summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* oe-go-mod-autogen.py: add script to help adding/upgrading go mod recipesChen Qi2023-09-151-0/+663
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | oe-go-mod-autogen.py is a helper script for go mod recipes. It follows Bruce's initiative about how to deal with go mod recipes in OE. Example: cmd: <path_to>/meta-virtualization/scripts/oe-go-mod-autogen.py \ --repo https://github.com/docker/compose --rev v2.20.3 output: src_uri.inc, relocation.inc, modules.txt Copy these three generated files to replace the original ones, then we only need update PV and SRCREV, and docker-compose is upgraded. Below are some technical details. * get module's repo from module name This script checks the following two URLs to determine the module's repo. 1. https://<module_name_tweaked>?=go-get=1 2. https://pkg.go.dev/<module_name_tweaked> The module_name_tweaked is derived from module_name, with the last components removed one by one. Let me use two examples to explain this. For module_name sigs.k8s.io/json, the sigs.k8s.io/json is first used as module_name_tweaked for searching. And we can correctly get the repo URL, so the search stops. For module_name github.com/k3s-io/etcd/api/v3, the following ones are used as module_name_tweaked: github.com/k3s-io/etcd/api/v3 github.com/k3s-io/etcd/api github.com/k3s-io/etcd And when searching 'github.com/k3s-io/etcd', we get the repo URL, so the search stops. * determine the srcdir:destdir mapping in 'vendor' creation To correctly form the 'vendor' directory, the mapping is critical. This script makes use of tag matching and path matching to determine the subpath in the repo for the module. * avoid subpath being overriden by parent path We need to avoid subpath being overriden by parent path. This is needed for both SRC_URI ordering in src_uri.inc and the sites mapping ordering in relocation.inc. This script simply uses the length as the ordering key, simply for the reason that if a path is a subpath of another path, it must be longer. * the .git suffix is removed to sync with each other Unlike normal recipes, go mod recipe usually have many SRC_URIs. This script remove the '.git' suffix from repo URL so that the repo URLs are in sync with each. * basic directory hierarchy and caching mechanism <cwd>/repos: hold the repos downloaded and checked <cwd>/wget-contents: hold the contents to determine the module's repo <cwd>/wget-contents/<module_name>.repo_url.cache: the repo value cache This is to avoid unnecessary URL fetching and repo cloning. * the ERROR_OUT_ON_FETCH_AND_CHECKOUT_FAILURE switch in script The script must get the correct repo_url, fullsrc_rev and subpath for each required module in go.mod to correctly generate the src_uri.inc and relocation.inc files. If this process fails for any required module, this script stop immediately, as I deliberately set ERROR_OUT_ON_FETCH_AND_CHECKOUT_FAILURE to True in this script. The purpose is to encourage people to report problems to meta-virt so that we can improve this script according to these feedbacks. But this variable can set to False, then the script only records the failed modules in self.modules_unhandled with reasons added, people can modify the generated src_uri.inc and relocation.inc to manually handle these unhandled modules if they are urgent to add/upgrade some go mod recipes. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* k3s: update to v1.27.5Bruce Ashfield2023-09-155-2977/+1955
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | We refresh one patch, but otherwise, the build is unchanged. Generated via: scripts/oe-go-mod-autogen.py --repo https://github.com/rancher/k3s.git --rev v1.27.5+k3s1 Bumping k3s to version v1.27.5+k3s1, which comprises the following commits: 8d074ecb5a Add RWMutex to address controller f365a9cb98 Add new CLI flag to enable TLS SAN CN filtering 8d6483a59e Update to v1.27.5 (#8236) e31f00f863 Move flannel to 0.22.2 f8727f56d7 E2E test for token coverage (#8184) 84ded911e9 Bump helm-controller/klipper-helm versions 66bae3e326 Bump dynamiclistener for init deadlock fix e83b1ba4aa Fixed the etcd retention to delete orphaned snapshots based on the date (#8177) 561db17a31 chore: Bump Trivy version (#8178) 38a0b91c1a chore: Bump Trivy version (#8150) 7f58a1cb23 Run integration test CI in parallel (#8156) c97211866a Fix for cluster-reset backup from s3 when etcd snapshots are disabled (#8155) 9702f92345 Fix for Kubeflag Integration test (#8154) b2e71553ce Use VERSION_K8S in tests instead of grep go.mod bc332ac667 Use 'go list -m' instead of grep to look up versions 53fc3eef0a add --disable-cloud-controller and --disable-kube-proxy test (#8018) e551308db8 fix for etcd-snapshot delete with --etcd-s3 flag (#8110) 45bc26309f Remove terraform test package (#8136) fd531140e5 Bump kine to v0.10.2 