecb0354da5 registry: isCIDRMatch: fix captLocal (gocritic)
1ceda96864 registry: serviceConfig.loadInsecureRegistries: fix ifElseChain (gocritic)
d4e85443ff registry: remove deprecated RepositoryInfo.Class field
cc2d564a9e registry: remove deprecated RepositoryInfo.Official field
38453db513 contrib: remove gitdm
0d9304c9e1 docs: remove old rootless placeholder
a1f68bf5a6 overlay: Reload Ingress iptables rules in swarm mode
8b208f1b95 libnetwork: split programIngress() and dependent functions on Add and Del functions
50e6f4c4cb libnetwork: refactor ingress chain management for improved rule handling and initialization
4f0485e45f libnetwork: add FlushChain methods for improved iptables management
262c32565b libnetwork: refactor rule management to use Ensure method for Append and Insert operations
19a8083866 libnetwork: refactor iptable functions to include table parameter for improved rule management
c2e2e7fe24 libnetwork: extract plumpIngressProxy steps in a separate function
51ed289b06 libnetwork: extract programIngressPorts steps in a separate functions
752758ae77 libnetwork: extract creation/initiation of INGRESS-DOCKER chains in separate function
07393071ad bridge: Reapply endpoint iptables rules on firewalld reload
6d457d9695 bridge: Trigger firewalld reload during bridge integration tests
f1a97bda3d api/types/container: remove deprecated Stats type
4d5a7289a0 api: move docs to api module
bdcf4e8c85 adjust minimum API-version for multiple platforms on save/load
a401c0c046 runconfig: update fixtures for TestDecodeContainerConfig
1378604cc3 integration-cli: remove tests for pre-docker 1.7 clients
8d8bbefb90 client: remove deprecated CommonAPIClient interface
728f0769e1 client: remove deprecated ImageInspectWithRaw
2f200f9e05 client: remove deprecated IsErrNotFound helper
5ed9891eed client: remove deprecated ErrorConnectionFailed helper
a0fa5da2ab client: remove deprecated NewClient and NewEnvClient functions
30322dd649 client: fix example, and update refs to old modules
4859497098 pkg/stdcopy: fix missing alias for stdcopy.Systemerr
01c7b4233c hack/validate: remove obsolete exception
b91ebbde6d Refactor containerd platform matchers.
fcc8209e12 Add support for multiple platforms in image export and loading.
2303e6bff6 client: Client.doRequest: add special handling for DNS resolution errors
67596f01e2 client: Client.doRequest: add special handling for "not found" errors
462d0ff5aa client: Client.doRequest: simplify permission check and unwrap error
7072acac79 client: Client.doRequest: preserve wrapped error
3b4fbaacd7 client: Client.doRequest: use early return
cf1695bef1 Add option --bridge-accept-fwmark
2a342079c6 api/types/container: add missing type for exec-inspect response.
a600da91f4 profiles/apparmor, seccomp: migrate to separate module
30752f0780 Always allow access to routed endpoints
4538a1de0a libnetwork: handle coalesced endpoint events
e1a586a9a7 libnetwork/d/overlay: handle coalesced peer updates
8340e109de libn/d/win/overlay: dedupe NetworkDB definitions
c7b93702b9 libn/d/overlay: extract hashable address types
844023f794 libnetwork/driverapi: make EventNotify optional
69c3c56eba libn/networkdb: report prev value in update events
34fb2486ef test: migrate test api client version old not supported
cc9e6a13a2 api/types/swarm/runtime: remove module path for generating proto
76c1afeb97 api/types/plugins/logdriver: remove module path for generating proto
85ecf8c0f4 api: update references to old module name
a17a2e8f3d api/stdcopy: touch-up godoc
5b8ef1aff2 api: remove redundant //go:build lines
260cc008f4 fix vendor
4e246efcd1 libnet/d/bridge: mv portmapper to libnet/pms/{nat,routed}
289ef96d8b libnet/d/bridge/i/rlkclient: move to libnet/i/rlkclient
41cd92f6c0 libnet/portmapperapi: add PortMapper interface, registry
afb231d027 libnet/d/bridge: add a new Hairpin config flag
6f59a8e665 libnet/d/bridge: call setChildHostIP while binding
43f384c452 libnet/d/bridge: connectivityConfiguration: use PortBindingReq type
aa36cc5d25 libnet/d/bridge: move portBinding to portmapperapi
429818f969 libnet/d/bridge: move portBindingReq to portmapperapi
090c319f2e Don't allow the daemon to start with nftables and Swarm enabled
26e487db78 testutil: Fix sense of hasFwBackendArg check
6e7a2c830d Add Health attribute on the docker ps command
c4f9616c4a client: cleanup encoding body and add test-coverage
024414b47e integration: rename vars that shadowed import
20d594fb79 deprecate pkg/stdcopy, move to api/stdcopy
f651a5d5e9 registry: remove uses of lazyregexp
b33b4bd290 internal/testutils/networking: rm uses of lazyregexp
daa991c3d8 testutil/environment: don't use regex for string-matching error
0dc3193b2b integration-cli: remove uses of lazyregexp
6f9758047d fix: add create log stream awslog driver log option to validate list
c47afd41c8 Create github.com/moby/moby/client module
afd6487b2e Create github.com/moby/moby/api module
135cea2a10 Update test-unit for client module
7e708a5416 Update unit tests for api module
0971099c5f Add options to vendor to add and remove replace
eab076f217 Gocompat tests no longer needed with go modules
c469e5ebab daemon/server: rename vars that shadowed imports
61b19a494a oci: deprecate SetCapabilities
b9196ed703 oci: fix godoc for SetCapabilities, TweakCapabilities
5c683e8603 oci: sort defaultLinuxMaskedPaths
0433def57d internal/platform: remove NumProcs() stub for Linux
1a504f68fd Add nftables+firewalld tests to CI
02d7a3026a Support nftables+firewalld
d95dceb3b1 build: device entitlement support
655dbe69d0 pkg/tailfile: rename vars that shadowed type
a089c51160 pkg/idtools: remove deprecated functions and types
3bc64b312e runconfig: decodeContainerConfig: fix godoc referencing wrong type
ab5d348b77 integration-cli: remove uses of "runconfig"
0c3185a835 daemon: killProcessDirectly: use "WithFields" for logging
1cc42643ae hack/buildkit-ref: temporarily bump BuildKit to head of v0.23 branch
18e463a082 api/types: remove deprecated RequestPrivilegeFunc type
a3920ae6a0 api/types: remove deprecated IDResponse type
3e5a06179e api/types: remove deprecated container-inspect types
8347b05435 api/types: remove deprecated Container type
f050df0329 api/types: remove deprecated ContainerState type
7abeb4d5a4 api/types: remove deprecated container-networksettings types
c5a2194b5d api/types: remove deprecated container Health types
76bf0e2929 api/types: remove deprecated MountPoint
207db8792e api/types: remove deprecated Port
fa8177ba7a api/types: remove deprecated GraphDriverData
836ec65d5f api/types: remove deprecated ImageInspect, RootFS
7d3459e7fb api/types: remove deprecated SecretCreateResponse, SecretListOptions
68744c8b05 api/types: remove deprecated ConfigCreateResponse, ConfigListOptions
33f07ff3f4 api/types: remove deprecated NodeListOptions, NodeRemoveOptions
f13796d2af api/types: remove deprecated TaskListOptions
72b1e11264 api/types: remove deprecated ServiceCreateOptions
3faead6fc1 api/types: remove deprecated ServiceUpdateOptions
55ad118eaf api/types: remove deprecated ServiceListOptions, ServiceInspectOptions
91558ae3f3 api/types: remove deprecated SwarmUnlockKeyResponse
74fe646ac2 api/types: remove deprecated build-cache types
3eac6e7888 api/types: remove deprecated BuildResult
088cb2ffa6 api/types: remove deprecated build-related types
1359046a36 pkg/process: call out that "Zombie" is only supported on Linux
94618ac3ab pkg/process: separate exported funcs from implementation
a88e13f4f9 client: fix datarace when accessing cli.Version field
e6cdf24bcd windows: include labels when re-creating non-default nat networks
d4e026fe20 Wait for container dependencies upon daemon start up
39ab393274 Add daemon option --firewall-backend
7b9bd987bf api: deprecate NoBaseImageSpecifier
a632b8495b daemon: define default (and maximum) API version
2b17ab0ec6 libnet/internal/resolvconf: fix naming of error (errname)
aa757e591d libnet/internal/resolvconf: don't use rc.WriteFile in tests
8d54d36bce libnet/internal/resolvconf: fix naming of error
60a3a28a04 libnet/internal/resolvconf: minor optimizations
f22a3dfdb7 libnet/internal/resolvconf: optimize Generate() without text/template
0775ab6661 libnet/internal/resolvconf: add benchmark for Generate()
41da5700a4 client: define default (and maximum) API version
b54bde4376 Move testutils image load to integration internal
b83f36877f Move internal/mod to daemon/internal/builder-next/worker/mod
af86e80825 Move daemon/build to daemon/builder/backend
7d48302134 Move builder to daemon/builder
6ff9bea6a7 Move builder/builder-next to daemon/internal/builder-next
3a447bc079 api/types/registry: EncodeAuthConfig: use empty string for zero value
472e09ac47 api/types/registry: DecodeAuthConfig: add early returns and improve errors
6865032baa api/types/registry: add BenchmarkDecodeAuthConfig
c1b95c0ca2 ci/windows: Always run tests with c8d
967daa627a integration: Skip TestRunMountImageMultipleTimes on Windows
a615ec798d builder/remotecontext/git: fix linting issues
6a8654a808 api: bump to 1.52
ac5f464649 libnetwork/networkdb: improve quality of randomness
5799deb853 libnetwork/networkdb: test quality of mRandomNodes
d8730dc1d3 libnetwork/networkdb: add convergence test
7771a38896 Remove integration test using daemon internals
17d5f731f1 Move internal/safepath to daemon/volume/safepath
7edd7c68b1 Move internal/mounttree to daemon/internal/mounttree
daeaac0d3c Move internal/directory to daemon/internal/directory
33d824b838 Move quota to daemon/internal/quota
04f5276267 Move volume to daemon/volume
fdd9ae3465 libnet/internal/resolvconf: use slices.Clone
b1ce0c89f0 client: always send (empty) body on push
50d2dafc7f libnet/portallocator: introduce OSAllocator
14bd3451d8 client: ContainerExecAttach: update GoDoc links
830e0d79f5 vendor: github.com/opencontainers/cgroups v0.0.4
d66cf14a87 registry: replace pkg/homedir.GetConfigHome for os.UserConfigDir
14d9be4978 daemon: Fix mounting same image multiple times with different destinations
a28f031298 Fix libnetwork proto generation
b1884b6bba Restore libnetwork/resolvconf
3b5f7c2a29 Move internal/modprobe to daemon/libnetwork/internal/modprobe
7f4713a364 Move internal/maputil to daemon/libnetwork/internal/maputil
22ed8b1327 hack/make/test-docker-py: split test-exclusions to separate lines
7a720df61f Move libnetwork to daemon/libnetwork
f05652867d Move opts to daemon/pkg/opts
fb2117987d Dockerfile: upgrade Delve to v1.25.0
18438f3c13 Dockerfile: update compose to v2.38.2
8c3e10a011 Dockerfile: update buildx to v0.25.0
4dee288b51 Dockerfile: update cli to v28.3.2
9bcb12aa48 daemon: ContainerExtractToDir: make AllowOverwriteDirWithFile opt-in
fd8fec18cd integration/container: XFAIL flaky TestExecResize on Windows
4a8d77c958 api/types/container: remove deprecated ContainerTopOKBody alias
3d8d9c2bb3 api/types/container: remove deprecated ContainerUpdateOKBody alias
f8a2550a22 pkg/system: deprecate IsAbs and move internal
63bada41e5 pkg/system: deprecate EscapeArgs and move internal
0fc1493654 pkg/system: remove EnableContainerdRuntime, ContainerdRuntimeSupported
a327a9f341 integration-cli: fix flaky TestRestartStoppedContainer
59d5743a43 testutil/daemon: Daemon.Stop() don't log when already stopped
1c8b09ccf6 integration-cli: TestDockerNetworkHostModeUngracefulDaemonRestart start, not restart
9e69fc567e testutil/daemon: remove string-matching for error
cf41e9ac60 testutil/daemon: gofumpt
d6c90dcb87 integration/container: fix flaky TestRemoveContainerWithVolume
d30e61bff4 api/types/registry: add some tests for encoding/decoding authconfig
c31368fffb Don't raise an error when stopping a stopped docker-proxy
f6b3b257c8 implement test api images history integration test on dedicated file
669163c416 remove test api images history integration cli test suite
04dbcddd6a migrate test api images history integration cli test to integration test
adad33b30e Fix expected results for nftablesdoc tests
dde698a2e8 integration/container: add basic test for ContainerInspectWithRaw
16ed75572f client: TestContainerInspectWithEmptyID test both inspect variants
7f602d3b94 When switching between iptables/nftables, delete old rules
a5e3f39770 integration/container: avoid ContainerInspectWithRaw with "size"
88b67eb2fc integration/container: cleanup TestCreateWithCustomReadonlyPaths
bd091c1a9d integration/container: cleanup TestCreateWithCustomMaskedPaths
779052873d Add nftablesdoc
ad579b8a1d daemon/container: remove deprecated IsValidStateString
312eebde49 daemon/container: remove deprecated IsValidHealthString
e9fb208e87 daemon/container: remove deprecated StateStatus, WaitCondition
0d24798529 daemon/graphdriver: remove error or deprecated graphdriver-plugins
7767525ccd daemon/graphdriver: remove deprecated GetDriver()
1fe4a0a7ad daemon/graphdriver: remove redundant init()
bd8f9c3c1b registry: remove deprecated APIEndpoint.AllowNondistributableArtifacts
65d424e126 registry: remove deprecated APIEndpoint.Official
7252c3c78d registry: remove deprecated APIEndpoint.TrimHostName
11a18d3b00 api/types/registry: remove deprecated fields for non-distributable artifacts
b3e513f80a registry: remove deprecated Service.ResolveRepository()
5862b926f5 registry: remove deprecated SetCertsDir and unify CertsDir code
924cd22d1d registry: remove deprecated HostCertsDir
178416334f Run CI tests with nftables
ea29dffaa5 daemon/server: remove compatibility with API v1.4 auth-config on push
54e67d0054 daemon: AuthenticateToRegistry: remove statusMessage return
e8396af484 nftabler: add per-port rules
b677c1a671 Replace integration import test use of image type
d90277372f libn/d/overlay: drop obsolete writeToStore comment
30b9480107 Create legacy links during endpoint Join
dd9e289b6e Don't pass sandbox options to ProgramExternalConnectivity
4f7afb8ac9 Remove libnet's logic to track a driver's port mapping state
89d3419093 libnetwork/d/overlay: fix logical race conditions
843cd96725 libn/d/overlay: fix encryption race conditions
a1d299749c libn/d/overlay: inline secMapWalk into only caller
74713e1a7d libnetwork/d/overlay: un-embed mutexes
a05080c26c libnet/d/bridge: split NATed and routed port mappings
d229c1ba31 libnet/d/bridge: norm pb reqs before forming groups
e2034267f6 nftabler: add per-endpoint rules
b5bf89c315 libnet/d/bridge: pass SCTP sock to the proxy
0a047e825c update to go1.24.5
0ea28fede0 integration/networking: increase context timeout for attach
c833bd598e vendor: github.com/ishidawataru/sctp v0.0.0-20250708014235-1989182a9425
03a662b80e vendor: code.cloudfoundry.org/clock v1.37.0
08bde5edfa libnetwork/networkdb: fix broadcast queue deadlocks
aff444df86 libn/networkdb: make TestNetworkDBIslands not flaky
1e1be54d3e libn/networkdb: prevent spurious rejoins in tests
21d9109750 libn/networkdb: stop forging tombstone entries
428dbe617a nftabler: add network level rules
a55fede2d4 Pass context to nftables functions
1c5d6d1ee3 Mark iptabler/nftabler golden results as generated
ee6a6b061f daemon/pkg/plugin: remove dependency on legacy distribution package
09689298e3 distribution: fix detection of v1 images and remove libtrust dependency
ac9d5a6068 integration-cli: TestPullFailsWithAlteredLayer: use OCI manifest
fd47ccef7b integration-cli: TestPullFailsWithAlteredManifest: use OCI manifest
4e818970e2 integration-cli: TestPullManifestList: use OCI media-types
f6ef56a0bc integration-cli: TestPullManifestList: rewrite using OCI types
51d6687754 api: swagger: Tweak type of GwPriority to integer
bfc0c7cff5 docs: api: Tweak type of GwPriority to integer
557b5d60d3 layer: remove LogReleaseMetadata utility
7d18f65eb2 distribution/xfer: improve test reporting
291872e086 remove type conversions
ade244f97d deprecate layer.CreateChainID for OCI identity
10e9ab66f9 image/tarexport: inline validateManifest utility
471f173170 image/tarexport: improve error messages for invalid archives
033750cf80 image/tarexport: remove suport for loading v0/v1 images
ebfafa1561 contrib: add Wireshark plugins for NetworkDB
aae26b80fe Remove client buildkit dep
e93e15afb0 Replace use of env test util with standard library call
4754c15e2b Dockerfile: bump gotest.tools/gotestsum v1.12.3 (for go1.25)
fa4f3c979f gha: remove GO_VERSION build-arg from builds
136c0e591b image: RootFS.Clone: simplify
aea776332b pkg/stack: suppress some unhandled errors
e32d26cb59 libnet/diag: remove /stackdump endpoint
a881e9e057 Remember port binding state in the bridge driver
7ea50c14d6 Remote network driver: remember gateway state
054738bce3 Pass gateway endpoint ids to ProgramExternalConnectivity
07e5be0a18 image: remove special handling for legacy "layers+base" windows images
5efd2286da vendor: update buildkit to v0.23.2
e1b70074ec distribution/xfer: LayerDownloadManager.Download: remove initialRootFS arg
173436c702 distribution/xfer: rename var that shadowed type
0683bc6355 fix some inconsistency in import aliases
d207ee97ff daemon/listeners: extract utility for DACL, and improve docs
18dc570918 remove project dev "reports"
93bbd21d82 rename codecov.yml to .codecov.yml
ce3c8785dc restartmanager: move to daemon/internal
256f96ef59 remove VENDORING.md
717188201a contrib: remove mkimage-xxx scripts
3f8630cb84 internal/usergroup: move to daemon/internal
cbe6e31487 internal/usergroup: move windows consts to builder/dockerfile
8dbe0f45a9 integration-cli: debug TestPushToCentralRegistryUnauthorized
5fe253cd79 builder/dockerfile: BuildFromConfig: combine loops
a30b63eafc integration-cli: remove uses of deprecated dockerCmdWithResult utility
90f9ce14f1 Move libcontainerd to daemon/internal/libcontainerd
3ee8c1e3a9 Move libcontainerd/types to daemon/internal/libcontainerd/types
841a369b8f Move libcontainerd/supervisor to daemon/internal/libcontainerd/supervisor
fe959261d3 Move libcontainerd/shimopts to daemon/internal/libcontainerd/shimopts
4e8bd050bf Move libcontainerd/remote to daemon/internal/libcontainerd/remote
dd1656e6bc Move libcontainerd/queue to daemon/internal/libcontainerd/queue
6835f367e5 Move libcontainerd/local to daemon/internal/libcontainerd/local
5419eb1efc Move container to daemon/container
a02ba3c7df Move container/stream to daemon/internal/stream
9d9cb00d50 Move container/stream/bytespipe to daemon/internal/stream/bytespipe
3581b982f7 Move plugin to daemon/pkg/plugin
1c700c876f Move plugin/v2 to daemon/pkg/plugin/v2
f5ceed8719 Move plugin/executor/containerd to daemon/internal/plugin/executor/containerd
0b2582dc8f Move internal/metrics to daemon/internal/metrics
87238882e0 Move api/server to daemon/server
3a6e3f85c6 Move api/server/backend/build to daemon/build
79f802d46a Move api/server/httputils to daemon/server/httputils
c7a87f0dee Move api/server/httpstatus to daemon/server/httpstatus
d64bd2cceb Move api/server/middleware to daemon/server/middleware
72a020fcd8 Move api/server/router to daemon/server/router
f293628f55 Move api/server/router/volume to daemon/server/router/volume
15c8007064 Move api/server/router/system to daemon/server/router/system
45172bbf23 Move api/server/router/swarm to daemon/server/router/swarm
f6ba5a5241 Move api/server/router/session to daemon/server/router/session
3eb5fe0277 Move api/server/router/plugin to daemon/server/router/plugin
baa58ddc6a Move api/server/router/network to daemon/server/router/network
0cbb4ac8e6 Move api/server/router/image to daemon/server/router/image
a063389af7 Move api/server/router/grpc to daemon/server/router/grpc
9ff489863c Move api/server/router/distribution to daemon/server/router/distribution
ced7798ed8 Move api/server/router/debug to daemon/server/router/debug
3a9db5fbd6 Move api/server/router/container to daemon/server/router/container
fcf3ff1b2f client: remove getDockerOS utility in favor of "Ostype" header
d6136b660f Move api/server/router/checkpoint to daemon/server/router/checkpoint
31b6886eb1 Move api/server/router/build to daemon/server/router/build
1c0d381f4e client: client.tryImagePush: accept registry.RequestAuthConfig
ca0afe91b9 client: client.tryImageCreate: accept registry.RequestAuthConfig
79b4e18883 client: add staticAuth utility
871543a8c5 client: Client.ServiceUpdate: don't manually construct header value
a824db247f Add progress aux emitter to build backend
374fa24a53 Add multierror function to api network
0964fa01ba Remove dependency on testutil from client
58404b0c28 Remove dependency on httputil for client hijack test
e7289e7e02 hack: check windows resources are set in the binary
44623fb856 cmd: use dockerfile to generate win event messages
0ea20c9f72 cmd: fix winresources and move them out cli package
6b8afec95b fix redefines-builtin-id from revive
90ab64cbda fix increment-decrement from revive
381d9d0723 fix use-errors-new from revive
f0136d1dba fix superfluous-else from revive
369c8f828e fix var-declaration from revive
d72f219a11 gha/bin-image: update tags comment
b40fe5cb8b pluginrpc-gen: align generator with generated
f8fcc20c3b Update maintainer info for austinvazquez
38b98bcf68 gha/bin-image: add major and minor version image tags
057e35dd65 libnetwork/d/overlay: ref-count encryption params
1c2b744ca2 libnetwork/d/overlay: properly model peer db
59437f56f9 libnetwork/d/overlay: refactor peer db impl
33139da522 Split part of dockerd main to command under daemon
98047c5190 Move cmd/dockerd/trap to daemon/command/trap
ea11b5f3fe Move cmd/dockerd/debug to daemon/command/debug
53475e1adf integration/container: TestCreateByImageID: minor improvements
fcf666f9b0 dockerfile: update govulncheck to v1.1.4
8c067c5223 client: Client.addHeaders: remove special handling for api < 1.25
ef50844a0b docs: cut api docs for v1.51
5a02e7f4e3 vendor: update buildkit to v0.23.1
b466c35da1 Update containerd to v2.1.3
7a12bbe5d3 libn/d/overlay: delete FDB entry from AF_BRIDGE
1d8545d60c daemon/config: Validate: add missing validation for registry mirrors
307c18598d registry: ValidateMirror: improve validation for missing schemes
a90da2edc3 vendor: github.com/opencontainers/cgroups v0.0.3
a7f01d238e libnetwork: fix flaky Swarm service DNS
062082ec9b daemon: containerStop: fix ordering of "stop" and "die" events
bf002e51a0 Split [Program|Revoke]ExternalConnectivity out of libnet driverapi
4ccbca1efe Add TestRoutedNonGateway
d85513e1a3 daemon: LogContainerEventWithAttributes: minor optimisation
ec185e57cf Test Nftabler params
e43968d7ed vendor: github.com/moby/buildkit v0.23.0
0c182d4d57 api/types/container: deprecate ExecOptions.Detach
126f99d776 Add a way to undo nftables.Enable(), for unit tests
1289519b03 vendor: update buildkit to v0.13.0-rc2
c3ac979ecf vendor: github.com/moby/swarmkit/v2 v2.0.0
4891396da6 docs(client/ContainerExecAttach): add a mention to stdcopy.StdCopy
b7ef527bdc pkg/idtools: deprecate IdentityMapping, Identity.Chown
66e9cd97f2 remove deprecated pkg/archive, pkg/chrootarchive
d06c22f27d remove deprecated pkg/reexec
98015c21ec remove deprecated pkg/atomicwriter
cf91441a1b pkg/ioutils: remove deprecated atomicwriter functions
1f0e9077e4 remove deprecated pkg/parsers
c66abe486b nftabler: add mirrored WSL2 loopback0 workaround
d31956b2f7 Add an outline nftabler
04618dfc0b remove deprecated pkg/platform
f1e93a1770 pkg/system: remove deprecated MkdirAll
ce31bf3f0b gha: dco: bump alpine to 3.22
1ad9599da7 Drop DOCKER-ISOLATION rules
2d60b8eacd vendor: github.com/moby/swarmkit/v2 v2.0.0-20250613170222-a45be3cac15c
6ec6e0991a libnetwork/networkdb: prioritize local broadcasts
e9a7154909 libnetwork/networkdb: improve TestCRUDTableEntries
dbb0d88109 libn/networkdb: use distinct type for own networks
51f31826ee libnetwork/networkdb: don't clear queue on rejoin
30b27ab6ea libnetwork/networkdb: drop id field from network
9316396db0 gha: run windows 2025 on PRs, 2022 scheduled
6f484d0d4c gha: update to windows 2022 / 2025
0a30b98447 gha: lower timeouts on "build" and "merge" steps
accbfde61e client: use go-winio.DialPipe directly
df6b405796 libnetwork/d/overlay: drop initEncryption function
713f887698 libnetwork/d/overlay: drop checkEncryption function
cb4e7b2f03 libnetwork/d/overlay: make setupEncryption a method
0d893252ac libnetwork/d/overlay: checkEncryption: drop isLocal param
4b1c1236b9 libnetwork/d/overlay: peerdb: drop isLocal param
48e0b24ff7 libnetwork/d/overlay: elide vtep for local peers
a9e2d6d06e libnetwork/d/overlay: filter local peers explicitly
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Along with the updates, there seems to be an interaction with our
configuration that is causing generation issues for APIs. We do
some tweaks to the script to work in our environment.
Bumping crun to version 1.24-19-g64611d7a, which comprises the following commits:
a9187097 Reset the inherited cpu affinity
d41a45ce Add .editorconfig
1188a679 configure.ac: check if error function is available
a569c2e7 cgroup, systemd: improved "same bpf" check
ccbf0d96 tests: Replace sprintf with snprintf for security
fc084fdf chroot_realpath: Replace sprintf with snprintf
b2032647 tests: fix compiler error
7417ead6 Add tmt integration plan
54693209 NEWS: tag 1.24
676c2c12 linux: fix array bounds warning in libcrun_configure_network
d8a88c06 criu: checkpoint correctly the shared empty directory path
6ead5130 linux: add support for numa set_mempolicy(2)
05b9f561 container: add missing crun_make_error
7f9447ec Revert "cgroup: do not create a sub-cgroup by default"
275305f8 intelrdt: honor default closID
e9711231 intelrdt: factor common code in a new function
dfdcf776 intelrdt: add support for EnableMonitoring
6c10fb5b intelrdt: check that schemata is not empty before failing
a9affe5d status: fix error check
a1119953 cgroup, systemd: validate ebpf is loaded
7160e31b libocispec: sync
4004e5be linux: optimize masked paths with shared empty directory
13d4770d contrib: format contrib files
8aa7545e krun: avoid failing if sev/nitro are not available
1556c13f src/libcrun: limit tmpfs memory usage for masked paths
28d60d87 krun: ensure spec->linux->resources->devices exists
e486eeab linux: fix regression mounting within userns
146fdcfe tests: remove unused debug_on_error option
37f702b7 tests: add ability to set debug=True
2aac0f56 Fix BOF
d417e0a4 Fixed BOF
cfedf930 build(deps): bump actions/checkout from 4 to 5
eb9912e0 build: add check for static builds
262d6ac3 cgroup: do not create a sub-cgroup by default
Bumping libocispec to latest, which comprises the following commits:
345279c runtime-spec: update from upstream
c3e5101 image-spec: update from upstream
92656e9 runtime-spec: update from upstream
19d5aeb runtime-spec: update from upstream
3c98525 image-spec: update from upstream
9d1955f sources.py: fix unconditional return in map value clone
Bumping runtime-spec to version v1.2.1-39-g5610abd, which comprises the following commits:
d7de8c0 ci: bump golangci-lint to v2.5
9758011 ci: add codespell job, fix existing issues
9efd9f2 schema/defs-linux.json: fix max for FileMode
09ec668 config-linux,schema: fix FileMode description
87f15fb schema: fix json
869b2d5 linux: clarify pids cgroup settings
a6c310a config-linux: clarify when the RDT sub-directory should be removed.
b280c07 config-linux: clarify the "MB:"-line filtering in RDT.
84b6c2c docs: fix and elaborate the nodes field in Linux memory policy
0758679 features-linux: expose IntelRdt monitoring support
e51a839 config-linux: define default clos for linux.intelRdt
642344a specs-go/features: add linux.intelRdt.schemata field
34a39b9 config-linux: add intelRdt.enableMonitoring (#1287)
afd830f principles: fix typo
57c9495 Add support for Linux memory policy
c6b3b08 runtime: fail when a poststart hook fails
af0d16d config: Add Hardware description object to the VM configuration
Bumping image-spec to version v1.1.1-22-g6519a62, which comprises the following commits:
02ba6e2 Descriptor size cannot be negative
cee899b Fix: Add entry to schema/go.sum
558802d Docs: Update pandoc for rendering documentation
693d8d7 Update to github.com/russross/blackfriday/v2
cbb69e2 Update to github.com/santhosh-tekuri/jsonschema/v6
d0e1005 Split github.com/opencontainers/image-spec/schema into a separate Go module
84ee56d Fix: correct a broken link to "applying changesets"
0bb67c2 Update GitHub Actions configuration
ab50866 Chore: Remove GOPATH from GitHub Actions
4fecf47 Add blake3 as a registered/supported hash algorithm
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
Bumping criu to version v4.1.1, which comprises the following commits:
a44aa6d98 criu: Version 4.1.1
ced15c302 test/zdtm: remove unused compiler argument
570621a48 mount-v2: enter the mount namesapce to propagation properties
b6059ff19 criu: Version 4.1 (CRISC-V)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping cri-tools to version v1.26.0-1341-g80b852a5, which comprises the following commits:
25cdc3c2 Remove link to outdated kubic repository
72954ec8 Bump crate-ci/typos from 1.38.0 to 1.38.1
559c81a3 Bump crate-ci/typos from 1.37.1 to 1.38.0
c53f9383 Bump crate-ci/typos from 1.37.0 to 1.37.1
5903b9c2 Fix typos
5bb88133 Bump crate-ci/typos from 1.36.3 to 1.37.0
ac9df58c Bump crate-ci/typos from 1.36.2 to 1.36.3
bd5edc46 Bump actions/cache from 4.2.4 to 4.3.0
776c8c28 chore: sync names
550f39b8 docs: updated the typo in CRI-O badge image URL
684cf823 Bump the kubernetes group with 7 updates
c28735fe Disable short name mode in CRI-O e2e tests
6f1e9f52 Bump actions/setup-go from 5.5.0 to 6.0.0
9bf6d58b Bump crate-ci/typos from 1.36.0 to 1.36.2
405add18 Bump crate-ci/typos from 1.35.5 to 1.36.0
bd848a4c Bump ncipollo/release-action from 1.18.0 to 1.20.0
2c5de193 Bump crate-ci/typos from 1.35.5 to 1.35.8
0fa372bb Bump ncipollo/release-action from 1.18.0 to 1.19.1
1ff5e6e8 Switch to to k8s 0.34.0
f7f7c6b0 Bump the gomod group across 1 directory with 8 updates
ad23e1ea Bump the gomod group with 2 updates
2e2646fa Switch to go 1.25
ee8bc12e Bump crate-ci/typos from 1.35.4 to 1.35.5
d9a45203 Update cri-tools to v1.34.0 in README.md
04365fd8 Update k8s and ginkgo
23d42883 Bump the gomod group across 1 directory with 10 updates
b7c27702 Update golangci-lint and config
b39a7917 Bump crate-ci/typos from 1.35.3 to 1.35.4
e57b4a9f Bump actions/checkout from 4.2.2 to 5.0.0
d1e1a989 Vendor Kubernetes v1.34.0-rc.1
b1b79cad Bump crate-ci/typos from 1.35.2 to 1.35.3
dceb355f Bump actions/cache from 4.2.3 to 4.2.4
6c2ceeb8 Bump crate-ci/typos from 1.35.1 to 1.35.2
00e4e773 Bump the gomod group with 4 updates
46823b3a Bump crate-ci/typos from 1.34.0 to 1.35.1
bfca4858 Bump github.com/docker/docker in the gomod group
e4974ec0 Bump sigs.k8s.io/yaml from 1.5.0 to 1.6.0 in the kubernetes group
ed4f9714 Bump the gomod group with 2 updates
c0a16628 support to auto generate pod uuid
532ecbc4 add warning about empty cgroup_parent field in pod config
d0b9a2d9 Bump the kubernetes group with 7 updates
c49a0899 Bump google.golang.org/grpc from 1.73.0 to 1.74.0 in the gomod group
5e45295c Update golangci-lint and config
610c747c doc: add steps to use runp when systemd cgroup driver is used
6e8c942b Bump crate-ci/typos from 1.33.1 to 1.34.0
2fd2e155 Bump the gomod group across 1 directory with 4 updates
c06fef2d Switch to windows-2025 in CI
86334baa Support websocket connections in `critest`
c7e766e7 Bump ncipollo/release-action from 1.16.0 to 1.18.0
1e5de756 Bump the gomod group with 4 updates
9dee32cb Bump sigs.k8s.io/yaml from 1.4.0 to 1.5.0 in the kubernetes group
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping cri-o to version v1.34.1-9-g5780ac7b4, which comprises the following commits:
6d3fac06f Update log formatting in interceptors to use %+v for better readability of structs
83172bb4c Fix dependencies check
1c84c7c4b Re-add the `--enable-fixed-path` removal for gpgme
43f6eeeda version: bump to 1.34.1
7561efe0b HighPerformanceHooks: Defer irqSMPAffinityFile rollback
c2eab18ba HighPerformanceHooks: Move IRQ balancing to PostStop hook
0790633e6 HighPerformanceHooks: Add mock infra for command and system unit tests
e294f5435 HighPerformanceHooks: Make locks atomic for irq SMP affinity
bbd9d0360 server: Fix network cleanup failures when NetNS path is empty
a8b550ad0 config: configure shortname through configuration and enforce shortnames
7a4365cf5 Add crio.runtime.runtimes seccomp_profile to crio.conf.5 doc
9b922306b build(deps): bump the gomod group with 4 updates
5813011e0 build(deps): bump the gomod group with 2 updates
1c4060d8f Warn when CONTAINER_INCLUDED_POD_METRCIS (typo) is used.
a0a44b5dd Add runtime handler seccomp profile
fdda720ff build(deps): bump github.com/prometheus/client_golang in the gomod group
84ea2f8b6 build(deps): bump the gomod group with 2 updates
165d40bfa build(deps): bump the gomod group with 7 updates
15233a7de tests: add a unit test for log rotation
d07b9575e Update nixpkgs
c411cfa7b build(deps): bump github.com/onsi/ginkgo/v2 in the gomod group
47b7f11ff Update nixpkgs
c5942f667 Update other deps
fb2861507 build(deps): bump github.com/ulikunitz/xz from 0.5.12 to 0.5.14
fb183a27c runtime_vm: Implement the ReopenContainerLog function
d1839c936 build(deps): bump the gomod group with 4 updates
eb3004491 Use k8s 0.34.0
cc074af34 build(deps): bump the kubernetes group with 7 updates
cf1c33f6e Remove thermal_throttle masked paths.
d10c4e501 Use k8s rc instead of the next minor
558c5483c build(deps): bump the gomod group across 1 directory with 16 updates
9d999d519 Cleanup container user log message and trivial code
655c5f8fe docs: regenerate/update man pages.
2a71e8181 completions: regenerate completions.
64863ccbe nri: add configuration for the default validator.
7c5f1fe54 server: add type conversion functions removed from NRI.
831b8dd9b go.{mod,sum}: update NRI to v0.10.0.
21b03fda2 inspect: add hostnetwork information
cc10ee3cd Add support for conmon-rs log driver and heaptrack config
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping containerd to version v2.2.0-beta.1-12-ga7e49900a, which comprises the following commits:
a4ddfd7eb build(deps): bump the golang-x group with 2 updates
c740c57b4 build(deps): bump github/codeql-action from 3.30.6 to 4.30.8
6316ab81d build(deps): bump softprops/action-gh-release from 2.3.4 to 2.4.1
ed2e81a78 bugfix:sync parent dir to ensure blob entry is reliably stored
bfd6c52b4 Defer removal of deprecated registry config fields to 2.3
71f5d16aa bugfix:fix container logs lost because io close too quickly
c039f5349 ci: bump Go 1.24.8
773bfa0ea Use tartest to simplify generating a tar
6a3b10fe7 Add a test for the erofs differ using tar index mode
42f2784ca Update go.mod to use api/v1.10.0-beta.1
8922d84e5 build(deps): bump google.golang.org/grpc from 1.75.1 to 1.76.0
36c22f45c Update referrers fallback logic to always have a fallback
0f3c5484f Fix gha api release file path
f6b3b8cbe build(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3
7a7d7a996 build(deps): bump github/codeql-action from 3.30.5 to 3.30.6
669c3047a build(deps): bump softprops/action-gh-release from 2.3.3 to 2.3.4
ba606fe14 build(deps): bump actions/stale from 10.0.0 to 10.1.0
15d5fa725 build(deps): bump google.golang.org/protobuf from 1.36.9 to 1.36.10
60fb4adb0 1.6 is EOL
aa571f63c Prepare release notes for api/v1.10.0-beta.0
83a946dca Add missing implicit dependency to podsandbox controller
c69f443ba Update sandbox controllers service implicit dependency
637429a25 Update logging for sandbox controller service
f0aeb9037 Add sandbox controller create call to client
a338d8b2f Fix sandbox client shutdown to ignore not found errors
54ba402a2 Add default sandboxer to client
c7b3114eb Update mount manager code documentation
f3af360f6 Update runtime to read allowed custom mounts from runtime
2189d3d6c build(deps): bump docker/login-action from 3.5.0 to 3.6.0
cfb1b653d build(deps): bump actions/cache from 4.2.4 to 4.3.0
94e6bcea5 Add support for allowing custom types through mount manager
efc995011 Add runtimes option to task manager
dd9c43150 Add option to allow formatted mounts
9c21e867e Handle flaky case for loop autoclear
f7b77e649 Update mount manager cleanup logic
069cbfe8f Use mount manager for temp mounts
93070961b Update snapshotter tests to use mount manager
fa327566b Fix mount manager deactivate errors
9c0cc4a42 Add mount manager format test
61b8426ae Add mount manager documentation
67f0970a5 Add mount activation integration test
39f128b99 fix invalid deactivate error
76a877bb5 Add mount activation support to task service
5b4de2c34 Add implementation of list and get mount activation
184fae60f Add backreference support to mount manager
9794addce Add mount formatting test
d8e5cdd76 Fix gc cleanup and add unit tests for gc
49634889f Update ctr image mounts to use mount manager
62062902f Add support for mount manager to ctr snapshots mount
563b28154 Add mount manager to client
c8e7674cc Add temporary mount support to manager
aba772012 Add debug logs to mount service calls
d23e635a5 Fix mount manager plugin when no handlers provided
75ed5e003 Fix mount manager gc
8db301086 Add mounts api service
67fbf9db9 Generate and vendor proto changes
c5097ac63 Add mount manager to protobuf services and types
4d34b01ce Add loopback and overlay mount manager tests
0e88cde87 build(deps): bump github/codeql-action from 3.30.3 to 3.30.5
5a00693e7 Fix integ-test: looking for sleep inf as longCommand
739821fc5 pkg/display: use platforms.Format for platform display
748cd9f03 Prevent goroutine hangs during ProgressTracker shutdown
54325eedc Fix typos introduced on PR 12323
a7537cb8a Add referrers to default registries
b668614b5 Add referrers to host config
c1b1297c6 Update capabilities for referrers
09b4ac136 Add referrers fetcher to remotes
9ca659a53 Add conf.d include in the default config
de20021f5 Make E2E workflow a required check
cbfb535ad Add a comment to explain why apt-get install erofs-utils can't be used
3df2b5d98 TestErofs/Rename fails with EROFS snapshotter
c1bf79e7a Build and install erofs-utils from source and modprobe erofs
35f94ef70 vendor: opencontainers/runtime-tools v0.9.1-0.20250523060157-0ea5ed0382a2
33e6b79fc Fix device mapper suspend/resume flakyness
5be6c0309 build(deps): bump azure/CLI from 2.1.0 to 2.2.0
7e74801b7 Move wintls as internal pkg
d2adfd820 Add support to retrieve certificate and key from windows cert store
6243cf562 Add mount manager tests
f4b7b9344 Improve formatting and support for deactivate
55ff11737 Add loopback mount handler
ed03f3a71 Add mount manager plugin and types
78ca11c1c Add mount garbage collection resource
c71598622 Add mount manager interface to mount package
1809f3ef1 Update metadata gc to run context finishes in parallel
37cec6800 Move transaction context to boltutil
09644bd13 [github-action] release - Empty allowedSignersFile
635907e63 Ensure errContentRangeIgnored error when range-get request is ignored by registry
010ad4c06 build(deps): bump google.golang.org/protobuf from 1.36.8 to 1.36.9
8112ca64f cri: remove copying of message structs
9d351805b go.mod: Bump up k8s.io to 0.34.1
517ca7566 build(deps): bump google.golang.org/grpc from 1.75.0 to 1.75.1
e009b98ce build(deps): bump github/codeql-action from 3.30.1 to 3.30.3
84aa20676 docs: Update 1.7 LTS support timeline
cfe20b588 add k8s 1.34 support matrix
479cf42ca Add extraction progress to transfer service
09e531b88 Add progress to apply options
a85610d52 Prepare release notes for v2.2.0-beta.0
dba7f8fbe Update releases doc to show v2.2 has started beta
da2a8b34e build(deps): bump softprops/action-gh-release from 2.3.2 to 2.3.3
6f92111a9 build(deps): bump actions/stale from 9.1.0 to 10.0.0
52c310c98 build(deps): bump actions/github-script from 7.0.1 to 8.0.0
39a38dd60 build(deps): bump google-github-actions/upload-cloud-storage
284716350 build(deps): bump github/codeql-action from 3.30.0 to 3.30.1
d4fd22ce7 build(deps): bump github.com/prometheus/client_golang
b2866150a build(deps): bump the golang-x group with 3 updates
65badbef4 Resolve `staticcheck` complaints on FreeBSD
f45716efe Clean up issues cited by `usetesting` package with golangci
53d78b68d runc:Update runc binary to v1.3.1
c77b70852 pkg/cio: Close(): use errors.Join to return all errors
bfbb18ca8 build(deps): bump github.com/containernetworking/plugins
1fac82f0e build(deps): bump github.com/checkpoint-restore/checkpointctl
6374ac511 build(deps): bump actions/attest-build-provenance from 2.4.0 to 3.0.0
23c51c25b build(deps): bump github/codeql-action from 3.29.11 to 3.30.0
b56804da7 build(deps): bump google-github-actions/auth from 2.1.12 to 3.0.0
683cd7d60 gc:make sure lastCollection is not nil
bcecb979a build(deps): bump lycheeverse/lychee-action from 2.5.0 to 2.6.1
fb28794f4 Update Go requirements in BUILDING
591a769a6 build(deps): bump google.golang.org/protobuf from 1.36.7 to 1.36.8
f4238238f build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.0
fd1a7a102 build(deps): bump google.golang.org/grpc from 1.74.2 to 1.75.0
8ebe57e2e build(deps): bump github.com/coreos/go-systemd/v22 from 22.5.0 to 22.6.0
cc2a52ca8 Update pkg/oci to use FS interface
6fa776811 docs: remove shutdown adopter D2iQ Konvoy
56cde7d2c add SystemdCgroup to default runtime options
363e02310 install-runhcs-shim: fetch target commit instead of tags
77905cf6f build(deps): bump go.etcd.io/bbolt from 1.4.2 to 1.4.3
fe4ec31bc build(deps): bump github/codeql-action from 3.29.10 to 3.29.11
f0ee598ff integration: Add test for directives with userns
41953f7ac cri: Fix userns with Dockerfile VOLUME mounts that need copy
48f5d4255 script/test: clean up generated NRI test configuration.
ad207c1ce docs: update docs for NRI v0.10.0.
37b12bf5e Add documentation for cgroup_writable field
b7a401f1d cri: warn about deprecated v0.1.0-style NRI plugins.
cb9fda2e7 nri: add configuration for the default validator.
fa820a5d0 go.{mod,sum}: update NRI to v0.10.0.
3dbb9695a build(deps): bump github/codeql-action from 3.29.7 to 3.29.10
da3dc1ef6 core/mount: Retry unmounting idmapped directories
27ba690a1 core/mount: Test cleanup of DoPrepareIDMappedOverlay()
dd7fe0b76 core/mount: Properly cleanup on doPrepareIDMappedOverlay errors
cb56df4fb build(deps): bump the k8s group with 3 updates
d449d94d2 build(deps): bump github.com/emicklei/go-restful/v3
b595e0173 Update hcsshim to v0.14.0-rc.1 in preparation for containerd/2.2
7a19c94d6 core/mount: Don't call nil function on errors
dc38aaf6c ci:fix TestSandboxRemoveWithoutIPLeakage failed
6dcbdcfb3 ci: add Go 1.25.0
93c034c80 build(deps): bump actions/cache from 4.2.3 to 4.2.4
f77717f50 build(deps): bump lycheeverse/lychee-action from 2.4.1 to 2.5.0
a2d30ba30 build(deps): bump google.golang.org/protobuf from 1.36.6 to 1.36.7
6e9b6eada core/mount: Only idmap once per overlayfs, not per layer
6ce7f6d87 pkg/sys: check SupportsPidFD first
c7f19d104 build(deps): bump the golang-x group with 2 updates
8d275704a build(deps): bump actions/checkout from 4.2.2 to 5.0.0
e3b2bcead build(deps): bump actions/download-artifact from 4.3.0 to 5.0.0
5bd22a3e9 build(deps): bump github.com/containerd/go-cni from 1.1.12 to 1.1.13
bd9e577c2 Fix ctr snapshot mount produce invalid mount command for empty option
db31fbc5a ci: bump Go 1.24.6
45e02e1dc sys: fix pidfd leak in UnshareAfterEnterUserns
7340a7a28 fix: create bootstrap.json with 0644 permission
2b48e3cb9 build(deps): bump docker/login-action from 3.4.0 to 3.5.0
398d42313 build(deps): bump github.com/prometheus/client_golang
aeace7daa build(deps): bump google-github-actions/auth from 2.1.11 to 2.1.12
009625290 Block CIM snapshotter & differ
63c9cfcc1 fix typo: collecter -> collector
3653c911b Update mailmap for austinvazquez
55fd29789 build(deps): bump github/codeql-action from 3.29.2 to 3.29.4
6e0579453 build(deps): bump google-github-actions/upload-cloud-storage
22a88c1ac build(deps): bump the k8s group with 3 updates
83deebdd5 build(deps): bump google-github-actions/auth from 2.1.10 to 2.1.11
a38708cc9 build(deps): bump google.golang.org/grpc from 1.73.0 to 1.74.2
68a55252f refactor: use the built-in max/min to simplify the code
b70b43f6b time to upgrade to 1.33 cri-tools
4f95737e1 Remove Alpha gate from k8s e2e runs
46325f114 Update 1.6 timeline to add an extended period
ed174c914 cmd/ctr: rename vars that shadowed builtin
4420b5a49 Ensure fetcher always closes body and properly calls release
1b821ca04 fix(dockerFetcher): resolve deadlock issue in dockerFetcher open
118a84147 ci: update crun to 1.22
c5ad254a3 ci: bump Go 1.24.5
0eaa09e35 Make signal notifications work on Windows
636d29832 build(deps): bump the golang-x group with 3 updates
dbb44287f Plumb windows CPU affinity values to runtime spec
12daca5f6 Fix intermittent test failures on Windows CIs
117179ae1 Remove WS2025 from CIs due to regression
222b2d3e7 update pause image to pause:3.10.1
e96ebc008 erofs-snapshotter: make IMMUTABLE_FL optional
f75323f89 nri: enable otel traces in NRI.
b641933cf erofs snapshotter: Add tar index mode
62bbdce7f update go-md2man binary to v2.0.7
fd464031d build(deps): bump github.com/tchap/go-patricia/v2 from 2.3.2 to 2.3.3
e0d733c87 blockfile: Ensure required options are always set
aed961a6f Remove additional fuzzers from CI
24ea5f23f build(deps): bump golangci/golangci-lint-action from 6.5.2 to 8.0.0
a0ed14fd4 erofs-differ: fix filesystem UUID for tar-converted layers
b92e8b544 Add GitHub Action for k8s node e2e tests
eb63b5b4d Amend runtime handler test for stable order
c6ae08193 CRI: Stable sort for RuntimeHandlers
f51a2fbfd Test showing RuntimeHandlers in Status() are unordered
cc913cac6 build(deps): bump github/codeql-action from 3.29.0 to 3.29.2
40f3b74af build(deps): bump go.etcd.io/bbolt from 1.4.1 to 1.4.2
587c0757b build(deps): bump github.com/intel/goresctrl from 0.8.0 to 0.9.0
35cbd7349 Fix port forward error logger to not cause concurrent write
7a46fe7e6 Correct Commit Memory Aggregation for Windows Containers
a4aebea4b build(deps): bump github.com/containerd/console from 1.0.4 to 1.0.5
100b78711 build(deps): bump google.golang.org/grpc from 1.72.2 to 1.73.0
621d661be Add coverage support for CRI integration tests
bf1c47f5e core/runtime/v2: shimManager.cleanupWorkDirs ignore non-existing path
d553c4014 Update GHA runners to use latest image for most jobs
610f29914 Update garbage collection docs
6537a61d0 Add back reference test for collectible resources
df87a8f71 Add support for backreferences in gc
8ecd6b6fa Update gc tests to make digests easier to identify
cf7f4f5cc restore: skip pull for existing base image
b671a9721 ctr:add sandbox info command to print sandbox info
b95265124 build(deps): bump docker/setup-buildx-action from 3.11.0 to 3.11.1
9f9ce00aa build(deps): bump the k8s group across 1 directory with 3 updates
a79e79141 ci:fix ci TestContainerExecLargeOutputWithTTY panic
97bbc1f73 Remove unused Windows 2019 powershell scripts
cb53f381e fix when multipart fetching and the server does not return content length
d3516916a Fix fetch always adding range to requests
aea4e685e build(deps): bump github.com/urfave/cli/v2 from 2.27.6 to 2.27.7
ed7746656 ci: bump golangci from 6.5.2 to 7.0.0
37147b13a Disable ST1003: struct field Uid should be UID (staticcheck)
19a713061 Disable QF1003: could use tagged switch on base (staticcheck)
03a44a2d7 fix: Used nolint to ignore the static checks
4ba81d429 fix: ST1001: should not use dot imports (staticcheck)
b52997372 fix: ST1019: removed the duplicate imports
403f86ecc fix: QF1012: Use of fmt.Fprintln(...)
d93d18c85 fix: QF1001: could apply De Morgan's law (staticcheck)
b3eec6d8e fix: ST1005: error strings should not end with punctuation or newlines
1ff590004 fix: QF1004: strings.ReplaceAll instead (staticcheck)
56516173d fix: QF1002: could use tagged switch on host (staticcheck)
0df6d1e6b build(deps): bump docker/setup-buildx-action from 3.10.0 to 3.11.0
4593023f1 build(deps): bump github.com/grpc-ecosystem/go-grpc-middleware/providers/prometheus
1f288492c build(deps): bump actions/attest-build-provenance from 2.3.0 to 2.4.0
0779c0a6d build(deps): bump softprops/action-gh-release from 2.2.2 to 2.3.2
9b7f24610 build(deps): bump github/codeql-action from 3.28.18 to 3.29.0
b7bda5d6e build(deps): bump go.etcd.io/bbolt from 1.4.0 to 1.4.1
7c97cd331 build(deps): bump the golang-x group with 2 updates
e6708bddf bugfix:close container io when runtime create failed
4bf1705a8 Implement io.ReaderAt on docker fetch reader
734d52c39 chore: remove specific go version code
04ce9f884 feat: preserve nsPath on mount failure to ensure cleanup
af068ff86 Update fetcher errors to include full registry error
6e1f0203e Register remote errors for clients to access registry errors
697d77676 Decode grpc errors in the transfer client proxy
9de26f315 [e2e] add case for shim wait interface
49664dab5 Add context in Process Wait interface
415df3892 ci: bump Go 1.24.4 in CI
2f1948a50 Enable CIs to run on WS2022 and WS2025
8de612020 pkg/oci: don't use var for WithPrivileged
cf667aa7e pkg/oci: add basic test for WithParentCgroupDevices
d72c21450 pkg/oci: don't use vars for WithAllKnownCapabilities, WithAllCurrentCapabilities
ac3c3ad5d pkg/oci: cleanup some tests
4de598d94 pkg/oci: remove compatibility code for go1.16 and older
17c632e78 pkg/oci: fix minor linting issues
cff8184ff support image volume sub path
a8658a708 erofs-snapshotter: fix to work with wrapped errors
4f7c69ae6 Update differ selection in transfer service to prefer default
21f0595b9 Add debug log when transfer returns not implemented
d9bb00578 Add more error details when unpack fails to extract
4dd2cd92c build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2
48cec3659 Update transfer supported platforms logic
1ac97c2c1 *: properly shutdown non-groupable shims to prevent resource leaks
128229975 Enable DuplicationSuppressor in transfer service
00edba6aa Remove internal interface from unpacker interface
77562a8e4 fix import for local transfer service
a93c8d3cd build(deps): bump google.golang.org/grpc from 1.72.0 to 1.72.2
4a2c40223 build(deps): bump lycheeverse/lychee-action from 2.4.0 to 2.4.1
ee85517b1 docs: fix v2.1.0 release link
e57b9f751 dep: bump up k8s.io/cri-api to 0.33.0
a4dd2b8f2 go.mod: bump up go to 1.24.3
b9a29bdb9 ci: bump up go to 1.24.3
811d04422 shim-v2:improve shim error message
6e17198f0 Add descriptor to transfer pull image events
213337ce4 Fetch image with default platform only in TestExportAndImportMultiLayer
aa9c17c69 Add symlink breakout test for overriden path
78e838c34 build(deps): bump github/codeql-action from 3.28.17 to 3.28.18
b98b99836 build(deps): bump github.com/emicklei/go-restful/v3
fb6dd2cf1 client:improve mount error message
8be437ee8 docs(ansible): fix the folder
d498e690e clones k8s util exec used by streaming code removing k8s util dependencies
6c0d36b24 follow-up changes discussed at end of review creating these packages
b0052d94a pkg/oci: prevent panic for some platform-specific options
ee5ad982f docs/snapshotters/erofs.md: a tip for improved performance
5f2200b2c erofs-differ: fix EROFS native image support
af24e463b update runhcs to v0.13.0
7063ee659 clones vendor of k8s.io/kubelet/pkg/cri/streaming
11efadd36 build(deps): bump github.com/vishvananda/netlink
e29c0fe58 build(deps): bump github.com/Microsoft/hcsshim
21215b216 build(deps): bump dario.cat/mergo from 1.0.1 to 1.0.2
38c9bb93a Revert "perf(applyNaive): avoid walking the tree for each file in the same directory"
1a4c32105 seccomp: kernel v6.13
6180d6243 seccomp: kernel v6.12
fea77e15b ci: bump golang [1.23.9, 1.24.3] in build and release
a2f1f4a67 cri:use debug level when receive exec process exited events
8d3eb6567 Update removal version for deprecated registry config fields
2be7a7310 ci:fix ci timeout on almalinux
98698617c Update internal/cri/server/container_create.go
af05355e4 internal/container_create: if sandboxConfig's metadata is nil will panic
bcfba26ca internal/cleanup: remove Background(), add tests for Do()
ada7bdf19 replace "cleanup.Background" for "context.WithoutCancel"
c4435bb48 internal/cleanup: fix package godoc
e58bc944f core/runtime/v2: cleanup shim-cleanup logs
9ae54175d ctr:make sure containerd socket exist before create client
6ebe15dd4 cri:fix containerd panic when can't find sandbox extension
8bc62da9c client/New: Don't unlazy the gRPC connection implicitly
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
Bumping conmon to version v2.1.3-280-g42da7ac, which comprises the following commits:
8debcb5 Move attach start message after failure check
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping aardvark-dns to version v1.16.0-20-g360f28c, which comprises the following commits:
56db1e0 release v1.16.0
2cdc994 release notes for v1.16.0
0c392ba [skip-ci] Update actions/checkout action to v5
5d34b0f fix(deps): update rust crate libc to 0.2.175
254c6d1 test: Remove empty user= directive in dnsmasq.conf to avoid SIGSEGV
b8a6c4c [skip-ci] Update actions/download-artifact action to v5
52cf09a fix(deps): update rust crate tokio to 1.47.1
ef89561 fix(deps): update rust crate tokio to 1.47.0
83b2433 coredns: fix typo in debug message
cdcaf7c coredns: process more than one message per tcp connection
5061851 fix(deps): update rust crate tokio to 1.46.1
fece9be fix(deps): update rust crate tokio to 1.46.0
57e60fa fix new rust 1.88 lint errors
7706847 fix(deps): update rust crate clap to ~4.5.40
6cf86fc fix(deps): update rust crate libc to 0.2.174
4930bb6 fix(deps): update rust crate libc to 0.2.173
9f6a258 make more use of AardvarkError
f93435d fix(deps): update rust crate clap to ~4.5.39
995be0e fix(deps): update rust crate tokio to 1.45.1
147de22 fix github release action
7af0797 bump to v1.16.0-dev
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping buildah to version v1.41.5-1-g0e4301a18, which comprises the following commits:
7d95c695c Tag v1.41.5
b7b5a915c tests/run.bats: "run masks" test: accept "unreadable" masked directories
913046ac2 Run: create parent directories of mount targets with mode 0755
4094f92e3 [release-1.41] Bump to Buildah v1.41.4
4acf2a549 [release-1.41] c/common to v0.64.2, ulikunitz/xv v0.5.12, docker/docker v28.3.3
b60c59c79 [release-1.41] Bump Buildah to v1.41.3
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping libpod to version v5.6.2-2-g3529cd312f, which comprises the following commits:
9dd5e1ed33 Bump to v5.6.2
3b1ae51c60 Release notes for v5.6.2
aa5595391d Vendor buildah@v1.41.5
1751612f33 Handle SIGPIPE to prevent machine stuck in Starting state
a2dda0410c Bump Podman to v5.6.2-dev
1e2b231515 Bump to v5.6.1
9812c1f87d Final release notes for v5.6.1
dcdaaf24be update tests duo to CRUN#1767 to support both values
f93cad508a Fix a locking bug in that could cause a double-unlock
bd0386ff56 Add R! to systemd-tmpfiles script for all /tmp dirs
f532f361c0 [v5.6] Bump c/buildah v1.41.4, c/storage 1.59.1, and ...
ca994186f0 kube play: don't follow volume symlinks onto the host
74b2ea3a68 Bump xz to v0.5.15 to pick up a CVE fix
66eb23b4d1 Preliminary release notes for v5.6.1
7601c78be3 do not pass [no]copy as bind mounts options to runtime
26a41ad665 do not pass volume-opt as bind mounts options to runtime
4e83155959 tests: Get rid of netcat on the host and use Bash's /dev/tcp
f8800b7fa8 tests: Replace ncat for socat
8f3fcf7c29 test/e2e: actually start container in startContainer
bc905f25c3 fix(libpod): truncate long hostnames to correct maximum length
a366d42c99 Add a release note for 5.6 Rosetta being disabled-by-default
cd08b088f6 windows: do not convert unconfined seccomp path
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
Moving ca-certificates into a packageconfig allows using docker without
installing all the certificates.
Signed-off-by: Patrick Vogelaar <patrick.vogelaar@belden.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
cri-o now resides under https://github.com/cri-o/cri-o.
The old URL, https://github.com/kubernetes-sigs/cri-o, now redirects
to https://github.com/cri-o/cri-o.
Correct SRC_URI and HOMEPAGE to use https://github.com/cri-o/cri-o.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
Bumping umoci to version v0.5.0-49-g645eba4, which comprises the following commits:
bb31198 build(deps): bump golang.org/x/sys from 0.34.0 to 0.35.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping skopeo to version v1.20.0, which comprises the following commits:
e2c1eecd Bump to v1.20.0
33d3ae41 chore(deps): update module github.com/docker/docker to v28.3.3+incompatible [security]
36176ac4 fix(deps): update github.com/opencontainers/image-spec digest to 2daaaaf
d1bbcb46 openshiftCluster.dockerLogin: create path with parents
5973d144 integration: rename registry binary
a4f3fb31 Update dependency golangci/golangci-lint to v2.3.0
203a4cf7 Improve parameter passing to hack/test-system.sh
319d18c0 Improve parameter passing to hack/test-integration.sh
94e94998 Centralize policy edits in copySuite.policyFixture
5d2cb67f Use t.Cleanup in fileFromFixture
d64b5991 Update module github.com/spf13/pflag to v1.0.7
0aab0745 Update module github.com/containers/common to v0.64.0
a3b8e175 Update opencontainers/image-spec after https://github.com/opencontainers/image-spec/pull/1253 .
f17b4c96 Update module github.com/containers/image/v5 to v5.36.0
f87d5696 Update dependency golangci/golangci-lint to v2.2.2
f9bdc2d8 Consolidate options shared between copy and sync to sharedCopyOptions
1f18641d Consistently use AddFlagSet before flag definitions
4ac60afc Update GPG keys not to use SHA-1
862c2331 Update module golang.org/x/term to v0.33.0
ef2375bc Update module github.com/Masterminds/semver/v3 to v3.4.0
3de83e9f Update dependency golangci/golangci-lint to v2.2.1
3c93577b Packit: disable official CentOS Stream update job
ac8b6527 Update Neil Smith's GitHub username in MAINTAINERS.md
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping runc to version v1.3.0-24-g81693c22, which comprises the following commits:
765cd9dc runc update: don't lose intelRdt state
3ac9e165 [1.3] rootfs: remove /proc/net/dev from allowed overmount list
0f13e3f7 tests/int/cgroups.bats: exclude dmem controller
ce4ad992 libcontainer: close seccomp agent connection to prevent resource leaks
2ff79594 Preventing containers from being unable to be deleted
c6825478 fix rootfs propagation mode
15dc7b51 libct/configs: stop using deprecated id
af614c94 libct/configs: fix/improve deprecation notices
daada5e8 libct/configs: add package docstring
34fd5f0e gha/ci: allow validate/all-done to succeed for non-PRs
24537420 ci/gha: allow to run jobs manually
3a93edb6 ci/gha: fix exclusion rules
6923754a ci: bump golangci-lint to v2.1
996b5185 VERSION: back to development
4ca628d1 VERSION: release v1.3.0
60e2125b go.mod: Delete exclude directives
7031f31d runc: embed version from VERSION file
51b5267a runc --version: use a function
7b2b95d9 ci: bump to golangci-lint v2.0
6a39b491 libct/intelrdt: fix staticcheck ST1020 warnings
1ceca371 Fix staticcheck ST1020/ST1021 warnings
5d9653d8 Fix a few staticcheck QF1001 warnings
bd84d8a3 libct: fix staticcheck QF1006 warning
c3318434 notify_socket.go: fix staticcheck warning
708fe761 rootfs: improve error messages for bind-mount vfs flag setting
4f7de1e0 mount: add string representation of mount flags
2d2dd7fd ci: upgrade to criu-4.1-2 in Fedora
3c375a84 Unify and fix rootless key setup
5275ebb9 ci: install newer criu for almalinux-8
657ab785 ci: bump bats to v0.11.0
6a249199 script/setup_host_fedora.sh: use bash arrays
477391a7 script/setup_host_fedora.sh: remove -p from mkdir
d230ee59 tests/int: rm some "shellcheck disable" annotations
bcc92067 ci: bump shellcheck to v0.10.0
a46cf790 Makefile: bump shfmt to v3.11.0
6d667629 runc pause/unpause/ps: get rid of excessive warning
763f3d58 pause: refactor
55e45c64 VERSION: back to development
159c67f8 VERSION: Release v1.3.0-rc.2
d8e6733e CHANGELOG: port 1.2.x changes
713045ed tests: Add env var tests
8dd36d11 libct: Override HOME if its set to the empty string
a56f2bc8 libct: we should set envs after we are in the jail of the container
73973fb0 test: check whether runc set a correct default home env or not
109116ae criu: Add time namespace to container config after checkpoint/restore
c991b266 .cirrus.yml: install less dependencies
ffbb1dd9 CI: migrate Vagrant + Cirrus to Lima + GHA
473c740e doc: update spec-conformance.md
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping libpod to version v5.6.0-7-g41224eb949, which comprises the following commits:
cd08b088f6 windows: do not convert unconfined seccomp path
fb14c3192d podman events: show network create/remove event with journald
57cb2ca3c6 Bump Podman to v5.6.1-dev
da671ef6cf Bump to v5.6.0
98c3228471 Update release notes for v5.6.0 final release
43cb0db93b [v5.6] Bump Buildah to v1.41.3
f6584e443a [v5.6] Reverse skipped test for 26773
3354423c0d Add a deprecation notice for users of BoltDB
11efbf84c7 Bump Podman to v5.6.0-dev
ec0652f4ad Bump to v5.6.0-rc2
44e1f1e598 Update release notes for v5.6.0-RC2
5dc87663a9 feat: add Podman artifact support to Go bindings and remote clients
906b97e3e1 compat: remove deprecated VirtualSize
17a1e6cfb2 compat: add shared-size par to GET /images/json
8bcfe0ea56 compat: RepoTags and RepoDigest return [] and not null
e1f65f1642 compat: remove GET /system/df BuilderSize
ec778d94b5 compat: GET /_ping return Builder-Version: 1
57493f61d0 [v5.6] Bump Buildah to v1.41.1
8865152a3b [v5.6] Skip failing Buildah v1.41.1 test
e98899689c Remove Experimental from Artifacts man pages
21cf326c7b [v5.6] Bump c/storage to v1.59.1, c/image 5.36.1, and
797a59cefa Bump Podman to v5.6.0-dev
a3a6d9cc33 Bump to v5.6.0-rc1
e22fc65217 Add release notes for Podman v5.6.0-rc1
f3e3aace95 Temp fix for #26680
6aa70f07c2 Update "podman diff container and image with same name" e2e test
e6f812c21e API server: drop inherit-labels/annotations for compat builds
7bc9691045 buildah-bud tests: handle "-t oci:" and such, skip a new --output
ac99084d03 API handler: don't force the SkipUnusedStages flag
55f4d2aa25 API handler: don't force the CompatVolumes flag
db2baee9fa API handler: don't force the IdentityLabel flag
3e673591ad Update compat-volumes setting for remotes
bf79a9b71e Update inherit-labels setting for remotes
bfe6cbe319 pkg/emulation.parseBinfmtMisc(): accept empty "flags" fields
a615dde1a5 build endpoint: document the "timestamp" flag
7517e3267a remote build: relay more new flags introduced in buildah 1.41
73f3e98947 Feat: send additional build contexts for remote builds
97103ffef5 Add Buildah build's passwd test helper
2f71314b4a Add CLI updates for inherit and unset annotations
97f27f35a5 Add missing manpages options for Buildah v1.41.0
048729a560 Bump to Buildah v1.41.0
ca5deaace1 fix(deps): update module github.com/onsi/gomega to v1.38.0
cfdf27b350 test/system: add quadlet drop-in regression test for subdirs
022bac25ea Quadlet - fix dropin overwrites if different parent dirs
ea5b83c0cb chore(deps): update dependency golangci/golangci-lint to v2.3.0
0fda2d8aa2 added updated state in podman-auto-update.1.md.in
f293c1a179 Initial implementation of `podman quadlet` commands
3c33b33424 fix(deps): update module github.com/containers/common to v0.64.0
82ad043197 docs: add description about our code structure
da3df0c45b fix(deps): update common, image, and storage deps
c1cf4b0d89 podman rm: handle case where conmon was killed
8b1f06bf8f podman inspect: fix error difference between local and remote
21356fa06b Update module github.com/containers/storage to v1.59.0
df7d787b4c Update module github.com/opencontainers/cgroups to v0.0.4
55296e1c44 Fix test that checks for podman exec leaks
e899f49926 Update common, image, and storage deps
b48eb6e2fb volume export: refuse to write to terminal (TTY)
e55270a51a podman auto-update: include container in invalid policy message
4bc22a4b3c Update module github.com/go-viper/mapstructure/v2 to v2.3.0 [SECURITY]
0c586807ea chore(deps): update dependency golangci/golangci-lint to v2.2.2
215cecdbaa Maintainers: add Nicola Sella as Reviewer
78d4f63b93 Maintainers: add Jan Kaluza as Reviewer
5731557d54 Maintainers: add Lewis Roy as Reviewer
b4ed23dc27 fix(deps): update module golang.org/x/net to v0.42.0
8987fd412a fix(deps): update module golang.org/x/crypto to v0.40.0
047d231008 test/e2e: podman update make env check stricter
a360b29626 pkg/bindings/containers: do not ignore ErrUnexpectedEOF
ffec133766 pkg/bindings/containers: do not create sub slice
f42453457c pkg/bindings/containers: don't check for short read
439448c287 Quadlet - add support for the Policy key for .image files
5e44c17309 Clarifies error message when using an improperly formatted secret with kube
3e8b2d7d96 Fix seccomp profile path on Windows
c01eaa87dd fix(deps): update module golang.org/x/term to v0.33.0
1c943f0ad8 docs: replace fuse-overlayfs example with additionalimagestore
b59648a2d6 hack/podman_cleanup_tracer.bt: check map before deleting keys
1f8bc9d736 hack/podman_cleanup_tracer.bt: clamp str size for strcontains()
5e5bfadf93 hack/podman_cleanup_tracer.bt: use new max str lenth
152849ebd2 libpod/build: add headers
c735f8e237 Update the journalctl function to ignore No entry message
0e106c24e0 fix(deps): update common, image, and storage deps
0f61e48ac5 [Artifacts] Remove erroneous ArtifactListOptions var ImagePushOptions
53b5cb5581 [Artifacts] Add note about ArtifactInspectOptions Remote var
cd807f8ff6 Quadlet - print warning when fail to parse
2b4b4c5b06 manpages: adds example for podman system renumber
b10beb5395 Add basic locking to Libartifact
c5c6e44d7d Fix documentation around checkpoints
4410fcb394 cirrus: setup WSL logging
99e719aec8 fix(deps): update github.com/containers/image/v5 digest to 3532547
13816eb86f Fix `podman inspect` to correctly handle log_size_max
31b4efcaec warn instead of error, lift logic to main.go
68e7136536 Enforce wsl.exe UTF-8 encoded output
9fbe2fffe9 WSL commands execution refactoring
0f403ac43e Clarify meaning of --syslog
4b1f7bcb9a Quadlet - Error when units define User, Group, or DynamicUser in Service group
5391721aa3 fix(deps): update common, image, and storage deps
10a5f9715b fix(deps): update module github.com/shirou/gopsutil/v4 to v4.25.6
d8599658ff Makefile: add Makefile to sources
145fb74dbf rpm: add grpcnotrace build tag
3d453572a9 Makefile: add grpcnotrace build tag
62bfeb5d88 Add conditional release-checking system test
fed198eaf9 api: Don't HTML escape application/json responses
ffbb0ed7b0 update CI images 2025-06-27
92a6298729 chore(deps): update dependency golangci/golangci-lint to v2.2.1
38ed6c6589 vendor: update c/{common,image,storage} to main
5786d5f846 fix new lint errors from the docker update
f1a1948b23 Quadlet - Do not override existing Environment in Service group for Pod units
cf87278e66 vendor: update docker to v28.3.0
570fbf0078 pkg/domain/infra/tunnel: ignore error from removeContainer()
247c1dfb53 libpod: remove deadcode
09caf60687 remove test/framework/framework.go
d2291d7f1a pkg/util: remove deadcode
552e38ec6d remove pkg/util/camelcase
6893ecc469 pkg/rootless: remove deadcode
880808dfb9 pkg/parallel: remove deadcode
6bfd28bc6f pkg/namespaces: remove deadcode
f3c82a917c pkg/machine: remove deadcode
d919a3666b pkg/libartifact: remove deadcode
6da360a223 pkg/fileserver: remove deadcode
fb5cbb9b1f pkg/farm: remove deadcode
1a0917de35 pkg/errorhandling: remove deadcode
4d5e0a647c podman images --sort use ChoiceValue flag
a92e685c0b pkg/domain: remove deadcode
fc21bcd7d1 pkg/bindings: remove deadcode
9d328d8782 pkg/api: remove deadcode
75bad52af5 remove unused ShouldRestart() code
1d3089ea82 cmd/podman: remove deadcode
054036f073 podman images --sort autocomplete options
c99d237349 Update Neil Smith's GitHub username in MAINTAINERS.md
2ef0148b8a machine: enable nested virt on libkrun by default
e00dfa606a pkg/machine/e2e: add CVE-2025-6032 regression test
b5783ae1fb test/e2e: fix podman run check dns flake
b099a93580 Bump bundled krunkit from 0.2.1 to 0.2.2
bfc327a08e Secret create - add ignore option to allow noop
f21dacc4fb cmd/podman: add --latest option to update #26380
f266034d56 docs: document when a volume is chowned
98876454cb Refactor `volume import` to support the remote client
67fa077a5c update image_fix -> automation_images#407 skip test duo to rawhide know issues
5ab4328318 Podman pull - add policy flag
17601aa913 Pod YAML: Add support for `lifecycle.stopSignal`
726b506acc machine init: fix tls check
ca1c4388b3 update podman-machine-start with examples for --no-info and --quiet
01fb3aaae4 test/e2e: fix "with unsafe hostPath subpaths" test
964069326d quadlet: remove indirect logrus import
fa67681601 docs: add three examples to podman-generate-spec man page
e4c810a8f1 fix panic on state refresh
5989370c39 pkg/systemd: expose [Pod] ExitPolicy key for pod create --exit-policy
1f9893817b volumes: add new --uid and --gid option
d79d596bce docs: add an example to podman-secret-rm man page
a218dfa2fd chore(deps): update dependency pytest to v8.4.1
d7f980b719 [CI:DOCS] Tweak Governace slightly
a93b63c4ad remove .github/workflows/pr-title.yml
0439167943 remove hack/install_catatonit.sh
bf7c9a1536 Makefile: remove some old files from clean target
8cfe7bb003 remove cni/
6623ab8d17 remove pkg/timetype
5d88999447 remove contrib/modules-load.d
241f2d7928 remove contrib/snapcraft
4582c3413f remove contrib/script/size.sh
605b1f7386 remove contrib/remote/containers.conf
e9aad3d40d remove contrib/dependabot-dance
14b1ee5837 remove contrib/dependencies.txt
febb667865 remove contrib/containers-common
4ec7d35cbb Removed the 'Deleted: ' prefix from each example
6b996445bc add more exmples applying current style for each page
15d8b5b2fb docs: add an example to podman-network-rm man page
139d3fc82b [CI] Correct ST1005 staticcheck lint rule
6510d81f69 docs: add examples to podman-system-migrate man page
63bf454d66 Refactor `podman export` to work with the remote client
0ab8a3c576 artifact mount: add new name option to specify filename
c647a7200e Fixes: #26374 add example network connect with mac address
21f34601eb artifact mount: improve single blob behavior
6368b248f0 docs: remove bogus markdown heading in podman-ps
fd325e33fd Update podman system prune doc
bd2c838b0e fix 26348: add container diff --latest doc
ffa4c124a1 Add missing --pod examples to podman ps manpage
93d66542d4 Move 'Examples' section down in the podman-volume-create man page
bb571b48c3 fix(ci): add ST1005 linter rule
cbba265f29 Add examples of `--all` flag
1a461fe41a Manpages: podman machine init add example with --now
24e5c00e6e Update docs/source/markdown/podman-secret-inspect.1.md
4a35cf00ec Improve documentation for podman-secret-inspect, closes #26362
ad7087af56 Add Craig Loewen to Reviewer role
ae49463a8f man pages: Add an example about --no-prune
085082a805 Manpages: add podman exec missing example of detach option
d680c48eaf fix(cmd): improve ValidURL reliability
d1187be8a3 Bunch of trivial manpage fixes
1141ae4a87 libpod: log file doesn't need to be executable
9922bddb1f libpod: do not dereference nil pointer
54afcdf6b3 libpod: fix file descriptor leak
5838bfef9a podman-update: fix EXAMPLES
2221ca9943 test: check podman update errors on non-block devices
3f0cdb9414 pkg/specgen: error out when a block device isn't
9b6e548387 pkg/specgen: refactor FinishThrottleDevices, WeightDevices
2b6c477884 quadlet: handle generate environment params that inherit from host
ad882ac730 fix(deps): update module go.etcd.io/bbolt to v1.4.1
d4a8598ca4 make validate-in-container changes
0080368fd6 Clarified the consequences of --network=host
22789928d4 podman machine: pull wsl image from machine-os
48b19e98f9 remove hack/libdm_tag.sh
9aedc47aff rpm: build rpm with libsqlite3 tag
c6842d3425 Makefile: use libsqlite3 build when possible
c45b27ffb0 Remove bin/podman.cross Make target
c96d87ccad Allow generate-bindings on darwin
087a44a8e7 Update module github.com/go-swagger/go-swagger to v0.32.3
f0c15f1c7a docs: replace RemapUsers=keep-id with UserNS=keep-id
2825521337 tmpfs: Add support for noatime mount option
a87bef9606 fix(deps): update module golang.org/x/net to v0.41.0
0f7b21ad00 pkg/machine: remove unsused net recover file
0c77654be7 Revert "podman machine: fix proxy test"
adc35b157e pkg/machine: remove old fw_cfg service
0b8dd90840 podman machine: fix proxy test
0c406f25ad pkg/machine/e2e: skip rosetta test
793242da8d RPM: Limit Epoch 102 to podman-next copr
18ecd2046b quadlet: generate RequiresMountsFor for Type=bind volumes
b85d770be0 Make podman.io update action reusable
971321228c Skip layer digests for podman system check --quick
465578d7ec test/buildah-bud: skip new build-with-two-outputs on remote
4286f03b34 test/buildah-bud: update buildah-tests.diff
c1653bdc29 Build the `dumpspec` test helper for the `buildah bud` tests
ac71bc6cf2 vendor: update buildah to latest main
96abeafc61 vendor: update c/{common,image,storage} to latest main
d44f0afa84 vendor: update github.com/docker/docker to v28.2.2
94478a4144 fix(deps): update module github.com/vbauerster/mpb/v8 to v8.10.2
a0f7db44e8 quadlet: add InterfaceName option to network unit
8532ecb710 fix wsl install workflow on machine init command
99cfdc04db feat: Add OCI Artifact support to the Podman REST API
eadded9154 build: reuse parse.ContainerIgnoreFile from buildah
87450b8f8b podman buildx inspect support
0719acbe7f chore(deps): update dependency pytest to v8.4.0
89b8e23385 test/system: check --dns-option behavior
c87a761e05 podman system check: Fix error check logic
75dc508e98 libpod: don't force only network search domains
04a1a39a69 fix(deps): update module github.com/shirou/gopsutil/v4 to v4.25.5
869fceb0fd update c/common to latest main
da95bbdd5d play kube: never add empty alias
b64817de40 fix(deps): update github.com/opencontainers/runtime-tools digest to 0ea5ed0
2c252a7614 Don't BuildRequires: ostree-devel
3837339e0e Allow not specifying type with --mount flag
775a85004f Add "dest" as an alias for "destination" in `--mount`
f2d941b241 docs: quadlet can translate names now
db53f6240d e2e: ref full URL for aarch64 criu precheckpoint issues
a17f8afbbc specgen/generate: Fix log tag priority
5e7c0a66ce e2e: skip pre-checkpoint tests on aarch64
3a981915f0 Handle "Entrypoint":[] in compat containers/create API.
415668c802 system df --verbose don't crash
b276e7ef21 Fix SQLite volume lookup queries matching too liberally
b551939be6 vendor: update c/{buildah,common,image,storage} to main
e0b08fcfa3 Recreate the Rootfs in mountStorage for infra-container.
ca20c42a52 test: fix race conditions in /dev/kmsg tests
f25cefcb1b Fix overlay volumes on Windows
d5520ded64 chore(deps): update dependency setuptools to ~=80.9.0
051be9b2d2 libpod: Don't exclude running deps from the container graph inputs
66bf98e27c compat API: respect base_hosts_file containers.conf option
416bb84c0e Trigger podman.io version bump from release action
ad05a878df Packit: remove propose-downstream for centos stream
44ec71358e Packit: use fedora-all alias for tests
9d4267c8f2 Disable the tests for rootless pods
5bfdb25b26 Support --cpuset-<cpus/mems> in podman kube play
5797c1dd27 pkg/machine: don't use dummy linger service
79a857e0a0 pkg/machine: correctly enable lingering
9872f0e83c Update expected output for a machine copy test
af495e1aa9 Replace alpine_nginx with TESTIMAGE in e2e tests
9a452db918 Support '$FOCUS' env variable on winmake too
6265ef07ae pre-commit: exclude rpm/gating.yaml from check-yaml
50379429ca lint: Fix linter issues on TMT files
cff69f89e9 Update release notes on main
c39fd061f0 fix CONTRIBUTING to say reference issue number 'or' url
92a15085cb compat: fix Container State.Status JSON values
f10e2ffd36 chore(deps): update dependency setuptools to ~=80.8.0
953e385bd2 libpod: fix mount order for "/" volume
b9cc2d87d7 Update RELEASE_PROCESS.md
6d6ebad829 github: remove fcos next image workflow
3ab45807b4 [skip-ci] Packit: set fedora-all after F40 EOL
736ca60378 test/e2e: do not check dns.podman
7c0262db3d compat: Add DefaultAddressPools field to GET /info
265ca77276 Be explicit about ssh configs suitable only for localhost
b82f2962c3 compat: Add CgroupnsMode to POST /containers/create
06ddffc81d Update dependency setuptools to ~=80.7.1
9c206a467d docs: drop --pre-checkpoint requirement
90ee7c86a3 podman: remember hooks-dir on restarts
53f118d135 GHA Release: Fix windows installer uploads
3e08c2abf0 Revert "GHA: Pin Go to 1.24.2"
db65baaa21 fix macos compile issue with go 1.24.3
206d92c25f Packit: disable OpenScanHub scans
fb9ef0dda0 GHA: Pin Go to 1.24.2
fe84fbae72 fix(deps): update module github.com/vbauerster/mpb/v8 to v8.10.1
637c264e2e fix issues found by nilness
6ae920de8b Bump bundled krunkit to 0.2.1
59d9f1ea5d chore(deps): update dependency setuptools to ~=80.4.0
5471f6e191 chore(deps): update dependency docker to v7
59c45a01c7 fix(deps): update module github.com/rootless-containers/rootlesskit/v2 to v2.3.5
6a96f70180 fix(deps): update module github.com/crc-org/vfkit to v0.6.1
b572b892b1 fix(deps): update module github.com/containernetworking/plugins to v1.7.1
077649f9d0 Fix: Use SIGKILL instead of SIGTERM when ExecStopContainer timeout is 0
499ea1168b Fix: Ensure HealthCheck exec session terminates on timeout
d7fefb7064 [skip-ci] Tighten version match
700c679cd2 Quadlet - Update the docs to reflect the default naming of resources
09d9d3e26b Revert "Quadlet - fix pod name to depend on the name of the generate service"
5be3f8d480 Fix a shellcheck warning about word splitting
a5748206d1 fix(deps): update module github.com/vishvananda/netlink to v1.3.1
7a161115f9 Fix parsing of paths for unmask
b6eeaea7f3 Take path for wsl instead of forcing through WindowsApps
d12588f581 fix(deps): update module golang.org/x/net to v0.40.0
136f2e1ba4 Update win-installer github job for arm64
efc3b178bb Build windows arm64 artifacts
35e1c2033a Fix windows arm64 installer build
f4819412b8 README.md: add openssf passing badge
9dffc251fc fix(deps): update module github.com/containers/gvisor-tap-vsock to v0.8.6
d6239385fd Update podman-secret-create.1.md
4f38c2fea2 Quadlet - fix pod name to depend on the name of the generate service
4a4b8dcfe9 fix(deps): update module golang.org/x/crypto to v0.38.0
f825639ebc Verify the ExecSession pid before killing it.