ca7aeed090 Etcd snapshots retention when node name changes (#8099) 23d6842f9a Bump versions for etcd, containerd, runc, kine a0da8eded3 Bump docker/docker to master commit aa76942d0f Add FilterCN function to prevent SAN Stuffing 3515d712a7 Fix typo in terraform/README.md (#8090) a87b183f9c E2E: Support GOCOVER for more tests + fixes (#8080) 46cbbab263 Consolidate CopyFile functions (#8079) 59eec78c62 Fix tailscale bug with ip modes 468bddb59c update stable channel to v1.27.4+k3s1 (#8067) 767b64ba58 Fix coreos multiple installs (#8083) cc9dce5764 Security bump to docker/distribution (#8047) f21ae1d949 Make apiserver egress args conditional on egress-selector-mode 546dc247a0 Add support for `{{ template "base" . }}` in etc/containerd/config.toml.tmpl (#7991) 6d360e6473 Unit test for MustFindString (#8013) 946c8ea842 ADR on secrets encryption v3 (#7938) 780e638099 Update flannel to v0.22.1 e56839b329 Update cni plugins version to v1.3.0 36645e7311 fix update go version doc (#8028) d8ae6ef59b Update to v1.27.4 (#8014) be44243353 Adjust default kubeconfig file permissions (#7978) 0b18a65d4f Revert "Warn that v1.28 will deprecate reencrypt/prepare (#7848)" 58a8deb25d fix image_scan.sh script and download trivy version (#7950) 3eb4e12c3b Don't use zgrep in `check-config` if apparmor porfile is enforced (#7939) 34617390d0 Generation of certificates and keys for etcd gated if etcd is disabled. (#6998) 2eddfe6cf4 Add retry for clone step (#7862) 782a3a1cb4 Bump google.golang.org/grpc from 1.51.0 to 1.53.0 in /tests/terraform (#7879) 8405813c12 Fix rootless node password (#7887) 607320d670 Improve for K3s release Docs (#7864) b9a2bf11ee Support setting control server URL for Tailscale. 4ab01f3941 Warn that v1.28 will deprecate reencrypt/prepare (#7848) 9e334153cf add e2e s3 test (#7833) bca0adbca8 Fix code spell check 7f50b40cfe Fall back to basic/bearer auth when node identity auth is rejected ce3443ddf6 Allow k3s to customize apiServerPort on helm-controller 324f9ad4da fix e2e startup flaky test (#7839) 72d50b1f7c Add `--data-dir` to the `k3s certificate rotate-ca` cli (#7791) d593c83603 Remove file_windows.go f21a01474d Check if we are on ipv4, ipv6 or dualStack when doing tailscale 0809187cff Adding cli to custom klipper helm image (#7682) c7dec8ed24 Update stable channel to v1.27.3+k3s1 (#7827) 70691a95ee Faster K3s Binary Build Option (#7805) 2215870d5d chore: pkg imported more than once fe9604cac1 Update Kubernetes to v1.27.3 (#7790) d968e64de0 Add commands to logout from tailscale 43611bb5ad Fix the error report b66a118362 Bump helm-controller to v0.15.0 for create-namespace support a5874f855f Remove unused libvirt config c6a6e8ef57 Fix spelling check cc22c80e49 Add issue template for OS validation (#7695) efa86a63e8 Remove unnecessary daemonset addition/deletion (#7696) 7c151d468f add private registry e2e test (#7653) 869e030bdd VPN PoC 1e73bb8967 Run integration tests on E2E changes, ensures correct coverage values 8f9502233a E2E: Inject gocover ENV for k3s commands 4a68fbd8e9 E2E: Use sudo for all RunCmdOnNode 00f3e2413f chore: Bump Trivy version (#7672) dc6c569b98 Shortcircuit commands with version or help flags (#7683) 3a8e98a3b8 Bump docker go.mod (#7681) e5e1a674ce Enable containerd aufs/devmapper/zfs snapshotter plugins 5170bc5a04 Improve error response logging 45d8c1a1a2 Soft-fail on node password verification if the secret cannot be created b0188f5a13 Test Coverage Reports for E2E tests (#7526) afc88cec88 check variant before version to decide rpm target and packager fa0dc5900a Use el8 rpm for fedora 38 and 39 (#7664) 7c0a7687c6 add format command on Makefile and remove vendor 9227e0bde2 Bump vagrant libvirt with fix for plugin installs (#7605) b64a226ebd Make LB image configurable when compiling k3s a5928ee137 chore: Bump golang:alpine version 612473755d Add ADR 7b61aacb56 Fix test file list 64a5f58f1e Create new kubeconfig for supervisor use 8748813a61 Use distinct clients for supervisor, deploy, and helm controllers e9958cf070 Bump metrics-server to v0.6.3 and update tls-cipher-suites 93279d2f59 Bump klipper-lb to v0.4.4 0485a56f33 allow coredns override extensions 85e10cf9d2 update channels (#7634) 9543470eb7 Add el9 selinux rpm (#7635) d1b0254b91 Update flannel version 213d7ad499 Revert "Add el9 selinux rpm (#7443)" (#7608) d55ec08675 Add el9 selinux rpm (#7443) fe554fe703 Pin emicklei/go-restful to v3.9.0 91c5e0d75a Fix iptables rules clean during upgrade d069a85fcc Update to v1.27.2-k3s1 (#7575) 290f67c939 Add '-all' flag to apply to inactive units 2b24c9917c Bump alpine from 3.17 to 3.18 in /conformance (#7551) 266926693a Bump alpine from 3.17 to 3.18 in /package (#7550) 9bcfac8b88 Add Rotation certification Check (#7097) 4aafff0219 Wrap error stating that it is coming from netpol cbe8d33c93 Bump containerd/runc to v1.7.1-k3s1/v1.1.7 8f450bafe1 