32d389a19c fix(deps): update module golang.org/x/term to v0.32.0
1f7d8e2273 fix(deps): update github.com/vishvananda/netlink digest to 9d88d83
fbdeff2b88 fix(deps): update module golang.org/x/sys to v0.33.0
0b1623e2e4 fix(deps): update module golang.org/x/sync to v0.14.0
5d6c784252 docs: fix markdown format
ec6423e73b chore(deps): update dependency golangci/golangci-lint to v2.1.6
78065fd8c7 chore(deps): update dependency setuptools to ~=80.2.0
3448ba5091 Automatically bump to -dev after tag
7fddbd4d4d Update winmake.ps1 to build arm64 artifacts
2419732eb7 [skip-ci] TMT: system tests
ac6080bea9 pkg/machinie: use TZ env for reading local timezone
a90fad3fc8 pkg/machine: rework getLocalTimeZone on linux
193d7b8202 pkg/machine: properly setup zoneinfo symlink
b431f06e64 pkg/machine: do not add broken localtime symlink
039679d0ae fix(deps): update module github.com/vbauerster/mpb/v8 to v8.10.0
ebcdd3c8cd fix(deps): update module github.com/shirou/gopsutil/v4 to v4.25.4
bc810cb07d fix(deps): update github.com/hugelgupf/p9 digest to abc96d2
b7f67badf3 chore(deps): update dependency setuptools to ~=80.1.0
941a6d0c05 pkg/signal: ignore SIGTOP for signal proxy
a4d0067249 pkg/signal: rework CatchAll() behavior
8de2e0ec21 sigproxy: ignore if container already removed
80065f7224 ci: Load null_blk for I/O limit tests
8160e02459 test/e2e: Use nullb0 for IO limit tests
3b61e56152 test/system: Use correct device for I/O limit tests
f6b91d7be0 inspect: Ignore character devices for IO limits
d7eaf42727 Do not error on tz detection
c9b1bd1cf3 Stop setting btrfs_noversion build tag
9c5f7662d1 Remove providers checks from the Windows Installer
9b2fb40ab8 Quadlet - remove the usage of cid and podid for container and pod files
8e6ecb97c9 Fix running machines with volumes containing spaces
ad20e257d6 Makefile: move some Go-related variable definitions up
24267452e6 Handle signal preventing Start from completing
f6be9fbc7f Build documentation in a container on Win arm64
2b06c01357 Fix mach os pr release action
8d65e0e36c bump main to 5.6-dev
579b17425e pkg/bindings: wrap image push decode error
6c0e581fa9 pkg/bindings: fix infinite loop/memory leak in image pull
ae9e85bfc5 Update "check.c" to be C23 compliant
7b1055a5fb feat: Add support for configuring swap in Podman machine
6c9f378a9b fix(deps): update module github.com/opencontainers/cgroups to v0.0.2
3f56de0199 Quadlet - use helper function to initialize service struct
2588b96993 Fix logging podman machine server9 output
fd444bd7d7 OWNERS: Fix Github handle
e66ff395b7 Fix handling of "r_limits" in Podman REST API /libpod/containers/create
7819879776 chore(deps): update dependency setuptools to v80
6e7de438cc bug: Correct Docker compat REST API image delete endpoint
a969dbd73e update podman socket output to include also exposed ports
585f046e95 Disable FS mount in volume only test
4268c61dd0 Added tests for inheritlabel fix
0c4d023822 Fix: inheritlabels=true if query param absent
75f05a9807 Add Mohan Boddu as community manager
710c077342 chore(deps): update dependency golangci/golangci-lint to v2.1.5
7e14a03409 fix(deps): update module github.com/cpuguy83/go-md2man/v2 to v2.0.7
633f727f2d Quadlet - use helper function for handling key=val type keys
802fc15b1e Add Label to quadlet pod
0eac57ed31 podman start: remove container if needed
3a2d7587fe remote: don't print bogus error when starting container attached
9b751a27b9 [skip-ci] Packit: do not merge PR in CI
e443bffe5a [skip-ci] Packit: re-enable fedora-41 targets
4dd9340a56 hack/bats: Pass --tap (-t) option to bats
bfd5de309f hack/bats: Fix to allow multiple tests
bf7dcd5619 Fix: Remove appending rw as the default mount option
c1ad54f89a hack/bats: Allow specifying PODMAN_ROOTLESS_USER
0463ad12cb libpod: fix a confusing error message from 'podman system reset' on FreeBSD
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping crun to version 1.23.1-9-gca8e5c74, which comprises the following commits:
eb9912e0 build: add check for static builds
bb04c555 libocispec: sync
a9d12996 linux: never chown devices
eecadda9 tests: fix test_mount return type
38c5795e tests: add capabilities to net test
d20b23db NEWS: tag 1.23.1
f56fc445 utils: add bounds checking for Unix domain socket paths
59066cc9 ring_buffer: do not use the reserved byte
abc42863 utils: write to ring buffer whenever there is space available
7d21fa1e tests, podman: skip auth test
3fc25616 NEWS: tag version 1.23
69c3ba16 krun: define KRUN_NITRO_IMG_TYPE_EIF if missing
aa9e1c51 krun: drop unused variable
55d603f2 krun: enable virtio-gpu
e76c7451 container: refactor container_init_setup
7acad117 container: refactor libcrun_container_run_internal
e83abf35 linux: refactor do_mounts
f9edd528 container: use xmalloc instead of malloc and OOM
2dbee366 criu: Add support for tcp-close
3040a07f cgroup-resources: extract common pattern
d30d1512 linux: fix regression in libcrun_configure_network
220a39a6 krun: Give container access to nitro_enclaves device
ac297b79 krun: Allow /dev/kvm to be unavailable with nitro
500f1c92 krun: Configure nitro enclave data if enabled
d9ddb935 krun: Use nitro flavor when indicated
702d09b7 krun: Open libkrun-nitro handle during loading
54771724 krun: End loop traversal when SEV device found
72b35020 linux: add missing crun_make_error
e2789c70 container: propagate error from exec setup
4e5375cb libcrun: inline can_skip into write_cgroup_resources_v2
ad9f90b7 tests: add test_bpf_devices
6f466dcc cgroup,systemd: do not install duplicated ebpf
edf66788 cgroup,systemd: check for loaded bpf on update
227bd0f1 cgroup,systemd: use BPFProgram=device if supported
832db004 write_devices_resources_v2: refactor
1dae52ba cgroup,systemd: allow empty slice in cgroupsPath
5610c0cf RPM/Packit: wasmedge support Fedora-only
39bdaaef Packit: disable propose_downstream for CentOS Stream
c6dfc871 RPM: placeholder check to silence rpmlint
8d61001d crun: print version even with invalid rundir
76805119 Remove dead code after exit
0b9aab09 handler: add NULL check to handler_manager_free
a755e043 utils: Add NULL pointer check to cleanup_close_vecp
66d710ce linux: add NULL check to cleanup_free_init_statusp
ce47a219 linux: Add NULL pointer checks to free_remount
54d4b042 string_map: ignore empty map
f25352f9 linux: limit mounts creation outside of namespace
d51df096 lua: clean up unused defines
4b7257d4 linux: fix regression with idmapped mounts
83f601d3 lua: fix build errors
4de19b63 NEWS: tag 1.22
aa082854 tests: install catatonit package
72e5468e tests: improve cpu_weight_systemd coverage
4998c928 cgroup: improve conversion from shares to weight
aaeeefc3 tests: install gperf on alpine
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
Bumping cri-o to version v1.33.0-167-g259e23fd4, which comprises the following commits:
21b03fda2 inspect: add hostnetwork information
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping containerd to version v2.1.4-6-g30bd62aac, which comprises the following commits:
74b0505eb ci: bump Go 1.23.12, 1.24.6
3c174cf64 fix: create bootstrap.json with 0644 permission
5ef6ea747 sys: fix pidfd leak in UnshareAfterEnterUserns
112e41363 Add release notes for v2.1.4
add2dcf86 Ensure fetcher always closes body and properly calls release
34a1cb1dd fix(dockerFetcher): resolve deadlock issue in dockerFetcher open
82c4d6875 ci: bump Go 1.23.11, 1.24.5
6cc2a8d77 Fix intermittent test failures on Windows CIs
6adc69312 Remove WS2025 from CIs due to regression
8d194c19f erofs-snapshotter: make IMMUTABLE_FL optional
2df7175d7 client/New: Don't unlazy the gRPC connection implicitly
02298e1a0 cri:fix containerd panic when can't find sandbox extension
4902adb92 update go-md2man binary to v2.0.7
583133e71 erofs-differ: fix filesystem UUID for tar-converted layers
57db13d50 Amend runtime handler test for stable order
d822c9048 CRI: Stable sort for RuntimeHandlers
a2fd70639 Test showing RuntimeHandlers in Status() are unordered
b74268f86 bugfix:close container io when runtime create failed
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping buildah to version v1.41.3-1-ga56e49701, which comprises the following commits:
b60c59c79 [release-1.41] Bump Buildah to v1.41.3
1f7f1d285 Commit: don't depend on MountImage(), because .imagestore
5442721d4 [release-1.41] Bump to v1.41.2
72e680a9e Rework how we decide what to filter out of layer diffs
870c53c69 Note that we have to build `true` first for the sake of its tests
4fe68bc9b copier.Stat(): return owner UID and GID if available
f42946075 copier.Get(): ensure that directory entries end in "/"
9933e7966 copier.Get(): strip user and group names from entries
4ae77145e imagebuildah.Executor/StageExecutor: check numeric --from= values
2de767f3a [release-1.41] Bump Buildah to v1.41.1
0d0c7340e [release-1.41] Bump c/* projects and Buildah to v1.41.1
540cec341 [release-1.41] generatePathChecksum: ignore ModTime, AccessTime
f06ea2c5d History should note unset-label, timestamp, and rewrite-timestamp
d2e9062ea pkg/cli.GenBuildOptions(): don't hardwire optional bools
af12f7539 Only suppress "noted" items when not squashing
dee9f3d19 Test that pulled up parent directories are excluded at commit
34b0bc031 Exclude pulled up parent directories at commit-time
4f2feb8f4 copier.Ensure(): also return parent directories
19041cde3 copier.MkdirOptions: add ModTimeNew
ea7dfee85 Restore the default meaning of `--pull` (should be `always`).
9f185b777 Bump to Buildah v1.41.0
2b7cb35d0 Bump to c/storage v1.59.0, c/image v5.36.0,
9c525fd52 fix(deps): update module github.com/containers/image/v5 to v5.36.0
b8c6fcf21 fix(deps): update module github.com/containers/storage to v1.59.0
350288967 stage_executor: check platform of cache candidates
96588db2e fix(deps): update module golang.org/x/crypto to v0.40.0
d9443fe42 fix(deps): update module golang.org/x/term to v0.33.0
d6e5cbaf7 fix(deps): update module golang.org/x/sync to v0.16.0
c694e3c7a fix(deps): update module github.com/docker/docker to v28.3.2+incompatible
eea4838d8 ADD/COPY --link support added
063ee7625 RPM/TMT: account for passwd binary moving to tests
af210ea87 buildah: move passwd command to tests
16c0bdad5 Update "bud with --cpu-shares" test, and rename it
7a482aceb Remove BUILDTAG btrfs_noversion as no longer effective
c0fdc9a05 fix(deps): update module github.com/docker/docker to v28.3.1+incompatible
513775f3f fix(deps): update module github.com/moby/buildkit to v0.23.2
34488b549 fix(deps): update github.com/containers/luksy digest to bc60f96
9f809a88f chore(typos): fix typos
d95b2dad1 vendor: update c/{common,image,storage} to main
b47791a93 chore(deps): update module github.com/go-viper/mapstructure/v2 to v2.3.0 [security]
46e814173 fix(deps): update module go.etcd.io/bbolt to v1.4.2
f172a9d1d Update Neil Smith's GitHub username in MAINTAINERS.md
149bf968f Accept SOURCE_DATE_EPOCH as a build-arg
5bb8d5ed4 fix(deps): update module github.com/docker/docker to v28.3.0+incompatible
0832c3e08 Add conditional release-checking system test
52bbc61e1 info,inspect: use the "formats" package to get some builtins
7944b4b2b Use containers/common's formats package instead of our own
5968d8204 build, commit: set the OCI ...created annotation on OCI images
df36bb835 commit: exclude parents of mount targets, too
a3bea818b run: clean up parents of mount targets, too
7d5f1e1ca tarFilterer: always flush after writing
fce45b77d Builder: drop the TempVolumes field
fe4c1b734 Update module github.com/moby/buildkit to v0.23.1
128153867 Update module github.com/opencontainers/cgroups to v0.0.3
5b1d3e666 Add CommitOptions.OmitLayerHistoryEntry, for skipping the new bits
5995db7af Update module github.com/fsouza/go-dockerclient to v1.12.1
c12808594 conformance: use mirrored frontend and base images
ee5fd19c8 commit-with-extra-files test: use $TEST_SCRATCH_DIR
c578786e5 fix(deps): update module github.com/moby/buildkit to v0.23.0
3e11fea02 "root fs only mounted once" test: accept root with only the rw option
f8f398bb3 Run with --device /dev/fuse and not just -v /dev/fuse:/dev/fuse
a9a9a4396 CI: pass $BUILDAH_RUNTIME through to in-container test runs
b97fd7d68 CI: ensure rootless groups aren't duplicates
47da2f29b build: add support for --inherit-annotations
9ecc98e58 CI: give the rootless test user some supplemental groups
ab8fc6dee bud,run: runc does not support keep-groups
2eb666c22 Fix lint issue in TestCommitCompression
873e5458c Add a unit test for compression types in OCI images
aa84d9c34 Support zstd compression in image commit
1aa6c1e35 fix(deps): update module go.etcd.io/bbolt to v1.4.1
03b980a3e rpm: build rpm with libsqlite3 tag
e5b876571 Makefile: use libsqlite3 build when possible
962ab4bb1 commit,build: --source-date-epoch/--timestamp omit identity label
b167073d5 docs: add --setopt "*.countme=false" to dnf examples
9f35e8a2a Builder.sbomScan(): don't break non-root scanners
2d0152e99 build: --source-date-epoch/--timestamp use static hostname/cid
87d9db82c fix(deps): update module golang.org/x/crypto to v0.39.0
5842593d2 fix(deps): update module golang.org/x/sync to v0.15.0
865daceeb build: add --source-date-epoch and --rewrite-timestamp flags
83acf720d build,config: add support for --unsetannotation
6c82e7eac commit: add --source-date-epoch and --rewrite-timestamp flags
a4a30cf5e fix(deps): update module github.com/openshift/imagebuilder to v1.2.16
5b26b7922 vendor latest c/{common,image,storage}
9c2b43ccc Tweak our handling of variant values, again
db336cef4 Don't BuildRequires: ostree-devel
56f3171ab parse, validateExtraHost: honor Hostgateway in format
56cfd2fdf remove static nix build
2717599f9 Ensure extendedGlob returns paths in lexical order
910933b33 CI: run integration tests on Fedora with both crun and runc
b122c325f buildah-build(1): clarify that --cgroup-parent affects RUN instructions
8178c3a5d runUsingRuntime: use named constants for runtime states
4ea64c387 Add a dummy "runtime" that just dumps its config file
d53d837e0 run: handle relabeling bind mounts ourselves
913e4d2d3 fix link to Maintainers file
c0c4148fc Update to avoid deprecated types
285dcc914 fix(deps): update module github.com/docker/docker to v28.2.0+incompatible
1f6302a6e [skip-ci] Packit: cleanup redundant targets and unused anchors
a99ad87af [skip-ci] Packit: set fedora-all after F40 EOL
26f4f3a02 Use Fedora 42 instead of 41 in that one conformance test
eee1f2102 [CI:DOCS] README.md: add openssf passing badge
48a4a446e fix(deps): update module github.com/moby/buildkit to v0.22.0
dda8e65e8 copier: add Ensure and ConditionalRemove
d568dda6c [CI:DOCS] update a couple of lists in the build man page
3a85df003 build: allow --output to be specified multiple times
b9a65a9d8 add: add a new --timestamp flag
a57e7f4b2 tests/helpers.bash: add some helpers for parsing images
5cfbf7241 pkg/parse.GetBuildOutput(): use strings.Cut()
ca3271a15 [skip-ci] Packit: Disable osh_diff_scan
ee0f750ea internal/util.SetHas(): handle maps of [generic]generic
cf4635e86 Refactor NewImageSource to add a manifest type abstraction (#5743)
964ec24c1 [skip-ci] Packit: Ignore ELN and CentOS Stream jobs
8f885843d imagebuildah: select most recent layer for cache
7fbca08c0 [CI:DOCS] Add CNCF roadmap, touchup other CNCF files
168eef473 fix(deps): update module golang.org/x/crypto to v0.38.0
ada0ac0b8 Fix typo in comment (#6167)
081e9b308 Support label_users in buildah
27c2c3e4b fix(deps): update module golang.org/x/sync to v0.14.0
ffcbec7f7 fix(deps): update github.com/containers/luksy digest to 4bb4c3f
cbe582395 test/serve: fix a descriptor leak, add preliminary directory support
f97596adf fix(deps): update module github.com/opencontainers/cgroups to v0.0.2
fd8e85e83 fix(deps): update module github.com/moby/buildkit to v0.21.1
9ac03e6bf Update to avoid deprecated types
7ce7072f2 fix(deps): update module github.com/opencontainers/runc to v1.3.0
a59af89cd Only filter if containerImageRef.created != nil
2dae3b465 Drop superfluous cast
15278aa27 Remove UID/GID scrubbing.
ef7ad851a fix(deps): update module github.com/seccomp/libseccomp-golang to v0.11.0
e4cf6cbb9 cirrus: turn prior fedora testing back on
5de286ca8 chore(deps): update dependency containers/automation_images to v20250422
97cf88f50 fix(deps): update module github.com/docker/docker to v28.1.1+incompatible
36adabb2d Bump to Buildah v1.41.0-dev
365ad53df CI vendor_task: pin to go 1.23.3 for now
522bc8ba5 fix(deps): update module github.com/containers/common to v0.63.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping moby to version v28.3.3-53-g80947b5724, which comprises the following commits:
553c3b8c9f vendor: go.etcd.io/bbolt v1.4.2
7d7edf46a6 go.mod: github.com/containerd/containerd/v2 v2.1.4
993eae423e go.mod: dario.cat/mergo v1.0.2
2c93d2f909 go.mod: github.com/docker/go-events v0.0.0-20250114142523-c867878c5e32
6305a44e58 go.mod: github.com/fernet/fernet-go v0.0.0-20240119011108-303da6aec611
03a4cd8d9a vendor: code.cloudfoundry.org/clock v1.37.0
687cd8ebae integration/system: remove TestEventsBackwardsCompatible
95c3340e75 integration/system: add TestEventsNonBlocking
e364b6c466 ci: add golangci-lint configuration to ignore deprecated api type usage in daemon
9396c31e13 api/types: deprecate disk usage types for build cache, container, images, and volumes
bcbccc6eec pkg/jsonmessage: JSONMessage: deprecate From, Time, and TimeNano fields
5a0d62cab0 Add multierror function to api network
8a89fe5c19 daemon/router/image: initialize default authConfig
e53cd07fcc client: remove getDockerOS utility in favor of "Ostype" header
cf0958f89b docs: api: Tweak type of ForceUpdate to uin64
fd89baef7e api: swagger: Tweak type of ForceUpdate to uint64
3fc876cd7b update to go1.24.6
85aaa37c08 Dockerfile: update containerd binary to v1.7.28
16c7a35584 Dockerfile: update runc binary to v1.3.0
61443a72c2 integration/container: XFAIL flaky TestExecResize on Windows
492b3c94cb integration-cli: fix flaky TestRestartStoppedContainer
d5b47b8fdf integration/container: fix flaky TestRemoveContainerWithVolume
30663d3e86 Dockerfile: bump gotest.tools/gotestsum v1.12.3 (for go1.25)
3a15e3ed23 download-frozen-image-v2: Use curl -L
ad243becbe download-frozen-image-v2: handle 307 responses without decimal
648c74d243 Add separate const for daemon httputils to avoid jsonmessage import
eadee3e5b9 [28.x] api/types/filters: reimplement ToParamWithVersion
60e84e7350 api/types/system: move DiskUsage, DiskUsageOptions to api/types/backend
7d6a75b342 runconfig: update fixtures for TestDecodeContainerConfig
596404f3aa integration-cli: remove tests for pre-docker 1.7 clients
9fd8eaa95d Delete TestRunDNSOptionsBasedOnHostResolvConf
b2f03f45ea profiles/apparmor, seccomp: migrate to separate module
3e9ff78b94 bridge: Reapply endpoint iptables rules on firewalld reload
29ed80aa86 bridge: Trigger firewalld reload during bridge integration tests
e4b1f89996 daemon/server: remove compatibility with API v1.4 auth-config on push
0c9e14dcce hack/buildkit-ref: temporarily bump BuildKit to head of v0.23 branch
4205776b85 client: always send (empty) body on push
38c0abffce update to go1.24.5
bfade89ec2 integration/networking: increase context timeout for attach
a818cfd87b gha: run windows 2025 on PRs, 2022 scheduled
653777a522 gha: update to windows 2022 / 2025
1ad3df4768 api: swagger: Tweak type of GwPriority to integer
6323db8e78 docs: api: Tweak type of GwPriority to integer
a3c8f7fa8c dockerfile: update govulncheck to v1.1.4
dfbba63a34 gha: remove GO_VERSION build-arg from builds
e17e96e3c5 vendor: update buildkit to v0.23.2
a2af8bdebd gha/bin-image: add major and minor version image tags
docker/cli: update to v28.3.3
873609d790 cli/command/*: remove deprecated cobra command constructors
570a17b3bc internal/commands: RegisterLegacy: remove redundant copy
4405c0bd50 internal/commands: remove mutexes / synchronisation
56cab16779 Register CLI commands implicitly
e650803f09 opts: deprecate ParseEnvFile
bd8e3e4440 Unexport trust commands
c6b7268932 Unexport plugin commands
2ce94e4fff internal/registryclient: repositoryEndpoint: memoize repoName
bf39340294 Unexport swarm commands
d4588c711c Unexport registry commands
630fe430ff Unexport stack commands
3b0edc794c Unexport context command
9961e39d40 Unexport volume commands
88178eda32 Unexport service commands
e00762ed7d Unexport secret commands
02fda07211 Unexport manifest command
ab3fcf9f9b Unexport node commands
78a8856c14 Unexport network commands
4286883b95 cli/command: inline resolveAuthConfigFromImage
2d3b0b33b4 cli/command: fix godoc links
9b9d103b29 cli/flags: remove special quote handling for `--tlsXXX` flags
cfb8cb91f2 Unexport system commands
1d571d178d docs: deprecated: fix formatting of deprecated/removed in
13010ba673 cli/registry/client: deprecate and move internal
5c76f7f2d8 docs/deprecated: legacy links env vars
e66a1456d3 Unexport image commands
ae1727c41e cli/command: TestRetrieveAuthTokenFromImage: don't decode authconfig
38595fecb6 Unexport container commands
cce29da061 Unexport config command
3265cead1d Unexport checkpoint command
1b9d0762a5 Unexport the builder command and bake stub command
72f76f2720 cli-plugins/manager: deprecate annotation metadata aliases
f9777d2517 cli: remove deprecated VisitAll, DisableFlagsInUseLine utilities
5934553198 opts: remove deprecated NewNamedListOptsRef, NewNamedMapOpts
a056cc6164 opts: remove deprecated ListOpts.GetAll
15f3e910d1 opts: remove deprecated ValidateHost
0c07d81a03 opts: remove deprecated QuotedString
ee05a71513 Deprecate special handling for quoted values for TLS flags
6f0c66c152 opts: deprecate NewNamedListOptsRef, NewNamedMapOpts
4ead8784d0 Add command registration helpers
69854c4e08 cli/command/container: TestRunPullTermination: rewrite with streamformatter
f14eeeb361 cli/flags: add "hostVar" to handle --host / -H as a single string
5ee2906e78 cli/flags: use a regular StringArray for the `--host` / `-H` flag
d0ac0acff0 opts: deprecate ValidateHost utility
187a942a88 opts: deprecate QuotedString
5a38118956 cmd/docker: fix some minor linting issues
6bd8a4b2b5 cli: deprecate VisitAll, DisableFlagsInUseLine utilities
5a99022556 cli: remove HasCompletionArg utility
bf13010df8 docs: fix output example for docker system prune
4cd9833d7c gha/validate-pr: Replace `continue-on-error`
1456b53e4e .github/workflows: Add kind label validation to PR workflow
6d9b06d227 gha/validate-pr: Run on synchronize
eb5b03a8a3 cli/command/container: copyToContainer: improve error-handling
c5ea9079af cli/command/container: copyToContainer rename error-return
f2af519f2e build(deps): bump actions/checkout from 4 to 5
27a7947535 cli/command/image/build/internal/git: use stdlib errors
53183396d7 internal/volumespec: use stdlib errors
70f1147394 cli/command/trust: use stdlib errors
a8f11a2fa2 cli/command/formatter: use stdlib errors
c612e141b5 cli/command/registry: use stdlib errors
9b7ee0e201 cli/config: use stdlib errors
3b677449d8 cli/context: use stdlib errors
d38317c781 cli/compose: use stdlib errors
2dd462cc36 cli/command/idresolver: use stdlib errors
4c89455378 cli/registry/client: use stdlib errors
adbe04b5fc cli/manifest, cli/command/manifest: use stdlib errors
097cc9ca64 cli/trust: use stdlib errors
e069ded4c3 cli: reduce uses of pkg/errors for stdlib errors
3529651fa7 vendor: github.com/docker/go-connections v0.6.0
3035b6685b e2d skip flaky test: TestPromptExitCode/plugin_upgrade, plugin_install
6769f62746 update to go1.24.6
5052a39915 cli/command/completion: remove deprecated ValidArgsFn
7026e68a71 cli/command: remove AddPlatformFlag utility
c0fbbe05ca cli/command: remove AddTrustVerificationFlags
8c22927978 cli/command: remove AddTrustSigningFlags
3f5b1bdd32 cli/command/plugin: remove DCT
d3c23a223c e2e/global: TestPromptExitCode: group plugin preparation steps
081add2fc5 e2e/testutils: SetupPlugin: return path of directory
8972e53ad0 cli/command: remove prompt utilities that were for internal use
a93ed48d06 vendor: dario.cat/mergo v1.0.2
abfe4d4629 remove deprecated `bind-nonrecursive` option for `--mount`
f9431e3b35 vendor: moby/moby/api v1.52.0-alpha.1, moby/moby/client v0.1.0-alpha.0
22cc0e90ae cli/command: remove deprecated ConfigureAuth utility
de54347518 cli/command: remove deprecated CopyToFile utility
2abcbf842f cli/connhelper: remove dependency on pkg/process
513ceeec0a cli-plugins/manager: remove deprecated ResourceAttributesEnvvar
5876b2941c cli-plugins/manager: deprecate metadata aliases
50963accec cli-plugins/manager: wrapAsPluginError: don't special-case nil
d789bac04a cli-plugins/manager: pluginError: remove Causer interface
71460215d3 cli-plugins/manager: deprecate "IsNotFound"
1cc698c68f cli-plugins/manager: un-export "NewPluginError"
549d39a89f cli-plugins/manager: fix Plugin marshaling with regular errors
54367b3283 cli-plugins/manager: un-export "Candidate" interface
057f3128b6 cli-plugins/manager: reformat TestValidateCandidate table
dfbac70efa remove some remnants from CLI "experimental" config option
3b6a556533 cli/command: remove exported "RunPrune" functions
bf8cb43025 system prune: delegate version check
a888c4091c system prune: delegate confirmation message and validation
02d578b637 system prune: use register function for prune functions
21e8bbc8a2 internal/registry: remove RepositoryInfo, add NewIndexInfo
066710ba7b opts/swarmopts: minor cleanup and refactor
b8df4abeb5 bump version to v29.0.0-dev
3f0ccd1b71 dockerd.md: Add --firewall-backend
6176a7686e dockerd.md: add --bridge-accept-fwmark
f937e62c89 replace direct uses of github.com/docker/go-connections/nat types
bf16dd1251 vendor: docker/docker, moby/moby/api and moby/moby/client 4faedf2bec36
149503a32c migrate e2e container rename test
5c3577ff9f cli/command/service: credentialSpecOpt: use strings.Cut
b6d7ac34be vendor: docker/docker, moby/moby/api and moby/moby/client 2574c2b2e917
83e507377a vendor: docker/docker, moby/moby/api and moby/moby/client 25e2b4d48551
86b5b528a6 internal/registry: ParseRepositoryInfo: remove unused error return
89d8c8a2a7 remove aliases for containerd/errdefs, disallow docker/errdefs
d63cae6f1c cli/command/formatter: use alias/wrapper for TruncateID
4bd6b6897f vendor: update docker, api, client to master
7ab3e7e774 templates: deprecate NewParse()
c6f935eba5 cli/command/plugin: fix linting issues, and assorted cleanups
ef7fd8bb67 refactor(cli/compose/loader): extract ParseVolume() to its own package
9257cc7f68 image/tree: Unmark as experimental, warn when redirected
f214f860b6 image/tree: Remove extra newline after legend
f907c7a4b0 internal/registry: fix linting issues (revive)
cd277a5815 cli/command/system: remove use of Mirrors field in test
c297770d2d internal/registry: remove pkg/errors
219cfc8b7d internal/registry: define local serviceConfig
2607ba8062 internal/registry: remove ValidateIndexName
5322affc9f internal/registry: remove duplicate endpoint methods
dc41365b56 internal/registry: remove NewStaticCredentialStore
dad2e67860 internal/registry: remove PingResponseError
7cf245d2f7 internal/registry: Service.Auth remove unused statusmessage return
e0b351b3d9 internal/registry: remove code related to mirrors
7716219e17 internal/registry: remove dead code
f6b90bc253 add internal fork of docker/docker/registry
20181d4363 vendor: github.com/docker/docker master
fa169b6933 vendor: docker/docker, moby/api, and moby/client master
a87bde0068 cli/registry/client: remove deprecated RepoNameForReference
323ef1997f vendor: docker/docker, moby/api, moby/client to latest
e504faf6da cli/command/registry: remove uses of registry.ParseSearchIndexInfo
644dc16b16 vendor: github.com/docker/docker master (v29.0-dev)
7609dde8d0 build: remove DCT support for classic builder
e2cab2c64c cli/command/image: remove use of api.NoBaseImageSpecifier
64f33cd463 TestCloneArgsSmartHttp: fix unhandled error
a3bea24086 Include FirewallBackend in docker info output
b05aa464a6 Dockerfile: install git-daemon for use in tests
e34616574f fix linting issues
260f1dbebb cli/command/image: move build-context detection to build
e95d133612 remove some redundant import aliases
3dec3879c8 opts: minor cleanup in tests
fdc90caeee cli/command/container: deprecate DiffFormatWrite
0db7b9f774 cli/command/container: newDiffContext: use struct-literal
239b727834 cli/command/container: DiffFormatWrite: remove intermediate var
907507e22a cli/command/container: deprecate NewDiffFormat
29263e865b cli/command: remove usages of RegistryAuthenticationPrivilegedFunc
ea4c161067 Dockerfile: update to alpine 3.22
3d985799d4 cli/command: remove some redundant import-aliases
8b6436ecee Dockerfile: document ALPINE_VERSION build-arg
2b56b66b10 cli/command: remove interactive login prompt from docker push/pull
0f2b709c7c cli/command/container: diff: remove redundant validation and cleanup
53d02ece89 remove use of github.com/docker/docker/pkg/longpath
3600ebca76 remove uses of github.com/docker/docker/pkg/ioutils ReadCloserWrapper
9b047a501f remove uses of pkg/stringid.GenerateRandomID()
e0f4bc699c cli/command/formatter: add TrunateID utility
1264a59779 Dockerfile: bump gotest.tools/gotestsum v1.12.3 (for go1.25)
e6b8cc1c7d Dockerfile: update buildx to v0.25.0
50fa436c21 Dockerfile: update compose to v2.38.2
0be687acc0 cli/command/container: don't set CopyToContainerOptions.AllowOverwriteDirWithFile
8eac03d5fa docs: fix CDI device configuration anchor
0c5e258f8a e2e/global: TestPromptExitCode: check for trailing newline
9bcc88611f update to go1.24.5
ccd5bd8d57 registry: warn of DOCKER_AUTH_CONFIG usage in login and logout
dec07e6fdf tui/note: add warning note type
7e040d91ef docs: cdi is not experimental anymore
76524e7d0e vendor: github.com/docker/docker v28.3.1
3262107821 cli/config: export const dockerEnvConfig
4ea6fbf538 cli/debug: fix OTELErrorHandler logging messages if there's no error
94f097da28 rename codecov.yml to .codecov.yml
e7e238eb4b cli/command/container: remove redundant uses of strslice.StrSlice
2ba7cb8b44 mount /var/run/docker.sock for --use-api-socket
52e1e4fb21 vendor: github.com/docker/docker v28.3.0
88d1133224 cli/connhelper: quote ssh arguments to prevent shell injection
82eda48066 cli/connhelper/internal/syntax: fix linting issues
52d2a9b5ae cli/connhelper/internal/syntax: remove unused code from fork
64a9a6d0c8 cli/connhelper: add fork of mvdan.cc/sh/v3/syntax v3.10.0
0ba4362d69 Update markdown docs to indicate multi-platform support in image load/save.
8993f54fc3 Add support for multiple platforms in docker image save
38b99adc10 Add support for multiple platforms in docker image load.
342f8bca25 builder: remove // import comments
09a3c93f96 fix(QF1001): Apply De Morgan’s law
a10a1e619b builder/remotecontext: remove unused named and "naked" returns
75f791d904 builder: use lazyregexp to compile regexes on first use
8d3c0fb6dc tests: migrate to assert.ErrorContains when possible
45f09a1504 builder/remotecontext/git: remove redundant capturing of loop vars (copyloopvar)
52c62bd13b Fix isGitURL regular expression
8f865184a6 builder/remotecontext: format code with gofumpt
6291744fa4 builder/remotecontext/git: use strings.Cut()
60b326f814 builder/remotecontext/gitutils: switch back to os/exec
66713384c3 builder/remotecontext/git: allow building on go1.18
5c21ec520e builder: add missing doc comment
212213e81e builder: fix running git commands on Windows
bcd6c45731 builder: make git config isolation opt-in
876fc1dac4 builder: isolate git from local system
3bfb30acd7 builder: explicitly set CWD for all git commands
3f4cc89f64 builder: modernize TestCheckoutGit
a12090d787 gofmt GoDoc comments with go1.19
26a11366a7 builder/remotecontext/urlutil: simplify and improve documentation
9e39630a05 pkg/urlutil: deprecate, and move to builder/remotecontext/urlutil
6d2a901118 refactor: move from io/ioutil to io and os package
389ada7188 Use golang.org/x/sys/execabs
a4c8c72411 replace pkg/symlink with github.com/moby/sys/symlink
5896d383ca bump gotest.tools v3.0.1 for compatibility with Go 1.14
ea850377cd builder/remotecontext: allow ssh:// urls for remote context
2d0d4ce4af builder/remotecontext: use net/url instead of urlutil
a0d9b0cf0d TestParseRemoteURL: use subtests
70aef9f502 gosec: add ignore comments for reported issues that can be ignored
04e2a24a9e gitutils: add validation for ref
71672ece9c Update tests to use gotest.tools 👼
db857b5d9c Post migration assertion fixes
242f176825 Automated migration using
6ea4877cff Add canonical import comment
7bc503344a gitutils: remove checkout directory on error
e2cc22d076 gitutils: fix checking out submodules
e9831d75e2 Fix shallow git clone in docker-build
9450481b7e Move IsGitTransport() to gitutils
a6cc6cd878 Fix handling of remote "git@" notation
e907d54fe6 Move pkg/gitutils to remotecontext/git
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
When MACHINE is riscv64, skopeo fails to build with the following
error message:
ERROR: QA Issue: skopeo: ELF binary /usr/sbin/skopeo has relocations in .text [textrel]
To reproduce the issue, run the following command:
MACHINE=qemuriscv64 bitbake skopeo
In go.bbclass, we have:
"""
export GOBUILDFLAGS ?= "-v ${GO_LDFLAGS} -trimpath"
...
python() {
if 'mips' in d.getVar('TARGET_ARCH') or 'riscv32' in d.getVar('TARGET_ARCH'):
d.appendVar('INSANE_SKIP:%s' % d.getVar('PN'), " textrel")
else:
d.appendVar('GOBUILDFLAGS', ' -buildmode=pie')
}
"""
The '-v -trimpath' and arch depedent '-buildmode=pie' is generally reasonable.
And we can see we'll need to use anonymous python function to handle PIE. So we
should avoid overriding it unless necessary.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
With a very minimal image recipe that just pulls in docker, the daemon
won't start due to missing modules, so add the missing ones.
The list of new modules was created by diffing the output of `lsmod`
before installing all kernel-modules and the output after launching
docker with all modules installed.
Signed-off-by: Koen Kooi <koen.kooi@oss.qualcomm.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
It's easy to forget to update this CVE_VERSION setting. So remove
it. The default value of CVE_VERSION is PV.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
We also switch to _git and add PV to the recipe as we don't need
to exactly track a tag.
We drop patches that have been merged upstream.