Bump helm-controller version for repo auth/ca support 06296815e6 Adding PITS and Getdeck Beiboot as adopters thanks to Schille and Miworfi for the additions (#7524) 607cbf0ad6 Bump containerd to v1.7.0 and move back into multicall binary 239021e759 Consistently use constant-time comparison of password hashes 9ec1789c21 Bump kube-router version to fix a bug when a port name is used c6dc789e25 Add support for `-cover` + integration test code coverage (#7415) 3982213f06 add kube-* server flags integration tests (#7416) b32bf49541 Bump kine to v0.10.1 c98137ddca Fix token startup test cf9ebb3259 Fail to validate server tokens that use bootstrap id/secret format 7175ebe2be E2E: Startup test cleanup + RunCommand Enhancement (#7388) bbb8ee0b2d Add dependabot label and reviewer (#7423) cedefeff24 Bump cni plugins to v1.2.0-k3s1 a736b4b1b9 local-storage: Fix permission (#7217) 437ad128c7 Migrate netutil methods into /utils/net.go e1d4cff14c Enable FindString to search dotD config files (#7323) 132b41c3bf Add v1.27 channel (#7387) d5f560360e Handle multiple arguments with StringSlice flags (#7380) a3ddff2f29 chore: Bump Trivy version e61fde93c1 Fix MemberList error handling and incorrect etcd-arg passthrough 91afb38799 Retry cluster join on "too many learners" error f1b6a3549c Fix stack log on panic c44d33d29b Fix race condition in tunnel server startup 1ca035accc Add e2e test for --disable-agent 31a6386994 Improve egress selector handling on agentless servers 5348b5e696 Improve error message when CLI wrapper Exec fails bbda54b332 Add longhorn storage test (#6445) 0247794aa9 go generate 0bbc6ad3f0 Bump traefik to v2.9.10 1ac03aad43 Add integration tests for etc-snapshot server flags and refactor /tests/integration/integration.go/K3sStartServer (#7300) ef648b7a5d Bump Runc and Containerd (#7339) 9539147ee1 Bump k3s-root for aarch64 page size fix ad41fb8c96 Create CRDs with schema bc5b42c279 Cleanup help messages (#7369) f076080b2b Bump cri-dockerd (#7347) 87f0dc5dd3 update channel server for april 2023 (#7327) 66fcca66cb ensure that klog verbosity is set to the same level as logrus by repeatedly settting it every second during k3s startup 36699bbd60 Changed command -v redirection for iptables bin check 944f811dc5 v1.27.1 CLI Deprecation (#7311) f2bde63eea Kubernetes v1.27.1 (#7271) 8d0255af07 Bump Trivy version (#7257) 779d5f3aa2 chore: Updated the content of the file "/tmp/updatecli/github/k3s-io/... (#7256) 554ad87c8d chore: Bump golang:alpine version (#7292) 257fa2c54c Update to v1.26.4-k3s1 (#7282) d9f40d4f5b Update install script to clean iptables rules before start 0c683720ad Update kube-router to insert iptables rules right after kubernetes ones 6b51ed478d Fix call for k3s-selinux versions in airgapped environments (#7264) 027cc187ce Add coreos and sle micro to selinux support (#6945) 30638072c9 Update klipper lb to v0.4.2 (#7210) 6c394abb32 Add make commands to terraform automation and fix external dbs related issue (#7159) 3e3512bdae Updated kube-route version to move the iptables ACCEPT default rule at the end of the chain d95980bba3 Lock bootstrap data with empty key to prevent conflicts 12091fc724 Bump actions/setup-go from 3 to 4 2992477c4b Debounce kubernetes service endpoint updates ece4d8e45c Fix tests to not hide failure location in dummp assert functions e54ceaa497 Fix issue with stale connections to removed LB server 5dece799df Update remotedialer to silence errors when disconnecting 4182dcaac8 [UpdateCLI] Improve Klipper Helm and Helm controller bumps (#7146) 127cea1f3f Upgrade helm-controller to v0.13.3 (#7209) d2e04b826a Don't apply hardened args to agent (#7089) d388b82d25 go generate de80c07053 Ensure that loopback is used for the advertised address when resetting b010db0cff Ensure that loopback is used for the advertised address when resetting 877247a691 Bump runc to v1.1.5 eb982bbbde Bump etcd to v3.5.7 cee3ddbc4a Bump Local Path Provisioner version (#7167) ddd9665fed Improve Trivy configuration (#7154) fdf994dc35 [UpdateCLI] Improve workflow (#7142) 37b3f4d25c Run go generate in local-path-provisioner Updatecli pipeline (#7181) 8ec7d5e6b0 fix_get_sha_url (#7187) a99376663b Drone Pipelines enhancement (#7169) fb491f5ebf Update stable channel to v1.26.3+k3s1 (#7161) d13ee64403 Enhance `k3s check-config` (#7091) 01ea3ff27b Update flannel to fix NAT issue with old iptables version c97370be6f Clean E2E VMs before testing (#7109) 7c32f88fec Pin golangci-lint version to v1.51.2 (#7113) dc4a148725 Update to v1.26.3-k3s1 (#7108) 561ec056c1 Drone: Cleanup E2E VMs on test panic (#7104) 9980504196 Fix to Rotate CA e2e test (#7101) 85b261096c Add automation for Restart command for K3s (#7002) 19ac384929 Remove Nikolai from MAINTAINERS list (#7088) 7d2f997b3e Added multiClusterCIDR E2E test 262cd7de0a Added IPv6 check and agent restart on e2e test utils 15ee88964b Added multiClusterCidr feature 822ee79eb8 Remove deprecated nodeSelector label beta.kubernetes.io/os (#6970) a912902aa7 Add missing kernel config checks (#6946) 8503d0143c skip all pipelines based on what is in the PR (#6996) 977a85559e Add support for cross-signing new certs during ca rotation 68fcb48a35 Update/rename certs.sh; add default cert rotation script b7f90f389c Wait for kubelet port to be ready before setting (#7041) a45d081027 update stable version in channel server (#7066) d218068f34 Adds a warning about editing to the containerd config.toml file (#7057) c259403af1 Bump various dependencies for CVEs (#7044) e098b99bfa Update flannel and kube-router (#7039) c78dc4db71 Add flannel adr (#6973) 522ad1e697 Add E2E to Drone (#6890) ea094d1d49 Update to v1.26.2-k3s1 (#7011) ee28c20b62 Bump kine to v0.9.9 cbe4bcfeee Add test for filterByIPFamily cc333d8d0c Fix ServiceLB dual-stack ingress IP listing 2156015521 Improve default umask for certs.sh 23d98cec22 Fix CACertPath stripping trailing path components 0c302f4341 Fix etcd member deletion 9efa0797b7 Don't default to local K3s for startup test (#6950) 7739c8b97e Update flannel to v0.21.1 b8e69712a3 Updated flannel version to v0.21.0 3d146d2f1b Allow for multiple sets of leader-elected controllers 0d416d797d Wait for server to become ready before creating token 290d7e8fd1 Fix access to hostNetwork port on NodeIP when egress-selector-mode=agent ddcc4d4034 go generate c6d0afd0cb Check for existing resources before creating them 32d62c5786 Use default address family when adding kubernetes service address to SAN list a92f163c9d Add NATS to the list of supported data stores (#6876) b43dd7746d Add CI test c900089e88 Add ADR 87f9c4ab11 Ensure that node exists when using node auth 992e64993d Add support for kubeadm token and client certificate auth 373df1c8b0 Add support for `k3s token` command 7d49202721 Ignore value conflicts when reencrypting secrets (#6850) be7f751863 Add e2e tests for CA cert rotation 8a6404f97c Add basic test for custom CA certs 9b6b72941f Clarify ADR based on design review feedback f13768c247 Add ADR 215fb157ff Add `certificate rotate-ca` to write updated CA certs to datastore 3c324335b2 Add utility functions for getting kubernetes client 58d40327b4 Fix CA cert hash for root certs 0919ec6755 Ensure cluster-signing CA files contain only a single CA cert 1ec242d816 Add example certificate generation script 7e59376bb9 Fix check for (open)SUSE version (#6791) ee007bc7cf Bump deps: trivy, sonobuoy, dapper (#6807) bb353f5d2b Fix reference to documentation (#6860) 7cad3db251 E2E: Consoldiate docker and prefer bundled tests into new startup test (#6851) 32086717fc Ensure flag type consistency (#6852) 750cff561d Bump vagrant boxes to fedora37 (#6832) 9fcc7c0db8 Fix cronjob example (#6707) 0d4caf4e24 Wait for cri-dockerd socket (#6812) 1c6fde9a52 go generate 369b81b45e Honor Service ExternalTrafficPolicy 94d1a87509 Bump wrangler version for EndpointSlice support 86e36225f5 Consolidate E2E tests and GH Actions (#6772) 808c71a63e Add Ayedo (#6801) 75f77ab951 E2E Rancher and Hardened script improvements (#6778) f0655f153e update stable channel to v1.25.6+k3s1 (#6828) 3cb6fa5cc7 Set cri-dockerd version at build time f72649d1bd Bump cri-dockerd 89f7062431 Add build tag to disable cri-dockerd f10af367c3 Update to v1.26.1-k3s1 (#6774) f19892c2d2 drone correct plugins/docker tag supporting linux/arm (#6769) 291f8bfe00 Slow dependency CI to weekly (#6764) 2007cdd54f generate report and upload test results (#6737) 7bbcac92fd Bump download action to v3 (#6746) d71ab6317e Update stable to 1.25.5+k3s2 (#6753) f54b5e4fa0 Fix CI tests 23c1040adb Bugfix: do not break cert-manager when pprof is enabled (#6635) a4549cf989 chore: Bump golang:alpine version (#6683) 8340b54309 Pass through default tls-cipher-suites cc3583399a Add explicit permissions to workflows (#6700) d85952d6a0 Bump ubuntu from 20.04 to 22.04 in /tests/e2e/scripts (#6686) 674a05478f Containerd restart testlet (#6696) d78e490716 Bump containerd to v1.6.15-k3s1 e53500f37f Bump alpine from 3.16 to 3.17 in /conformance (#6687) c7151e8b61 Bump alpine from 3.16 to 3.17 in /package (#6688) 3cafc8e6dd RIP Codespell (#6701) fd8481a29d Adjust e2e test run script and fixes (#6718) a298bfdb18 Add jitter to scheduled snapshots and retry harder on conflicts f0ec6a4c12 Exclude December r1 releases from channel server bc6bebc998 Bump containerd to v1.6.14-k3s1 454440f9a3 Add Dependabot config for security ADR (#6560) 870d9c32b0 Fix OpenRC init script error 'openrc-run.sh: source: not found' (#6614) 97f162291a Change Updatecli GH action reference branch (#6682) beafd9eaff Update stable to v1.25.5 (#6618) 8f28de259c Add initial Updatecli ADR automation (#6583) 9e97a3b4aa Current status badges (#6653) fae8817655 Bump k3s-root version to v0.12.1 0c9b43746b Preload iptable_filter/ip6table_filter f8b661d590 Update to v1.26.0-k3s1 (#6370) b5d39df929 Deprecation of `etcd-snapshot` command in v1.26 (#6575) d723775792 Remove deprecated flags in v1.26 (#6574) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* docker: drop docker-ce recipeBruce Ashfield2023-09-151-8/+0