Bumping tini to version v0.19.0-15-g369448a, which comprises the following commits:
369448a Document TINI_KILL_PROCESS_GROUP environment variable
37ff361 Update README.md.in
924c4bd Support POSIX basename() from musl libc
7724cbe Update "ENV key value" format in README
071c715 chore: allow CMake though to 3.10
0b44d36 chore: bump minimum CMake to 2.8.12
a49fdd3 tini.c: a function declaration without a prototype is deprecated in all versions of C
378bbbc Update keyserver recommendation to Ubuntu
b9f42a0 Indicate that -e can be repeated
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping umoci to version v0.5.0-28-g8a7f789, which comprises the following commits:
e0662ee internal: move pkg/system to internal
58645a6 internal: move pkg/testutils to internal/testhelpers
973fe4f internal: move pkg/iohelpers to internal
7b16c17 internal: move pkg/funchelpers to internal
141cc9a internal: move pkg/pathtrie to internal
1a2fc2f internal: move pkg/idtools to internal
46ad7b5 gha: cflite: move cronjob timing
7e958cb gha: cflite: remove unneeded matrix
90bdb13 README: update release key description
ee36e53 gha: add batch fuzzing for ClusterFuzzLite
c4cce9a gha: add ClusterFuzzLite to ci
ed840cd fuzz: minor improvements
7a79fc3 oci: dir: ensure ownership of new files matches image dir ownership
a652677 gha: use CODECOV_TOKEN to fix main branch uploads
0cc9dac unit: switch to alternative 'go test ./... -test.gocoverdir' workaround
55d9840 tests: switch to modern GOCOVERDIR
9fbccd4 ci: remove vestiges of Travis and manual CodeCov uploads
2f95855 dockerfile: fix 'dubious ownership' git error
3d0704d dockerfile: drop unneeded helper tools
1894c20 meta: properly mark meta.WhiteoutMode as Deprecated
4d65d2f version: use go:embed
6df6dcf VERSION: back to development
0bb7e0b VERSION: release v0.5.0
486a6a5 oci: layer: handle auto-converting to an opaque whiteout with overlayfs
a665c67 oci: layer: fix extraction with a non-directory parent component
7d2d5e5 oci: layer: add support for userxattr in OverlayfsRootfs
55fc2f5 oci: layer: clean up ToDisk and ToTar signatures
8375e7a oci: layer: explicitly handle unrelated xattrs for overlayfs xattr filter
0cea894 oci: layer: merge is-overlayfs config and mapping into OnDiskFormat config
fbe9b0e tests: make sure we use a new t.TempDir per-t.Run
456443e golangci-lint: enable some more lints
4e65fea lint/usetesting: enable lint
96e507b lint/forcetypeassert: make type assertion requirements more standard
a0622e5 lint/revive: fix up revive lints
64c02a5 lint/prealloc: add trivial pre-allocation fixes
bcd14d6 cmd: switch flattenCommands to a recursive foreach
cf70516 casext: fix typo in t.Run
5a4a7aa *: remove old open-coded funchelpers.VerifyError
36a1d10 lint: add fuzzer code to lints
bbd479d fuzz: fix build errors
7f704ea lint/exhaustive: fix non-exhaustive switch statements
63e82cd lint/unconvert: remove unnecessary conversions
b68268e lint/unparam: remove unused parameters for internal funcs
e156d27 lint/errorlint: use error.Is in spots we missed
95fedd6 lint/godot: fix doc comments
c88a83a gha: switch to golanglint-ci
5ee7982 lint/errcheck: improve verification of deferred errors
470498c lint/ineffassign: remove unneeded assignments
fbead65 lint/staticcheck: SA1019: permit use of our own deprecated mutate.Compressor
72409e8 lint/staticcheck: SA1019: explicitly allow usage of deprecated archive/tar features
379b24f lint/staticcheck: SA1019: switch away from deprecated io/ioutil
53a7b21 lint/staticcheck: apply minor fixups
f80a675 lint/gofumpt: apply gofumpt rules
3a100c5 lint/testifylint: fix all testify lints
7b875f8 meta: drop whiteout_mode from umoci.json
b1a69f5 oci: layer: temporarily disallow overlayfs on-disk bundle unpacking
474f50a keyring: add cyphar@cyphar.com as trusted signing key
c578970 keyring: add keyring management scripts from runc
18b9ae3 oci: blobcompress: switch to Docker-friendly gzip block size
44b018a mutate: make consistency test use larger layers
54f34c9 oci: layer: refix auto-applied xattr handling
d267494 oci: layer: refactor round-trip xattr test
caa0306 oci: layer: improve logging of xattr mapping
8d78eb1 pkg: hardening: fix spurrious InvalidDigest test failure
6599ffe build(deps): bump golang.org/x/sys from 0.32.0 to 0.33.0
9a1cefa oci: layer: correctly handle trusted.overlay xattr namespace escaping
6494555 pkg: pathtrie: optimise deletions to prune more garbage
c479530 oci: extract: correctly handle mixed overlayfs whiteouts
0dea233 oci: extract: properly handle missing parent dirs for overlayfs
b1dd141 oci: generate: support converting trusted.overlay.{whiteout,opaque} xattrs
d54275b oci: insert: only use unpriv.Walk when rootless
a55c157 oci: insert: don't generate opaque entry for root whiteout
1d0c345 test: tar extract: move pseudoHdr generation to tarDentry
8d5500f test: layer: reorganise overlayfs-related tests
0219792 test: layer generate: properly test GenerateLayer output
9cab21a oci: generate: actually generate layer with TranslateOverlayWhiteouts
d065c36 oci: generate: use correct path for converted overlayfs whiteout
9367b0d oci: layer: fix docs for KeepDirlinks
2d252c7 oci: insert: match variable naming for GenerateLayer
b438602 oci: layer: pass RepackOptions to tarGenerator
ad71792 system: switch lclearxattrs to use skipFn
578f925 pkg: unpriv: simplify lclearxattrs
e68606e deps: update github.com/cyphar/filepath-securejoin@v0.4.1
aa67731 deps: update golang.org/x/crypto@v0.37.0
27725c4 deps: update google.golang.org/protobuf@v1.36.6
c8a82c3 deps: update to golang.org/x/sys@v0.32.0
c08adaa ci: more image-tools workarounds
b94dfa1 go: bump to 1.23
86e7254 README: remove lxd mention
19cb696 build(deps): bump github.com/moby/sys/user from 0.3.0 to 0.4.0
b485e0e README: mention incus and lxd
1c93e3f tests: modernise and switch to testify assertions
7856970 tests: migrate to t.TempDir()
55189f8 pkg: hardening: remove duplicate test
f16094a pkg: mtreefilter: properly test FilterDeltas
03ff2a6 pkg: mtreefilter: fix broken err check in tests
eac7bfa *: clean up with goimports -local
3f264cb userns: switch third_party to github.com/moby/sys
d2fd96a deps: update github.com/stretchr/testify to v1.10.0
c94c4fb go.mod: bump to 1.21 minimum
9e2c5a9 ci: remove unused .lgtm config
de6d399 *: ensure all files have license and SPDX header
41ca97d tests: add --compress= fail tests
a79788c test: add mixed-compression unpack tests
f8f12bc cmd: add --compress= option to repack-like commands
3373613 repack: don't hardcode layer compression algorithm
6355ec2 unpack: make layer decompression based on mediatype more generic
245726c casext: unify blob compression and decompression
fa3077f mutate: make uncompressed annotation hint not use globals
15fa55f mutate: merge add and Add
b4ca5a1 repack: remove TODO for non-distributable layers
a31a208 gha: switch from CentOS to AlmaLinux for image tests
e9fff47 pkg: fmtcompat: remove now that there are no users
63bbda0 errors: drop remaining errors.Wrap-like fmtcompat.Errorf users
73fffb3 errors: drop fmtcompat.Errorf for complicated err != nil checks
00a632e errors: drop fmtcompat.Errorf for explicit err != nil checks
5339feb errors: drop fmtcompat.Errorf for non-%w errors
1c67765 *: migrate to Go stdlib error wrapping
cd18171 pkg: fmtcompat: add a compatibility shim for fmt.Errorf
aaa6de8 fmt: use %q for quoting
97cbde3 *: fix new golint warnings
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping skopeo to version v1.19.0-36-gb6c726f8, which comprises the following commits:
ac8b6527 Update Neil Smith's GitHub username in MAINTAINERS.md
99c6fb09 Also exit with status 2 for missing tags in oci-archive:
634c0d99 Fix the "missing image" check when reading oci:
40353ad7 Fix some comments
bdc6d70f TMT: Install bats from source on RHEL
654c3fcc RPM: make bats a weak dep
3ddcdee0 Add conditional release-checking system test
abf7bbba Packit: disable osh-diff-scan
889225db Tweak Governance and Maintainers for alignment
f87cd5ec rpm: build rpm with libsqlite3 tag
a50b2d91 Makefile: use libsqlite3 build when possible
763606cd Improve documentation of --authfile
ea37e10d Add Colin Walters as a reviewer
3618a76e Add --retry[-times] to test operations that tend to fail
08dc3c94 fix(deps): update module github.com/containers/common to v0.63.1
c9d5569a [skip-ci] RPM: fix gating.yaml
3ad4bfcf Don't BuildRequires: ostree-devel
50f414a7 unshare: Add CAP_SYS_ADMIN to needed capabilities
a5cbf052 docs: Add a manpage for experimental-image-proxy
aaba5370 Bump to v1.20.0-dev
7aa78df9 Bump to v1.19.0
64e5ebe2 fix(deps): update module github.com/containers/common to v0.63.0
ec3516ec fix(deps): update module github.com/containers/image/v5 to v5.35.0
d0d0b709 Disable Packit builds on ELN
9ddfd549 [skip-ci] Packit: set fedora-all after F40 EOL
ffad97c2 [CI:DOCS] README.md: Add openssf passing badge
6ecc6c33 proxy: Move defer() higher up
983e77d8 proxy: Add GetRawBlob
faa6f8a0 [CI:DOCS] README.md: Add badges
c228b1db [CI:DOCS] CONTRIBUTING.md: Update communication channels
f8432950 fix(deps): update module golang.org/x/term to v0.32.0
2bd609a0 chore(deps): update dependency golangci/golangci-lint to v2.1.6
159095c1 chore(deps): update dependency golangci/golangci-lint to v2.1.5
eff578f5 chore(deps): update dependency containers/automation_images to v20250422
4c55fce1 chore(deps): update module golang.org/x/net to v0.38.0 [security]
5cf5a11e Stop setting libdm_no_deferred_remove
47bf2b4e Stop setting btrfs_noversion
320a3e07 Don't require BUILDTAGS to be non-empty
ed34be71 fix(deps): update module github.com/containers/storage to v1.58.0
3755a3db chore(deps): update dependency golangci/golangci-lint to v2.1.2
f4d30802 Makefile: add linting with --tests=false
d66183b1 Remove hack/validate-lint.sh wrapper
b74989df integration: add unix tag to non-windows tests
25481e1a integration: add _test suffix to files
53a1b695 chore(deps): update dependency golangci/golangci-lint to v2.1.1
f9e03e6c .github: check_cirrus_cron work around github bug
b39bf85a GHA: remove .github/labeler.yaml
4920d7f1 .golangci.yml: simplify
5b135b92 Add MAINTAINERS.md and Governance, update OWNERS
f5c34db7 fix(deps): update module golang.org/x/term to v0.31.0
b6b64152 chore: fix some function names in comment
f7ab0ed0 fix(deps): update module github.com/containers/common to v0.62.3
0e68f7be chore(deps): update dependency golangci/golangci-lint to v2.0.2
edfeb735 [skip-ci] TMT: keep PR-label independent tests
ba2f8b7a chore(deps): update dependency golangci/golangci-lint to v2
11fc49b4 Rely on golangci-lint exit code instead of expecting empty output
b78fa41e Satisfy staticcheck
da1bf9f7 chore(deps): update dependency containers/automation_images to v20250324
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping runc to version v1.3.0-rc.1-171-gb1722d79, which comprises the following commits:
da909478 deps: bump cgroups to v0.0.3, fix tests
f24aa06e libct: State: ensure Resources is not nil
1b39997e Preventing containers from being unable to be deleted
d22a4211 libct/configs: stop using deprecated id
b25bcaa8 libct/configs: fix/improve deprecation notices
a10d338e libct/configs: add package docstring
8d180e96 Add support for Linux Network Devices
889c7b27 update runtime-spec
ed5df5f9 libcontainer/configs package doc
0b01dccf runc update: handle duplicated devs properly
7696402d runc update: support per-device weight and iops
99a4f198 build(deps): bump github.com/urfave/cli from 1.22.16 to 1.22.17
31d141e2 build(deps): bump golang.org/x/net from 0.40.0 to 0.41.0
8b0e7511 build(deps): bump github.com/containerd/console from 1.0.4 to 1.0.5
04be81b6 fix rootfs propagation mode
995a39a4 ci: add scheduled run of GHA CI
74209b73 ci/gha: allow to run jobs manually
62e6ab6d gha/ci: allow validate/all-done to succeed for non-PRs
b39bd105 ci/gha: fix exclusion rules
b206a015 deps: bump opencontainers/cgroups to v0.0.2
ae00c2bd tests/int: simplify using check_cpu_quota
fbf1a320 build(deps): bump github.com/vishvananda/netlink from 1.3.0 to 1.3.1
5cdfeea7 CHANGELOG: forward-port entries from 1.3.0
0623ea10 build(deps): bump golang.org/x/net from 0.39.0 to 0.40.0
c1958d88 build(deps): bump golangci/golangci-lint-action from 7 to 8
9f86496c ci: Check for exclude/replace directives
67b8a685 go.mod: Delete exclude directives
b0aa863f ci: bump golangci-lint to v2.1
d920a722 build(deps): bump github.com/seccomp/libseccomp-golang
8e3ee502 ci/cross-i386: retry adding ppa
c12c99b7 runc: embed version from VERSION file
d54eaaf2 runc --version: use a function
3e3e0482 ci: upgrade to criu-4.1-2 in Fedora
58c3ab77 rootfs: improve error messages for bind-mount vfs flag setting
30302a28 mount: add string representation of mount flags
87ae2f84 Unify and fix rootless key setup
b520f750 ci: install newer criu for almalinux-8
d7285e46 Fix "invalid workflow file" github actions error
5f4d3f36 libct/apparmor: don't use vars for public functions
08ebbfc8 tests/cmd/remap-rootfs: fix mips builds
1d78cb21 Completely remove --criu option
c8991936 ci: add check for toolchain in go.mod
e34c1a04 CHANGELOG: Port 1.2.x changes
c5ab4b6e runc pause/unpause/ps: get rid of excessive warning
fda034c9 pause: refactor
75a4546b go.mod: rm toolchain
0a9639e3 build(deps): bump golang.org/x/net from 0.38.0 to 0.39.0
c5e0ece4 build(deps): bump golang.org/x/sys from 0.31.0 to 0.32.0
19c65154 tests: Add env var tests
09501d96 libct: Override HOME if its set to the empty string
bb5aa116 build(deps): bump github.com/moby/sys/user from 0.3.0 to 0.4.0
bf386464 libct: we should set envs after we are in the jail of the container
4a0e282b test: check whether runc set a correct default home env or not
7fdec327 Use any instead of interface{}
17570625 Use for range over integers
f64edc4d ps: use slices.Contains
ef5acfab libct/configs: use slices.Delete
0fc2338d libct/specconv: use maps.Clone
7a58d823 .golanci-extra: disable staticcheck QF1008
0b536265 build(deps): bump golang.org/x/net from 0.37.0 to 0.38.0
5cfd1a62 build(deps): bump bats-core/bats-action from 3.0.0 to 3.0.1
131bdac1 tests/int/selinux: test keyring security label
c735c073 tests/integration/selinux: collect user_avc as well
491326cd int/linux: add/use Recvfrom
e655abc0 int/linux: add/use Dup3, Open, Openat
c690b66d int/linux: add/use Exec
431b8bb4 int/linux: add/use Getwd
8cc1eb37 Introduce and use internal/linux
b68cbdff criu: Add time namespace to container config after checkpoint/restore
127e8e68 ci: bump to golangci-lint v2.0
9b3ccc19 libct/intelrdt: fix staticcheck ST1020 warnings
30f8acab Fix staticcheck ST1020/ST1021 warnings
9510ffb6 Fix a few staticcheck QF1001 warnings
6405725c libct: fix staticcheck QF1006 warning
fdb69163 notify_socket.go: fix staticcheck warning
4622bb87 build(deps): bump google.golang.org/protobuf from 1.36.5 to 1.36.6
a638f133 .golangci.yml: add nolintlint, fix found issues
d00c3be9 ci: bump codespell to v2.4.1, fix some typos
65e0f2b7 libct/int: use destroyContainer
1aebfa3e libct/int: don't use _ = runContainerOk
f55400dc .github: Improve issue template description
bac33825 build(deps): bump github.com/opencontainers/selinux
6a3f8ea3 skip read /proc/filesystems if process_label is null
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
We've only had one type of runc for a while, this is another step
in the direction of moving to just 'runc' versus the old runc-<foo>
variants
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping podman-tui to version v0.9.0-508-g5d5c4cc0, which comprises the following commits:
5d5c4cc0 Bump to v1.6.1
02bc24f9 Bump github.com/containers/podman/v5 from 5.5.0 to 5.5.1
0b65653d Bump to v1.6.0
136c5f75 Fix golint issue
b02ec603 Added container create health log dest, max count and size options
ef10f184 Fix bats test for network connect
3eabf121 Bump github.com/containers/podman/v5 from 5.4.2 to 5.5.0
164ca27d Bump golang.org/x/net from 0.36.0 to 0.38.0
70fd604f packit epel10 build
42293a3a Bump golang.org/x/crypto from 0.36.0 to 0.37.0
f902cdff Bump to v1.6.0-dev
cd904893 Bump to v1.5.0
6392f961 Bump to v1.6.0-dev
fb76d52a Bump to v1.5.0
ff9a2eeb Bump github.com/containers/podman/v5 from 5.4.1 to 5.4.2
04b7a615 Bump github.com/containers/buildah from 1.39.3 to 1.39.4
0f4d9385 Bump github.com/rs/zerolog from 1.33.0 to 1.34.0
ffda1a0a Bump github.com/BurntSushi/toml from 1.4.0 to 1.5.0
2326d5fc Bump github.com/containers/buildah from 1.39.2 to 1.39.3
cc8608c2 Bump golang.org/x/net from 0.34.0 to 0.36.0
8eb63a6d Bump golang.org/x/crypto from 0.33.0 to 0.36.0
9b2bb838 Go update to v1.23.0 + Golangci-lint update to v1.64.4
4c73f653 Bump github.com/containers/common from 0.62.0 to 0.62.2
0a04e82e Bump github.com/containers/storage from 1.57.1 to 1.57.2
347ab777 Bump github.com/containers/podman/v5 from 5.4.0 to 5.4.1
4049d7ad UI input check trim spaces
d62c79f7 New feature - pod create resource settings category
441fe2ed Fix Vagrantbox hostname
f06e2ef9 Fix view's dialogs focus issue
e15d76a7 Exec and run vterm container ID and name display issue fix
43fbc573 Added bats tests for container run cmd
53a43f86 Vagrantfile box version update to fedora/41-clous-base
9312e8de UI dialog size adjusmentse
0aeb2e55 New feature - container create resource settings category
34a7797d View sub dialog size adjustments
02ada937 New feature - container run
eed5fd90 Container exec terminal size change
9e6388aa Container create dialog secret option
56a12860 fix wrong function name
177f06c4 Bump to v1.5.0-dev
204d054c Bump to v1.4.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping podman-compose to version v1.4.0-75-g8eb5573, which comprises the following commits:
1c0c63a Fix formatting of description of systemd command
2f8dbdc Remove assignment to variable that gets overriden and never used
0de04b3 CONTRIBUTING: Suggest contributors to split their commits
d864e19 CONTRIBUTING: Update instructions on commit message
96ec961 CONTRIBUTING: Update instructions for creating virtualenv
0cbf70a Implement short syntax for env variables in compose.yml "environment:"
8f9f6d0 Remove unnecessary 'or "text"'
dd471c8 Fix dockerfile definition if directory name ends with ".git"
4177bae Add docker_compose_compat setting
6635b8b cleanup bool parsing
8f55227 add name_separator_compat
04155d0 Add documentation for env variables
6054952 allow overriding x-podman using env vars
034b86e README: Remove basic usage section
bbdb636 README: Update section on tests
93371b0 README: Merge all repositories under single section
27d1fc6 README: Add installation instructions on Debian
82dd0ac Release notes for 1.4.1
0491269 Fix relative host path resolution for volume bind mount source
82d7622 Add relabel option to secrets
7b3276e Expose io.podman.compose.service label
949af2a .github: Run mypy as part of checks
0b8b483 Print full dockerfile path instead of context on error
56238b1 tests/integration: Fix `service_scale` tests
d4ebf62 tests/integration: Fix `lifetime` tests
83c7e94 tests/integration: Add missing __init__.py files to actually run tests
248a63e test-requirements: Upgrade ruff
efea0ee Address unused argument warnings
3c2978c examples: Add type annotations
5765e53 Use correct logging methods
0be50ff Fix return value from compose_systemd()
1eae76d Add return type annotations to test_utils.py
6c46678 Fix mypy warnings
a3f48f8 tests/integration: Add type annotations
dedb081 tests/unit: Add type annotations
ea22227 Add mypy configuration
58df849 Move tests to directories that can be imported
39e21d8 Remove extraneous await on non-async function
02166f5 Use more standard call to list.append
8aeeafb Rename redefined variables
9162fe6 Remove unused code
08d06df Fix build ssh path to be relative to directory of compose file
a983129 tests/unit: Add unit tests for fixing CMD healthcheck
76b3055 Fix CMD healthchecks running with /bin/sh
225999e tests: Rewrite test_normalize_depends_on to unittest
3d47849 Allow specifying custom pod name in `--in-pod`
0c1c4ff Fix reset tag attribute to also reset `depends_on` parameter
6e30673 tests/integration: Fix paths for testing override and reset tags
01214fa Add unregister command to remove systemd service registration
bd29caa Release 1.4.0
6c9c091 Release notes for 1.4.0
67616bd Handle exit code when compose up -d
782c44d tests: Style cleanup
d7762a5 Fix service_healthy condition enforcing
eba2ca2 Skip running compose-down during up when there are no active containers
abe5965 tests: Improve reliability of network tests
9e0da82 Change compose-up to create then start container to avoid double exec
8638eb9 tests: Test selected env variables to improve robustness
e1d938f Add --abort-on-container-failure
1dab256 tests/integration: Add override tag attribute test
2a33ef5 tests/integration: Add override tag service test
5ab7340 tests/integration: Add reset tag attribute test
35dc395 tests/integration: Add reset tag service test
38a9263 integration/tests: Move 'volumes_merge' tests to 'merge' directory
cbe9587 Implement override and reset analog to docker-compose
98f166d Implement pids_limit
ff58a0b Add newsfragment
8d899eb Feature: add cpuset option
ae41ef0 tests/integration: Improve tests for port command
da46ee3 Fix port command for dynamic host ports
d80c31f tests/integration: Add tests for up and down command
cefa68d Implement rmi argument for down command
fbc4c7d Integration tests for container scaling changes
11879d3 Updates handling of scale/replicas through CLI & compose file
27cf8da Addition of relevant newsfragments file
a1be62f tests/integration: Automate manual ulimit test
e45b5d5 tests/integration: Automate manual `volumes_merge` test
e04b8f3 tests/integration: Add integration test for buid git URL as context
815450a tests/unit: Add test for buid git URL as context
92f0a85 Fix using git URL as build context
5f4fc46 Add os.path.normpath to normalize dockerfile pathname
f9489af Allow merging of args in both list and dict syntax
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping netavark to version v1.15.2-1-g3955c1f, which comprises the following commits:
01b002f release v1.15.2
937edfb release notes for v1.15.2
913bf55 dhcp_proxy: set timeout_sender only if required
763c86b cargo: bump mozim to 0.2.6
868d33d release v1.15.1
29f991c release notes for v1.15.1
ad51a4a Revert "remove search domain from response"
aadd9fe release v1.15.0
7395403 release notes for v1.15.0
8dd201b update release notes from v1.14.1
a819174 update nftables to 0.6.2
fa0cce8 run cargo update
18e6472 chore(deps): update rust crate tempfile to 3.20.0
ebbc9d1 chore(deps): update rust crate chrono to 0.4.41
dc8e9f2 fix(deps): update rust crate tokio to 1.45.0
ccde461 fix(deps): update tonic monorepo to 0.13.1
a7a2748 fix(deps): update rust crate zbus to 5.6.0
e2aecba fix(deps): update rust crate sha2 to 0.10.9
da0933e fix(deps): update rust crate clap to ~4.5.37
cfe74dc aardvark: handle names more safely
13cd456 aardvark: use one buffer for commit_entry()
efe127c don't clone container_names in AardvarkEntry
7084b2e Makefile: correctly set SOURCES
adcddf6 remove some unused deps
0795886 Makefile: use cargo --locked in CI
99ede94 chore(deps): update dependency containers/automation_images to v20250422
86a4826 ci: ensure tree is clean after build
4ed8ac7 fix(deps): update rust crate rand to 0.9.1
ea3479b .github: check_cirrus_cron work around github bug
ca2ad7f Cargo.lock: fix desync with Cargo.toml
84ec751 fix(deps): update rust crate netlink-packet-utils to 0.6.0
d629405 firewalld_reload: share connection
b675bd2 fix new rust 1.86 lint errors
810ee33 ignore SIGTERM and SIGINT on teardown
36d89b2 fix(deps): update rust crate tokio to 1.44.2
3bfe78e Release GHA: Automatically publish crate
d430758 test: use ncat not nc
2c4d5b6 update CI image 2025-03-24
6c6c89b fix new clippy lint errors
7ef70f8 fix(deps): update rust crate env_logger to 0.11.8
5d6a3f0 fix(deps): update rust crate clap to ~4.5.34
8eb7a23 chore(deps): update rust crate once_cell to 1.21.3
ed5f940 fix(deps): update rust crate hyper-util to 0.1.11
3b031a7 GHA: Automate release
9035c67 remove search domain from response
5daf5cb chore(deps): update rust crate once_cell to 1.21.2
b940984 fix(deps): update tonic monorepo to 0.13.0
1be221f Add link to c/common contributor's guide
b361626 fix(deps): update rust crate log to 0.4.27
8a34126 chore(deps): update rust crate tempfile to 3.19.1
3880a19 fix(deps): update rust crate nispor to 1.2.23
803309a fix(deps): update rust crate netlink-packet-route to 0.22.0
850d6af Fix detect of Firewalld's StrictForwardPorts property
8605514 chore(deps): update rust crate tempfile to 3.19.0
683d3ad chore(deps): update rust crate once_cell to 1.21.1
0783767 fix(deps): update rust crate tokio to 1.44.1
566febc chore(deps): update rust crate once_cell to 1.21.0
b47c5bc fix(deps): update rust crate env_logger to 0.11.7
67bf793 fix(deps): update rust crate tokio to 1.44.0
3902d99 test/001-basic: Make commit test optional
af59e5c .github: remove cirrus rerun action
dd46baf chore(deps): update rust crate tempfile to 3.18.0
76dfaaa fix(deps): update rust crate clap to ~4.5.31
fd6ebf0 chore(deps): update rust crate chrono to 0.4.40
9a3dcaf fix(deps): update rust crate zbus to v5
fd440e1 Bump MSRV to v1.77
44e3864 Update Rust crate log to 0.4.26
f990a78 cirrus: do not build debug bins
a08bb55 Makefile: do not rebuild if nothing changed
4ac1563 Makefile: uninstall netavark-firewalld-reload.service
8668643 docs/Makefile: several fixes
c1518c9 Makefile: build docs by default
9b0209c Makefile: do not build twice
fa4c8ce chore(deps): update rust crate tempfile to 3.17.1
6963b06 chore(deps): update rust crate tempfile to 3.17.0
18889e4 fix(deps): update rust crate prost to 0.13.5
dfac98b Bump to v1.15.0-dev
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping lxc to version v6.0.4-7-gb185e523f, which comprises the following commits:
b185e523f selinux: fix typo (AppArmor)
4be5e7c65 meson_options.txt: remove space before `:` for consistency
81d00893a meson_options.txt: don't use str when defining bool default values
8a7ea2523 bionic: Remove custom getline, openpty and prlimit
136d5ae08 bionic: Remove bionic detection and support
f362f6eed README: Remove mention of old LXC version
2663712e8 start: Re-introduce first SET_DUMPABLE call
0fb6eb66d Release LXC 6.0.4
312976c9b lxc/start: do prctl(PR_SET_DUMPABLE) after last uid/gid switch
77b9cb1dc lxc/caps: fix open /proc/sys/kernel/cap_last_cap
dfe473705 lxc/conf: handle rootfs open_at error in lxc_mount_rootfs
782b666dc tools/lxc_attach: fix ENFORCE_MEMFD_REXEC checks
bcb6d063d github: Add packaging workflow
3a4003c8c global: Switch to new MAC prefix
5cdef29d8 global: Switch MAC generation to Zabbly prefix
400115de0 sysconfig/lxc: remove false comment
0e99eaa35 Added LXC_IPV6_ENABLE option for lxc-net to enable or disable IPv6
84e02ca8c github: Switch to native arm64 runners
f68da1c9f config-bcast: fix incorrect broadcast address calculation
5b31eb51a lxc/attach: Revert "- LXC attach should exit on SIGCHLD"
555276df9 conf: warn when capabilities are disabled or libcap is not found
a99f593e3 dbus: replace hardcoded dbus address with environment variable
d34b373ca conf: log name of invalid capability in error
56ef15e71 confile-vlanid: undefined is not a zero value
b4fda3c60 - LXC attach should exit on SIGCHLD
fe31d844e Release LXC 6.0.3
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping kubernetes to version v1.33.2-1-gf208b6c73d1, which comprises the following commits:
f208b6c73d1 Update CHANGELOG/CHANGELOG-1.33.md for v1.33.2
a57b6f7709f Release commit for Kubernetes v1.33.2
05e72aa38dc fix kubeadm e2e tests
612e0555562 Bump images, dependencies and versions to go 1.24.4 and distroless iptables
a792b779060 Remove warning about resizing failed for unknown reason
ea3aa291814 Add tests that validate the return value of resize operation
060a4985376 Revert shorthand for kubectl explain --output
c4f2287f8a3 Bump images, dependencies and versions to go 1.24.9 and distroless iptables
1fde2b884c7 DRA node: reject static pods which reference ResourceClaims
2628e18dabe userns: Wrap more errors
514da8a95a6 userns: Improve error returned if userns is not supported
992924664b5 userns: Use len to handle empty non-nil slices
76747b4eed8 Update CHANGELOG/CHANGELOG-1.33.md for v1.33.1
8adc0f041b8 Release commit for Kubernetes v1.33.1
f240b3abf52 SchedulerPreemption [Serial] validates various priority Pods preempt expectedly with the async preemption: replace finalizers with preStop hook and TerminationGracePeriodSeconds
cce99a8c73a Automated cherry pick of #130503: Unhandled panic crash on rollout_history printer.PrintObj (#131496)
a257be82995 fix: fixes a possible panic in `NewYAMLToJSONDecoder`
b59deb49149 DRA: Fix failure to allocate large number of devices
750d2c02f03 Update hnslib version in Windows KubeProxy.
c916dba6073 Disable size check for xfs/ext3/ext4 filesystems before expansion
c8f2295d688 Disable disk size checking when calling NeedsResize function
3caaf056f1b Handle unsupported node expansion for RWX volumes
c7eb93190c6 Mark NodeExpansion finsihed without featuregate check
74035d7b771 Also change final status by removing featuregate check
1a9d4fc468f Check for newer fields when deciding expansion recovery feature status
950bb3baf51 Fix for HNS local endpoint was being deleted instead of the remote endpoint.
5dc8b8dd268 Update CHANGELOG/CHANGELOG-1.33.md for v1.33.0
60a317eadfc Release commit for Kubernetes v1.33.0
9ba7dcecc39 CHANGELOG: Update directory for v1.30.12 release
191c34eaba2 CHANGELOG: Update directory for v1.31.8 release
7bf818fb88a CHANGELOG: Update directory for v1.32.4 release
95b926c93a4 Feature-gate watchlist e2e
e467c9530b8 [Go] Bump dependencies, images and versions used to Go 1.24.2 and distroless-iptables
660df229bf3 Stop exposing list-via-watch from the server
a8f6d77c8da ServiceCIDR and IPAddess Conformance
44c230bf5c3 CHANGELOG: Update directory for v1.33.0-rc.1 release
4939c17914f Update CHANGELOG/CHANGELOG-1.33.md for v1.33.0-rc.1
92e86d1b4bf Release commit for Kubernetes v1.33.0-rc.1
0266d3bcb37 Allow single-to-dual-stack reconfiguration for ServiceCIDR
7d7fc2d9892 Fix flaky test: Metrics should grab all metrics from kubelet /metrics/resource endpoint
505836c22cc staging/publishing: add release-1.33 rules
e5a5f726dde Tag SELinux tests that require SELinux warning controller
cacd595bae4 CHANGELOG: Update directory for v1.33.0-rc.0 release
18249aaaa4f hack/update-conformance-yaml.sh
1eab3036b67 mark tests that use estimateMaxPods as serial
b2933c0adac estimate some system daemonset overhead for max pods
b1a9cc34731 bug fix: fix version order in emulation forward compatibility.
f63cdcbc811 Release commit for Kubernetes v1.33.0-rc.0
2ef4a8426c2 Move to released version of prometheus/client_golang v1.22.0 from rc.0
c8c2844aaf1 Fix race for sending errors in watch
d3c5a4ab2f8 CHANGELOG-1.32: fix release note about kubeadm upgrade phases
10a7d6f8fdb Update CSI Proxy to v1.2.1-gke.2
24edc6e90f1 Update etcd to 3.5.21
eca90dab3f5 Parallelize cacher list tests
1a15d582ae5 Don't start etcd for skipped test
75186095c58 Stop cacher in TestWatchStreamSeparation to speed up shutdown
38d5cb368dd Fix flake, non-consistent list doesn't give any guarantees about staleness
9b5c4504ee4 Ensure that cacher is terminated in TestGetListRecursivePrefix
24536987d89 fix narrow spaces of %e for x/net bump
f3b80a85822 bump etcd 3.5.21 sdk
0e2e687d3cc cleanup etcd v3.6.0
20d6b51588a Build etcd 3.5.21 image
5c7491bf087 accept rounded container cpu limits in container cgroup tests (#131059)
d349ac57e47 wait for containers to have started before doing cgroup check
b0b89d3bd25 fix the DeploymentReplicaSetTerminatingReplicas version
8db1426554d rename DeploymentPodReplacementPolicy FG to DeploymentReplicaSetTerminatingReplicas
83bb5d57058 deflake restart count assertions in in-place resize tests (#131055)
1d42ba78ff9 Add e2e tests for resource v1beta2 API
e761be47a45 Run make update
39507d911f3 Add resource v1beta2 API
52298cf36a6 DRA kubelet: fix potential flake in unit test
2350e7a9118 deflake pod-resize-resource-quota-test
2073252d5ab Ginkgo skip needs to run inside leaf node otherwise it panics
d429c8b17d4 debug cpu_manager_test failure
478a6f9d053 Add a tests for PreferSameNode
0ee6b0dbfa2 Add "multi-node" TrafficDistribution test
7956b37f62d Add test for `trafficDistribution: PreferSameZone`
23aff5dabd5 Split out the pieces of the TrafficDistribution test
10cd54bee46 Streamling the node/zone-picking logic
bc81a860b08 Abstract the logic of the TrafficDistribution test
b1a0fea4c6f Remove a level of indentation in the TrafficDistribution e2e
8f7bb964de5 TrafficDistribution e2e cleanups
52c3010c8b7 Generated UPDATE_COMPATIBILITY_FIXTURE_DATA
d6d9a354d7d Generated files
f035e37c4bf Added e2e test and fixed existing pod test
94ddb3a98fd Implementation
cc466aa355f CRI API changes
0380f2c41cd Validation
70540c9f43e API changes
2037f39e204 kubeadm: use 'writer' everywhere in util/apiclient/wait.go
310723b21c8 kubeadm: fix WaitForAllControlPlaneComponents with anonymous auth
a75cd2e0f47 Adjust metrics ranges to reflect additional CI job environments
2bd0481d2c3 Use established pattern for kubelet metrics url
0486790592d Fix container_spec_memory_swap_limit_bytes in ci-cos-cgroupv1-containerd-node-e2e CI jobs
a264b0015ec kube-up.sh: set inotify limits
4db8e8cc1dc Add configurable tolerance e2e test.
ac107137ce8 Refresh autogenerated files following the configurable tolerance updates.
dc1696d8074 Fix API doc and tolerance field handling when gate is flipped.
2dd9eda47ff Add configurable tolerance logic.
11b6e2a3752 Update test fixture to account for new tolerance field.
a41284d9fa3 Add the HorizontalPodAutoscaler tolerance field.
463b15b9b22 Add the HPAConfigurableTolerance feature gate.
a237f429fc2 Revert "Separate SeparateDiskTests from eviction"
914a4ba8bfa generated
c86ff2339d4 Unit and E2E tests
dcc67d08c6d Increase number of pods in PreemptionBasic and PreemptionPVs
33fbce73ae2 benchmark to show inefficient linear search lookup
6bbaf8cb104 Extend CRI stats provider to support PSI
77118d4ca06 Extend CRI API to support PSI
92a42e65ec2 Surface cadvisor PSI metrics to summary API and prometheus metrics
c7fc9d5f91a API definition for PSI metrics
a18354c60dd DRA API: fix DeviceTaintRule REST storage test
2d7518df6db Revert "Add e2e test for Regular Container image change"
a9526f6c7e0 add comment to the CPUManager feature label
0882efaf8e6 Remove general available feature-gate CPUManager
16f5fe6a26b Fix infeasible resize test
8cfb9adbf60 overwrite existing labels during pod Binding storage
17acc4a5eeb Move queue.Done() before Prebind, add tests
6873e819297 Run in-place resize tests in default CI jobs
a09cb22e4db disable in-place vertical pod scaling for non-restartable swappable containers
a490960c92b fixup! KEP-4742: Node Topology Labels via Downward API
01ae1b1b5a5 remove kubernetes.io/hostname label copying
934e247030b Remove kubernetes.io/hostname label copying, skip overriding, and support direct spec.nodeName changes.
6ddabb6ee64 updating to reflect latest KEP design
5e7e1e7cf16 KEP-4742: Node Topology Labels via Downward API
67bdfa7d6ee Add alpha feature gate KubeletPSI
2670462eb03 Remove TopologyHints and TrafficDistribution feature flags
3b3df8ba728 CI integration scripts: reduce log noise from installing etcd
cfb9486417d DRA taint eviction: avoid nil panic
56adcd06f37 DRA device eviction: fix eviction triggered by pod scheduling
7b38bff6ec9 Move pod level hugepage test from e2e to e2e node
98e362c0495 Revert "Pod level hugepage for cgroup when unset in container"
fd50d9207f5 End to end tests for pod level hugepage resources
b9e0d4ad666 Unit tests for pod level hugepage resources
51db93c3fb4 Use pod level hugepage limits for cgroup when unset in container
e3f4c6e62ab Containers with hugepage volume mounts with unset hugepage limits
aa17082a160 Default pod level hugepage limits
e5020285fa2 Hugepages to pod level supported resources
5856d3ee6fa DRA taint eviction: fix waiting in unit test
ac6e47cb142 DRA taint eviction: improve error handling
d62e766dad1 Fix function comment
c7919f5e22e Pop from the backoffQ when the activeQ is empty
a67cc3aac12 Reduce locking duration on cache to fetch data in DaemonSet Controller
b726f2cf579 Add an integration test for PreferSameTrafficDistribution
919c2b478ee Refactor TrafficDistribution integration test
64034307c22 Fix comments in TrafficDistribution integration test
323d55e67f9 Rerun update-featuregates.sh
c10dc416815 Ensure --enable-logs-handler help appears in kube-apiserver help
3043fbc3daf Added feature gate to unit test
c0a1489bc86 Fix unit tests
d46050aa5d3 PodLifecycleSleepActionAllowZero to Beta
8fdd6fe4768 Unify should delegate list
8b4aab5451f e2e_node: add a test to verify kubelet fails to create pod if userns isn't supported
a6494ec3134 features: bump proc mount to on by default beta
3701f878d65 Fix the logic on TestGetStaticPodToMirrorPodMap
2d05c3849a4 DRA E2E: fix "cluster must manage ResourceSlices" test
ca42addbdff chore(scheduler): add filter integration tests for missing part plugins: NodeResources plugin
2a9a3ea827d test: switch gotestsum quiet output format
f82c9e56d92 Serve LISTs with exact RV and continuations from cache
657ccc30995 Ensure that the pod has the proper phase upon re-initialization
3c7ed00e224 node: kep-2625: cpu manager policy options GA
1a34095f75b KEP-3094 Promote NodeInclusionPolicyInPodTopologySpread to Stable
1208f25b3f4 Verify oom_score_adj for containers that have been restarted in pod resize e2e
c6d6e0414c0 KEP-3619: rename variable in TestPodAdmissionBasedOnSupplementalGroupsPolicy
586af6b568c KEP-3619: move SupplementalGroupsPolicy e2e test from /e2e/node/ to /e2e/common/node/
4055b1a9b50 KEP-3619: update e2e test to check a pod with SupplementalGroupsPolicy=Strict should be rejected when the node does not support the feature
eda274ed7e3 KEP-3619: merge SupplementalGroupsPolicy dedicated validation tests into standard ones
64a4e349893 KEP-3619: fix field path in validating ContainerUsers in PodStatusUpdate
2a0e51825bb KEP-3619: kubelet now rejects Pods with SupplementalGroupsPolicy=Strict on Nodes not supported this feature.
45846f6b4ea KEP-3619: Set Beta for SupplementalGroupsPolicy featuregate in v1.33
16abcd78bd4 [FG:InPlacePodVerticalScaling] surface pod resize actuation errors in pod resize conditions (#130902)
bfaa2496b2f Remove SidecarContainer feature-gate check
ec1b493a088 Populate status memory requests from actuated resources
1ee7d946d77 WIP add tests for regular container image updates
f04cfdf6e76 Update gofmt.
39d6396aea0 Promote the DisableNodeKubeProxyVersion feature gate to be enabled by default.
c2927727107 Consider AllocatableResources when computing pod requests
aba588cd14e Deprecate IPPVSAllocatedStatus: always set allocatedResources with InPlacePodVerticalScaling
798ce5bde25 e2e framework: add BetaDefaultOff feature gate testcase
507621e0da4 implement WithFeatureGate label proposal
1738c0bc4c9 Add ltsc2025 for windows-servercore-cache test image
ea2f8881093 Auto gen
6d7f11689dd Complete feature impl, fix issues, add perDeviceNodeSelection support, add tests, address comments, etc.
ecba6cde1de Allocator updates
ece1d76e802 API manual changes
deaaa124a5b DRA: Feature gate for Partitionable Devices
baaa38c0992 Remove mutation of authn options by binding flag setters to a tracking boolean in options
7fe7754e67f Fix unit test, remove wait after resize
0ec6566c68c chore: update emulation version help msg.
a2c739f3d50 chore: [e2e/framework] Updates test feature gates to versioned feature gates
7b5cbbb9618 chore: Remove unused unversioned feature gate map by consolidating feature gate files
d7ed3f1c9b6 Add image volume subpath e2e tests
7f4b9a52db2 Consider memory requests in determining if resize is in progress, set termination grace period to 0
f73945aae56 Websocket HTTPS proxy support
ba09a97341d node: cpu-mgr: Graduation of `distribute-cpus-across-numa` to Beta
dab8758a59d chore: avoid resetting config of emulation verison and featuregates when adding flags
7d74a504caa Remove unused VAP for DRA admin access e2e test
1889e0cad65 scheduler sets observedGeneration in pod conditions
951e33fdf94 Fix gofmt issues
10c6a4258f8 feat: graduate MatchLabelKeysInPodAffinity to GA
917c4b310bd Fix lint issues, use kuberuntime's minGracePeriod const, boost container restart wait period
327ebcffc85 node: cpumgr: e2e: Define constants and use them instead of literals
c90f0539c88 node: cpumgr: e2e: Tests for `distribute-cpus-across-numa` policy option
b6a3ac47de0 node: cpumgr: e2e: tests for NUMA allocation spread metrics
3edeb60c089 Create Snapshotter interface to fake the implementation
7da942ca748 Change precedence order for continue and legacy exact match
e367dca6c5b Change backoffQ less function to order pods by priority in windows
88f8e6697dc Implement PreferSameNode traffic distribution in kube-proxy
c85083589c8 Clarify hostname vs node name in kube-proxy
ff640c3679a Minor updates to kube-proxy topology code
19952a2b7bd Implement the EndpointSlice controller side of PreferSameZone/PreferSameNode
90c8f9aef1a Don't write out dummy zone hints in clusters with no zones
413af836b38 Minor updates to traffic distribution unit tests
af3584778e0 update generate docs for PreferSameTrafficDistribution
4435ead24a1 Add PreferSameTrafficDistribution feature gate and associated API.
6ca82f9c164 Update the use of sets in EndpointSlice validation
929a9c0cad9 Extend shouldDelegateList testing incorportating state of cacher
09fdae408fb pkg/kubelet/userns: add idsPerPod tests
1592bfa4a81 kubelet: config: add userNamespaces.idsPerPod
9f161590bee metrics testing: add type aliases to avoid direct prometheus imports
37b47f47244 DRA helper: support dropped fields and TimeAdded defaults
2499663b84e DRA E2E: tests for device taints
5760a4f2820 DRA scheduler: device taints and tolerations
a027b439e58 DRA: add device taint eviction controller
07a275437f3 kubectl debug: Display a warning message that the debug container's capabilities may not work with a non-root user (#127696)
d5d008a6bd4 Invoke UpdateContainerResources or trigger container restarts (for RestartContainer policy) when memory requests are resized
0301e5a9f88 DRA: AdminAccess validate based on namespace label
2f1f19a992f flake: fix data race for func TestBackoff_Step
75a4d136aba Update kube-openapi and integrate streaming tags validation
cd1a5c6d5cf Fix Kubelet unit tests
506e4fed14e In TestListCorruptObject corrupt the object in etcd instead of changing encryption key
413e867f537 [KEP-5100] WinDSR to Beta
8b2cee83c15 Replace StorageVersion API with aggregated discovery to fetch served resources by a peer for MVP
c09d87f79c9 Implement watchcache returning error from etcd that caused cache reinitialization
13d04d4a92f DRA device taints: copy taintseviction controller
6478ca58594 ktesting: fix per-test logging in TContext.Run and WithTB
939c9c0c6ba DRA: add ResourceSlice tracker
99dbd85c45f DRA: generated files for device taints API
797475e1137 DRA: add device taints API
7fb028a433f DRA: add DRADeviceTaints feature
c766a52356a Implement KEP 4876 Mutable CSINode (#130007)
9be73c0d67f Graduate InPlacePodVerticalScaling to beta
691398c8563 add API approvers to generated applyconfigurations
aa32537e9a0 Add workqueue for node updates in DaemonSetController
381ccf0f4c7 Fix empty describedObject in hpa status (#124555)
5625483527c KEP-4540: added e2e tests for strict-cpu-reservation option
269bbac6e8d KEP-4540: moved StrictCPUReservationOption to beta feature gate
4c2be4bdde2 kubelet sets observedGeneration in conditions
d95d6ba5264 DRA scheduler: fix potential panic during unit test verification
582b421393d DRA kubeletplugin: add RollingUpdate
b471c2c11f6 DRA kubelet: support rolling upgrades
760903c0de6 DRA kubelet: give DRA drivers a 30 second grace period for updates
0524c807864 e2e/node: Remove outdated comment
c11077f417b e2e/node: Skip userns tests on windows
c348bd10e6c pkg/kubelet/userns: Log userns mapping information
69e270f509c pkg/kubelet: Explain why a user is required to get userns kubelet mappings
c984f0f08a1 tests/e2e: Add tests for userns kubelet mappings
1be3f8961bd Fix a race when closing activeQ
0effe155434 Move scheduler_perf topology spreading tests to a separate package
b3890d9fa0d bump RemoteRequestHeaderUID featuregate to Beta, on by default
decd11414b0 fix typo
091b450057c Replace PodResourceAllocation with PodResourceInfoMap type for extensibility for pod-level resources support
349e079abeb Update release notes in changelog-1.30 to fix example claim validation rule
af291a44c3a Add unit test to validate email_verified in claim validation rules
5d0caaa1a66 feat: Add alpha feature verification to feature gates
916c7867f7e fix godoc for email_verified requirement when username contains claims.email
a15520fbeaf Move pod resize status to pod conditions
61863035803 Adding Unit tests for windows-dsr and overlay support
984b475e749 Extract delegator.Helper interface to allow making delegate decision based on cache state
4f1912abf2d Fix missing recursive in consistency check, enable panic on failed check and fix typo in logs
5402baf4a2b Fix KUBE_BUILD_IMAGE_CROSS_TAG mismatch when KUBE_CROSS_VERSION is passed
9837a61528f update cri-api comments for Windows HostProcess withdrawal
a666451e8a3 withdraw Windows HostNetwork support
2b504a7089f Fix failing git_repo e2e release informing tests.
aa187d2d5ac add separate container runtime filesystem tests
c30eb9d9e5c feat: graduate the async preemption feature to beta
e394d430c48 Promote E2E to conformance tests for JobSuccessPolicy
0490b9f0b72 kubelet: document seamless upgrade support and guidance
f1031be019c node: cpumgr: metrics: add metrics for allocation per NUMA
5c4948ff314 controller: factor out pod node name indexer helper function
9e7c080b863 Use ValidateListOptions in watch cache
414bfc707ff Split subfunction to allow adding more subtests
6d21d8f2376 Test continue with negative RV for reading consistent RV
8c9452f4ca9 e2e tests: remove unneeded storage feature label
d66330609c3 Remove the not-even alpha feature setting
bc74476bdb9 Remove VolumeCapacityPriority feature gate
43382b1b394 Switch control from VolumeCapacityPriority to StorageCapacityScoring
f6ddee95f96 Add storage capacity scoring to VolumeBinding plugin
410dc1d6549 Trying to fix kubelet_config_dir_test
8f69d596e81 Fix pkg names != dir in tests
b47e839e4ec Comment on origin and JSON schema
46d5438c144 Fix import groupings
1ff4433c87e Fix whitespace in validateFalse test fixture
4c0c2d21ea6 Use origin in validateFalse's own test
d1d77cd553c Use test.Helper in helper funcs
1ae091e7187 Add validation for the NodeSwapStatus field
9d38a85c709 Ensure unit tests are guarded by a feature gate
18139b9845f Add unit tests
16871a1faa0 populate the new node.status.nodeInfo.swapInfo field
a9b02114099 add auto-generated files: make update
ee4ac3d70a3 add auto-generated files: ./hack/update-openapi-spec.sh
4bdaf6cbbde add auto-generated files: ./hack/update-codegen.sh
a53a517022c Add the Swap field to NodeSystemInfo
3e48d143fa9 kubectl: Remove duplicate selector calculation logic and add missing test cases for the 'describe DaemonSet' functionality
1f04af7947b Remove general avaliable feature-gate PersistentVolumeLastPhaseTransitionTime
a548688ffe1 fix: add feature-gate is disabled unit tests
03934974688 Add protection finalizer to vac when it is created
06482b6bd3b address comment
41e3efdb60a change doPodResizeAction to call updatePodSandBoxResources inside setPodCgroupConfig
95d3d4a22d7 Gate apidiscovery/v2beta1 serving with a feature gate
a758e725b86 Non-pointer VariableGen
4e3d114c267 Refactor VariableGen - no interface needed
6a59dcfa1dc Non-pointer FunctionGen
0b295553232 Refactor FunctionGen - no interface needed
282e1490d43 KEP-5040: Disable git_repo volume driver.