| | | | | | | | | | | | | docker-ce is now the same as moby. We've had a warning for quite some time now, so it is time to remove the recipe. We don't RPROVIDE docker-ce in the docker-moby recipe as part of this removal, as all docker packages have been RPROVIDING "docker" regardless of the variant. images and packagelists should be using that provider, not docker-moby and docker-ce Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* docker-moby: update to 24.0.6Bruce Ashfield2023-09-152-13/+13
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bumping moby to version v24.0.6, which comprises the following commits: c35376c455 volume/local: Don't unmount, restore mounted status 5d4cc0b5b5 integration/liveRestore: Check volume content 1d983e2e8a update golangci-lint to v1.54.2 d2e9a19358 CONTRIBUTING.md: update links to golang docs and blog 73f6053bb3 api: swagger: update link to Go documentation de13951b9d docs/api: update links to Go documentation 377af4c9b4 Dockerfile: Windows: update Golang download domains to cut down redirects 088cec8f0f hack: update link to GOPATH documentation ed2f5d1d85 c8d/builder: Don't drop fields from created image 1d10e8633d daemon: Handle NotFound when deleting container lease 63422515ba c8d/run: Allow running container without image 49671250f6 c8d/commit: Don't produce an empty layer b83f5a89f4 Don't return an error if the lease is not found 4ac2355d62 hack: use long SHA for DOCKER_GITCOMMIT ac2a80fcc3 ci(bin-image): clean up metadata 5eef5a7f59 ci(bin-image): clean up env var handling aaf84dd4cf remove Dockerfile.e2e a99e62fa3d distribution: show image schema deprecation on all registries e239799583 distribution: update warning for deprecated image formats bb22b8a418 ci(bin-image): check repo origin fb6784bdf0 gha: set 10-minute timeout on "report" actions 74bf46aea6 c8d/diff: Reuse mount, mount parent as read-only b76a0c7d00 c8d/export: Use ref counted mounter 54953f2f5a integration: Add test for not breaking overlayfs 3897724f4a volume/local: Fix debug log typo 0c131f58ba ci(bin-image): populate DOCKER_GITCOMMIT, take 2 448ae33f87 ci(bin-image): populate DOCKER_GITCOMMIT 3ce0dc7e35 bakefile: Remove default value of DOCKER_GITCOMMIT 600aa7b7a5 c8d/inspect: Ignore manifest with missing config 5d2c383d72 remove s390x and ppc64ls pipelines 15bd07b4fd update runc binary to v1.1.9 cc39fb9f6b Integration test for capabilities bf2b8a05a0 Do not drop effective&permitted set e67f9dadc6 hack/make/.binary: use with-go-mod.sh 314b84b023 hack: enable Go modules when building dockerd and docker-proxy 72947f5022 hack: use Git-free ROOTDIR convention 7e7bc0f1bc vendor: github.com/containerd/containerd v1.6.22 5f0df8c534 vendor github.com/containerd/ttrpc v1.1.2 25b709df48 windows: fix --register-service when executed from within binary directory b7d1e98ae7 libnet/d/bridge: Allow IPv6 ICC from any IP address 749e687e1b integration/windows: Unskip some kill tests 128838227e hack/test: Don't fail-fast before integration-cli b7c5385b81 update to go1.20.7 4cd50eb1ed TestDaemonProxy: use new scanners to check logs a49bca97df Fix daemon proxy test for "reload sanitized" d6536d44e9 TestDaemonProxy: check proxy settings early a6f8e97342 Improve test daemon logging Bumping docker-cli to version v24.0.6, which comprises the following commits: fab55e13c cli/command/system: fix "docker events" not supporting --format=json d3485b9e9 cli/registry: client.iterateEndpoints: remove check for APIVersion1 613380299 cli/registry: fix client.pullManifestList not de-referencing manifest b83959e00 force TestNewHistoryCommandSuccess to use UTC timezone 28a08a22b un-skip history test and fix golden mismatches 8e0393932 update cli-docs-tool to v0.6.0 efd052eb8 docs/reference: run.md: remove stray whitespace d9770a962 adding -c option for docker run/build in manpages 6efe73abe cli/command/manifest: update link to Go documentation d97753101 man: update links to Go documentation e9f843bf0 docs/reference: update links to Go documentation cfbaee468 CONTRIBUTING.md: update links daeee4697 update flag-description for --cgroup-parent 08ad72160 Update docs/command output for volume pruning 3c4fe7b3e docs: add missing docs for "DOCKER_TLS" env-var dc45bcc99 Stop slowing bash init by caching plugins path slowly 710dd00e9 replace dockerfile/dockerignore with patternmatcher/ignorefile bf632329d vendor: github.com/moby/patternmatcher v0.6.0 3c6c0bce1 cli/registry/client: set actions when authn with token 65655cc26 cmd/docker: areFlagsSupported: don't Ping if not needed 11606268f login: Add message about using PATs a8987063b docs: document special host-gateway value for add-host c0e376854 update to go1.20.7 We refresh one patch to adapt to the new build script structure. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* crun: update to v1.8.7Bruce Ashfield2023-09-151-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bumping crun to version 1.8.7-32-gf8fa497, which comprises the following commits: 76b80ae fix random errors d602fc0 build(deps): bump actions/checkout from 3 to 4 d348000 linux: fix check for oom_score_adj 382edc9 wasmer: inherit_stdout instead of capture 5057f98 wasmer: use latest wasix API f60a903 linux: do not join already joined namespaces 46ef792 lua: fixed luarocks package directory structure 0e506e5 linux: add support for ridmap mount option 44e51fa linux: honor rbind f6f92b8 utils: tighten check in check_fd_under_path() 58fa192 fix typos in comments 9e66109 linux + cgroup-systemd: fix error return values 668f5d5 features: Support mountExtensions 1836bed lua: rename variable to fix spelling 2779f02 linux: support arbitrary idmapped mounts 08def0a linux: move function definition forward 53a9996 NEWS: tag 1.8.7 a867e35 lua: fix missing dereference of pointer c90c3ca cgroup-systemd: fix error return value b6c8708 tests: Update expected features output 7c524e7 features: Fix annotations formatting f0054ea src/libcrun: Mark we implement up to OCI 1.1.0 59e2b84 build(deps): bump uraimo/run-on-arch-action from 2.5.0 to 2.5.1 3a50988 use just enough arg_unused to silence -Wunused-parameter 9864f09 Packit: enable eln builds, enable wasmedge on all non-eln builds cf72f8b container: fix error return value 88441d9 linux: simplify setns with pidfd 261a4fa mount_flags.c: regenerate f9f4e06 mount_flags.perf: add get_mount_flags_from_wordlist 387d3ac packit: Build PRs into default packit COPRs 907d032 libcrun: handle SIGWINCH by resizing terminal_fd 57a252b nix: rename `default-nix` to `default-amd64.nix` 5224aa2 build-aux: simplify `release.sh` a7102e8 github: simplify `release.yml` 8908248 Add support for riscv64 arch 31eeb19 cgroup: fix error return value fec9b0f RPM: include criu dependencies 02ee7c4 linux: do not create error twice c786d4c linux: simplify error handling c972772 linux: do not write twice errors 74a3874 linux: use helper functions instead of custom read/write 35a0166 linux: define helper to ack on the sync socket c3e518e libcrun: drop symbol for crun_make_error Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* cri-tools: update to v1.28.0Bruce Ashfield2023-09-151-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bumping cri-tools to version v1.26.0-318-gd5f3f2df, which comprises the following commits: 71beb1da Fix containerd tests 7d7fd9bb add --pinned flag for `crictl images` f74240d3 Bump github.com/google/uuid from 1.3.0 to 1.3.1 25ae10aa `crictl images -v` prints Pinned when image is pinned 163da8b9 Move events streaming test to own suite with BeforeEach and AfterEach 5461a963 Validate template aa7bd9a9 Fix tests 88b0bedc Update cmd/crictl/events.go 3a881ad2 Address review comments 459ff574 Remove the Kubernetes incubator reference from README.md 9d084877 Vendor Kubernetes v1.28.0 b703e6a9 Add crictl events command 7f5104d9 Bump latest version in README.md 552f7387 Use previous and latest tag from git in release script db0bc1a3 Vendor Kubernetes v1.28.0-rc.1 2b86addd Bump github.com/opencontainers/runc from 1.1.8 to 1.1.9 26d35da6 Fix seccomp value in test a8a71d9f statsp: enhance description e373e4a8 crictl: add metricsp command 5b337756 Dedup test code and activate linter ba784045 Bump golang.org/x/net from 0.12.0 to 0.14.0 86ca3498 Bump golang.org/x/sys from 0.10.0 to 0.11.0 306ebdfa crictl: deduplicate display boilerplate 16975aba Make `haircommander` an approver Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* cri-o: update to release 1.28.0Bruce Ashfield2023-09-152-32/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bumping cri-o to version v1.28.0, which comprises the following commits: 23dec8c7d version: bump to v1.28.0 c104a0608 build(deps): bump github.com/containers/storage from 1.48.0 to 1.49.0 5524b65d3 add info about pulling image before doing the tutorial 922573ffe build(deps): bump crate-ci/typos from 1.16.6 to 1.16.8 67724cb6f build(deps): bump github.com/containers/podman/v4 from 4.6.0 to 4.6.1 a2d46ae01 build(deps): bump github.com/containers/ocicrypt from 1.1.7 to 1.1.8 7e3522a9c Added a flag internal-repair 39ea33e29 feat: Added a feature to check at reboot time shutdown was clean or not, If it was not clean then apply repair logic c5def7f72 build(deps): bump crate-ci/typos from 1.16.5 to 1.16.6 b873985b8 Add `conmon` to ppc64le static bundle 3e3f70c22 Update install.md 9c3d622a6 Vendor Kubernetes v1.28.0 a7f160b49 build(deps): bump crate-ci/typos from 1.16.3 