9aeeb530952 Remove usage of TopologyAwareHints feature-gate from kube-proxy packages.
25e041470eb Run ./hack/update-featuregates.sh
619957c9762 Graduate TopologyAwareHints feature-gate to GA in 1.33 and LockToDefault
a6c94ea605d Enable DeclarativeValidation feature gate by default
146515ac4a8 kubelet: pullmanager: write to pulled record if secret matches during query
788b7abe406 kubelet: pullmanager: move to a separate package
b8fc6042ca0 kubelet: GC for image pull managers
3793becbb94 kubelet: integrate the image pull manager
95d411382f2 Fix comment for GetServiceAccountFunc type
01302639f59 Add unit tests for credential provider in service account mode
f6a35c55f2d Wait for node to appear in cache in TestUpdateNominatedNodeName integration test
ef40e670bf1 Update hostpathplugin image to v1.16.1
cf20c21ef82 Revert "stop overriding max concurrency in CI, let automax procs handle it"
04ac6df8a91 add dra to edit role and add featuregate test
718ed7d0b58 dra: add user rbac
5a98d4dbb4a Limit declarative validation to spec until subresource support is added
b8361f9c6ea Revert "pkg/kubelet: Fix userns tests on Windows"
1057407cee3 DRA e2e: more flexible socket listening
b3befff631d implement a file-based image pull manager
0ca23338462 make update
47827f4d9a5 kubelet: modify KubeletConfiguration API with image pull policies
311e589534b Emit comments before validation code
ad96b3aed58 kubelet: implement image pull policies
1a660d3d0c9 flake: fix data race for TestApfWatchHandlePanic unit test
c4d77a07993 Add test cases for negative resource version in TestList
58d9b5c7b64 Test bypass for negative RV
d263344a9b4 Simplify bypass test by just testing shouldDelegateList function
ec127279571 DRA kubeletplugin: revise socket path handling
c6252daccb8 DRA kubeletplugin: turn helper into wrapper
37dee3c2824 [KEP-4817] DRAResourceClaimDeviceStatus to Beta
dc8dc314421 fix error treatment and remove annotations from proto
86169a7a1e0 Fix flaky RunTestConsistentList
09817b320f0 move generate podsandbox request to platform specific
ce4de97c2e3 make kubelet call updatePodSandboxResources on PodResizeAction
b27c303ac24 update cri-api runtime interface and cri-client add new method
8f11574f3d4 update proto files to add new method UpdatePodSandboxResources
64c0164cec0 kubelet: add the ImagePullManager interface
37e0fd50aac imagepullmanager: add v1alpha1 config API
cb7468b0774 kubelet imagepuller: PullImage() - accept TrackAuthConfigs directly
09284d926cc credentialprovider: track kube secrets as creds sources in DockerKeyrings
e549eeb7964 introduce the KubeletEnsureSecretImages featuregate
9df0f6b6043 Call PreEnqueue plugins before adding pod to backoffQ
8d4eaa024d3 Add SchedulerPopFromBackoffQ feature gate for KEP-5142
5c17e7bd9c6 node: cpumgr: metrics: add uncore cache alignment metrics
9cfe1863ce9 node: e2e: clarify test description
cea7d97d8bc node: cpumgr: use String representation in output
52e0f522ba0 node: cpumgr: test: use Equals for comparison
a07510fade8 node: cpumgr: test: abort on failure
3e70a1bc9c8 remove unneeded e2e features
6979567c449 Enable proper API in CLE integration test
f7296b31f0d Add declarative test cases for RC.Spec.MinReadySeconds
177193ed197 Mark RC.Spec.MinReadySeconds as k8s:optional
1e336160681 Add declarative default for RC.Spec.MinReadySeconds
1059dbdee18 Declaratively validate minimum value of RC.Spec.MinReadySeconds
20b69a54bff Add declarative test cases for RC.Spec.Replicas
0f4786536f7 Declaratively validate RC.Spec.Replicas optionality
21b3da7e5aa Add declarative default for RC.Spec.Replicas
e08bbf254c4 Declaratively validate minimum value of RC.Spec.Replicas
a9514b05911 Add update-featuregates to update.sh
088daf472b7 feat: Refactors featuregate lifecycle management script
14934b481ef refactor: detach Info from apimachinery util version
a3094ccbe6f feat: extend version information with more detailed version fields
8d71f74fcdb pkg/kubelet/userns: Remove skip on windows
691fd360ba2 pkg/kubelet/userns: Wrap error to get mappings
925416bc370 pkg/kubelet/userns: Provide stub implementation for windows
74b069d0fab pkg/kubelet: Fix userns tests on Windows
1ddfc7bdce1 benchmark-dockerized.sh: don't redundantly install gotestsum
8898868fea4 install-ectd.sh: brace PATH and suggest user export
d798d86981d cleanup CI integration scripts
d9a2dee622c Fix subresource parsing for declarative validation
7848744bf9c remove kubelet fake status manager
d6e5d4f20d4 make update
8eb74b96e33 Add validation to StatefulSet's .spec.serviceName
7315d0a6878 Change internal-version RC.Spec.Replicas to a ptr
e0011c72367 Support emulation versioning of formats
8f83f2446a5 Fix detecting consistent read when watchcache starts handling continue
6d3bff83213 Test recursive in TestGetListCacheBypass and separate overrides
8b0294daed2 Fix typo and pass the environment variable required to enable watchcache consistency checking in GCE tests
987bdd9e466 Sync pkg/credentialprovider/OWNERS with k8s.io/client-go/tools/auth/OWNERS
aab7a079fa4 make each scheduler test independent
27706a0b54c Add quota support for PVC with VolumeAttributesClass
2db729cfa42 Add flatz to kubelet auth.
ed08387663e Enable versioned validation fuzz testing for core v1 group
b5bc2838089 ReplicationController: Add declarative validation test suite
5a5ed81e1f2 ReplicationController: Enable declarative validation
256a576651c Add featuregate, feature and unit and e2e tests
e8547d8a540 Cleanup unused container parameter from allocation state Delete
05a9c062125 Don't update checkpoint file for deletion
30bca329c52 Don't re-write the checkpoint file when the content is unchanged
e856356225d Enable validation-gen on core/v1
9e42056a0df stop overriding max concurrency in CI, let automax procs handle it
cb7afbccf6e delete hack/test-integration.sh
08745086e2d chore: change Info->Error log level related to declarative validation runtime tests and refactor panic wrapper names
3b88db4f235 Promote CLE to beta
a7505f02621 generated
5ba4a90fdad Add LeaseCandidate v1beta1
ef3cb5c5afa skip admission for unsafe delete
a0cc02e264e Simplify shouldDelegateList
b27735be2ee Define type alias for getServiceAccount function
ad22c0d4954 Fix IP/CIDR validation to allow updates to existing invalid objects
78e58b8c49f kubectl: expose context parameter in DefaultRemoteExecutor
37ddc637f55 Revert PR 125102: Add unit tests to client-go/tools/cache/listers.go
692785d25b6 Add legacy versions of IsValidIP/IsValidCIDR
ac6790450ac Move TestListOptions setup before we start API server
ba189de78ff Slightly improve EndpointSlice address validation
fc4bb4fdb90 Add validation.IsValidInterfaceAddress
f79bccf4d99 validation unit test cleanups
76f1684117a Rename ValidateNonSpecialIP to ValidateEndpointIP
2090a01e0a4 add e2e test with the gcp-credential-provider test plugin
ad8666ce88d Update credential provider plugin to support using service account token
69dd6b3c0e5 CHANGELOG: Update directory for v1.32.3 release
dd25c6a6cb4 CHANGELOG: Update directory for v1.31.7 release
de904f80992 feat: add declarative validation metrics and associated runtime verification tests
34349e735ca CHANGELOG: Update directory for v1.30.11 release
1d365762a53 Introduce versioned validation test utilitizes and add fuzz tester
3eaa0478509 CHANGELOG: Update directory for v1.29.15 release
6defd8c0bdb node authorizer changes to allow read on svcaccounts
d398de294dd Add KubeletServiceAccountTokenForCredentialProviders feature gate
dd7b9f6171b Add service account token and annotation to v1 CredentialProviderRequest
ba2eecca0d2 Add TokenAttributes field to v1 CredentialProvider
003f2157671 *: reduce tracing events during streaming JSON objects
2d810ddfa9c Apply feedback
b9cb44a5933 Add approver permission for jpbetz in component-base/compatibility
d6f61438e01 CHANGELOG: Update directory for v1.33.0-beta.0 release
9fe18bf4866 Update core v1 fuzzer and validation tests to use util/ptr instead of util/pointer
775b118a6d2 Remove invalid emulated version and add lexographical order test
9eef88c8446 Add CLE e2e tests
f5dd7107f71 Implement streaming proto encoding
d6ef05b9a82 Add +k8s:minimum validation tag
b7b1e78d629 Fix context usage
cfcf7e93a3a chore(validation-gen): rename flag --extra-pkg -> --readonly-pkg in validation-gen
ca4f7857576 Update hack/verify-golangci-lint.sh
cd9df2f115a chore: change error_matcher.go to use test interface instead of importing testing pkg
c36b1c901f8 KCM: CTB publisher: tolerate NotFound during discovery
24e8fa769bc move ClusterTrustBundles featuregates to beta
1f1dbc35a90 kubelet: ctb: use generics to handle alpha/beta APIs for CTB projection
5b3b68a3a14 KCM: CTBPublisher: use generics to handle both alpha/beta APIs
d3f44a5bc0f kubelet: lazy enabling the ClusterTrustBundleProjection feature
0cd2976cabe integration: ctb: apiserversigner test to use certbeta api
ccd2d4d62ad generate code
e0f536bf1fa use the ClusterTrustBundles beta API
f598b4860c5 copy ClusterTrustBundle API to v1beta1
efac8fdea24 Delete todo comment to ignore update where 'old' is equivalent to 'cur' (#130322)
f9e5dd84ad4 Graduate image volume sources to beta
b38bfaa2ac9 fix: shared informer typos
cdac61b9025 use generic set in sig-node
63cd30e3f6c use diff port for TestCreateConfigWithoutWebHooks from TestCreateConfig
9e53371ddaa Fix test cases that may potentially cause a panic.
e4d73c56cd0 Implement consistency checking
4c6971007be Refine logging levels in Job, IPAM, and ReplicaSet controllers.
92aeb63a5be Handle optional value-types with defaults
f1674543718 remove feature gate AdmissionWebhookMatchConditions that was GAed in v1.30
8195f82fe82 remove AggregatedDiscoveryEndpoint that was GAed in v1.30
141e98ed050 Add comments to FunctionGen
989d68d7577 chore: update DeclarativeValidation featuregate
03f0475ebd2 Add Complete reason verification to all e2e conformance tests
8a20e908398 [FG:InPlacePodVerticalScaling] Drop 'Proposed' resize status
3460b2238eb Disallow optional/required on non-pointer structs
dcbfe67b1ca Prevent usage patterns we don't want to support
3d2d8db8350 Add option to explicitly enable future gv or gvr in runtime-config.
8eb90fe136d Add CoveredByDeclarative to field error struct
628d107b619 Switch cluster trust bundle e2e tests to generic alpha feature + feature gates
9828ad64da4 e2e framework WithFeatureGate adds [Feature:OffByDefault] (when passed a feature that is not Default)
819cb8fe22f Add emulation forward compatibility into api enablement and RemoveDeletedKinds.
46ac2af06a8 Fix validation test for ReplicationController
6d0b6278cd3 Rename some allocation.Manager methods
d4444dd5986 Use actuated resources to determine resize status
660bd6b42d1 Track actuated resources in the allocation manager
af9ac325b13 controller sets observedGeneration on pod conditions
42abc2a73b9 Mark StatefulSet's .spec.serviceName optional
4deb4f2b5f0 Trigger rescheduling on delete event also when unscheduled pod is removed
80f4f62ea86 hack: fix shellcheck
77758c185b1 hack: verify to verify-golangci-lint.sh
67f0e95b3ac hack: fix text
a9d558de263 hack: verify golangci-lint config, update text
89440b1239b DRA: integration tests for prioritized list
ccb607f06b9 Unify ListOptions validation between cache and etcd
dbf780a48ae authn-trust: don't react to target CM updates
aab083972db fix handle terminating pvc when kubelet rebuild dsw
ce163947aa6 fix a flake of TestRoundTripTypes: for FirstAvailable[].AllocationMode
085d23388ad Mark VAC roll-forward test as flaky
dc806188177 Use SetFeatureGateEmulationVersionDuringTest() for testing ServiceTrafficDistribution feature-flag disablement in control plane components
4e317265c77 Remove usage of ServiceTrafficDistribution feature-gate from kube-proxy packages.
2492eddd20b Bump ServiceTrafficDistribution feature-gate to GA in 1.33 and set LockToDefault=true
ca43bb17190 Run 'make update'
0d0b81b9375 Update trafficDistribution API spec docs for GA graduation
770ce2d874b Better handling of YAML that tastes like JSON
f08e640b9e2 Lock down gofuzz in deps
0ce4268b1fe Vendor randfill
e54719bb667 Use randfill, do API renames
6798e2d8635 Add time to extra-pkgs for validation-gen
8c98dee1edb Add utiliptables.NewDualStack
b0312589692 Improve utiliptables error handling when there's no iptables binary
f1d0eb4fe47 Add a unit test for utiliptables.New()
9c98d297953 Remove exec arg from utiliptables.New
e5e76d7c7ce chore: Fix incorrect AppArmorProfile.Type marker
3f5d30543d8 Add integration tests for using SAR with node audience restriction
b09ca8c2c84 Use SAR to allow dynamic audiences for node audience restriction
97a54dc4b04 update to v1.22.0-rc.0
337f1c211d3 Build etcd v3.6.0-rc.2 image
41469004282 Add normalization support to CEL semver library, enable in base env
7316d831377 Add warnings to all IP/CIDR-valued fields
d4c55d06cfa Export endpoints, endpointslice, mirroring controller names
610adebdb75 Add utilvalidation.GetWarningsForIP and .GetWarningsForCIDR
34717000dae Split out IP validation functions into their own file
5e067b6781c Minor IP/CIDR validation cleanups/fixups
b62503dd66e Remove a dead error check in winkernel
f001b3916d4 Remove a stale comment in metaproxier.go
303593cafe1 Fix some pkg/proxy comments
b5e9a8262e4 Remove exec arg from utilipset.New
36f5820ad15 Remove some unused proxy args/fields
13f0449e4ca Fix up kube-proxy import ordering/organization.
834a0d92cfa hack: fix settings for forbidigo linter
c510b93d28f Add tolerant parse option to semver
fabd449d7fe fix typo
e1d3aaf8612 Return correct error upon websocket message read failure
325a54f73dc ./hack/update-codegen.sh
d6ea91cf93d client-gen/fake: pass ListOptions to Watch method
dfb8ab65210 DRA scheduler: fail in PreFilter when DRAPrioritizedList is disabled and used
0a32e7d6e79 make sure that container is running when execute kubelet exec command
d76f40d2f39 fix(scheduler): skip best-effort pods in BalancedAllocation PreScore
032b05114c7 chore(scheduler): add filter integration tests for missing part plugins: TaintToleration plugin
9765fe4abb7 Add all extra_pkgs needed by main API types to validation-gen
0140842add1 update testdata for roundtrip and client tests
701b76f10d7 pod gc controller sets status.observedGeneration upon pod failure
40e7d88f022 Kubelet sets pod.status.observedGeneration behind FG
749f03a49fe Gradeate Job SuccessPolicy to Stable
6f1f7beff3a sort client-gen output
20230f22514 Fixing unit tests in k8s.io/kubernetes/pkg/volume/util/subpath on Windows
bb3ba9d073f Preserve old observedGen if incoming attempts to clear it
12d34624ba4 add observedGeneration to pod's dropDisabledStatusFields
6edd9217469 run 'make update'
eab9197d1a8 Add observedGeneration and validation to pod status and conditions
6645022d8bc Update status before returning err
b345f64c767 Skip test if cri proxy is disabled or undefined
abdc760ba54 call dropDisabledPodFields from pod status strategy
46c09d30178 add more uncore test cases
919e8a62e9c uncore: more testcases
5a7697dfe0c Fix unit tests for volume ownership
15cb82b3b3f Separate compactWatchCache from increaseRV
2fc3cd90b15 Store pod backoff expiration time in QueuedPodInfo
5917343e457 Parallelize lease candidate ping
627bfbdfdf1 windows does not support sleep infinity
a1cfb13099d we no longer need to track the go version in staging/src/k8s.io/kms/internal/plugins/_mock/Dockerfile
ed326fea133 Always report pod status resources consistent with the current pod sync
0e7e025c599 use kube-cross to build kms plugin
a3009258dac fix dockerfile warning
4d7f6eadf10 kms-e2e: use setup_env / respect GOTOOLCHAIN
97db9a7843a feat: Add flagz endpoint for kube-controller-manager
e2505b0d27c Update OpenAPI
c597cc1f309 Allow OpenAPI verification to pass both with and without strict alpha handling
0a9f492eedf Fix up ErrorMatcher from feedback
e6cf9dd1663 Pass storage.ListOptions to WaitUntilFreshAndList
796690637d6 Propagate error when creating CustomResourceStorage instead of panic'ing
4001c819f09 fix
b88f026053a Implement tests for encoding collections in Proto
7a84e7630f9 Run lists tests in subtests
5ecddb65715 update to latest cadvisor @ v0.52.0
8202b791e96 Job: Use jobSuspended util for suspended detection
32fd0de21c5 tweak
8e4b00e9494 use Cleanup instead of defer
186e6ee2bd5 Debug latencies in request handler
8fac9c68e18 Change allocation manager pod UID to types.UID
3a80473cda2 CHANGELOG: Update directory for v1.33.0-alpha.3 release
4f7ce7513e2 chore: migrate logging featuregates to versioned
04129d1dc82 node: metrics for alignment failures
4fda41c6509 Update base image for addon-manager to fix a build failure.
ffc1b32c660 Add declarative validation utility for use from strategies
5ff334a1589 Add declarative validation to scheme
c4ea350ef66 Add "endpoints.kubernetes.io/managed-by" label to Endpoints
41577dea1b0 delete opIndex wrapping
33bf509eb06 Use CamelCase for memory manager policy name check in InPlacePodVerticalScalingExclusiveCPUs
6975572a801 Add missing increments of queue_incoming_pods_total metric in scheduling queue
96bae53a375 Promote SELinuxChangePolicy and SELinuxMount to beta
afb4e96510f Expose NodeInfo to Score plugins
94471a5c5cf feature(scheduler): add more requeue case for CSI plugin when the VolumeAttachment is deleted
cb5c8d159c8 Don't automatically clear in-progress status when resize is not allowed
b0621e6955d Update CHANGELOG for addon manager v9.1.8
9598e5a1a57 Mark the feature gate on by default since it's a security fix.
523a19aa44e Extract isInPlacePodVerticalScalingAllowed to shared function
460db5c1372 Always use allocated resources for pods that don't support resize
6df3ea46d92 Never attempt a resize of windows pods
ca9734afaa7 Add third party strategy to the coordinate leader election integration test
074d9653b14 Bump addon manager kubectl version to 1.32.2
ea3fa1c5196 Add e2e test for MutatingAdmissionPolicy.
8bb597c0d24 Clean up some confusion around TrafficDistribution metrics
fdddd8d18c9 Port k8s.io/endpointslice from utils/pointer to utils/ptr
526960f9885 Change FailedScheduling Event message to be more intuitive
a2f47e6586f Add validators: immutable
63050550c35 Add validators: optional/required/forbidden
31f46372170 Add validators: eachkey, eachval, subfield
b5f9a00258e Add validation-gen core tests
8c41bdf05b1 Add validation-gen test infrastructure
3210f46b5b0 Add validation-gen to codegen scripts
e892dfac7d5 Add validators: opaque
c1f9e6b8eed Introduce validation-gen
7f5e1baeeea Bump gengo/v2 to latest
9a843790a30 Adding tests for consistency
a94403e9429 add BytesToXConfiguration function
77647cdfc3e rename SplitYAMLDocuments function
2d8d972cb85 Add warning logs for uninteresting kind
6a59c98a9e8 distinguish between YAML and JSON file formats during log output
09427ab5586 Update test/e2e/network/netpol/network_policy_api.go
bb79c29dd51 remove feature gate RemainingItemCount that was GAed in v1.29
3842d74d97d restrict trace context propagation to system:master and system:monitoring
f8b080a4be7 Update test/e2e/network/netpol/network_policy_api.go
2f6f8d083e0 Update test/e2e/network/netpol/network_policy_api.go
438d496555b Add test for ReconcileConntrackFlowsDeletedEntriesTotal metric
e5ad4a18781 e2e network policies test support network policies with finalizers
da987eb762d Wrong matcher - use BeNil instead BeEmpty
1e64a890385 Reduce number of (versions of!) images we pull in our e2e tests
29c219dcebe update go.opentelemetry.io dependencies to v1.33.0/v0.58.0
05a90bf642a Revert "Add LeaseCandidate v1beta1"
1a1b566d61f Revert "LeaseCandidate alpha -> beta,"
71622aee49d Revert "generated"
d5c072117db Clarify host_port field in CRI
2c062117d00 fix lint
2bed3333bc5 fix lint error
75b09b40540 separete runOp
df9d5f0bf8b Clarify ordering requirements of client-gen --input
e43de183cf1 conntrack reconciler must check the dst port
7fcaaa08ee9 Run make update
e2d1fcc1628 Addressed comments
3d318b57e30 revert the old loop to check if the node is rebooted
7555cbca90f DRA: Updates the e2e tests for Prioritized Alternatives in Device Requests
36d8a44b9c3 DRA: Update controller for Prioritized Alternatives in Device Requests
2229a78dfe6 DRA: Update allocator for Prioritized Alternatives in Device Requests
cc35f9b8e8d DRA: Update quota calculations for Prioritized Alternatives in Device Requests
a716095a8af DRA: Update validation for Prioritized Alternatives in Device Requests
68040a31736 Run make update
8f7b43b6fdc DRA: Update types and defaults for Prioritized Alternatives in Device Requests
0faebe30fdc DRA: Add DRAPrioritizedList feature gate for Prioritized Alternatives in Device Requests
0d7c9aa816e Prevent node-problem-detector from being scheduled on Windows nodes.
ac0b30db6da Update dns OWNERS in line with kubernetes/dns
f91105a77e5 fix prep and validation for pod subresource updates
c8111709e56 Add an error matcher, convert 2 tests
052f1fe8203 Update tests
8a1057a804b test: sched: replace `pointer` use with `ptr`
486d12efc5f call cleanup func position change
bee19638f19 tweak
e7c743b2ebf Streaming JSON encoder for List
a86cca4e185 Improve error reporting of KCM metrics
f9051901cee client-go certificate: context-aware APIs and logging
6b7e38f0180 Fix nits from PR 130355
c7cf852086c test: Add Origin field support to ReplicationController spec.Replicas validation test
07477c656e7 test: convert ValidateEndpointsCreate to use error Origin field in test
f63359efb03 fix(pod/util): typos in getting pod validation options
5eb37b073c6 Fixing k8s.io/kubernetes/pkg/util/filesystem unit tests for Windows
3010618efee feat: add DeclarativeValidation and DeclarativeValidationMismatchMetric feature gates
c3de5b707e2 Do not look for SSH external IP for NFSPersistentVolumes tests
2d10dec3a29 generated
ac7a95efb09 LeaseCandidate alpha -> beta,
0fede7b8a2f Bump x/oauth2 and x/crypto
dca3f56f64b Add e2e test for topology manager with restartable init containers
fad4594fd9f Add LeaseCandidate v1beta1
038b90d475e return error instead of fatalf
fb3b163ca0b Ensure we switch to k8s root directory for dockerized builds during e2e-node ci job
b7c80f7f159 Fix implementation of ContainsCIDR to allow non-equal addresses
f2e8fe93fb5 Fix bad CIDRs in a NetworkPolicy test
f73f6fd2ab5 client-go/gentype/fake: sets opts.Watch true
cc0faf086d7 [kube-proxy:nftables] Skip EP chain updates on startup.
65c792ca9ba e2e_node: remote: fix getting pod logs
e5becd01c84 correct ResyncPeriod comments
28d359beec1 promote HonorPVReclaimPolicy to GA
a4885091974 test: Improve error comparison in resource validation tests
02f7dc55d16 feat: Add Origin field to Error and related methods
94f3b552bf3 Fix linter warnings
b0dc96e71ec Add unit tests for progress tracking and remove fullpath from reporting
20cecaee97f Add Watch to controller roles (#130405)
d44ac38891c Promote e2e to conformance tests for JobBackoffLimitPerIndex
a91ed902fed Graduate Backoff Limit Per Index as stable
5942cd81382 Added tests for log file modes and compressing unknown log error conditions.
f214d8e27a0 delete unnecessary init
650db7fab97 golangci-lint: temporarily suppress known issues in the code base
45b323d6a5f use Cleanup func
e8b9d1d93f8 feature: Added filter integration tests for missing part plugins: NodePorts plugin
2472f4965fe Implement chunking for gzip encoder in deferredResponseWriter
239aad8e4b2 chore(scheduler): use framework.Features in scheduler plugins
168c338f7cb Remove limit support from btree store
43509b63d76 Bump hack/tools to github.com/golangci/golangci-lint 1.64.5 for go 1.24
8090db5dcfd Switch to private instances of rand for seeding for tests
88300c406b9 bump go.mod to set min go1.24
597b54720e1 Bump images, dependencies and versions to go 1.24.0
fea89f25d1b Move GetCurrentResourceVersion to storage.Interface
4205f04ce35 Replace uses of reflect.DeepEqual with cmp.Diff in pkg/scheduler tests
bed838955fa Removed parallel execution for test/subtest where AllocsPerRun is used
4c635ecf825 Rename CacheProxy to CacheDelegator
3c9cc93dbcc Bump etcd v3.6.0-rc.1 image
eeabc3ac6c4 selinux: Ignore pods with Recursive policy
d66928b842a Add Job e2e for tracking failure count per index (#130390)
740db0f01d9 Move watch progress to separate package.
145bc8a2ccf chore(kubelet): Use ptr.To to replace the custom function unit64Ptr.
04f0bd4e83b storage/cacher/ready: dynamically calculate the retryAfterSeconds
eb0f003d252 Fix a bug where the `ResourceQuota` admission plugin does not respect ANY scope change when a resource is being updated. i.e. to set/unset an existing pod's `terminationGracePeriodSeconds` field.
f7c17992973 Handle returned error as placeholder variables for now
fbce6bd6107 Fix typecheck errors
b51cbb1d17c Change plugin interfaces to use progress monitoring
32752fe395a Add recommendation for using OnRootMismatch
49dabe56d04 Monitor progress tracking for permission change
f484ae5bcbd Fix kernel version check condition in nftables proxier
ae991725b79 e2e uses websockets by default for portforward
071b1bd839d e2e test use websockets as default for exec operations
a97c6a70451 Added the mergeDefaultEvictionSettings Kubelet Config
4c0b24b06d4 e2e_node: eviction: fix ImageGCNoEviction test
d02401dea92 start setting pod metadata.generation
2de2093bcef Add snapshotting of watch cache behind a feature gate
0f24b9ff451 Split backoffQ into backoffQ and errorBackoffQ in scheduler
059dee36f84 Allow ImageVolume for Restricted PSA profiles Stop referring to ImageVolume as an unknown type during pod security admission validation. Avoid restricting ImageVolume for the Restricted profile, as users who can create a pod with a certain image should also be able to use ImageVolume with an image.
2173a0fafd4 Add watch cache capacity upper bound adjusting logic
56bd8d86a58 test/integration: use default API groups in test apiserver
cf70b06e376 e2e_node: improve logging for eviction test
b56d30e32a5 fix flaky test: Subpath Container restart should verify that container can restart successfully after configmaps modified
d92c70b8269 enable go-required check
afa266d7ef9 remove genernal available feature-gate AppArmor
2feecd46bdb [e2e/node] update base image from busybox to agnhost
c2afe4909d0 fix copyright year
de51ce79c01 ./hack/update-vendor.sh
3ae5312c97e Generate register files for all examples
fb11415a690 add simpletype pkg in v1 for register-gen test
e9c47f86018 Add codegen::register to hack/update-codegen.sh
dc4fce61ce6 Add missing imports in register-gen
bc4ae15d77b fix wrong assertion on tests
a933481f797 use const rather than string in cgroup_v2_manager_linux.go
b1f6cfcfae0 change defer order to pass test
a20a959b2c0 hack: split up test-dockerized.sh
86f504284c1 feature(scheduler): add queueinghint for volumeattachment deletion
f540197768f chore: add more error info for validateResourceSliceSpec
ddd4c56893b Fix pod resize E2E tests after forbidding memory limit decrease
1f642c79c31 Drop winsymlink go 1.23 workaround
237aadab89b [hostutil_windows] Remove unix workaround
2a32b213723 [test] handle ModeIrregular in getFilePerm for Go 1.23
b9f6013c12c fix: handle socket file detection on Windows
dfc8b271cf1 [kubelet] Make use of os.ModeSocket info
9492a2ca9ba DRA: add dedicated integration tests
9024140468e Cleanup allocation checkpoint failure message
fe4671356c0 Call allocationManager directly
2418b54ee2a Revert "Add random interval to nodeStatusReport interval every time after an actual node status change"
f904c6f46c0 fix e2e
1289f43f73f Build etcd v3.6.0-rc.0 image
034285dc477 Test continuations and exact revision LISTs
0f40600b316 add e2e test to reproduce unexpected unmount after kubelet is restarted
e1b3c8fd9b4 Add e2e test
06fa6158a06 Update namespace deletion process when feature gate `OrderedNamespaceDeletion` enabled.
7098221ae54 Fix TweakContainers comment
f1612003ff0 Fix the node reboot validation failure
4e651addd8c Add statusz endpoint for kube-scheduler
e986217c217 Update Generated API Code
d5c804b14db Remove Flagz feature-gate check before populating serverRunOptions.Flagz
a49b336e83e test(statefulset): return errors in framework function GetPodList for upstream handling
92cc680c8ae Fix SelfSubjectReview test to decouple beta and GA types from the same apiserver
2636aa35e3b Require canonicalization of NetworkDeviceData IPs
ec66befdcb2 Fix dup word in API doc
8ee35583912 node: topology-mgr: resolve lint errors
9e1d6d5cdc1 node: topology-mgr: Add logs in the happy path
04b048dcec6 flake(scheduler): fix allWaitSchedulingPods data race failed
f9e7b15c001 ktesting: add Run
c2ad724e9a1 ktesting: add Parallel
9a795c31fa3 remove release-1.28 config due to EOL
98fd7b4deac update publishing rules for rel 1.29/30/31 to use go1.23.6
764e13e27ae Refactor TestList and validate continuations to allow testing pagination and more exact RVs in the future
bf63e0046cb selinux: rename allMetrics
ee36b817df0 events: ensure the name is valid
ff69b5bcf37 generated
bdf2e2d0646 Fix non-recursive list should also read RequestWatchProgress feature when consistent list from cache is enabled
9e27ae27258 Remove gate for leasecandidate strategy
4cc32f817a1 Remove cloud-provider arg for kube-apiserver in local-up-cluster.sh
c186de00809 Fixing k8s.io/kubernetes/cmd/kubeadm/app/util/staticpod unit tests on Windows
697293906a8 Fixing k8s.io/kubernetes/cmd/kubeadm/app/util/dryrun unit tests on Windows
97cb563cae0 Require auth for all new Kubelet endpoints
2b1b20b3b15 Fixing k8s.io/kubernetes/pkg/proxy/winkernel unit tests
993f3c361f2 Fix DRA flaky test for ResourceClaim device status
21f899596ef Promote AnyVolumeDataSource to GA
a0a226d1584 integration: svm: wait for CR to be stored as v2 after CRD v2 switch
80966ce5c44 integration: svm: use consistent path args pattern in etcd fetch functions
e1557f80a2a integration: svm: use k8s ktesting package for test ctx init
faf5b3ec765 integration:svm: refactor utils
293a6c5c916 fix typo: optimitically -> optimistically
553e9bf84d1 adjusting loopback certificate validity in kube-apiserver
99881453838 Ensure that btree threadedStoreIndexer implements orderedLister
3d007532e0d Introduced additional log formatting to windows kubeproxy.
faf6dc13134 Add retries to runner.List()
b6f49d0728c Add retries to conntracker.ClearEntries()
90a42e0dc04 Add retries to conntracker.ListEntries()
84ec78ede71 Extract pod allocation manager from status manager
81e54a2a016 Move allocation state out of statusmanager
3100bbab2f7 Update gorilla/websockets library from 1.5.0 to latest 1.5.3
72b404f6aad CHANGELOG: Update directory for v1.33.0-alpha.2 release
3f4ef42e9a5 Move PodResizeStatus cache out of allocated state
d3eb639313e selinux: add tests for SELinuxController
e15fd43d812 test(network): replace calls to e2erc.RunRC with Deployments in service latency tests
cd0df9786ea test(network): replace calls to e2erc.RunRC with Deployments in service proxying tests
7deb49e3a60 Revert "Enforce the Minimum Kernel Version 6.3 for UserNamespacesSupport feature"
a2eeec5c5a7 Revert "Switch hard error to a WARNING for kernel version check"
9315ddbb650 kubeadm: fix panic when no UpgradeConfiguration was found in the config file
de984ec9b92 Update kubetl subresource to stable
992c8e9479d selinux: explicitly specify NodeMetrics in function names
7d5f3c57230 [kube-proxy:nftables] Read map/set elements on setup.
26fe6bc6e09 Add tests for encoding collections in JSON for KEP-5116
323410664c4 e2e: node: cpumgr: check CPU allocatable for CFS quota test
bb49a05fb5a fix: adopt go1.23 behavior change in mount point parsing on Windows
004c5f5a398 chore: remove unnecessary check for node is zero
45e2f3e438e Add a test to validate deferredResponseWriteron multiple write calls
a36f64e0743 Add more log information to help debug flake #129779
a70b6b9105b Add lock for csiNode update
2050d6fc696 selinux: add a new SELinux translator to the controller
3b7926824ec e2e_node: Don't use userns in DefaultPocMount tests
5d726e32c4d remove duplicated test on configmap volume
c48499d3604 fix ci
2382c0125b3 remove Removed generally available feature-gate DisableCloudProviders and DisableKubeletCloudCredentialProviders
29e5d429797 kube-apiserver: removed the deprecated the `--cloud-provider` and `--cloud-config` CLI parameters. Signed-off-by: carlory <baofa.fan@daocloud.io>
438df173e32 kube-proxy: metric to track entries deleted in conntrack reconciliation
fcce8aaad8a workloadExecutor's member use value not pointer
e353086e6ad test(network): replace RCs with Deployments in util function StartServeHostnameService
bdd83038e83 kube-proxy: metric to track conntrack reconciliation latency
98d600bef94 test(network): replace RCs with Deployments in util function CreateServicePods
6b16f051484 modify SchedulerCacheSize field comment because it will be removed at v1.34
e52274a9e2e Don't allow resize policy mutation
7a1b2aea741 fixing k8s.io/kubernetes/pkg/kubelet/apis/config/validation unit test failures on Windows
a1595d9dca7 Don't allow memory limit decrease unless resize policy is RestartContainer
f6090185a80 e2e: fix node conformance flake
0ce48b56368 Honor KUBE_HACK_TOOLS_GOTOOLCHAIN
6d58125111b Bump KEP-4427 : AllowRelaxedDNSSearchValidation to Beta
dc59c0246fb proxy: should add PingPeriod for websocket translator
844c2ef39d2 e2e: node: cpumgr: cleanup after each test case
f5e86dfea65 Deflake the PodReplacementPolicyFeatureToggling Job integration test
5e6611af559 fixing various unit tests on Windows that create abstract sockets by now having them create file-based sockets on windows/darwin
453e22a1667 Remove unused service account creation from node_authn.go
36c6c7778b4 Use `sudo` for dmesg in hack/local-up-cluster.sh
83595f500a4 NFTablesProxyMode to GA
ca8a0f5f1be separete sleep func
6d291ddc21b fix lint
a9ee6bdf81a use *e.tCtx
cc87cb54ab7 delete unneccesary define
3ce36b3b3ce rename doXXX to runXXX
d202a683f54 rename workloadExecutor member name
c40e69bb4cc remove double comments
3725c6f7650 pkg/kubelet: Make newTestKubeletWithImageList allocate a userns manager
96c2b81670c features: Enable user namespaces by default
447c74ca2cb DRA E2E: fix race between container start and check
4724870b971 test: remove implicit inclusion of "name" label in utils functions
d6a6dda2fa7 KEP-3857: Recursive Read-only (RRO) mounts: promote to GA
2642d8222d8 CHANGELOG: Update directory for v1.32.2 release
976eae5ee7c CHANGELOG: Update directory for v1.31.6 release
fc219cd3843 CHANGELOG: Update directory for v1.29.14 release
08ea6ca8da2 CHANGELOG: Update directory for v1.30.10 release
93a88f55182 GetRandomReadySchedulableNode nerver return MetricsGrabbingDisabledError
ec165ca5601 fixing k8s.io/kubernetes/pkg/kubelet/eviction unit tests on Windows
df1e9eeeb8c skipping InPlacePodVerticleScaling unit tests on Windows
569eb41f238 fixing k8s.io/kubernetes/pkg/kubelet/cm/memorymanager unit tests on Windows
f8728b62228 Bump konnectivity-client to v0.31.2
dbb34a04cc6 Reduce the number of processes used in e2e to prevent unexpected OOM
b9cd017a214 Fix intermittent test failure
b346ac0f8e0 Limit ResourceQuota LIST requests to times when informer is not synced
def95202175 node: topology-mgr: Add metadata to logs
f2f4634bd35 Add LegacySidecarContainers feature gate
54e2416210b update sig cl owners in k/k
da2f36be583 remove NodeOSDistroIs from test/e2e/framework/pod
358afb38f59 update publishing rules to use go1.22.12 for some active release branches
c83a5e0ad2b HonorPVReclaimPolicy: add more e2e tests
e31a3989fcf Make kubelet always canonicalize the PodIPs
6512de76ce3 Make EndpointSlice mirroring controller always canonicalize the IPs it writes out
29be52b3f70 Make EndpointSlice controller always canonicalize the IPs it writes out
7259742e233 Make Endpoints controller always canonicalize the IPs it writes out
26fe80855d1 Update build/pause/Makefile
faa23642f51 Bump windows pause image base to mcr.microsoft.com/oss/kubernetes/windows-pause-image-base:v0.4.1
1bd3d34d6f9 Remove some dead code in the Endpoints controller
eaab9081955 Mark v1.Endpoints deprecated in the API
fc3e649ef4d make update
2a903dd7a3a Mark v1.Endpoints as deprecated in the documentation
d3feb5080c1 Update websocket logging levels for better debuggability
c7a90b670c4 Introduce kuberc as new flag to customize defaulting and define aliases in kubectl (#125230)
f75965e5d9b aim to fix runtime class error
1c5170ff528 disable cfs quota when exclusive cpus allocated per static cpu policy requirements
437cd38e19a add feature gate
953954168c9 Modify how to check the status
0c68aa6a35f test(network): fix jig deployment scaling
d728eb47dc5 test(network): replace RCs with Deployments in util function jig.Run
ab02cda1683 make error consistent
8a797e42e12 resource metrics e2e tests: expect swap node and container level stats
676116359db Scheduler: update the error log
464fd0765d0 test(network): replace jig.CreateRC with jig.CreateDeployment
af3b9e613d3 reduce dependencies in apimachinery net testing utils
938b5f82620 chore(scheduler): add more log info when no preemption candidates is found in preemption
297b35873fe use workloadExecutor
4facb872247 kubeadm: update preflight check
445183a31fa nominate myself as an approver for storage e2e tests
479f9cd898d can pass all testcase
8ee64ba6b54 Bump images, dependencies and versions to go 1.23.6 and distroless iptables
819bf72b0c2 Remove feature disablement ConsistentListFromCache in update openapi script
fff99141581 Fix the flaky Job test: TestSuccessPolicy_ReEnabling
dc51c81751a kubeadm: update v1beta4 docs
523ed5498e1 Fix comment for FailIndex as JobBackoffLimitPerIndex is beta
b30944b0715 chore(dra): move pool validity check to the beginning of pool processing
5d278c138c0 fix labelvalues for scheduler-perf
b1d72a5b7c9 test: Add emulated-version flag verification in flagz test
c8804bff6d1 fix: flagz endpoint to return parsed flags value
8ab075578a5 feat: promote CRDValidationRatcheting to GA
ee25fed97d2 update publishing rules to use go1.22.10 for some active release branches
d195ea8756d fake/clientset: improve TestNewSimpleClientset
46ff62d6e49 Run ./hack/update-featuregates.sh
9ebe4422a98 Add support for Debian and Ubuntu
533a1211d30 Add completion in kubectl debug
6971779d0dc pkg/proxy/conntrack: refactor log levels for conntrack cleanup
07c279d06bf bump netlink
7edc7fbd47e kubeadm: add --etcd-upgrade flag to kubeadm upgrade plan
dbefbd593ed remove unnecessary unnecessary
03b59d8eef2 propagate context
88410368cd5 test: fix a typo
0907f745a0d Add the feature gate `OrderedNamespaceDeletion` for apiserver.
cd9fc8bc71f Enable ServiceAccountNodeAudienceRestriction feature gate by default in v1.33
5738ee4def9 Disable ServiceAccountNodeAudienceRestriction feature gate by default in v1.32
62809dd0de9 node audience restriction: use csi translator to convert intree inline_vol/pv to csi
ecd67e25373 node: memory-mgr: Adhere to the message style guidelines
d6c50c391d1 node audience restriction: add unit tests to simulate intree inline_vol/pv to csi failure
f4496974573 node: device-mgr: Adhere to the message style guidelines
40c86d8e064 node: device-mgr: Ensure consistent use of named arguments
19e406a3574 node: device-mgr: Update klog.Infof(..., err) to klog.ErrorS(err,...)