to 1.16.5 d2fa125a4 Update nixpkgs and use overlay 80fdf486e Add containers_events_dropped_total metric e19002329 Fix indentation in installation instructions 94f5e75c8 Update cri-tools to v1.28.0 a8d7c29e1 Vendor Kubernetes v1.28.0-rc.1 23f51c3e1 Update OWNERS_ALIASES f1bb83127 Update runc to v1.1.9 581a388ac build(deps): bump crate-ci/typos from 1.16.2 to 1.16.3 5022d956a test/image.bats: add test for checking crun-wasm workflow 05ef7a189 *: add platform_runtime_paths to RuntimeHandler 6a0c4b9ec build(deps): bump github.com/containers/image/v5 from 5.26.1 to 5.27.0 f18d122e8 Revert "devices: fill the FileMode field in spec" 8937245b0 build-static: misc fixes needed for 1.25.4 generation abfc2d616 build(deps): bump crate-ci/typos from 1.16.1 to 1.16.2 3f06640cf contrib/test/ci: add crun-wasm 3a9232c62 build(deps): bump google.golang.org/grpc from 1.56.2 to 1.57.0 bb98e2b2a Set mount type HostToContainer for mounts that include container storage root 309d045ec add script bumping 927843ea4 test/metrics: simplify oom test, add debug 64fdfbcaa build(deps): bump github.com/opencontainers/image-spec 15a586215 build(deps): bump github.com/opencontainers/runtime-spec f30ef84ad build(deps): bump github.com/onsi/gomega from 1.27.8 to 1.27.10 ecd7f9a3e cri: implement RuntimeConfig rpc 2463fdf78 vendor: update Kubernetes to v1.28.0-beta.0 edc5ece7b build(deps): bump github.com/containers/podman/v4 ef1653c8e internal/config/seccomp: Sync call signature of (*Config).Setup 67b43c4b5 internal/config/cgmgr: add non-linux stubs 1dffd7e71 internal/config/node: add non-linux stubs ecb372986 internal/config/device: add non-linux stubs 10168b534 internal/config/nsmgr: add non-linux stubs 8edfbfd45 internal/config/capabilities: add non-linux stubs 2bd7fcbd8 internal/config/apparmor: add non-linux stubs da69490d0 oci: update unit tests for new stop code be5bac87b oci: simplify stopping code 7371b1e77 oci: don't return ErrContainerStopped from StopContainer c0e34644c build(deps): bump github.com/containers/buildah from 1.31.0 to 1.31.1 41b13e28d Fix ImageRef field for containers to default to an image ID 930f49889 runc: 1.1.7 -> 1.1.8 b563cd728 Add Adobe to ADOPTERS.md 3bc609eb1 build(deps): bump sigs.k8s.io/release-sdk from 0.10.2 to 0.10.3 4e0f88970 build(deps): bump github.com/opencontainers/runc from 1.1.7 to 1.1.8 e6af91f6a oci: change IsAlive to Living 320671ed2 devices: fill the FileMode field in spec 126bd4ca9 build(deps): bump crate-ci/typos from 1.16.0 to 1.16.1 b79391fe1 Update bats to v1.10.0 5e86a5261 build(deps): bump github.com/go-chi/chi/v5 from 5.0.8 to 5.0.10 92e1d1910 Bump vendored Podman to v4.6-rc2 a3d229acf internal/factory/container: get CDI devices from CRI field. 21181672b Add Debian 12 as a supported OS to the install doc b7c826d38 build(deps): bump github.com/containers/common from 0.55.1 to 0.55.2 151572a56 build(deps): bump github.com/container-orchestrated-devices/container-device-interface c0c7ce5ae Add OpenSSF best practices badge in favor of CII 0d92db47e build(deps): bump golang.org/x/net from 0.11.0 to 0.12.0 70e5b76ca build(deps): bump google.golang.org/grpc from 1.56.1 to 1.56.2 79859a9d9 build(deps): bump crate-ci/typos from 1.15.10 to 1.16.0 7ebe2f614 Update vendored Kubernetes to v1.28.0-alpha.4 c28303fad container_test: fix "AddCapabilities ALL" test case e176397c8 vendor: drop podman replace and update runc eff07b834 Run irqbalance tests in serial within the actual suite 059dce220 build(deps): bump crate-ci/typos from 1.15.9 to 1.15.10 d43833d61 Bump bats in ci jobs to latest release 66ac754c7 build(deps): bump github.com/containers/buildah from 1.30.0 to 1.31.0 59952bf00 build(deps): bump github.com/containers/common from 0.54.0 to 0.55.1 ff3bb58db build(deps): bump crate-ci/typos from 1.15.7 to 1.15.9 4fe0b8164 build(deps): bump github.com/containers/image/v5 from 5.26.0 to 5.26.1 cb51739b1 server: use platform struct to set OS details bac73aa42 Pre-check request values on container creation 5a85cfc95 Remove non existent Debian builds from install instructions 73cf5597a test: fix make mockgen test failure dfdd2acde vendor: update release-sdk to v0.10.2 abcf50239 build(deps): bump google.golang.org/grpc from 1.55.0 to 1.56.1 9c78a1e23 vendor: update containers/storage to v1.48.0 87b126342 build(deps): bump github.com/intel/goresctrl from 0.3.0 to 0.4.0 8a9d4ef17 vendor: update containers/common to v0.54.0 cb247caf5 build(deps): bump github.com/containers/image/v5 from 5.25.0 to 5.26.0 ad3dd698b build(deps): bump google.golang.org/protobuf from 1.30.0 to 1.31.0 b8bb276a0 build(deps): bump github.com/uptrace/opentelemetry-go-extra/otellogrus 0882a1dcb build(deps): bump crate-ci/typos from 1.15.6 to 1.15.7 6b9e49d3b Try to find `CONTAINER_CNI_PLUGIN_DIR` by binary lookup 40bbe8218 vendor: fix vendoring issue f6317807c typos: add WRONLY to the