9cd041156fb node: device-mgr: Add logs in the happy path
a585bd74c48 node: device-mgr: Keep log level consistent across all gRPC calls
4b613ae96fe node: device-mgr: Bump log level for expected skips
584e224b431 node: device-mgr: Add metadata to logs
a10b3c35559 node: memory-mgr: Add logs when memory allocation is skipped due to QoS
6240febf4c5 node:memory-mgr: Add logs on the happy path
ee7f2616c62 node: memory-mgr: Update klog.Infof(..., err) to klog.ErrorS(err,...)
07d83acce56 node: memory-mgr: Update log levels and add logs to capture state update
34fd61a3ef1 node: memory-mgr: Add metadata to logs
7997c93cfdf node: cpu-mgr: Adhere to the message style guidelines
ca2c46a2730 node: cpu-mgr: Add logs when CPU allocation is skipped
01a546fe53a node: cpu-mgr: Add logs on the happy path
14c0bc19ac2 kubelet: improve allocated resources checkpointing
b05d56e5a54 Fix pod worker and prober log message typos
46a17f60e4d E2E node: fix --timeout default
8fc3a33454b Refactor compatibility version code
e54be1e1337 CHANGELOG: Update directory for v1.33.0-alpha.1 release
8bd4e1bab22 Update test/integration/serving/serving_test.go
6c093b1699e kubeadm: fix dry-run for kubelet-wait-bootstrap phase
065bf2004d2 Deprecate WatchFromStorageWithoutResourceVersion
20fbdeac96e kubeadm: fix upgrade to be able to rollback ControlPlaneLocalMode
bb36212342e kubeadm: Promote ControlPlaneKubeletLocalMode feature gate to beta
b1ad53c5331 Disable StorageNamespaceIndex feature gate when BtreeWatchCache is enabled and deprecate it
c5f66bfe70b Add statusz endpoint for kube-proxy
8431aa75390 Use %w to format errors and fix lint error.
3de770d5985 Use uncompressed kubelet log file permissions when compressed.
1a8d8c9b4a3 client-go watch: NewIndexerInformerWatcherWithContext -> WithLogger
e1ab6073ab1 Add more tests for optional.
3701e393279 fix: remove the mention that DRA uses Pending
8a3d0d68a20 Update the env option.
7b1c7c639ef Fixed the estimated cost for opt map.
c1e0443232f Bump cel-go to v0.23.2.
0ca45bd4f80 Bump images, dependencies and versions to go 1.23.5 and distroless iptables
5281152f077 feature: Added score integration tests for missing part plugins: TaintToleration plugin
e2ff03486d1 scheduler_perf: add thresholds to DRA test cases
949385731f5 golangci-lint: remove "strict" checking
8d27bf2108c Leave TODOs in pkg/kubelet/kuberuntime for later removal
0bee0bcaa7d Promote SidecarContainers feature to GA
81f09811cad Fix kubelet_authz_test.go
e0f548183c4 Graduate BtreeWatchCache feature gate to GA
4a5bbc4c159 Flip SeparateCacheWatchRPC feature gate to false and deprecate it.
f6b527cb54e Additional timeout to receive all watchEvents
4619a89ebaa e2e: expand error conditions when test-ing port-forward
0d5d714c2a6 Fix the remaining flaky integration tests in Job controller
da5a76bd396 Fix flaky test for container life cycle
f7df3ec07fa move log restored state to better location.
829fa63b5b1 DRA: fix allocation mode `All`
e766b04ade9 node: cm: use maps.Clone instead of reinvent it
8cc74e8a266 client-go informers: provide ListWatch *WithContext variants
6688adae142 client-go + apimachinery watch: context support
274ad0391fc Add scheduler_perf test case for default PodTopologySpreading constraints
71b91148409 kubelet: Migrate pkg/kubelet/sysctl to contextual logging
ce7d2130ad3 Fix kubelet_authz_test.go
f891092b87d Add the check of node rebooting in windows rebootnode test
a9aab298b47 switch to using the real FIFO
24b43ea96ec make a real FIFO implementation
424c7ca7e58 Remove unused ClearState function
b7fd30c8712 update generated docs
8f11a3b3679 WIP: fix the flaky Job integration tests
7936d64e037 Replace IsExternalSigner boolean with ExtendedSigningDuration throughout apiserver to ensure consistent token signing length between local and external token signing.
1b0ad78718e fix
ab80d577321 Try to clarify EndpointSlice semantics some more
f310ac03f45 kubeadm: graduate WaitForAllControlPlaneComponents to Beta
82f0303f899 node: e2e: Remove flaky label as device plugin reboot test is deflaked
0c34b706b28 Revert "kubeadm: Promote ControlPlaneKubeletLocalMode feature gate to beta"
9ac25f1d9ed update of CRI API readme file
bde75d60200 chore: use NotFound error for missing components
8c80d384b2b feature: add scheduler queuesort plugins integration test
ed826dddfec fix(dra plugin): when there is no resourceclaim, return directly
8a0937c0346 feat: add a lint rule to prevent Add unversioned featuregate
509bbed0985 Add a test ensuring all /scale sub-resources return table
b04e1b80be8 kubeadm: use the v1beta4 EtcdAPICall timeout for etcd calls
1fa995224aa Update scale sub-resource to return the same error everywhere
9d893aed0c7 Use GitHub release for downloading `crictl`
601c0e359dc cacher: decrease the running time of TestConsistentReadFallback
cfd6d9a2b44 cacher/cacher_whitebox_test: newTestCacherWithoutSyncing allow passing a clock
88090c49732 prevent deletionTimestamp from moving into the past
cfa0349159b Update validation code
c31b1b3332f Resolved some review comments
c479f007d84 Update field to use feature gate
ab964a776c8 Fix e2e tests failure
5889da1bbc7 Resolved latest review comments
242dec3e341 Updated some unit tests and resolved some review comments
5ed5732fa22 Refactored status manager code of updatePodFromAllocation
8fa8277908a Added some unit tests
2ba61325f69 Fix e2e test error due to ContainersToUpdate map not created
9a5c57817a0 test: pod-resize tests for sidecar containers
6c5cf687229 Resolved latest review comments
6cf5b80c644 Fix some unit test error
1cf45872773 Fix build error
1eb966cb455 Added unit test for sidecar containers in TestValidatePodResize
a0d3cb0a2c7 Added proper validation msg when non-sidecar containers are resized
591b0f547ae Fix issue of pod spec mismatch if there is any non-restarble init container present
5d5e903e27b Revert e2e tests added for sidecar
3885d2f8abc Added sidecar support in ValidatePodResize and dropNonResizeUpdates
cdddaed8419 Added sidecar support in and
34ddb91f187 Fix some unit tests error
0e392f90170 Disable e2e test for now
d1fac494f4d resolve merge conflicts
5742f3deeb9 Cleanup running dmesg process in `local-up-cluster.sh`
b3e1d57339b kubeadm: Promote ControlPlaneKubeletLocalMode feature gate to beta
617c0944354 Add an e2e test
bd8dee96379 Improve Goroutines metric calls in parallelizer.Until
54500bfe692 cadvisor_provider, unit tests: ensure container-level metrics are collected
ceeba21d3d0 cadvisor_provider, unit test: Add swap stats to cadvisor CPU and Memory stats
c1112666098 cadvisor_provider, bugfix: Add swap stats to CPU and Memory stats
e6c19f315f9 cri_provider, unit tests: ensure container-level metrics are collected
748b52a1308 cri_provider, bugfix: Add cadvisor container stats
a85f489b28d client-go/transport: structured, contextual logging
44ca3b36545 Passed context for Wait methods in integration test utils
659804b765c refactor runWorkloads
4e05bc20db9 Linter to ensure go-cmp/cmp is used ONLY in tests
3a780a1c1b5 KEP-2862: Graduate to BETA.
28896d2f90c e2e: bump port-forward timeout
013f65b2576 DRA: fix test-driver examples
7f766762d91 Updated Concurrentmap iter
d3e8572d706 cluster ip allocator should check first on the legacy allocators
627e83c841f Passed context for Wait methods in integration test utils
27ec5de8638 chore(scheduler): improve log output for podtopologyspread filter plugin
156b9fbadc1 Bump kubedns and nodelocaldns to 1.25.0
38a21e06f5d fix: Fix the issue of relist caused by client-side timeout
e263b878eef Deployment controller should count terminating pods in the status
dc1914c61c0 ReplicaSet controller should count terminating pods in the status
28437797b52 update generated files and feature gates
14783b8a9bc add validation, field disablement and tests
f7c46df6651 api: add terminatingReplicas field to ReplicaSet and Deployment statuses
067012f5844 `client-go`: transform `watchErrorStream` to wrap the underlying error (#129765)
2b24c518b04 Drop declaration of IP/CDIR type CEL variables
0b38e6cd9e6 e2e network: remove test for funny ips
87139335b0e Switch from using a function to just pure map in create token
3030b1dc6a4 Finish extracting ExplainFlags structure
06077806cab Add dom4ha to SIG Scheduling reviewers
91afef615ad Refactors explain command to split flags from options
da999fbc1b5 Update CNI plugins to v1.6.2 and avoid using k8s-artifacts-cni bucket
fdebfb44857 e2e log info on nodeport allocation failures
f150016fbec feature: Make Unschedulable scheduler performance test parametrized with the number of initial nodes.
1065377f97e Revert "tests: include stdout of failed commands in JUnit"
faf30b30679 update github.com/coreos/go-oidc to v2.3.0
84b8f181e4d Concurrentmap Iteration
db3ae754b1d e2e network: adapt dual stack tests for endpoint slices only
69964319d14 remove GAed EfficientWatchResumption since v1.24
d889bd15bda DRA CEL: skip estimating the cost in the scheduler
a78983906f4 Adding support for providing version for functions in kube_codegen.sh (#129658)
b7386467c8d client-go rest: store logger in Result
7821abf2ae2 client-go/rest: finish conversion to contextual logging
b15a1943d51 client-go/rest: backoff with context support
48fb886325f client-go/test: warning handler with contextual logging
9998a032b13 kubeadm: fix a wrong log message
bda81f1b68e Kubelet server handler cleanup
c56426bd9f6 node: device-mgr: Update klog.Infof(..., err) to klog.ErrorS(err,...)
f8596d6d289 node: device-mgr: Change ErrorS(nil, ...) to InfoS
c68fc01b774 return an error instead of recording a test failure
c9e81cd84ca Switch to gopkg.in/go-jose/go-jose.v2 @ v2.6.3
0452ae402a5 Use cached calculateResource result when removing pod from NodeInfo in preemption
c5fc4193bbe Fix pod delete issues in podresize tests
7712d34b9ee remove unrunnable tests from NFSPersistentVolumes
969ecabc0f2 Remove all references to v1.Endpoints from non-network e2e tests
da5bf27bc57 Remove no-longer-used TestUnderTemporaryNetworkFailure()
bae4122f56f deprecate nodefeature for feature labels
7266759b67f Nominate macsko to SIG Scheduling approvers
238c32a1d9b Remove cache.ErrRequeue
8e77ac00013 Remove Queue.AddIfNotPresent
aaac13fc6a1 remove gke from e2e
09c82fc58a2 integration etcd storage test
8fcb4b5773a comment we keep storing v1beta1 by default to handle upgrades
3606d52cd6d make update
779b9cf90c7 update integration test
b6c3dfdad5c e2e test for service cidrs
7721590b9e5 update controller manager
33ba5855340 update kube-apiserver
bea17e14971 update internal API
ad511cd249f update registry
e340a07ccf4 update kube-proxy
ddfc4d3e588 update text fixtures for rbac
c26a5796fd9 update networking strategy
e3b39758215 describe servicecidr and ipaddress v1
eeae7b3fc8f promote ServiceCIDR and IPAddress to GA
272f33de90a api rule exception for ServiceCIDR
68cae5131a5 server both ga and beta servicecidr and ipaddress apis
3b48b0627bf graduate DisableAllocatorDualWrite to beta disabled by default
f97ff113fa0 graduate MultiCIDRServiceAllocator to GA
5cd7325cd7e e2e: expand error conditions when test-ing port-forward
7d02a18a645 add a comment to InTreePluginPortworxUnregister
03a3288ddde tests: include stdout of failed commands in JUnit
5ed3164d322 Update in-tree gcePersistentDisk tests
e26fb1c393a remove duplicated test case of `pvc not found`
e1fdced21f3 Put the target plugin names in the Qhint integration test cases
aecf3238bf6 fix lint errors
8b4eae24ab1 Move some exec helper functions from framework/volume to framework/pod
d3974065c8e Remove GetDeviceNameFromMount from HostUtils
612fcdaf737 add a comment for features.Flexvolumes
45529062e76 KEP-3836: 1.33 - remove feature gate
ce9e398641b hack/ginkgo-e2e.sh: forward TERM/INT to Ginkgo
1d4acfb8822 Update EnvFromSource.Prefix doc to mention Secret as well as ConfigMap
25a6fa144f4 There is no need to set the worker to nil to avoid potential timing issues.
110868691b2 node: cpu-mgr: Update klog.Infof(..., err) to klog.ErrorS(err,...)
b3fed900526 Remove unnecessary feature label Recreate
8d7aed698b7 remove APIListChunking which was GAed since v1.29
e68cc0a6eda remove feature label FSGroup
9898bfdbdae Remove unused test code
fca697aca08 Add logic to check for new ephemeral containers on pod update and update secret cache if they exist.
92e35e7618f update credential provider godoc with unique provider name req
9a331bbf59c credential provider config: validate duplicate names early and preserve provider order
1fc514cfe99 Bump sample-apiserver test image to 1.32
2504c6e73ae Update VERSION to 1.32.1 for sample-apiserver
2cc3dbf2250 DRA CEL: add missing size estimator
1714fbfa754 node: memory-mgr: Change ErrorS(nil, ...) to InfoS
dac6b34a618 kubeadm: improve message in 'reset'
4aeedcde3b8 Fix CSI migration UTs
14936a7f582 Promote Portworx CSI migration to GA
40b9a297389 Fix Portworx plugin's CSI translation to copy secret name & namespace
479ff5a02b0 remove duplicate getAttrsFunc calls to reduce temporary memory allocations
e578dcab3ad CHANGELOG: Update directory for v1.29.13 release
7f1abe993cb CHANGELOG: Update directory for v1.30.9 release
8ad8ad4681e CHANGELOG: Update directory for v1.31.5 release
cba6300414c Document nftables kube-proxy's "public API"
e5b326c0505 CHANGELOG: Update directory for v1.32.1 release
c78ee00e963 add missing KEP link for AuthorizeNodeWithSelectors feature gate
271b8cf1c1e kube-proxy healthz handler ip family aware
226b43b8ee7 Prevent alpha feature gates from being enabled by default
94d90fafeed fix name
3986472b3c7 Revert to go-difflib and go-spew releases
fef67f64c7b Update compatibility matrix and maintenance status upto release-1.32
c911ddd8a48 Fix: touch /dev/null permission denied on macos
936f249fa05 Add introduced and removed version information in etcd fixtures
43d86c2a3ef Drop github.com/asaskevich/govalidator
0d8a8fe3065 Update to latest kustomize/v5.6.0
bfce77d1c0f We still can't rely on first condition being fs-expansion pending condition
aa6a72f76ff Bump CSI sidecars to fix CI issues and such
59850b58230 Promote ServiceAccountTokenNodeBinding to GA
d66ced5730f client-go/tools/cache: fix TestAddWhileActive
8221e28e4d9 Add ffromani as approver for kubelet resource managers and their tests
bc488020870 remove WatchBookmark feature-gate comment from types.go
c0b49120e53 lint: removed empty line
a7937f53915 Remove WatchBookmark feature gate
561c1d235a0 full sync per one hour with BFR
0ddab169457 shrink the cache.Queue interface to what is actually used
12345a14c34 kubelet: use env vars in node log query PS command
e179f0e364d Add test for compatible version
2f4bd13fe57 kubeadm: remove misplaced error during image pull
a92297f1a76 kubeadm: remove the GA EtcdLearnerMode FG
aa1d79c3701 Use DeepCopyJSON to copy testcase input
a2b12ba4061 Simplify schema sentinel subresource logic
f886f3b7f10 e2e: expand error conditions when test-ing port-forward
17030f19b6c e2e services: avoid panic on service creation retry
2c58e274760 storage e2e tests: add more tests for pv relaim policy
fd35f652d41 fix state mem constructor and adjust restoreState
018ee41e6f5 kubeadm: fix a wrong comment
3274dc40edc pkg/proxy/healthcheck: consolidate IsHealthy and isHealthy
1c1fc736162 pkg/proxy/healthcheck: enhance testing
729deef4542 bump kube-network-policies to v0.7.0
0e55e47cff1 Remove unnecessary logging in FilterActivePods
64aac665fd9 pkg/proxy/healthcheck: bug fix for last updated time
4a4fc9da801 Extract and unify cache bypass logic by creating a CacheProxy struct
2d826871146 Improve topologyToMatchedTermCount map in InterPodAffinity PreFilter
1b7ddfe6bbb e2e: deflake subpath tests
1b2bacda5bd Only test requests that pass validation
7226a3084e8 DRA e2e: adapt to increased ReservedFor limit
0899cf892d4 add documentation that 0s duration will be overwritten for 5m
ba816967a0c Simplify status subresource ratcheting testing
8d79998058b remove workaround for vsg testing
c6f19d3c2a1 update snapshot CRDs to v1 in cluster addons
e5a3bdb3a71 Refactor shouldDelegateList
bdd0f5dd238 test: add Junction file type test on Windows
1cee3682da9 DRA API: bump maximum size of ReservedFor to 256
fe895563d92 Test all possible combinations of input for shouldDelegateList
13a21d58548 Add benchmarking of namespace index
8eb31f8aa16 Fix service's nodePort already allocated
a2a0a752102 Cleanupï: only initiate http2 server options when http2 is not disabled
2653caa248d fix dra test lint
5b2c1dde79d Add namespace to DRA adminAccess ValidatingAdmissionPolicy message
41f805b4761 Added check for multipath device mapper
a6c7d22f44f update publishing rules to use go1.22.10 for some active release branches
0645f0e50ec pkg/proxy/healthcheck: file rename
d6c575532ab pkg/proxy/healthcheck: rename 'proxier' to 'proxy'
4a0578e3dee Improve benchmark to handle multiple dimensions
091fa293908 Fix status subresource ratcheting
f1834f06f4f client-go event: add WithContext expansion methods
e681a790584 apimachinery wait: support contextual logging
77eae7c34f9 feature(scheduler): remove dra plugin resourceslice QueueingHintFn
fb47caa689f Update coredns to 1.12.0
cad12e5a415 Lower verbosity for topologycache messages
efdd6bea2e9 kubelet checkpoint: refactor state memory
42a5e5f4255 Pass context down to wait.PollUntilContextTimeout
8e872978e84 kubelet: improve allocated resources checkpointing
75131475fdf Remove general available feature-gate PDBUnhealthyPodEvictionPolicy
a7be958884d Remove general available feature-gate JobPodFailurePolicy
a811427020a Remove general available feature-gate AppArmorFields
7c887412c88 Add validation for revisionHistoryLimit in sts to prevent negative value (#129017)
4114a9b4e45 [kubectl] Enhance describe output for projected volume sources to indicate optional Secret/ConfigMap (#129457)
02fbcb4e69b kubeadm: should not warn on non-detect sandbox image
b1cb471982b Use generic btree in watchcache
a97ed3c98bc Update github.com/google/btree
977c4e9138d remove nsenter package
00a7849ef90 kubeadm: add preflight check for losetup on Linux nodes kubeadm: remove preflight check for nsenter on Linux nodes
c9bfc3b4556 use ginkgo.DeferCleanup to do cleanup tasks
129418b9a98 e2e: ctb: make it possible to run the tests in parallel
df503e54c85 Update etcd from v3.5.16 to v3.5.17
4c6deed07ec kubeadm: fix a bug where the node.skipPhases in UpgradeNodeConfiguration is not respected by 'kubeadm upgrade node'
61681433869 Remove use of deprecated functions
5aa4dd4a6ea Make it possible to pass a scheduler profile to RuntTestCoreResourceEnqueue
78a64027559 Extract list response struct to manage all the response fields
9d55fba36a0 fix featuregates_linter
deb234c9d5c refactor: simplify boolean expressions in CRD handler
2fd16abbe8d kubeadm: bump supported etcd version
cff0f4009f1 webhook: alter regex to account for x509sha1 GODEBUG removal
a9b641464eb chore: adding support for staticPortRange
2c305d71f05 kubeadm: add system verification check(including kernel version check) for upgrade
c3a54926a44 Fix PodTopologySpread matching pods counts for constraints with the same topologyKey
2cb1cc9e3a0 Bump images, dependencies and versions to go 1.23.4 and distroless iptables
215d0b094b6 Add tests for kubectl qos (#129388)
5f4d646ea33 Add Device status const comments
8e1403563a6 client-go cache: fix TestHammerController
b649c113661 chore(printers): add miss unit test for resourcequota
b406ba5cc36 kubeadm: skip disabled addons in clusterconfig on upgrade
f47e6d04283 fix: enable len rule from testifylint in module component-base
35f584187a6 accept GINKGO_FLAGS for test-e2e-node.sh (#129215)
976aefca1b2 fix: adopt go1.23 behavior change in mount point parsing on Windows
e99fea7e3f1 deflake volume tests
63ddf4bf33f test: Add integration test for apiserver statusz endpoint
2ddbfd19670 Fix Borg pub link in README
176730b0f08 test: fix pv deletion timeout
7c515cd1cb6 remove kubeadm.alpha.kubernetes.io/cri-socket annotation when kubeadm upgrade
ca4529574e9 remove node special feature typos
0b6e3718340 Bump x/net to v0.33.0
59fcd7b770d fix metrics test
6c94adcc630 expand etcd storage tests to test for 1.31..1.33
dc476e968d9 remove emulated version test for un-emulatable 1.30
cf28c0405c0 Expand emulated version range to n-3 with 1.31 floor
4e8477bd3bd Bump binary version to 1.33
f20eb2e7c16 client-go workqueue: add optional logger
446252b0c35 Add crd from external snapshotter
c71d27cb020 remove v1.30.0 api testdata
cf1e2e6c2da Add v1.32.0 API testdata
db6bf022173 feat: Add flagz endpoint for kube-scheduler
4396511e43a kubeadm: removed preflight check for `touch` on Linux nodes.
e3b12d89d0d fix(dra): support multiple resources to publish in PublishResources
769e7990d61 remove container-runtime-endpoint flag when upgrade
efdb7357506 kubeadm: fix idempotency retain, address deprecation
78f9f214c02 apiserver/admission/cel: add unit tests for JSONPatch expressions
a88e08c3971 Do not attempt to truncate revision history if revisionHistoryLimit is negative
db4c509e716 kubeadm: generalise CreateOrUpdate etc.
4411a3f3be8 lint
bc46e3d9b3f apiextensions: replace panic with error handling in DiscoveryController
4638ba97166 client-go/tools/cache: add APIs with context parameter
00dab9dffa6 Add Validation to versioned feature specs.
f3ff7d0518f chore: update comment for NamedFlagSetsReader
8495df64b22 deprecate nodefeature for feature labels
68ab918df76 Bump filepath-securejoin to 0.3.5
13b84453df5 Coerce null label and annotation values to empty string
4a2b7ee5699 Configure watch cache history window based on request timeout
04426633c0b Use OS-agnostic path separator in pod warnings check
b963e1514e9 fix check errRaw != nil but return a nil value error err
fd8a61ae1b3 kubeadm: update owners for v1.33
19aef482fae fix incorrect variable reference in handleUpdateEndpointSlice
75e5bd6a4f0 Fix unit test.
3ec97a445f0 kubectl: add test coverage for cordon command (#129202)
b9fc5678d96 Not using fine-grained auth.
a87dd67a3c8 feature(kubectl): use autoscalingv2 in kubectl autoscale
a7340ff36c0 [windows] Don't chown existing directory in MkdirAll
e1ef9e40f57 chore: Update apidiff.sh script description
0c1b1e04501 Address comments
6a608c3cdb1 drop NodeSpecialFeature and NodeAlphaFeature from e2e-node
e67c24bdbb4 Bump kubedns and nodelocaldns to 1.24.0 (fixed)
67a13f5355d Revert "Bump kubedns and nodelocaldns to 1.24.0"
c3a3a54822a Add `github.com/golang/protobuf` to unwanted dependencies
2c24a12804c Update generated clients after removing always-nil setConfigDefaults error return value
c3eba35aa2c Remove always-nil setConfigDefaults error return value in generated clients
1d13ff2a05e make update
11d68ecc4eb ResourceClaim.Status.Devices.Data as pointer
f5969adb14a Clean up NewServiceChangeTracker/NewEndpointsChangeTracker args
79d1c078bb1 Make change trackers just ignore the "wrong" IP family
2c348bf1863 Use a constructor properly in change tracker unit tests
7e578bdb6d9 lint
ed7f7ce92b0 fix race conditions in polling functions
532607ecbbb Revert "Change default filestore permissions to 0700"
d84ab830ad8 Remove shouldServeBeta parameter in apiservice storage
b2c84061c9b Change default filestore permissions to 0700
3269f4bb94c bump kube-openapi
8f782fea930 Add client-go README
3cd1c8dd2d2 Drop v1alpha1 VAP in CEL tests
68631d8f7c1 Remove v1alpha1 serving for VAP
1b15876e266 test: reduce container resources in in-place pod resize tests
90e64a57c6c kube-proxy,nftables: add debug logging for failed transaction.
b7d6e787268 make update
ca5f1deed44 Fix ResourceClaim status API inconsistency
161a817812e Clean up v1alpha1 serving for authorization API
c1d0e870f4f Replace `github.com/golang/protobuf` with `google.golang.org/protobuf`
3571992ffcf Add watch permission to namespace-controller for WatchListClient feature
39e7db9cc92 kubeadm: remove iptables/ip/tc/ethtool binary preflight check
80735180ab2 Update x/crypto/ssh dependency
a69efaeb765 Shut down webhook after apiserver
9e46be86470 CHANGELOG: Reflect correct approvers/reviewers
137ccd2a73b OWNERS(sig-release): Add `release-team-subproject-leads` alias
0c1ccd133b0 OWNERS(sig-release): Reflect Marko's position as RelEng subprj lead
5c283cbb453 flowcontrol: remove testing dependencies
8fce9b0db68 apidiff: default from prowjob env if available, default before doing anything else
c9066d75f6d Fix data race in CBOR serializer's custom marshaler type cache.
e8087b3f6ac Remove the limitation on exposing port 10250 externally
f9d9649f567 Bump kubedns and nodelocaldns to 1.24.0
f93e6f3d3ae kube-proxy implement dual stack metrics
b95c7880005 remove release-notes of reverted PRs
0ba43734b4c client-go/tools/cache: goroutine leak checking
e3c584030c3 k8s.io/apimachinery: add HandleCrashWithLogger and HandleErrorWithLogger
ae11c7deb1b DisallowInvalidLabelValueInNodeSelector
0cc92622006 kubectl: fix wait --for=create to work correctly with label selectors (#128662)
5b06498cb24 fix: fix miss makezero bug (#125132)
2f9fb220ba6 CHANGELOG: Update directory for v1.32.0 release
ebb02bb6cc0 feat: Adds flagz page for kube-proxy
88365488062 test: Add integration test for apiserver flagz endpoint
7caff55fd9c Add statusz to kubelet auth.
353118c0475 e2e: don't panic asserting inside wait.Poll
63992e1790d dra e2e tests: add feature-gate label when these tests depend feature-gate
5d3c07e89db kubelet: only emit one reboot event
f367122f302 scheduler plugins changes are API changes, not upgrade action required
9bd5dc86d31 Fix grammar mistake in kubeadm config v1beta4
e35c9b2cd22 add comment for features.BootstrapTokens
3698050dc79 network e2e tests: add feature-gate label when these tests depend feature-gate
902dedbb522 fix: Move statusz to debugging handlers.
816cd402806 Unify ComponentKubelet and add unit tests.
a04df83f86b add statusz for kubelet
804f8c75843 kubelet: fix DRA registration test
bfed2323105 Update cri-tools to v1.32.0
74090f8eb4a updated bootstrap-discovery link
247555c2b79 test: deployment patch status test should check the modified fields
d1cc270f139 local-up-cluster: only wait for coredns if enabled
bb2db379c79 test/e2e/apimachinery/watchlist: select only wellknown secrets
8f48a82e6ed docs: `-l/--selector` example for set-based requirements
060c653b53a scheduling e2e tests: add feature-gate label when these tests depend feature-gate
04669c5d644 add warning for duplicate port name definition
5a8d77a2ae2 Add statusz endpoint for kube-controller-manager
c5f0e63c624 Add Podresize endpoints to pending_eligible_endpoints.yaml
22c41caca9f Add integrate test to OOS node
dce863e5e61 fetch cni plugins from GitHub releases
f0c5de00600 Fix volume expansion offline
29d26297a1f e2e: node: fix misleading device plugin test
a0b74011b2b add kubelet validation for containerLogMaxFiles
cb74323e070 refactor: Simplify the code logic.
617e5c79bb4 storage e2e tests: apply feature-gate label when these tests depend feature-gate
1fd76884b96 Isolate mock signer for externaljwt tests
b71763ef386 Remove unnecessary log msg.
0a02c74ca63 update-vanity-imports.sh: remove script
8a908e0c0bd remove import doc comments
326c84a1515 [e2e, service] Add total timeout for affinity check curl command.
b330eeac2ff prune-junit-xml: preserve system out + err text during test pruning
e0e4af8a58b prune-junit-xml: smarter concatenation when pruning tests
53e9f29d29f Fix kubelet e2e tests incorrect message
8f4e425daf2 chore: ignore dat files generated by scheduler-perf
0d18ae303bb apiextensions: add pkg/test with CEL unit test helpers
9e99be7c2b4 Fix: typos for volume package
e5ebbdc3c7f Ignore internal packages messages
ebe5bab2cb4 Move common code to an httputil package
27608fa25db refactor(scheduler): Rename UpdatePodTolerations for code style consistency.
f92bde1894f parallalize the apidiff dump
affafd906da improve report on failures summarizing the modules with incompatible changes
7de94d43cab handle the case when modules are added or removed
52386915a83 use relative paths and modules that are not visible to golagn workspaces
48ea6fc4651 oom_watcher: fix testifylint failures
f622be03338 kubelet: Migrate pkg/kubelet/oom to contextual logging
e6fccc36d8e apidiff support internal go modules
79d62d8bb3b change current and desired
6f06cd6e057 Do not reload kubeconfig from disk
a43b00b429c make test-cmd: use kube::util::find-binary to get kubeadm binary
65b243fcd60 chore: remove repeated scheduler prefix metrics for CacheSizeMetrics
bf1280014bb pkg/volume: remove unused function
31958838318 UnitTest: kube-proxy EndpointSliceCache cleared correctly
78b440a74af Fixed: kube-proxy EndpointSliceCache memory is leaked
05ebf451146 e2e: wrap DRA ResourceQuota Forbidden claim check in gomega.Eventually
eb6bb5f84d8 Record dataTimestamp as float
67b74696f8c Adjust performance test threshold limits
8312c3ec242 Use generic Contains rather than deprecated ContainsString
7c3a9d65fca Don't set default resize policy in E2E tests
da4dc0aec78 Stop defaulting container ResizePolicy
3baa6f08c0a Add modern-go libraries to unwanted dependencies
b63593715ff Test EndpointSlice in dual-stack e2e tests
9dbdfe7ecb1 Remove provider specific operations from the autoscaling tests and reintroduce the tests.
c3f15fd707a Use generic sets rather than deprecated sets.String
bfea4890c59 cleanup: remove pod_scheduling_duration_seconds
36245509e86 fix flaky behavior due to the test ordering between DynamicProvisioner and Retroactive StorageClass Assignment
4a876e21bce fix: params typo
7e977d824cf update the github.com/golang-jwt/jwt/v4 dependency
dd1300df986 📝 output log when server shutdown is failed
7280d58f856 Don't allow to tolerate flakes
b577972a551 set user.DefaultInfo.UID from x509 cert
4e21f535475 Add test case for service with same named port for regular and sidecar containers
e637659d893 Fix named ports of restartable init containers don't propagate to EndpointSlice
a6e995379af Add test cases for Service with restartable init containers
f87bcd9b3a8 fix: remove duplicated unit tests in JSONPatch and ApplyConfiguration
90922f5c946 Fix linting issue in test
a9c311b96a3 static pod upgrade test with hostNetwork
2581d2fadd2 Add self to sig-instrumentation leads
588408df1cd Bump konnectivity-client to v0.31.1
0ba8af9006f DRA: enable performance tracking with scheduler_perf
36f9ee958e2 proxy/util: remove unused function
179fa16f467 Remove user privilege checks from preflight tests
30a7664c3f5 Change way to create a pod in test
c725e18e079 feature(scheduler): more fine-grained QHints for interpodaffinity plugin
cd6f4153e05 Fix a bug in framework.IgnoreNotFound where it will panic when a function type's final input parameter is a "..." parameter.
22c3db6f7f9 Added unit test for validation check of sidecar containers
de8e8c5404c Add integration tests for event handling cases in scheduler_perf
7e067396c2a Build etcd image v3.5.17
36144e07085 test: add a check that a specific error has occurred.
49080bf02a1 Document the existence of nftables as a kube-proxy mode.
80ed375e373 Fixed time
8b90c9e885c lint
991651353d6 lint
fe46e47bd13 chore: update deprecated polling methods in apiextensions-apiserver
dc258e65ac1 memmanager:cleanup: drop `Experimental` prefix
3d069b2a8a6 Add myself to client-go reviewers
b1830bd1de2 Improve validation for missing storedVersion
5db88777c4f change the CapExec value to false by default
636419cdd7f Fix nil pointer dereference in selectable fields check When checking specVersion.SelectableFields, if specVersion is nil, a nil pointer dereference could occur. This change updates the conditional to use || instead of &&, ensuring that the check for specVersion being nil happens first, avoiding potential runtime panics.
50ed36229ce cleanup todo comment in node restriction integration tests
c478e4bd382 Add e2e tests
11594fabe64 csi: update snapshot controller to the v8.1.0
de6a43c43c5 generate
93d66a216fa Update API docs that are shared between VAP and MAP
a67cf0ba4da Add volume modificatoin recovery e2e test
b01b016668a Use Go 1.21 min/max builtins
6f97d063775 add device-plugin-test e2e log
e5fd9cfb189 Job: Remove JobTrackingFinalizer annotation specific testings
94f6422562e test:Fix typo
734c36851fb test:Add podgcCtrl to attachdetachClients
6910e766991 test:Add podgcCtrl to attachdetachClients
bf1b9c45ea9 add test for inmemory response writer
50f71e948c6 prevent unnecessary resolving of iscsi/fc devices to dm
e5ffba17bec Report event for the cases when probe returned Unknown result
4dcddabb7e1 update vendor
e2f62322586 preserve options after remount for bind mounting
49b479116f4 [e2e][webhook] Retry update webhook configurations
f97abdbee07 allow ContainerResource calculations to continue with missing metrics like Resource calculations
1b371d0d469 Add test for CEL reserved symbols without double underscore
b53ea554f88 Adds more flexible version of test ccm server
568255ac7d8 e2e_node: add test about container metrics from cadvisor
d9e278711cb Fix GetVolumeName for image volumeplugin and add unit tests for CanSupport
8e877096161 testes written for cache/listers.go
6e82d974510 fix: Ensure testForceDetachMetric works on the delta of ForceDetachMetricCounter
ee3e9a7bd44 apiserver: decrease timeout for TestKMSHealthzEndpoint
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping podman.git to version v5.5.2-3-g87c980c6e2, which comprises the following commits:
4be1744dd6 Bump Podman to v5.5.3-dev
e7d8226745 Bump to v5.5.2
9664445ba6 Add release notes for v5.5.2
1a04ca36d2 Make podman.io update action reusable
1569c20982 machine init: fix tls check
881d48eae2 fix panic on state refresh
31639e85c6 RPM: Limit Epoch 102 to podman-next copr
149bec7392 Bump Podman to v5.5.2-dev
850db76dd7 Bump to v5.5.1
41dae619e8 Update release notes for v5.5.1
279c592378 Build the `dumpspec` test helper for the `buildah bud` tests
4ef6a8715c [v5.5] Bump buildah from v1.40.0 to v1.40.1
efa20372b4 Fix overlay volumes on Windows
61403afeaf Fix SQLite volume lookup queries matching too liberally
ee2370bc26 Handle "Entrypoint":[] in compat containers/create API.
d71fbe7ba8 Fix handling of "r_limits" in Podman REST API /libpod/containers/create
8e120c93bd specgen/generate: Fix log tag priority
c5ac361844 system df --verbose don't crash
d995e3eeaa docs: quadlet can translate names now
88890d3eb8 play kube: never add empty alias
45f62c0dcb podman system check: Fix error check logic
8542247538 libpod: don't force only network search domains
04447cc322 test/system: check --dns-option behavior
90c9c2271e vendor: update c/common to v0.63.1
10349a46c4 Trigger podman.io version bump from release action
bbed5a8e2e Update RELEASE_PROCESS.md
25e59c7dd2 Recreate the Rootfs in mountStorage for infra-container.
bcada3ec09 libpod: fix mount order for "/" volume
c2a8447e1f GHA Release: Fix windows installer uploads
5a647f154e fix macos compile issue with go 1.24.3
5141374193 Bump Podman to v5.5.1-dev
0dbcb51477 Bump to v5.5.0
712291aee8 Update release notes for v5.5.0 final
37f621579b Bump bundled krunkit to 0.2.1
5ad243a7da [skip-ci] Tighten version match
66283624bd Update win-installer github job for arm64
eecb4122f7 Build windows arm64 artifacts
04ee90dab3 Fix windows arm64 installer build
0dd745c86b Update winmake.ps1 to build arm64 artifacts
df4aed78a2 Remove providers checks from the Windows Installer
366538d98f Update "check.c" to be C23 compliant
5f59c8853a Update to gvisor-tap-sock-0.8.6
d358e91817 Fix running machines with volumes containing spaces
4cb4d121a6 Fix logging podman machine server9 output
82a1a22711 update podman socket output to include also exposed ports
45c9223be9 Automatically bump to -dev after tag
27beb100dc ci: Load null_blk for I/O limit tests
b85c312bc6 test/e2e: Use nullb0 for IO limit tests
1c82abd17b test/system: Use correct device for I/O limit tests
6bc2393df0 inspect: Ignore character devices for IO limits
ca382b1c8e Bump to v5.5.0-dev
3c4cf52142 Bump to v5.5.0-rc2
c7ad64cedc Update release notes for v5.5.0-rc2
3f43df2bdb Handle signal preventing Start from completing
1ea17b6fdd Fix mach os pr release action
b4047fced9 Makefile: move some Go-related variable definitions up
fdcbc0d479 pkg/bindings: wrap image push decode error
4767cff3ed pkg/bindings: fix infinite loop/memory leak in image pull
58a934313f Added tests for inheritlabel fix
b2a99aab3f Fix: inheritlabels=true if query param absent
325a79c724 libpod: fix a confusing error message from 'podman system reset' on FreeBSD
bd3ee58527 podman start: remove container if needed
7a9acf2d51 remote: don't print bogus error when starting container attached
2e01a0ac76 Bump to v5.5.0-dev
6a597e0e89 Bump to v5.5.0-rc1
2c1646b130 Update release notes for v5.5.0-rc1
c6a16e6f17 Packit: do not merge PR in CI
739577b57b Packit: re-enable fedora-41 targets
80993f2c3b fix(deps): update module github.com/docker/docker to v28.1.1+incompatible
10d768baaf Add inherit-labels option to Build API
76b07dd48d Bump to Buildah v1.40.0
75aec675d2 chore: use another script to get the version of gvproxy
ce0617eac4 Use gvisor-tap-vsock version from go.mod file
453a7a820d fix(deps): update module github.com/mattn/go-sqlite3 to v1.14.28
9a0f013f0a Revert "cirrus: test only on f41/rawhide"
b0df21edef New images 2025-04-16
590e019240 fix(deps): update module github.com/docker/docker to v28.1.1+incompatible
71504eedfb Output headers for volume ls when empty
5494ac882a [CI DOCS] Touchup buildah-bud README.md
49b6faea09 chore(deps): update dependency setuptools to v79
4ba8cde41d Add HostName to quadlet pod
a7a7304c6f test: Fix expected output for runc on namespaces
1514e5cbcc feat: update vfkit binary to v0.6.1 in macOS installer
05e7eeaff4 fix(deps): update module github.com/docker/docker to v28.1.0+incompatible
6ac0a28564 Quadlet - support additional systemd unit relationship keys
fdfed9979f Add ability to set layer media type for artifacts
be937a4e20 Bump c/storage v1.58.0, c/image v5.35.0, c/common v0.63.0
3cbb718049 Fix compat API in rootless mode ignores ulimits
224e791161 Replace podman pause image with rootfs.
bc9110c69f Update podman-systemd.unit.5.md
e498c6526b Quadlet - translate dependencies on other quadlet units
69c2e68836 Fix directive `//nolint:revive` is unused for linter "revive" on ARM
8690b20732 .golangci.yml: rm legacy and common-false-positives
543a7ea062 pkg/bindings/containers: rm unused break
5f997a70bd cmd/podman/pods/create: fix break statement
b615011b44 docs: Expand description of no-new-privileges
7b30f19535 chore(deps): update dependency golangci/golangci-lint to v2.1.2
d9914ff27d Fix the fd leaking to aardvark-dns.
857b536507 test/system: add prefetch users to use cache image
1a6431674f [CI:DOCS] Add link to MAINTAINERS.md file in GOVERNANCE.md
f26765ceb0 update golangci-lint to v2.1.1
ae1e24f115 Two small updates to the Governance model
081629cf01 Update pre-commit-hooks and Codespell hook
d3e2ca57e4 libpod: stats catch ErrStatCgroup
86d7da8b08 vendor: update to latest c/common
a4856a6224 test/system: add debug for /etc/hosts restore flake
0849cbcf83 test/e2e: skip flaky restore into pod test
0fb78905c1 Revert "Instrument cleanup tracer to log weird volume removal flake"
0be44ccb20 test/system: add debug for healthcheck flake
0d4a148ee6 Quadlet - allow deleting the network when stopping the service
72fdc6476d test/system: remove pasta conditional
6c7179c652 rpm: require slirp4netns for podman-tests package
fe107ff0ce Quadlet - Add support for adding ExecReload command
521b2451c7 Correct units in init error message
7cbad232fe chore: make function comment match function name
9a723ff9f5 Fix windows path handling in podman cp
76a4fdc358 cmd: Fix help text. --config specifies a dir not a regular file
b2e45129b8 .github/labeler: add governance label automatically
1934c3a407 OWNERS: add nalind
4242951662 MAINTAINERS.md: sort by role
a96b29b58c docs: update DefaultDependencies description
85caf3fbb5 test: update README for system test
9cc7c2b4ab Make Go not panic on a partial container update
4e65ed5b72 hack/bats: remove OCI_RUNTIME reference
146f70d9fe Bump bundled krunkit to 0.2.0
7633a9a143 fix(deps): update module golang.org/x/net to v0.39.0
7e1ea74813 Maintainers.md: fix two github nicks
85024a9ba7 libpod: --user works with --hostuser entries
254ab3b90f test/system: do not check dns.podman
6bb1d0837f fix(deps): update module golang.org/x/crypto to v0.37.0
acbfc3c259 fix(deps): update module github.com/onsi/ginkgo/v2 to v2.23.4
27b3781201 fix(deps): update module golang.org/x/term to v0.31.0
8d1c373475 quadlet kube: consider empty pod as running
f87ab2b7a6 fix network DB desync after failed connect/disconnect
c0845ed55b fix(deps): update module github.com/moby/sys/user to v0.4.0
5148cf3c14 [skip-ci] Update actions/create-github-app-token action to v2
72acbc804a Add documentation describing how to triage issues
9d4e820264 Use golangci-lint fmt for pkg/bindings
055fc82bd2 Makefile: exclude seccomp build tag for !linux
a8dd9bc1ed Makefile: use GOOS/NATIVE_GOOS instead of uname -s
b959ca3577 .cirrus.yml: add golangci-lint cache for freebsd task
c958d5b3ba .cirrus.yml: upsize the freebsd instance
f18c917ef8 ci: run golangci-lint on freebsd
b5a1b512c9 Fix overwriting the Healthcheck configuration from the image
1f90cc1126 docs: update pasta options description
64f822f857 docs: delete the duplicated phrase in introduction page
9277643ead Set the IDMappings also when RootfsOverlay is used.
fbb118ed7e cirrus: save/restore golangci-lint cache for linux
403d126ac8 hack/install_golang.sh: revamp
7882de95ff libpod: fix whitespace linter issue on freebsd
421ee18e18 libpod: add a nolint:wastedassign annotation
5f582e9f11 pkg/emulation: add linux build tag for elf
8c0c1c8906 libpod: fix wastedassign warning on freebsd
30fd68cb23 libpod: rm some unused freebsd code
8754687b55 libpod: move linux-specific code to _linux.go
c1c963affe libpod: fix unconvert linter warning
6bf1923f3e pkg/specgen: fix ST1019 on freebsd
118670b31f pkg/specgen/generate: fix S1002 on freebsd
0eea1cb297 libpod: don't capitalize error string
66c7efdb6b libpod: use context.TODO to fix SA1012 on freebsd
4165877c58 libpod: gix a govet warning on freebsd
851bd141af Fix errcheck warnings on freebsd
8fd7143e36 cmd/podman-testing: fix freebsd compilation
c6189c5b51 test/checkseccomp: add linux build tag
f589811073 pkg/rootless: fix ST1005 warning for freebsd
783f0c8076 fix(deps): update module github.com/onsi/gomega to v1.37.0
f1f84320a2 Add initial draft of Podman project Governance
83cf9ee8a9 Update roadmap for 2Q 2025
84203fa6ce Update links and markup in man pages
040385ef9b chore: fix function name in comment
8db52f8984 Add autocomment for `needs-info` label
6c950bdb40 Remove unused code and data structures
684126e426 Suppress failing bud tests in remote
275e77d1fa test/tools/vendor: drop ginkgo
3d12f1e2ed Update vendored c/buildah to 32d78c69be17
74356e1b5a config: use ErrInvalidName
c27195ea65 fix(deps): update module github.com/shirou/gopsutil/v4 to v4.25.3
51bb71d1b3 vendor: bump c/common to 9b0d134f392
66b2bf83d9 fix(deps): update github.com/openshift/imagebuilder digest to e87e4e1
6703564339 fix(deps): update github.com/opencontainers/runtime-tools digest to 260e151
4eb75f68cf test/e2e: fix unused linter warning
dac3fa2f97 pkg/specgen/generate: fix unused warning on freebsd
18fdbaee80 pkg/machine/qemu: fix ST1016 linter warning on freebsd
c860e67884 cmd/rootlessport: add missing linux build tags
061e1a17a9 pkg/rctl: fix fprintf statement
1739b7170e pkg/systemd/quadlet: rm splitPorts
c9b108d5b3 Bump golangci-lint to v2.0.2
8bd73b7d2c pkg/machine/wsl: rm unused structures
2861bc3702 pkg/machine/qemu: rm unused code
9f0032d3fd pkg/machine/shim: fix unused warnings on windows
d9090645c3 pkg/machine: fix various linter warnings
4638d434bc pkg/machine/wsl/wutil: fix imports formatting
c1f9c0b127 pkg/machine/e2e: fix unparam warnings
7c175064da libpod: rm nolint annotation
032250a478 pkg/binding/images: rm dead code
486327e2b9 pkg/bindings/images: fix linter warning on Darwin
6b1033eaa0 libpod/events: refactor to eliminate unused code
91113c46ef test/utils: suppress ST1001 warnings
0f975f8526 ci: rm allow-unused from nolintlint settings
bed6ee6bb7 pkg/machine/e2e: move windows-specific function to windows file
cc4d904dd2 Fix QF1012 staticcheck warnings
f4f2580b0d ci: remove stylecheck linter
5aa035c69c libpod: fix a few minor staticcheck warnings
0105131b5c Fix QF1003: could use tagged switch" staticcheck warning
0dddc5e3c0 Apply De Morgan's law
b1010808ed .golangci.yml: remove exclude-dirs
1a9cf6b9db .golangci.yml: rm exclude-files
f3e7b26fdd .golangci.yml: remove some linters
c72526cd9c .golangci.yml: switch to list of enabled linters
4a7785d4df docs: Update `podman build` security options
af19eeaeb4 add additional external container fiters
8ef234aedd remove github.com/buger/goterm dependency
0b1d3a963d chore(deps): update dependency setuptools to v78
590316beb6 update markdown documents with command filter
0a0c8ad6f4 Improve the file format documentation of podman-import.
3872293893 Revert "podman-import only supports gz and tar"
571e0d52b3 Update c/image after https://github.com/containers/image/pull/2795
ba88febf33 Don't block builds on podman-testing growing in size
4264bf6876 remove github.com/google/gofuzz dependency
19b4c3c1b7 fix(deps): update module golang.org/x/net to v0.38.0
8cef2f4d10 Enhance issue reporting template
f07a95da0e test/compose: use 4 spaces indentation
9f422e1a77 test/compose: use cdi option over mount
926ad1172e test/compose: remove cni reference
ea1eeb523f remove github.com/crc-org/crc/v2 dependency
49c42d06dc pkg/machine/apple: simplify restNewEndpointToCmdLine()
5ad70c9c56 Don't depend on github.com/crc-org/vfkit/pkg/rest
60692ca350 Remove exclude_graphdriver_devicemapper build tag
12ccbea1aa remove unused method references
a776c1d82a pkg/machine/vmconfigs: simplify IsFirstBoot
392a8f4ac5 test: Fix runc error message
dce36131ae Add cdi-spec-dir option to top level options.
4bea200b26 podman logs: allow options after argument
a0cae65c13 quadlet: add support for the UpheldBy option in the Install section
2ba7a87df1 [skip-ci] Packit: Ignore ELN and CS jobs
44cbefff5d fix remove unnecessary err check
ea5ed2a875 fix: mounting issue with single character volume on windows
e61f1a44d6 pkg/machine/e2e: add missing withImage()
9b9c60d814 CI: use z1d instance for windows machine testing
1f3347ff3c test: re-enable idmapped mounts test on vfs
7f592742b8 vendor: update c/{common,storage}
f94d613556 Fix container clone with configured Healthcheck
f15b0887c7 Add support for pids-limit annotation for podman kube play.
08a1c6d91e Add support for Retry= and RetryDelay= to Podman Quadlet.
6e28bdcf25 GHA: Open PR to podman-machine-os on releases
321634d599 Add volume SubPath in generate kube
7ca96702ee buildah-bud: skip bud-with-mount-cache-like-buildkit
bf0a5ee3cf docs: Use accurate max size of secret content
10290d462b docs: Improve spelling and formatting
fa0e5af542 fix(deps): update module github.com/containers/gvisor-tap-vsock to v0.8.5
68e0a6c89a Clarify behavior of --health-timeout in man page
f5fbb4215d vendor: update c/{common,buildah} to main
999a11c8b1 replace deprecated selinux/label calls
a0acdb837b New images 2025-03-24
6df50bec87 fix(deps): update module github.com/onsi/gomega to v1.36.3
f91aca8ebc vendor: bump c/common to dbeb17e40c80
f1527283d6 Make exec support --cidfile.
042c1ffa0b pkg/machine/e2e: use testimage
260035d069 vendor: update common and buildah
701aade262 Add --env and --unsetenv to podman update.
5e66d38c9d Do not set arch for windows to amd64
0ca539c3ab chore(deps): update dependency setuptools to v77
88b62d2c27 vendor: update c/common
67165d8fc2 Fix some code blocks in documentation
51ca839c14 libpod: fix handling of additional gids in exec
c0627de21d container: replace code with securejoin.OpenInRoot()
a23511e341 vendor: update github.com/burntsushi/toml to v1.5.0
ac787b6691 Fix flake on machine cp e2e test
829cc591df chore(deps): update dependency setuptools to ~=76.1.0
16918614b5 fix(deps): update module github.com/opencontainers/runc to v1.2.6
1e4acff971 Update roadmap for Q1
b3fe3906bb test/e2e: skip idmapped mounts test with vfs
69dc0720b9 docs: add note about systemd df RECLAIMABLE bug
97cab8c9c0 test/system: add systemd df regression test
38d6d1c560 vendor: update c/common to latest
39e3df6b55 fix(deps): update module golang.org/x/net to v0.37.0
2b813eef9d [skip-ci] RPM: Add riscv64 to ExclusiveArch-es
af29bb5b6e Update CI to run Windows unit tests
dd4f67fd72 chore(deps): update dependency setuptools to v76
f166f1503c Honor rootfulness when SSH-ing into named Machine
687fe08f42 Fix a potential deadlock during `podman cp`
bcc2063e9e test/e2e: use go net.Dial() ov nc
f8787bb219 test: use ncat over nc
1945506905 New images 2025-03-12
a2953dad10 libpod: improve createRootlessContainer
a1008a1294 libpod: add missing return in WaitForConditionWithInterval()
5207feebd4 pkg/domain/infra/abi/play.go: fix one comment
94cacea064 docs: fix some minor issues
76fe869dc5 fix(deps): update module golang.org/x/net to v0.36.0 [security]
87421d9508 Fix WSL installation check on Windows
fff42ac232 Fix HealthCheck log destination, count, and size defaults
18abb18c9a chore(deps): update dependency setuptools to ~=75.9.1
c05908a7f6 libartifact: NewArtifactStore() reject relative paths
9e94dc53b2 add new artifact mount type
f6e2d94409 test/e2e: improve createArtifactFile()
fe82fa85d2 pkg/specgenutil: rework volume/mount parsing
590bf8b79d pkg/specgenutil: unexport Mounts()
51cfcc65d5 correctly preallocate artifactDigests in ArtifactRm()
b232ea3d18 create artifact store in the libpod runtime
7c200a5f4c libartifact: add BlobMountPaths()
86a6539b76 libartifact: extract common code into helper
4cd19b7f7a libartifact: fix comment on Extract()
618e37794e libartifact: create FilterBlobOptions
91072dc940 Win installer test: hardcode latest GH release ID
82426caf8a packit: fix missing fedora arches
6ea7b192fa [skip-ci] Packit: Fix action script for fetching upstream commit
9eb4d27c5c packit: only build F41+
56e62948f7 go1.23: use std maps package
b23249635d vendor: bump to golang.org/x/crypto@v0.36.0
05fc9d2d6b cirrus: test only on f41/rawhide
f2606c4230 fix deprecated docker v28 types
91a08235d1 vendor: update docker v28 and c/{common,image}
2ffb3a19b3 vendor: update c/storage
c9c44d400c libpod: do not cover idmapped mountpoint
48662fa32b update gvproxy version to 0.8.4
41924f870f Prevents removal of `podman.sock` file using `podman system reset` command
02658bc4cc Quadlet - Propagate warnings and print errors and warnings as they occur
73799672cf docs: update how the machine os is upgraded
b762c15e1c Fix a few typos.
c6fe768176 Don't try to resolve host path if copying to container from stdin.
130bb21612 .github: remove cirrus rerun action
5283f956a5 Disallow mounting to certain destination /dir paths
5cd58742a2 Use svg for pkginstaller banner
1d304334dd pkg/util: remove redundant min/max helper functions
eed5f9ee4a libpod: race in WaitForConditionWithInterval()
d0efd0e278 libpod: race in WaitForExit() with autoremove
41dd3f2474 Automate release
945aade38b quadlet kube: correctly mark unit as failed
518773a616 pkg/domain/infra/abi/play.go: fix two nilness issues
04e8cd1eb1 kube play: don't print start errors twice
727542fc6c Replace old nginx image with podman hello
47079cd030 [CI:DOCS] Packit: clarify secondary status in CI
73cfef57b9 fix(deps): update module github.com/containers/buildah to v1.39.2
9e397d8e4d podman-import only supports gz and tar
7f4282a7e8 Update documentation for podman-machine-os-apply
47a743bba2 report healthcheck start errors
84c56243a2 [skip-ci] Packit/RPM: Display upstream commit SHA in all rpm builds
30d8fcbc03 fix(deps): update module github.com/opencontainers/image-spec to v1.1.1
1e9bfeb1f8 docs,kube: add configMap as supported volume option
511d912685 Add stopped status for HealthCheck
d5acda2a37 fix(deps): update module github.com/shirou/gopsutil/v4 to v4.25.2
7bcd9c066e chore(deps): update dependency pytest to v8.3.5
b18dcccb28 add filter for container command
67c876112b fix(deps): update github.com/vishvananda/netlink digest to 0af3215
baf176058c fix(deps): update github.com/digitalocean/go-qemu digest to ee9b066
b2d08f5b8f Use UnparsedInstance.Manifest instead of ImageSource.GetManifest
f8c702bd35 Rename copyImageBlobToFile to copyTrustedImageBlobToFile
20523152f8 Add "create" and "remove" events for secrets.
42fb942a6f Introduce `podman machine cp` command
f71067d710 Create quota before _data dir for volumes
716eb000fa Bump to latest c/storage main
316a5dc643 fix(deps): update module github.com/opencontainers/runtime-spec to v1.2.1
92c5b08ebd vendor: update github.com/go-jose/go-jose/v3 to v3.0.4
24af533082 fix(deps): update module github.com/containers/libhvee to v0.10.0
e8fc1e679a fix(deps): update module github.com/containers/buildah to v1.39.1
328c7260fc podman run: fix --pids-limit -1 wrt runc
bbc7f577aa chore(deps): update module github.com/go-jose/go-jose/v4 to v4.0.5 [security]
6796562b50 fix(deps): update module github.com/vbatts/git-validation to v1.2.2
ee3fc74baa fix(deps): update module github.com/vbauerster/mpb/v8 to v8.9.3
4dbbf264c7 Fix reporting summed image size for compat endpoint
e10df3dac7 fix(deps): update module tags.cncf.io/container-device-interface to v0.8.1
cbc73457ab Add --all to artifact rm
7030b559fb Define artifact error types
6ad2dc0590 wire up --retry-delay for artifact pull
7536620791 [skip-ci] Packit/Copr: Fix `podman version` in rpm
4695564730 oci: report empty exec path as ENOENT
b43863ae2a docs: warn about adding capabilities
a8caebb5a3 Add documentation describing issues and support
c65bb903b6 test: adapt tests new crun error messages
35d2a65e3a test: remove duplicate test
0f443f22ca Add syncmap package and use it for graph stop/remove
1c13a71641 Update CONTRIBUTING for main branch
bbb94249ed fix: reduce logs noise when attach input on `ExecStartAndAttach`
543be25ef3 quadlet: support `Memory=` in `[Container]` sections
22da944e4a Parallelize buildah bud tests
c278db873f cirrus: use fastvm for buildah_bud
3de18b537e test/buildah-bud: run bats in parallel
88073c56d5 update github.com/spf13/cobra to v1.9.1
a5de5959cb fix(deps): update github.com/containers/storage digest to b6f6fb2
f290149b70 fix(deps): update module github.com/opencontainers/runc to v1.2.5
77737132a5 Revert "silence false positve from golangci-lint"
035fff5fd2 update golangci-lint to v1.64.4
5c17f7a650 chore(deps): update docker.io/library/golang docker tag to v1.24
731ef3ff9c cirrus: bump timeout for macos/win machine tests
07e53673f6 cirrus: figure out DEST_BRANCH automatically
6167d286eb fix(deps): update github.com/hugelgupf/p9 digest to 6f4f11e
3b5d7d1e64 artifact extract: support reflink copy
525b11e4c7 vendor latest c/storage
986fc9f465 update golangci-lint to v1.64.2
8b6f14f95b silence false positve from golangci-lint
34de0feda5 cmd/podman: refactor Context handling
78717e6ae9 fix new usetesting lint issue
fdd442cbdf Create `--append` flag to add file to existing artifact
a17175eb3a Cleanup test
ce8813dc8d Remove persist directory when cleaning up Conmon files
3925a30fa7 add podman artifact extract
79be095795 docs: add v5.4 to API reference
ad9839ac55 Run HealthCheck without creating and removing the ExecSession in the database
a6d6d6409e Bump FreeBSD version to 13.4
a2380bca1e fix(deps): update module golang.org/x/tools to v0.30.0
f906c6df57 Switch to the CNCF Code of Conduct
74a100f542 fix(deps): update module golang.org/x/net to v0.35.0
7e612f6ebb test/system: remove tar version check
d13915f87a new images 2025-02-10
cb53abca28 In SQLite state, use defaults for empty-string checks
ab0410948a libpod: make hasCapSysResource platform-specific
3c3baefa8c Update rpm/podman.spec
5bada90190 test/apiv2: fix registry push flake
f73c976bca fix(deps): update module golang.org/x/crypto to v0.33.0
b06c7d78d3 [skip-ci] RPM: set buildOrigin in LDFLAG
91e4f6918a Remove the option to install WSL/HyperV
dce52b3e77 Improve winmake.ps1 clean target
b4fc9cd14d Makefile: escape BUILD_ORIGIN properly
1d4c67751c fix(deps): update module github.com/vbauerster/mpb/v8 to v8.9.2
30ed3293c4 fix(deps): update module google.golang.org/protobuf to v1.36.5
1d220b99da [skip-ci] RPM: cleanup macro defs
46d874aa52 Refactor graph traversal & use for pod stop
2f710723df images: fix segfault when mounting without cap_sys_admin
c06dba4845 rootless: fix hang on s390x
e5bcd6542e Add tests for chunked pulls
27ccfef3a1 Don't use all of tempdir as podman's --tmpdir
165d5c3062 fix(deps): update module golang.org/x/sync to v0.11.0
03b9f87c7d fix(deps): update module golang.org/x/term to v0.29.0
e7a0032ec3 fix(deps): update module golang.org/x/sys to v0.30.0
52febf6a0a Fix flake test: podman pause/unpause with HealthCheck interval
ad0c092616 Bump version to 5.5.0-dev
6f9fb4392c fix(deps): update module github.com/shirou/gopsutil/v4 to v4.25.1
6c06577455 artifact: only allow single manifest
297e8a3476 Add `machine init --playbook`
dcdf82e943 test/e2e: improve write/removeConf()
bc2763eac8 Add --noheading to artifact ls
35c72bb18e Bump to Buildah v1.39.0
26b5864648 rpm: add attr as dependency for podman-tests
06fa617f61 Lock pod while starting and stopping containers
89283c6fcc update gvproxy version
dae1541529 Force use of iptables on Windows WSL
509c80d5bd fix(deps): update golang.org/x/exp digest to e0ece0d
400645bf10 fix(deps): update github.com/vishvananda/netlink digest to 7c2350b
211d3ea3cf Bump c/storage to v1.57.1, c/image v5.34.0, c/common v0.62.0
d575ae12f8 Add --no-trunc to artifact ls
bd061aa2d5 Add type and annotations to artifact add
4a0006db33 cirrus: ensure HOME is set in postbuild.sh
18e29076f7 pkg/api: honor cdi devices from the hostconfig
1c0f5b0475 new images 2025-01-31
f0ef791808 podman exec: correctly support detaching
3eb0e1e8ac libpod: remove unused ExecStartAndAttach()
be6fa68296 [skip-ci] RPM: include empty check to silence rpmlint
e2eb8e4a86 [skip-ci] RPM: adjust qemu dependencies
d3706bcad1 Add BuildOrigin field to podman info
51fd6e906c fix(pkg/rootless): avoid memleak during init() contructor.
1f3182009a util: replace Walk with WalkDir
398377fd97 Move detection of libkrun and intel
4eeaedfe13 Prevent two podman machines running on darwin
27386be189 fix(deps): update module github.com/spf13/pflag to v1.0.6
e893747cf3 Remove unnecessary error handling
c0aab0a85a Remove usused Kind() function
511c8b249d Remove timer for HealthCheck when container is paused.
513b4aaceb Safer use of `filepath.EvalSymlinks()` on Windows
357f76daae error with libkrun on intel-based machines
0eefdbe30e fix(deps): update module google.golang.org/protobuf to v1.36.4
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
The build error could be reproduced by using qemux86 as the MACHINE
or using qemux86-64 as the MACHINE and then running 'bitbake
lib32-docker-distribution'.
The root cause is the wrong file (s3_64bit.go) is imported. Fix the
tag matching to ensure s3_32bit.go is imported in case of 386.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The '+unknown' is a deliberate design which is expected to be
overridden at build time by VERSION environment variable.
However, after the following commit, things cannot be overridden.
a74cacf (version: export getter functions)
This is because variable beginning with small letter is a private
one and cannot be exported or overridden.
An issue has been filed for upstream:
https://github.com/distribution/distribution/issues/4627
Before that issue is resolved, we need to sed the file manually.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping distribution to version v3.0.0-20-gda404778, which comprises the following commits:
b09be3d6 build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2
dde1e49f Changes: Append a UUID to ensure uniqueness Join delete error
c460aa63 fix: Annotate code block from validation.indexes docs
a5a6f1ba To address the issue where empty files are created when the write process is interrupted, the solution involves writing to a temporary file first and then atomically renaming it to the target file. This ensures that the target file is only updated if the write completes successfully, preventing empty or partially written files.
4aab88fe fix: implement JWK thumbprint for Ed25519 public keys
5a71303e build(deps): bump golang.org/x/net
78456caf Fix: resolve issue #4478 by using a temporary file for non-append writes
a6ce1a79 chore: make function comment match function name
fcb2deac feat: extract redis config to separate struct
ea6ab365 fix newClient in azure storage provider
ceafb041 Update releases/v3.0.0.toml
6266adaa Prep for v3 release
fd14cf19 Vrify the linter config first before running it
3a33ba12 Fix golangci-lint config
52f0f6c4 Bump Azure deps
05b308bc build(deps): bump github.com/golang-jwt/jwt/v5
be2025a8 Prep for v3-rc.4 release
19934b8f fix: leak
6be526be build(deps): bump actions/upload-artifact from 4.6.1 to 4.6.2
896fec50 build(deps): bump golang.org/x/net
d7b8fb6a Bump Go version in prep for the next release
26b983c7 More renames
31c02216 Rename cloud make targets to s3
2ffa1171 Azure driver fix
b30274f2 use cached blob statter in ManifestService if available
b2cc4fe1 fix: define types for inline structs
6599be4f Update com.docker.registry.plist
bb0253d1 Update osx-setup-guide.md
7884c712 Add code comment
e20645c0 Enable MD5 check on GCS driver
fc3dd55d build(deps): bump github.com/go-jose/go-jose/v4 in the go_modules group
64f780f6 Explicitly return zero value instead of partially filled struct
da2bbf04 build(deps): bump actions/upload-artifact from 4.6.0 to 4.6.1
484fa043 build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.1
0762a1bb Fix error message for unsupported signing algorithm by not overriding var
70d99154 Fix signing algorithm configuration for token authentication
198db9cb Prep for v3-rc.3 release
7098b3f4 Bump Go version
6ed60b0f Apply suggestions from code review
53c38264 Remove named returns and fix linting woes
2a491b35 docs/garbage-collection: document --delete-untagged and --quiet options
a032989b registry/storage: add option to quiet GC output.
f4a500ca Fix registry token authentication bug
4c5e3945 ci: fix bake build
808f0b89 ci: update bake-action to v6
825eeb03 build(deps): bump actions/upload-artifact from 4.5.0 to 4.6.0
f1e33060 Fix conformance upload issue:
38fd91a4 (security): Bump golang.org/x/net module
c4a60446 Prepare for rc2 release
d85819c0 build(deps): bump actions/upload-artifact from 4.3.6 to 4.5.0
41a906f0 fix(configuration): replace string literals with constants in tests
96c9a85b fix(configuration): replace string literals with constants in error
328f802b fix(configuration): replace string literals with constants
916bdeae feat(configuration): support mtls auth mod
96a3daaf Move a direct dependency to direct deps required modules
fb3ba302 chore: Bump alpine and Go versions
6eba54be build(deps): bump golang.org/x/crypto from 0.28.0 to 0.31.0
183919ce Update squizzi maintainer email
179e902f update xx to v1.6.1 for compatibility with alpine 3.21 and file 5.46+
1d104a93 [docs] Explain how to configure a list through env variables
4dfab838 build(deps): bump codecov/codecov-action from 4 to 5
abbe03ef Upgrade go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp
4118c80a Prep for v3-rc.1 release
3ac22856 Bump otel dependencies
bd52394e Update lint.Dockerfile
da2f24e2 docs: update hugo and theme versions
5ee5aaa0 fix(registry/storage/driver/s3-aws): use a consistent multipart chunk size
3996413f Bump google storage module
1c26d98f Bump dependencies
7b3e6d50 docs: Update to refer to new image tag v3
b9b96d9d Bump Go version in Dockerfiles
6df0fd94 Bump go version in go.mod
88579792 Fix a typo in GHA build workflow comment
be0051c4 Run vendor on 1.21
997c29db ci: fix GHA CI build matrix
2e7482cb avoid appending directory as file path in s3 driver Walk
e44d9317 test s3 driver walk of empty dir
3f4ec64f Add validate action to validate api docs Signed-off-by: Pratik <pratikgparikh@gmail.com>
5e59a648 fix existing doc first Signed-off-by: Pratik <pratikgparikh@gmail.com>
0ab7f326 replace uses of Descriptor alias
92b483ef Make Descriptor an alias for oci.Descriptor
fdb5abb9 docs: removed description of ELB as an example of an not sophisticated Load Balancer
b53946de fix: Add the token's rootcert public key to the list of known keys
63cfb187 Add a note regarding redirects to pre-signed URLs
4a0e027e TestProxyManifestsMetrics: use actual size of manifest
38553eaa chang docker-compose to docker compose
49fad517 chang docker-compose to docker compose
e41848cc chang docker-compose to docker compose
4615d302 Remove deprecated version field
a940e616 Fix silly testing format mistakes
170ac07a chore: bump golangci-lint and fix govert issues
44ddae31 build(deps): bump github/codeql-action from 3.26.3 to 3.26.5
b2626e06 Build artifacts and images for linux/riscv64
aabceeb9 build(deps): bump github/codeql-action from 3.26.2 to 3.26.3
eed9400d feat: support custom exec-based credential helper in proxy mode
d8199f45 chore: fix typo in rewrite storage middleware init
2f86b475 build(deps): bump github/codeql-action from 3.26.0 to 3.26.2
64b036e0 build(deps): bump github/codeql-action from 3.25.15 to 3.26.0
786c5836 build(deps): bump actions/upload-artifact from 4.3.5 to 4.3.6
b3f4f327 build(deps): bump actions/upload-artifact from 4.3.0 to 4.3.5
32e5b044 build(deps): bump github/codeql-action from 2.22.12 to 3.25.15
db5c303e fix: skip removing layer's link file when '--dry-run' option spcified
70e0d885 auth: fix token verification chain
ba8e539b Use `x.y.0` format for the go module version
b6016d78 build(deps): bump ossf/scorecard-action from 2.3.3 to 2.4.0
f072af95 build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3
91eda593 chore: fix typos returned in some errors
8619a11f fix nil pointer in s3 list api
d4f611df build(deps): bump docker/bake-action from 4 to 5
a8d423dc build(deps): bump actions/configure-pages from 4 to 5
3fe99ca2 build(deps): bump softprops/action-gh-release from 1 to 2
1e89cf78 deprecate Versioned in favor of oci.Versioned
a18cc8a6 S3 driver: Attempt HeadObject on Stat first, fail over to List
3d0239ac manifest: slight cleanup of init / registration
f1c8c414 Descriptor: do not implement Describable interface
671184e9 Remove ManifestBuilder interface
c345425f ci:bump Go version
9ba73406 vendor: github.com/opencontainers/image-spec v1.1.0
eb6123f5 fix logic for handling regionEndpoint
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping moby to version v28.3.0-2-ge0183475e0, which comprises the following commits:
a2af8bdebd gha/bin-image: add major and minor version image tags
b2a9318a1e docs: cut api docs for v1.51
8c713c1af4 gha: lower timeouts on "build" and "merge" steps
8e7ea470cf vendor: update buildkit to v0.23.1
222baf4ccb vendor: github.com/moby/buildkit v0.23.0
0e0ca09ddc daemon: containerStop: fix ordering of "stop" and "die" events
e62b0e2234 vendor: github.com/opencontainers/cgroups v0.0.3
06ab9cd1ed daemon/config: Validate: add missing validation for registry mirrors
97aa4e8550 registry: ValidateMirror: improve validation for missing schemes
e18a9c95b8 Update containerd to v2.1.3
09fef2b26e api/types/container: deprecate ExecOptions.Detach
44c8cd2e8f vendor: update buildkit to v0.13.0-rc2
78b6204f9e vendor: github.com/moby/swarmkit/v2 v2.0.0
cf98237186 vendor: github.com/moby/swarmkit/v2 v2.0.0-20250613170222-a45be3cac15c
fd96b01b0e pkg/idtools: deprecate IdentityMapping, Identity.Chown
987b8a88a6 c8d/push: Extract shared push logic
d9e7b86de4 c8d/push: Fix fallback single-manifest push not creating a tag
53d12c96f8 vendor: github.com/containerd/containerd/v2 v2.1.2
aac0260d21 Fix flaky test TestDaemonRestartRestoreBridgeNetwork
cfcbfabb0f api/image/list: Return `Containers` count
6d737371b8 fix comparison rule from errorlint
941d09e265 Handle error message from token server with containerd backend
e4e7fcf668 vendor: github.com/moby/buildkit v0.23.0-rc1
d3d20b9195 integration-cli: TestCopyFromContainerPathIsNotDir: adjust for win 2025
cf86f3a082 vendor: github.com/containerd/nydus-snapshotter v0.15.2
9a85f50aaa vendor: github.com/pelletier/go-toml/v2 v2.2.4
1764909076 vendor: github.com/fsnotify/fsnotify v1.9.0
102adcab57 vendor: github.com/containerd/console v1.0.5
5230692cad vendor: cloud.google.com/go/longrunning v0.5.5
5fb6604642 vendor: google.golang.org/api v0.160.0
d2954c4e05 vendor: otel v1.35.0, otel/contrib v0.60.0, grpc v1.72.2
05f892190c vendor: github.com/prometheus/client_golang v1.22.0
952cddd05b vendor: google.golang.org/protobuf v1.36.6
ccf5f8036c vendor: golang.org/x/sys v0.33.0
c81e03bc0b vendor: golang.org/x/sync v0.14.0
05e8b1701c daemon/containerd remove leftover schema1 compatibility code
2ff281e33a daemon/containerd: update link to containerd code
d54f713d95 daemon/containerd: rename var that shadowed type
8e6cd44ce4 daemon: ensuring state of stopped container is visible to other queries when container is stopped and before API response is sent (fix for https://github.com/moby/moby/issues/50133).
7acb079403 Revert "libn/networkdb: don't exceed broadcast size limit"
0df31cf585 Revert "libn/networkdb: fix data race in GetTableByNetwork"
83b2fc245d Revert "Fix possible overlapping IPs when ingressNA == nil"
e079583ab4 Revert "libnetwork/networkdb: use correct index in GetTableByNetwork"
cfd5e5e4d4 Revert "libn/networkdb: b'cast watch events from local POV"
576cf73add Revert "libn/networkdb: record tombstones for all deletes"
2297ae3e64 Revert "libn/networkdb: Watch() without race conditions"
cc60ec8d3c Revert "libn/networkdb: stop table events from racing network leaves"
b5b349dbd6 Revert "libn/osl: drop unused AddNeighbor force parameter"
35916f0869 Revert "libn/osl: refactor func (*Namespace) AddNeighbor"
3eb59ba5a2 Revert "libnetwork/osl: remove superfluous locks in Namespace"
5d6ae34753 Revert "libnetwork/osl: stop tracking neighbor entries"
ea818a7f6f Revert "libnetwork/internal/setmatrix: make keys generic"
78ccc20545 Revert "libn/d/overlay: use netip types more"
23c56099ee daemon/logger/loggerutils: use defer to fix gocritic "badlock" linter
0069360e3b volume/mounts: windowsDetectMountType: rewrite using switch
027355d7b3 container/stream: TestRaceUnbuffered: put unused testing.T to use
2bbf5f5a39 daemon/containerd: ImageService.resolveImage: cleanup resolve by name:tag
2e25775c83 libnetwork: Replace deprecated usages
3dd8f03f25 vendor: go.etcd.io/bbolt v1.4.0
55f47f9e34 Windows: don't try to load "mirrored" network plugin
20b6075380 fix badCall from go-critic
10c4715a62 openrc: allow customizing containerd service name
c466ae0f71 fix badLock from go-critic
19f5ac3c81 fix initClause from go-critic
aa632664b6 fix mapKey from go-critic
5ad4e4edf7 fix deprecatedComment from go-critic
b8a4f6534f fix stringsCompare and stringConcatSimplify from go-critic
a62de57aa1 fix sprintfQuotedString from go-critic
bc9ec5fc02 fix emptyStringTest from go-critic
469afa5f8f fix httpNoBody from go-critic
8f7faa01d1 fix boolExprSimplify from go-critic
e5be7b54b1 fix yodaStyleExpr from go-critic
64075850fc fix go-critic linter
793dd8385a Only "prune" Windows networks created by Docker
071d27cd3d Add contributor guidelines for where to put source code in packages
1603ad636e update to go1.24.4
9b5d8cd186 fix thelper linter
ea581c96b9 Validate BIND_DIR variable in Makefile
e32715ec03 Added support for AMD GPUs in "docker run --gpus".
6bac5ca833 Set EnableIPv4=true in overlay network inspect response
27f2e0ecc5 api: bump to 1.51
bd20bfdc41 all: remove redundant import-aliases for "go-winio"
f85394dd5d api: image inspect: add back fields that did not omitempty
284904119a Dockerfile: update cli to v28.2.2
8ba832cc8f docs/api: swagger: quote maxUint64 example value
affe1d6335 api/swagger: quote maxUint64 example value
b6fa565cba libnetwork/resolvconf: Build: decorate error for invalid nameservers
35e062dde1 libnetwork/resolvconf: rewrite TestBuild tests to a table-test
16ed51d864 libnetwork/networkdb: always shut down memberlist
c1a27ea5af pkg/stack: remove // import comments
dd382769bd pkg/rootless: remove // import comments
ce191648c7 pkg/useragent: remove // import comments
ad1a388895 pkg/tailfile: remove // import comments
b6f99f6d7f pkg/stringid: remove // import comments
ca2cca1286 pkg/stdcopy: remove // import comments
225b7ca6b7 pkg/progress: remove // import comments
0f9818ad03 pkg/pools: remove // import comments
f0f4fa0038 pkg/plugingetter: remove // import comments
5f4da92972 pkg/platform: remove // import comments
7a703f3772 pkg/pidfile: remove // import comments
511cf09e75 pkg/namesgenerator: remove // import comments
864e3f9348 pkg/longpath: remove // import comments
cc329af619 pkg/jsonmessage: remove // import comments
0c70c762b2 pkg/streamformatter: remove // import comments
fd8b6a24ab pkg/tarsum: remove // import comments
17845556f2 pkg/system: remove // import comments
18a1b61b49 pkg/sysinfo: remove // import comments
126246ae39 pkg/plugins: remove // import comments
0380c952a6 pkg/parsers: remove // import comments
4800a9b50d pkg/ioutils: remove // import comments
ca3982adea pkg/homedir: remove // import comments
c93f18e0b8 pkg/fileutils: remove // import comments
6a9f7c543c pkg/authorization: remove // import comments
a4411f497f errdefs: remove // import comments
0ea03c4add opts: remove // import comments
7ce4e9685a oci: remove // import comments
23009a700a testutil: remove // import comments
fe1bc3e7fd runconfig: remove // import comments
4656712b82 restartmanager: remove // import comments
134f20c828 reference: remove // import comments
97b20f6b79 registry: remove // import comments
2548254317 quota: remove // import comments
66055ea07c plugin: remove // import comments
3bbb38f1d2 volume: remove // import comments
021dd75bc4 libcontainerd: remove // import comments
fe34e89992 layer: remove // import comments
9abf9f2d0d internal: remove // import comments
4970333621 integration: remove // import comments
a4b0d32fa6 integration-cli: remove // import comments
7eecd04c7b image: remove // import comments
c1a3c51d9e dockerversion: remove // import comments
c7cb2d9783 distribution: remove // import comments
5318877858 daemon: remove // import comments
076e98e8f3 daemon/links, daemon/network: remove // import comments
2b42088bd5 daemon/listeners: remove // import comments
241e0bca8b daemon/events: remove // import comments
27956106d5 daemon/config: remove // import comments
69c34390c0 daemon/logger: remove // import comments
7d4caf4ba8 daemon/images: remove // import comments
9876c9fbcf daemon/graphdriver: remove // import comments
986ec3f877 daemon/cluster: remove // import comments
89aa33001e container: remove // import comments
d469079338 cmd: remove // import comments
c6bbc3bb6e builder: remove // import comments
4856e8ffad client: remove // import comments
bf9d739561 api: remove // import comments
fca97dae9d libnet/d/overlay/overlayutils: prevent uint32 overflow
3d8195a20f daemon/logger/fluentd: cap max-retries to MaxInt32
404f29c42d gha/bin-image: Don't push sha tags
7994426e61 Revert "containerd: images overridden by a build are kept dangling"
a2652d4b81 Don't set up iptables chain DOCKER-USER when using nftables
d3289dda4b Add nftables NAT rules for internal DNS resolver
c299ba3b38 Update worker.Platforms() in builder-next worker.
6889039d76 Fix silent stop on error due to using output redirection together with `set -eu`.
d6620915db portallocator: always check for ports allocated for 0.0.0.0/::
027588eba0 builder: Pass cdi cache instead of CDISpecDirs
bc6bc7aafa daemon/cdi: Log not found dirs as INFO
9856bf52a2 daemon: Configure default CDI cache
ae2fc2ddd1 PortAllocator: Use netip.Addr instead of string as map key
19dc38f79b Listen on mapped host ports before mapping more ports
dc519a0f18 iptables: Drop explicit RETURN rule from DOCKER-USER
148a19b6d6 seccomp: Require CAP_SYS_ADMIN for lsm_* syscalls
0ab8108b57 seccomp: Fix typo in lsm_set_self_attr
21a165de23 Use env-var DOCKER_FIREWALL_BACKEND=nftables to enable nftables
637e8142ce clean up golangci-lint config for deprectated errdefs.*
37caf3881a volume: replace uses of errdefs package
08768e4d9d testutil: replace uses of errdefs package
416dc8c1bf runconfig: replace uses of errdefs package
8803b58259 refernce: replace uses of errdefs package
dcf253ffe2 plugin: replace uses of errdefs package
8561016335 libnetwork: replace uses of errdefs package
f06c450a8e libcontainerd: replace uses of errdefs package
528f2284ee integration-cli: replace uses of errdefs package
14852fcd82 integration: replace uses of errdefs package
a1a789dbd0 image: replace uses of errdefs package
6ee53a6831 errdefs: replace uses of errdefs package
083ccfa486 distribution: replace uses of errdefs package
55da8ea276 daemon: replace uses of errdefs package
364d8d8b31 container: replace uses of errdefs package
415fc7b41e builder: replace uses of errdefs package
f0eaf228c1 api: replace uses of errdefs package
f98b7005d2 remove fallback for non-OCI-compliant docker.pkg.github.com registry
048199f191 Dockerfile: update cli to v28.2.0-rc.2
d188df0039 libn/d/overlay: use netip types more
0317f773a6 libnetwork/internal/setmatrix: make keys generic
e48ea1c6e0 Make integration tests ready for nftables
f9f0db0789 Add nftables support to testutil SetFilterForwardPolicies
7ea0e60dde Skip test TestBridgeINCRouted in rootless mode
0d6e7cd983 libnetwork/osl: stop tracking neighbor entries
9866738736 libnetwork/osl: remove superfluous locks in Namespace
b6d76eb572 libn/osl: refactor func (*Namespace) AddNeighbor
3bdf99d127 libn/osl: drop unused AddNeighbor force parameter
f834a0bd82 vendor: github.com/miekg/dns v1.1.66
4da3b4bf2d run/pull: Warn/reject AI model images
339be4e2ae Dockerfile: install nano as alternative to vim
588a05a1ce docs/api: Cut docs for API v1.50
94daa36f03 libnetwork: don't reinvent mutexes
cd2702e04e Dockerfile: update compose to v2.36.2
01fec904e4 Dockerfile: update buildx to v0.24.0
072483f9d7 c8d/delete: Require --force when deleting platforms
30da69d694 c8d/delete: Support deleting specific platforms
acf6b6542e daemon/images: Make ImageDelete take opts struct
871675be9b c8d/delete: Extract untagReferences
153b16ad27 c8d: Extract memoryLabelStore
d7cca3f997 docs/api: update deprecation version for erroneous fields
4dc961d0e9 image-inspect: remove Config fields that are not part of the image
0ec3278d48 profiles/seccomp: kernel v6.13
6aa8288cfb profiles/seccomp: kernel v6.12
e03ac1fad9 daemon: createCDICache: fix error-capitalization
7263ae74cd contrib: systemd: update deprecated StartLimit options
888cbfddf2 vendor: github.com/opencontainers/cgroups v0.0.2
42970fc461 registry: replace uses of errdefs package
979f18691a daemon: restore: fix fluentd-async-connect migration for downgrades
c6b9bb00f9 api/server/router/build: BuilderVersion: allow buildkit on Windows
560299a16f validation: re-enable check for changes in integration-cli"
e354e42e14 vendor: update buildkit to v0.22.0
a2ada6b258 daemon/create: Simplify GetImage args
2c57455339 vendor: github.com/containerd/containerd/api v1.9.0
a3ce441ae0 client: Use containerd errdefs to convert http errors
86187b2606 vendor: github.com/vishvananda/netlink v1.3.1
e8c269843c builder-next: remove support for deprecated schema1 images
a9ec07a005 builder-next: add buildkit executor for wcow
e655763837 client/volume: use containerd errdefs checks
6bde39b729 client/utils: use containerd errdefs checks
144363fea2 client/task_list_test: use containerd errdefs checks
6cd9eaf5ab client/task_inspect_test: use containerd errdefs checks
68a8a8f3c8 client/swarm: use containerd errdefs checks
0b4495463f client/service: use containerd errdefs checks
ad4a3d32c6 client/secret: use containerd errdefs checks
df96159df0 client/request: use containerd errdefs checks
7e8b26ecb9 client/plugin: use containerd errdefs checks
2356f435a6 client/node: use containerd errdefs checks
4a830df491 client/network: use containerd errdefs checks
8f2bf4aef5 client/info_test: use containerd errdefs checks
a1035ec59b client/image: use containerd errdefs checks
370b7e65fc client/events_test: use containerd errdefs checks
27e64d3bdb client/distribution_inspect_test: use containerd errdefs checks
f030c7bf10 client/disk_usage_test: use containerd errdefs checks
c75ca8ef10 client/container: use containerd errdefs checks
eafa2266f6 client/config: use containerd errdefs checks
685fa0bb91 client/checkpoint: use containerd errdefs checks
bb41e5a32e Replace platforms.Format with platforms.FormatAll in functional code.
9319fefe35 vendor: github.com/moby/buildkit v0.22.0-rc2
cf11cd1aac Replace platforms.Format with platforms.FormatAll in user-visible messages and logs.
0b1c7a8306 api/types: move ServiceUpdateOptions to api/types/swarm
31d62930f7 api/types: move ServiceCreateOptions to api/types/swarm
5ad0867236 api/types: move TaskListOptions to api/types/swarm
7e8f630bec api/types: move SwarmUnlockKeyResponse to api/types/swarm
f008d85edc api/types: move NodeListOptions, NodeRemoveOptions to types/swarm
b13528522a api/types: move ServiceListOptions, ServiceInspectOptions to types/swarm
5e8fd897e1 client/volume: use gotest.tools-style asserts
9432eff6bc client/utils_test: use gotest.tools-style asserts
adf7ecc366 client/task_list_test: use gotest.tools-style asserts
b781699ee2 client/task_inspect_test: use gotest.tools-style asserts
d8ee5caf9a client/swarm: use gotest.tools-style asserts
a6cd40de6b client/service: use gotest.tools-style asserts
3658dae265 client/secret: use gotest.tools-style asserts
2e65796c86 client/request_test: use gotest.tools-style asserts
44f30261da client/plugin: use gotest.tools-style asserts
832efcd672 client/options_test: use gotest.tools-style asserts
88453254af client/node: use gotest.tools-style asserts
047343d070 client/network: use gotest.tools-style asserts
6402a106e7 client/image: use gotest.tools-style asserts
043c7fa539 client/hijack_test: use gotest.tools-style asserts
a8ed3bd734 client/events_test: use gotest.tools-style asserts
c88f921331 client/disk_usage_test: use gotest.tools-style asserts
051dae4fdc client/container: use gotest.tools-style asserts
cae3ccd34b client/config_create: use gotest.tools-style asserts
bfc684d3f7 client/client_test: use gotest.tools-style asserts
19f3259093 client/checkpoint: use gotest.tools-style asserts
a411a39be0 api/types: move ConfigCreateResponse, ConfigListOptions to types/swarm
23117afca8 api/types: move SecretCreateResponse, SecretListOptions to types/swarm
3d1e4d9002 api/types: move build-related types to api/types/build
bb7dbaafcd api/types: move BuildResult to api/types/build.Result
6505d3877c API: /info: remove BridgeNfIptables, BridgeNfIp6tables fields
114b8a4fa9 Remove unused image/v1 code
7130cd4f16 Remove DockerSchema1RegistrySuite schema 2 version 1 tests
7c09fa25fd distribution: remove v2 schema1 push
a891e4e3e1 validation: temporarily allows changes in integration-cli
2a96d2eb8d align //go:build versions
c1b2be0399 client/info_test: Use gotest.tools asserts
9095698a5c daemon: Discover devices and include in system info
f95a7c47e8 api: bump API version to 1.50
b70b496505 testutil/daemon: Don't use devcontainers daemon.json
23bbfea718 daemon: Fix error log when CDI cache creation failed
6d7a370fe5 Refactor CPU usage stats test to use go:embed
eefe68a37c api/types: move build cache types to api/types/build
7aa7369f1f client: deprecate IsErrNotFound
a022e916c8 update authors and mailmap
4cecce03f6 daemon: Enable CDI by default
07466d2e9b daemon: Daemon.ContainerExecStart: rename err-return, and minor refactor
d5c370dee6 libnetwork/networkdb: use correct index in GetTableByNetwork
270a4d41dc libn/networkdb: stop table events from racing network leaves
205ba05feb fix usestdlibvars
23fa0ae74a Cleanup http status error checks
fadb571106 Update api status checks to use containerd/errdefs
5c16f2d091 Use standard library interface to unwrap errors
a90a9d899b Ignore deprecations for internal errdefs package
f1bb44aeee Use containerd errdefs for error checks
ba2ddd75e4 Dockerfile: update crun to 1.21
f07242f6d7 containerd: include present content size in disk usage calculations
3ded7b97d0 vendor: github.com/containerd/accelerated-container-image v1.3.0
68e025a11b daemon: startIngressWorker: fix S1000: should use for range (staticcheck)
7bc6fd09da Dockerfile: update compose to v2.36.0
76b24759f0 container: Snapshot.Health: change type to container.HealthStatus
7a7d72e874 api/types/container: Summary.State change type to ContainerState
8e57a019dc fix: load the CDI driver before the dockerd daemon starts
b3ed54db81 integration/networking: mark TestPortMappedHairpinWindows as flaky
7b5d2b4ec3 chore: bump golangci-lint to v2
3d1cfb4de0 vendor: update buildkit to v0.22.0-rc1
c9b01e0c4c libn/networkdb: SetPrimaryKey() under a write lock
61646c8bfc containerd: remove unleaseSnapshotsFromDeletedConfigs
350bb5197a nftables: attempt a table-reload after an Apply error
06afbe9618 Check nftables is enabled before applying updates
976f855f68 Add OTEL span for nftables updates
eeba428939 Make WSL2Mirrored a Firewaller param
1028b123e8 integration, libnetwork: fix some godoc comments (ST1020)
a3aea15257 libn/networkdb: Watch() without race conditions
ada8bc3695 libn/networkdb: record tombstones for all deletes
c68671d908 libn/networkdb: b'cast watch events from local POV
ba0ad9e80f Unit test the bridge driver in terms of its firewaller
a7ef4a208d Fix multiarch image push tag for containerd snapshotter
854f3f62db container: don't persist State.RemovalInProgress on disk
44b653ef99 container: deprecate IsValidStateString
e477df3b31 daemon/cluster/executor: use container.ContainerState consts
3bbdda696d use container.ContainerState consts in tests
b811829595 api/types/container: add ContainerState and const for container state
8b6d6b9ad5 d/cluster/convert: expose Addr() on plugins
37259540e9 Remove/replace integration-cli tests that use iptables directly
daeb080ff1 Test Iptabler params
ea2e147c4c TestPruneDontDeleteUsedDangling: rename var that shadowed import
02e800dcbb plugin: use t.TempDir
57b27f2e9e image: use t.TempDir and rename vars that shadowed
08c5ebe040 layer: use t.TempDir and minor cleanups
f84694ebdc container: use defer for locks
24f305b666 Makefile: set BIND_DIR to "." by default
4b6a9d23af cmd/dockerd/trap: use t.TempDir
ea37a1f040 integration/build: use t.TempDir
900bd88848 internal/directory: use t.TempDir
46baf7deb0 distribution: use t.TempDir
1b4ba20708 distribution/metadata: use t.TempDir, rename var that shadowed
735ccfbc6f pkg/stack: use t.TempDir
72a11b84d4 testutil/fakestorage: use t.TempDir
b38f73afe3 daemon: cleanupContainer: leave decorating container-id/name to caller
d44b2e4bd7 daemon: cleanupContainer: use state-fields instead of string form
4a00ce10fa daemon: rmLink, cleanupContainer: rename args that shadowed import
1cf7d7ea4b hack/make/.binary: update link to go source for "pie" support
e991c7185d update to go1.24.3
89ee292709 container: update GoDoc for State
7dae7c54dd fluentd: add write timeout log option
56ad941564 Fix possible overlapping IPs when ingressNA == nil
dc1d23c646 Revert "rootless: skip tests that need br-netfilter loaded"
4b9092aa27 Load br-netfilter for rootless test-integration
7957a28859 container: remove GoDoc for deprecated aliases.
fe403362b4 container: State.Wait(): don't use deprecated type
0bd82bfac2 chore: add systemd-sysusers configuration
df662ebc59 container: deprecate IsValidHealthString
f9c4601760 volume/mounts: MountPoint.Setup: rename output-var, and simplify err-handling
6ac3afe483 volume: remove/rename err-returns
986988a394 testutil/daemon: Daemon.StopWithError: rename output-var to prevent shadowing
3606712e2d testutil: remove named returns
fe2d323c82 registry: remove/rename err-returns, and minor refactor
79b1b561a3 registry/resumable: remove named err-return, fix minor linting issue
e67b6bfc69 plugin: remove/rename err-returns
943dfa985d oci: remove named err-return
0b169d34e4 libnetwork: remove named (err)-returns
154230cdd7 libnetwork/portallocator: getDynamicPortRange: fix err-handling on freeBSD
962fd8bc41 libnetwork/ipams/remote: inline decodeToMap
cfdfbfab9b libnetwork/drivers/remote: inline decodeToMap
152db74d96 libcontainerd: remove/rename err-returns
f87dcbe350 layer: remove/rename err-returns and remove naked returns
6981aad790 internal/testutils: remove named returns
d1c58bdbbe integration-cli: remove/rename err-returns and remove naked returns
1b317b0323 distribution: remove named err-returns and minor refactor
1244685329 Optimization methods in internal\metrics\metrics.go
84ef7e4899 Allow TestIsolated/ipv6 to unexpectedly pass
4c4810e5d2 rootless: skip tests that need br-netfilter loaded
dacf445614 libn/networkdb: don't exceed broadcast size limit
697c17ca95 libn/networkdb: take most tests off flaky list
90ec2c209b libn/networkdb: listen only on loopback in tests
e3f9edd348 libn/networkdb: advertise the configured bind port
ec65f2d21b libn/networkdb: fix data race in GetTableByNetwork
d0af7c3c08 Move Cory from Reviewers to Committers
b0777be89e Use firewaller.IPVersion instead of iptables.IPVersion for gwmode
3cbb1ae736 Move filter-FORWARD DROP setting to the firewaller
44843d9917 Pass context to more places
a9bf151260 Put Iptabler behind a Firewaller interface.
92e497b9dc Create api interface to define build usage backend
aef409dfb2 Remove unused reference store in image api
9eec936eb0 project: update status of branches for Moby 28.x
9315b15dc6 fix(ST1006): Poorly chosen receiver name
70139978d3 fix(ST1016): Use consistent method receiver names
9e9b6cc42e fix(ST1019): Importing the same package multiple times
27bf320a72 fix(ST1017): Don’t use Yoda conditions
98fa4bcfeb fix(exhaustive): missing cases in switch of type snapshots.Kind
95af77d038 fix(ST1015): A switch’s default case should be the first or last case
f770f6c5ec fix(QF1012): Use fmt.Fprintf(x, ...) instead of x.Write(fmt.Sprintf(...))
a88c49f38e fix(QF1011): Omit redundant type from variable declaration
4f9214c156 fix(QF1007): Merge conditional assignment into variable declaration
be54c79d9c fix(QF1006): Lift if+break into loop condition
2cce9a51ca fix(QF1004): Use strings.ReplaceAll instead of strings.Replace with n == -1
e2e7f9964f fix(QF1003): Convert if/else-if chain to tagged switch
b0711d5fe9 fix(QF1001): Apply De Morgan’s law
7d8df25d16 fix misused error
fef139ccc1 fix import
44a3453d73 Add daemon option --allow-direct-routing
c16caabe36 Add TestNetworkConfigurationMarshalling
a94643a1b3 bridge: add option com.docker.network.bridge.trusted_host_interfaces
33f5b9e963 Don't add stub Endpoint/Network object to cache on Sandbox restore
c129c0fa9f Improve logging and readability of Controller.sandboxRestore
5d8192fcce Report endpoint id as well as name in ActiveEndpointsError
9aa66be7ec vendor: github.com/moby/buildkit v0.21.1
a79d081aa5 config: set buildkit gc enabled to default to true
19ccb75c62 daemon: remove/rename err-returns and remove naked returns
9ed975a247 daemon: NewDaemon: rename err-return
3e586094fc daemon: parseXXVersion: rewrite to be slightly more iodiomatic
2145cf6309 daemon: Daemon.ContainerStatPath, ContainerArchivePath: minor refactor
6da1ff6bf9 builder/builder-next: fix vars that shadowed (govet)
692610414a pkg/plugins: fix vars that shadowed (govet)
0fcd23ec13 daemon/logger/loggertest: fix vars that shadowed (govet)
4c57ffaca7 api/server/router/build: fix vars that shadowed (govet)
eef5c75276 api/server/router/network: fix vars that shadowed (govet)
7edd83a1b3 libnetwork: fix vars that shadowed, and slight refactor (govet)
7dbe2f1fb6 libnetwork/portallocator: fix vars that shadowed (govet)
357b136ee9 libnetwork/drivers: fix vars that shadowed (govet)
f831618e5b libnetwork/networkdb: fix vars that shadowed (govet)
f633e8f03f libnetwork/cmd/diagnostic: fix vars that shadowed (govet)
190ad0610d daemon/logger: remove/rename err-returns and linting warnings
ba15bbc422 daemon/images: rename err-returns to prevent shadowing
48220008d8 daemon/graphdriver: remove/rename err-returns and remove naked returns
088c180a9e daemon/containerd: remove named err-returns
dc79403f7b daemon/cluster: remove/rename err-returns and remove naked returns
9b62592bfe Dockerfile.windows: update github.com/tc-hib/go-winres to v0.3.3
d6b2aec809 pkg/progress: remove named err-return
029f267d9b pkg/pidfile: remove named err-returns
fdbf246889 pkg/parsers: remove named err-returns
b0f93d5283 pkg/fileutils: remove named err-returns
ab8e3da82c pkg/stdcopy: remove/rename err-returns
d17a62592f pkg/ioutils: remove named err-returns
f193ff1317 pkg/broadcaster: remove named err-returns
91f6e00ffa hack: Update broken links from README
7868d3ee3e vendor: github.com/opencontainers/runtime-spec v1.2.1
100102108b Use container status values from api
878de14c8d man: vendor github.com/cpuguy83/go-md2man/v2 v2.0.7
11f65b566d vendor: github.com/spf13/cobra v1.9.1
ea7152e493 volume/local: use t.TempDir
4b41198e3c volume/mounts: use t.TempDir
2b869baea3 volume/service: use t.TempDir
88f6dd72e5 volume/service: rename interface that collided with vars
3b4e21081f container: remove unused named-returns
35167dc616 client: Client: PluginInstall, PluginUpgrade: remove/rename err-returns
bb57656932 builder/remotecontext: remove unused named and "naked" returns
5416f2d57c builder/dockerfile: remove unused named and "naked" returns
f38b1fa30d builder/builder-next: SanitizeRepoAndTags: remove named err return
c025dd74f0 builder/builder-next: wrapRC.Read: remove intermediate err-var
49d5b2cc8e builder/builder-next: puller.resolve: rename err-return
3f2296cfc1 api/server/router: remove named (err) returns
1e4bb14bcd api/types/container: define HealthStatus "pseudo" type
c690e0076a use consts for health-status in tests
91473ce253 api/server/backend/build: sanitizeRepoAndTags: remove named err return
c5031c8632 api/types/time: remove named err return
50a856157c containerd: images overridden by a build are kept dangling
eee14cff72 builder/remotecontext: use t.TempDir
5749bc242a builder/dockerfile: use t.TempDir, rename vars that shadowed
b54a038bec docker exec: fail early on exec create if specified user doesn't exist
37725b5eae Drop "-o com.docker.network.enable_ipv[46]" if overridden
8d0c272e4a Add TestLegacyLink
dfd59c0a95 Dockerfile: Fetch vpnkit from moby org
af0232d52b integration/build: Unskip TestBuildEmitsImageCreateEvent for c8d
a0ff0a361e iptables: Direct routing DROP rules per-container, not per-port
dea236e0ce Split iptabler into multiple files
282b3f7b97 Move bridge driver iptables code into its own package
8c36a22e79 Rename function insertMirroredWSL2Rule
aa4abaf820 Use firewaller (iptabler) structs in iptables unit tests
75c60598b7 Move clearConntrackEntries to bridge_linux.go
42d149e45d fix duplicate import, and force consistent alias for bolt
eede75c9d4 testing: remove some defer cleanup in favor of test.Cleanup()
e3a0f2e690 vendor: github.com/vbatts/tar-split v0.12.1
bcc720abde builder/remotecontext: MakeGitContext: use "WithFields" for logs
54a556a5ef builder/remotecontext: Deprecate Rel()
2808e59f4c Dockerfile: update compose to v2.35.1
a75be33ba0 Dockerfile: update buildx to v0.23.0
dd36139b1a Dockerfile: update cli to v28.1.1
f1e3ed0c48 Dockerfile: don't pin syntax to 1.7
fc8361c078 vendor: github.com/containerd/containerd v2.0.5
62f51e4367 vendor: golang.org/x/oauth2 v0.29.0
bbbb0036df cleanup ignore files
ead379a464 contrib/rootless-setuptool: Fix iptables detection
7c52c4d92e update go:build tags to go1.23 to align with vendor.mod
619f1ddd05 Warn when no external DNS nameservers are found
6083fad7df Reset default bridge addresses after integration tests
c2b7abacf8 Use setupTest instead of testutil.StartSpan in tests
d4e0d6f2a1 Integration tests: use different docker0 addresses
fd550344b1 vendor: github.com/moby/go-archive v0.1.0
fd5e772aec CI: deduplicate execution of unit tests
b8067d159f docs/api: update image tarball format
a38ca9a548 daemon/initlayer: Setup: remove uses of idtools.Identity
380ded6309 Store an endpoint count for networks, for downgrade
ae0331d8f5 vendor: update buildkit to v0.21.0
57bf7a8c70 bridge: Add a missing error check for firewaller setup
c49ce64514 integration/TestStopContainerWithTimeout: Attempt to fix flakiness
7eda35fd05 profiles/apparmor: IsLoaded: optimize
0462b5e318 profiles/apparmor: add BenchmarkIsLoaded
b23d267cb5 profiles/apparmor: add basic unit-test for IsLoaded
0dd5959eeb profiles/apparmor: InstallDefault: slight cleanup and optimization
0bb761698c profiles/apparmor: loadprofile: fix double command in error message
8e1c366773 profiles/apparmor: remove "// import" comments
1fa6a46c5d profiles/seccomp: remove "// import" comments
89604f1df1 profiles/seccomp: use stdlib for asserting
14623770e1 vendor: github.com/moby/buildkit v0.21.0-rc2
eacbbdeec6 Revert "API: /info: remove BridgeNfIptables, BridgeNfIp6tables fields"
ece7e02b86 Update AUTHORS
adb9e9135a docs/api: add documentation for API v1.49
099d3ee008 daemon: containerStart: add filtered labels to OTel span
0c5e816638 daemon: trace containerCreate
f96dc9d1a5 Dockerfile: update registry to v3.0.0
4d35864c3d Fix removal of legacy links
5d2006256f API: /info: remove BridgeNfIptables, BridgeNfIp6tables fields
499e15d4ab api/server/middleware: fix debug-logs missing form-data
97688e8d06 container: Container.SetupWorkingDirectory: remove use of pkg/idtools
5f9d99b4cc integration-cli/swarm: Update to use gotest.tools
ea6c76ee03 integration-cli/TestSwarmInit: Skip failing part on CLI after 18.06
fab94808f5 integration-cli: Update default CLI version to v18.06.3-ce
6c73266a71 Add registry error handling for push and pull
ae3a1ac602 vendor: github.com/moby/buildkit v0.21.0-rc1
cd89a35ea0 Run CLI tests with cgroups v2
7435e4a1be registry: remove deprecated ServiceConfig.AllowNondistributableArtifacts
ba03cd7a63 daemon/config: add test for deprecated daemon.json fields
d72e434d30 vendor: golang.org/x/mod v0.24.0
224b393eb3 vendor: golang.org/x/net v0.39.0
b1ac2a53ed vendor: golang.org/x/crypto v0.37.0
a8af27bbae vendor: golang.org/x/text v0.24.0
7d49b014b6 vendor: golang.org/x/sync v0.13.0
9d04c28def vendor: golang.org/x/time v0.11.0
cdb3590e1a vendor: golang.org/x/sys v0.32.0
970fc1b6f7 Basic compose file for testing OTEL bits
d8a5e8928b replace uses of idtools.MkdirAllAndChown, MkdirAllAndChownNew
d96d20d45f update golangci-lint exceptions
29e0db25e7 Factor out top-level iptables setup into its own object
241d685574 libnet: add ep name in 'has active endpoints' error
489cd7edfc api, daemon, libnet: add a 'trigger' baggage member
31ac5cb6d9 libnet: New: plumb context
667c7d70b3 libnet/d/bridge: trace network setup steps
eaae4b5fb6 libnet/d/bridge: put span prefix in var
78be7ebad7 libnet/d/bridge: trace createNetwork
f8806f2b80 libnet/osl: independent OTel trace for advertiseAddrs
d0154d3e59 Update to use github.com/moby/go-archive
45f9d679f8 Update remaining Ubuntu 20.04 uses to 22.04 and 24.04
57a042b77c deprecate pkg/(chroot)archive for github.com/moby/go-archive
564abf9157 api: info: omit deprecated "Commit.Expected" fields on API >= 1.49
f410dbda88 dockerfile: dind target to build docker image for testing
c3fa7c1779 Test that firewalld reload doesn't re-create deleted iptables rules
dbea045e0d Report firewalld reload time in Info.FirewallBackend
a527e5a546 Restore iptables for current networks on firewalld reload
7d9c50db2b api: /info: omit non-distributable-artifacts fields for API >= 1.49
a0a86d0982 Add Info.FirewallBackend
25a80bd48e vendor: github.com/moby/sys/atomicwriter v0.1.0
4eebd2c920 libnet: TestNetworkStore: replace assert.Equal with Check
e22d04e8a9 Improve CPU usage parsing and error reporting
40650c6982 libnet: de-flake TestNetworkStore
1c79c893b1 libnet: de-flake TestEndpointStore
8a5f141b0e registry: Service.lookupV2Endpoints: wire-up context
9d8c8382d3 registry: authorizeClient: wire-up context
8b920b2812 registry: loginV2: wire-up context
4642704ed7 registry: newTransport: remove intermediate var
7acef8101e c8d/pull: Show progress for non-layer blobs
b3791dea92 pkg/archive: fix linting issues
a427477220 pkg/idtools: MkdirAllAndChownNew: improve deprecation message
a91bcc677b vendor: github.com/klauspost/compress v1.18.0
2c54f6f316 vendor: github.com/google/go-cmp v0.7.0
6422ff2804 deprecate pkg/atomicwriter, migrate to github.com/moby/sys/atomicwriter
f1ec5bf14f pkg/idtools: remove tests already covered in moby/sys/user
3fc36bcac4 Update daemon to use moby sys/user identity mapping
b5c99c0e95 Update moby/sys/user to version which includes mapping
0a83a476d8 registry: v1Endpoint.ping: pass through context
2a272a0c5d registry: newV1Endpoint: pass through context
f158d2e809 registry: ReadCertsDirectory: internalize, and pass context
51d7f95c4b libnet: remove struct endpointCnt
d377cd3810 libnet: Controller: cache networks in-memory
cc8bd2016e libnet: Controller: cache endpoints in-memory
c6cdfbf495 pkg/atomicwriter: return early if parent directory is invalid
00c988caa4 pkg/atomicwriter: add test for parent dir not being a directory
ad386f64e5 pkg/atomicwriter: error on unknown file-modes
ec82bc35c3 pkg/atomicwriter: disallow symlinked files for now
f3aebbf9d8 pkg/atomicwriter: add basic godoc for package
f80feba181 Rootlesskit: check for module nf_tables
7d742ebf75 Add utils for manipulating nftables rules
59169d0f97 image/inspect: Add platform selection
d4e70f6325 vendor: tags.cncf.io/container-device-interface v1.0.1
74b71c41ac update to go1.23.8 (fix CVE-2025-22871)
fc58c829e8 registry: ParseRepositoryInfo: remove some intermediate vars
44b7a42fc6 registry: ReadCertsDirectory: return early on error
4f65e35f02 registry: NewService: return nil on error
a7daab5df4 registry: authTransport: un-export AuthConfig, RoundTripper
795461eceb docs: api v1.48: Move ImageGet api docs under Image tag
e1e58409a1 docs: API v1.48 Add missing platform parameter to ImageGetAll api docs
db275ddbc1 libnet: fix duplicated port mappings in overlay networks
a9e22ee5e7 Don't run unit tests with mode rootless
749e35cf5e Move ImageGet api docs under Image tag
094df015b1 Add missing platform parameter to ImageGetAll api docs
7243860557 Include per-port rules in iptablesNetwork
4390ab275a api: bump API version to 1.49
0b5e1f904a Use netip.Addr instead of net.IP for legacy links
725e699741 Simplify iptables setup for legacy links
31f9ae0d19 registry: TestValidateMirror: improve coverage
cb0a9d713c registry: ValidateMirror: touch-up GoDoc
6b258ce567 registry: session.searchRepositories: pass through context
83aaa3428f distribution: pusher.push(): don't use APIEndpoint.Mirror field
6439824449 distribution: pushDescriptor: remove unused endpoint field
09ee47de39 distribution: cleanup some tests and add missing error-checks
adfed82ab8 Install and run firewalld for CI's firewalld tests
409707b633 bridge: factor out creation of network-level iptables rules
ec7fe73690 distribution: pushDescriptor: rename repoInfo to repoName
b1c526b4a9 daemon/containerd: remove registryResolver interface
0d95e1680a registry: ResolveAuthConfig: inline newIndexInfo code
6c643bc366 lookup auth-config without depending on RepositoryInfo
a18dae049f daemon/containerd: registryResolver: remove IsInsecureRegistry
abcc70b9ef distribution: GetRepositories skip using Service.ResolveRepository
071d8b21e9 distribution: Push: skip using Service.ResolveRepository
8b6a045aa4 distribution; newPusher: don't require RepositoryInfo
8653af5854 distribution: pullEndpoints: skip using Service.ResolveRepository
20a2807caa distribution: pullEndpoints: don't return RepositoryInfo
f1ecce6877 distribution: pullEndpoints: don't require RepositoryInfo
d6afe88b3c distribution: newPuller: don't require RepositoryInfo
03918c5b07 distribution: layerDescriptor: don't require RepositoryInfo
c91318e6c0 distribution: newRepository: don't require RepositoryInfo
2e8bf8b0ab distribution: remove vars that shadowed imports or types
d8fa2f8071 registry: deprecate APIEndpoint.Official field
0ab6f07c31 Fix TestPassthrough
2d643b6835 Firewalld: skip unit tests that run in their own netns
4fbfb618c3 Skip flaky part of TestAccessPublishedPortFromHost
b8323abe0a TestIsolated for IPv6 is broken under firewalld
86eff82789 Firewalld: Skip tests that run dockerd in an L3Segment
dc963a00c1 Firewalld should use its nftables backend
b8cacdf324 Add test util "FirewalldRunning"
8f506a51e5 containerd: ensure overwritten images from load are left dangling
7b2e47846c Run systemd/rootless when systemd/rootless unit testing
8d9e3502ab hack: Fix TestOverlay* test failure in pkg/archive
f5d84a45cc Start containers, even when connected to a disabled bridge port
072ea62fcc vendor: github.com/opencontainers/image-spec v1.1.1
a60603bfa3 hack/validate: Add gocompat
2be7f48561 implement module compatibility check
cc90726fb8 Add missing go1.22 build constraints
19a0f886da testutil: Update to `any` from `interface{}`
f14c23a90f libnetwork: Update to `any` from `interface{}`
82ec984d10 daemon: Update to `any` from `interface{}`
003bf197d7 container: Update to `any` from `interface{}`
444a1597ff c8d/builder: Fix missing `image tag` event with BuildKit
2fce935df2 vendor: github.com/moby/buildkit v0.20.2
7c09e4e607 TestBuildEmitsEvents: Skip Windows only for buildkit
99356b6e17 integration-cli/TestBuildEmitsEvents: Verify event count
3e957c6240 remove some redundant import-aliases
4db84b197d switch to github.com/opencontainers/cgroups
697956a8c7 vendor: github.com/opencontainers/selinux v1.12.0
34bc972519 vendor: github.com/golang-jwt/jwt/v5 v5.2.2
d01ee23c15 Dockerfile: update registry to v3.0.0-rc.4
081987b647 Dockerfile: disable saving Golang telemetry in dev-container
af14f3e7d3 Dockerfile: upgrade Delve to v1.24.1
d0b4bdbd25 api/router: postContainersAttach, wsContainersAttach: minor cleanups
73aa7e933c daemon: daemon.containerAttach: use structured logs
d494520aa0 daemon: daemon.ContainerAttach: use Println instead of Printf
183ca46099 daemon: daemon.ContainerLogs: move vars closer to where used
c164eec7e9 daemon: daemon.ContainerAttach: move vars closer to where used
f7853799fc daemon: daemon.containerAttach: remove redundant defers
80bf93c9d7 daemon: daemon.containerAttach: rename vars for clarity and prevent shadow
daeb6fb0b7 vendor: github.com/cilium/ebpf v0.17.3
eeee17eaad Dockerfile: update runc binary to v1.2.6
c1c5f16b8b vendor: github.com/opencontainers/runc v1.2.6
be6e92a57b pkg/atomicwriter: use sequential file access on Windows
452ff75159 Dockerfile.simple: avoid `Could not find installer for "proxy"`
fa21996da5 containerd: prioritize non-dangling images with image list
126d4cf672 client: remove version-gate for JSON response errors
230f178f8b api: return plain-text errors for deprecated API versions
c7fbe1c2ba integration-cli: fix duplicate close of body
1c00755826 integration-cli: fix some unhandled errors
8be5696c37 daemon/logger/journald: rename func that shadowed builtin
f2a183a991 daemon: return port-mappings from all endpoints
6b3b479192 daemon: getEndpointPortMapInfo: err is never used
35766af7d2 Dockerfile: update containerd binary to v1.7.27
c9a763ecc9 daemon: remove redundant call to getEndpointPortMapInfo
fb3cce1988 vendor: github.com/containerd/containerd/v2 v2.0.4
4276f330fc cmd/docker-proxy: do not eagerly GC one-sided UDP conns
0356854327 cmd/docker-proxy: make the conntrack timeout a property of UDPProxy
d70fd32a18 cmd/docker-proxy: UDP: thread-safe Write and Close
485cb90b77 Remove duplicate iptables-enabled checks
fce915897c Combine firewalld reload callbacks for IPv4/IPv6
ac34bd9bda integration/container: Remove Parallel from TestWait*
dd7f9f08d8 integration/container: Increase stop timeout for TestWaitRestartedContainer
a8f14e06d6 Improve performance of daemon.Containers().
c0ca783edb Allow macvlan endpoint to start with parent down
26fea35942 daemon: Fix panic on Windows when restoring pre v28 container
90a83063ee runconfig/errors: split `ErrConflictHostNetwork`
a3fef5debc Mask Linux thermal interrupt info in /proc and /sys.
cf3e42abaf Add an opt-out for iptables 'raw' rules
0f11ee1ae2 registry: ReadCertsDirectory: don't process same file multiple times
dd7ab0e82b registry: deprecate HostCertsDir
3cc9881ab7 registry: always set a non-empty CertDir
b633c4cc33 registry: deprecate SetCertsDir
d0dd035278 builder-next: fix min-free-space prune with graphdriver backend
1daeaec333 pkg/atomicwriter: validate destination path
4d8cff7bd4 Don't skip DNAT for a routed network without userland-proxy
084b7cec1a pkg/atomicwriter: add additional test-cases
ff061e28c1 pkg/atomicwriter: don't overwrite destination on close without write
88a5bca43c pkg/atomicwriter: add separate tests for New()
09e804f570 pkg/atomicwriter: refactor tests
2124706447 integration: Increase timeouts in TestStopContainerWithTimeout
946bf70f89 integration: Deduplicate TestStopContainerWithTimeout
fee063f01e daemon/c8d: Refactor singlePlatformSize into separate functions
f7d7fd9c52 contrib/check-config: add IPv6 modules
2a109e6c32 contrib/check-config: add ip_nf_raw
0e54920e01 Dockerfile: update RootlessKit to v2.3.4
7ae9e41ff6 vendor: github.com/rootless-containers/rootlesskit/v2 v2.3.4
55ff0062ca vendor: github.com/containernetworking/plugins v1.6.2
125aa3a682 vendor: golang.org/x/sys v0.31.0
5d6b56699d client: add API-version dependent validation for mount options
aa33bdaa71 registry: move emptyServiceConfig to test-file
0823d76ec5 client: keep image refs in canonical format where possible
907773160b registry: rewrite ParseSearchIndexInfo to not depend on IndexInfo
b22431ee9c pkg/atomicwriter: New(): use absolute path for temp-file
58bd93a625 pkg/atomicwriter: New(): prevent creating temp-file on errors
49c89b0177 docs/api: improve doc for Secret and Config data fields (API v1.31-v1.48)
df0cefcc95 api/swagger: improve doc for Secret and Config data fields
f2d53142b0 api/types/swarm: document Secret and Config data fields
c2c3d593cf registry: rewrite ParseRepositoryInfo to not depend on IndexInfo
42f1e38e20 integration/image: TestRemoveImageGarbageCollector: don't set zero-values
42ca9154e9 layer: remove StoreOptions.ExperimentalEnabled
df519e9e1a daemon: Fix giving up too early while connecting to containerd socket
ace8c9c94f vendor: golang.org/x/net v0.36.0
bc0ca67b1c vendor: golang.org/x/net v0.35.0
9278110260 Dockerfile: update containerd binary to v1.7.26
0a58c73e0d integration/net: Retry TestAccessPublishedPortFromAnotherNetwork
d34e1ff826 layer: remove StoreOptions.MetadataStorePathTemplate
556633ca47 cmd/dockerd: daemonCLI.start: scope local errors
8b59e1a398 cmd/dockerd: daemonCLI.start: return error instead of log.Fatal
8a8cdaaa11 cmd/dockerd: daemonCLI.start: don't log warnings before failing
6e30a4cc0c cmd/dockerd: explicitly access Config fields
dfecaaf908 cmd/dockerd: rewrite getContainerdDaemonOpts to a func
b95fdcd084 cmd/dockerd: createAndStartCluster: change to accept Config
29aa7e15bd cmd/dockerd: rewrite getSwarmRunRoot to a regular func
29c296e1dd cmd/dockerd: rename vars that shadowed imports
f87ae7c914 gha: test-prepare: update to Ubuntu 24.04
c41ed7c98c gha: build, cross: update to Ubuntu 24.04
d29038d1cb gha: integration-cli-prepare: update to Ubuntu 24.04
a23058e0d7 gha: integration-cli-report: update to Ubuntu 24.04
de69b552ff gha: integration-report: update to Ubuntu 24.04
b61f409972 gha: test: update Ubuntu 22.04 -> 24.04
60276fafca gha: integration-prepare: update to ubuntu 24.04
651fb91c4d gha: arm64: update Ubuntu 22.04 -> 24.04
f6a9ed5f0a gha: arm64: test-integration-report: update to Ubuntu 24.04
13e1ef6277 gha: arm64: test-unit-report: update to ubuntu 24.04
27404044a6 gha: validate, build-dev: update to Ubuntu 24.04
3571982458 gha: smoke: update to Ubuntu 24.04
ee73f2e5da gha: docker-py: update to ubuntu 24.04
b9ca3d198e gha: unit: update to ubuntu 24.04
1a0afb0f9e gha: bin-image: update to ubuntu 24.04
4919bf9f41 gha: buildkit: update to ubuntu 24.04
7b1fd61864 gha: validate-pr: update to ubuntu 24.04
eeffc099ef gha: dco: update to ubuntu 24.04
06b87d80ee gha: docker-py: set TEST_SKIP_INTEGRATION_CLI=1
c9f53d506a Merge ps_test.go into list_test.go.
95bf53fb6c container/stream: Don't log error when streams are properly closed
6e55f83747 Remove unused toml validation
bf8a27a55a Remove inactive maintainers with no activity in last two years
9e814fc0d7 Remove inactive former curators
b868fad5e3 Update governance to replace TSC and add maintainer roles
690f758505 vendor: golang.org/x/oauth2 v0.27.0
55599fd9b3 vendor: golang.org/x/oauth2 v0.26.0
a47d9c5f58 vendor: golang.org/x/crypto v0.35.0
3a28163007 vendor: golang.org/x/crypto v0.34.0
ffc91fd76a vendor: golang.org/x/crypto v0.33.0
7cba8aef1c vendor: golang.org/x/text v0.22.0
995d71a033 vendor: golang.org/x/sync v0.11.0
e325564f38 vendor: golang.org/x/sys v0.30.0
65b460b9ef vendor: update buildkit to v0.20.1
6e8eb8a90f vendor.mod: update minimum go version to go1.23
26edf2d0a7 Flush iptables chains DOCKER-CT, DOCKER-BRIDGE on startup
5f912e4cf5 update to go1.23.7
a8178613af golangci-lint: enable nakedret linter
c359cc6829 api/types/registry: fix naked returns
b1c008c007 api/server/router/build: fix naked returns
4aecdd5744 image/tarexport: fix naked returns and slight refactor
99b6012a02 daemon/logger/awslogs: remove unused named return
4fa9ec3192 daemon/logger: fix naked returns and slight refactor
eeb5651de5 daemon/graohdriver/fuse-overlayfs/: fix naked returns and slight refactor
02b4610246 daemon/graohdriver: fix naked returns
964413c3a1 daemon/cluster: fix naked returns
387ec71630 daemon: fix naked returns
85c8fb7fda daemon: getSystemCPUUsage(): fix naked returns, output vars
5c85847a55 registry: fix naked returns, output vars
17448ef1c8 plugin: fix naked returns, output vars
faa9cb125b pkg/tarsum: fix naked returns
b5b514ab04 pkg/stdcopy: fix naked returns
d3d84bde4b pkg/pools: fix naked returns
52b8298975 pkg/chrootarchive: remove unused named return
b38f0dd804 pkg/archive: fix naked returns, output variables in tests
d59a9d9b10 pkg/archive: fix naked returns, output variables
c62f5aff42 libnetwork: fix naked returns
8978b30b1a libnetwork/types: fix naked returns
619e8f8148 libnetwork/osl: fix naked returns
02b4c7cc52 libnetwork/drivers/overlay: fix naked returns, output variables
94afddb18d libnetwork/cmd/networkdb-test: fix naked return
379b82862f layer: fix naked returns
b1c617681f internal/unix_noeintr: fix naked returns
51f574ea0e internal/mod: fix naked returns
e1538336c7 integration-cli: fix naked returns, output vars
220b3c591f container/stream/bytespipe: fix naked returns, output vars
0cd39d7b23 builder/remotecontext: fix naked returns
0c1b37c50a builder/dockerfile: fix minor linting issues
8302cd2d29 builder/dockerfile: downloadSource: fix naked returns, output vars
00bd916203 libnetwork/resolvconf: Build: re-implement using new implementation
2f19577877 libnetwork/resolvconf: Build: align order with new implementation
03aeedcca9 libnetwork/resolvconf: update tests to use more correct values
c34f8bbba3 integration/volume: setupTestVolume: minor cleanups and fixes
28bf578a40 integration/volume: TestRunMountImage: use test-util for container cleanup
e41eaf2c8d integration/volume: TestRunMountVolumeSubdir: remove some logs
f1bec97dfe registry: use literal for empty slice
7b4e21e5d0 registry: fix typo in godoc
be9c4dd3c5 registry: TestNewIndexInfo: add more test-cases
949afd933b registry: TestNewIndexInfo: assert all fields
310d6d2fa5 registry: TestNewIndexInfo: use sub-tests
50d17676e4 registry: TestParseRepositoryInfo: add test-cases for IPv6 refs
328b808765 registry: TestParseRepositoryInfo: assert all index-info fields
d9634c3b28 registry: TestParseRepositoryInfo: use sub-tests
e2a5220ec3 registry: remove makeServiceConfig test-utility
52419cf933 golangci-lint: enforce "is" alias for gotest.tools/v3/assert/cmp
1c63f3983b volume/service: adjust "gotest.tools/v3/assert/cmp" import alias
9766a446ae integration/network: adjust "gotest.tools/v3/assert/cmp" import alias
c16fcdfc4b integration/image: adjust "gotest.tools/v3/assert/cmp" import alias
6abe6a910a integration/container: adjust "gotest.tools/v3/assert/cmp" import alias
22069f2431 integration-cli: adjust "gotest.tools/v3/assert/cmp" import alias
605f02a59b distribution: adjust "gotest.tools/v3/assert/cmp" import alias
75b86c47d9 daemon/logger/loggerutils: adjust "gotest.tools/v3/assert/cmp" import alias
59e6d1d214 registry: TestLoadInsecureRegistries: don't mutate emptyServiceConfig
849f344ecc registry: split normalizing index name from validating
fee40a9333 registry: create emptyServiceConfig without parsing
a3583b4b58 registry: newRepositoryInfo only check for official images for Docker Hub
08654b0b30 registry: deprecate RepositoryInfo.Official field
dbc9d56820 vendor: github.com/containerd/containerd v2.0.3
15895d8ead daemon/graphdriver: rename vars that shadowed
aa9817b0c5 testutil: remove isErrNotFoundSwarmClassic
0ab7d41f9e testutil/environment: Execution.Clean: remove redundant condition
b301c34b92 libcontainerd/local: remove arg-names for stubs
12f89cc19b libcontainerd/local: NewClient: remove unused cli, stateDir, ns args
620f26e1e3 libcontainerd/local: client.createWindows: remove unused runtimeOptions
9c4e10126e libcontainerd/local: client.NewContainer: use early return
7c1a2301f0 libcontainerd/local: client.extractResourcesFromSpec: use early return
fc462d699a Dockerfile: update compose to v2.33.1
855563fc43 Dockerfile: update docker CLI to v28.0.1
ab7305c85a Check swarm's jump to DOCKER-INGRESS
be14d9148c Make integration/service/network_test.go Linux-only
cfc562c358 daemon/cluster: create "state" and "runtime-dir" closer to where used
ef4f4d845d daemon/cluster: rename Cluster.root to Cluster.stateDir
4d3d4bbeeb daemon/cluster: remove Config.WatchStream and move to constructor
cdbb62394c builder/dockerfile: remove intermediate var that shadowed
558da63444 Jump to DOCKER-INGRESS from DOCKER-FORWARD
fdd534d2ca libcontainerd: windows: return errdefs type for pausing
60782e6d39 container: fix some errors on Windows
c37690b98e libnet/portallocator: un-export errors that were not used as sentinel errors
cfc049c938 Use iptables-nft in the dev container / CI
47ca352b0d vendor: github.com/opencontainers/runc v1.2.5, cyphar/filepath-securejoin v0.4.1
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