list of extend-ignore-re 6a10113c7 build(deps): bump crate-ci/typos from 1.14.12 to 1.15.6 1062a4cd3 build(deps): bump ossf/scorecard-action from 2.1.3 to 2.2.0 91d6bd38b vendor: bump github.com/onsi/ginkgo/v2 to 2.11.0 7f66c1428 build(deps): bump cachix/install-nix-action from 21 to 22 d0526337e vendor: bump github.com/urfave/cli/v2 to 2.25.7 7a2b9a220 vendor: bump golang.org/x/sync to 0.3.0 ba0751938 vendor: bump golang.org/x/net to 0.11.0 9f0680cde vendor: bump github.com/prometheus/client_golang to 1.16.0 67a132dc6 runtime handler hooks: run default hook when container stops gracefully 49d9efe8b vendor: bump github.com/stretchr/testify to 1.8.4 001733570 vendor: bump github.com/sigstore/rekor to 1.2.1 d274dd121 Use a variable to manage the version of kata used for testing. 4a7d0857b Update supported version and variable guide for adding repository 0534d7eff governance: tweak voting behavior bfc7cf55a Use kata 3.0 for testing db4b8eaab kata tests: Enabling more than one test file for kata tests. 0f08aeb6f kata tests: Update list of skipped tests for the ctr.bats file 4310e3342 Modify ansible files to re-enable kata tests 8224bd8a5 build(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc f84eb7874 Move reload watcher into `Server` e3b7406b9 Update golangci-lint and config 159aaf6c6 utils: make this package build on non-linux platforms c088d69aa fix function name in comment c702bb78a build(deps): bump DavidAnson/markdownlint-cli2-action from 10 to 11 098fbebf7 Add a test for log linking 5620764ae linklogs: add support for symlinking container directory 5d7ecfe4b Add support for linking pods logs a7d314bea build(deps): bump ossf/scorecard-action from 2.1.2 to 2.1.3 e614bc756 server: ensure pod labels are present d84cc85c5 build(deps): bump github.com/BurntSushi/toml from 1.3.1 to 1.3.2 72b735603 OCPBUGS-14750: Pod termination must succeed when a hook fails 98c43d537 Add OSFF scorecard action 85c7e712e main: Added a call to GarbageCollect ccb91bc8a docs: fix eol test 08f7c0776 build(deps): bump github.com/onsi/gomega from 1.27.7 to 1.27.8 f2feb7c6f Use staging k8s.io/kubelet/cri/streaming package 72011b3c4 Add support for namespaced signature policies 3939fba97 Apply markdown linting, cleanup docs and fix broken links #6890 96e6aed74 Apply markdown linting on the tutorials folder #6890 2ead2413a Apply markdown linting on the contrib folder #6890 5d7b64018 Add markdown linter action #6890 d58f408f5 test: fix timeout metric test 5f74e7994 build(deps): bump github.com/BurntSushi/toml from 1.3.0 to 1.3.1 c87b11115 server: do not take lock to populate pid in container status and inspect 28b34889a build(deps): bump github.com/sirupsen/logrus from 1.9.2 to 1.9.3 b373909cf build(deps): bump github.com/containerd/containerd from 1.7.1 to 1.7.2 d456a11ef crio: deprecate config migration 259e7980c metrics: add metric for resource stalled at stage 85a4ba091 build(deps): bump crate-ci/typos from 1.14.11 to 1.14.12 75aacdb04 Drop support for path based seccomp profiles e18e2e90a test/helpers: rm useless code b7d1c2e61 test/helpers: use cli to set container dirs 459372c24 test: adapt for sched_load_balance disable after stop 6da8e46b1 runtime handler hooks: add DefaultCPULoadBalanceHooks 23b9179f9 server: call hooks and NRI in stopContainer e1c68ea2a Update `README.md` version table 56ac8ac79 crio: remove DefaultsPath config feature b2a20a418 server: call hooks on infra container creation 2efd04aa4 high perf hooks: workaround libcontainer quirk when disabling cpu quota 9ec701691 cgmgr: export CrioPrefix and use containerCgroupPath more 775690b1e build(deps): bump github.com/onsi/ginkgo/v2 from 2.9.5 to 2.9.7 cf7e0946e tests/timeout: skip for conmon-rs c1c431836 ci/gha: add space-at-eol check, fix existing ones 0a35354c4 build(deps): bump github.com/BurntSushi/toml from 1.2.1 to 1.3.0 65792546b ci: bump shellcheck to 0.9.0 6b2f35e2c test: fix a few cases of SC2086 d6b793c46 contrib/kube-local/kube-local: rm unreachable code b6014826c test/copyimg: use log.Fatalf 587e3d595 test/*.bats: rm useless echo "$output" bdb765635 test: rm explicit $status checks 933e33c1c test: simplify assigning IDs 22978429a test/status.bats: simplify exit code checks ff7bc1b52 test: simplify non-zero exit status checks 0bf509d35 test/cdi.bats: rm run_cmd, use run 21e5dcebe test/nri.bats: fix checking exit code 2fab13028 test/README.md: fix wrong bats example 9c2fcb3bd test/*bats: drop fail() 84ee0c931 Fix using ! in bats tests 045c026da test/timeout: fix "dup ctr" test 1da9bf5f7 ci: require bats 1.9.0 c5a1c1b1e test: separate var setting and img preload 7b9e5201b ci: bump bats to 1.9.0 9ad33da53 build(deps): bump github.com/containers/podman/v4 from 4.5.0 to 4.5.1 2604665cc Update nix and nixpkgs 792a5d0ad test: limit number of parallel jobs 1cc1958de test/cgroup: fix for cgroupfs aa86e94f0 ci/gha: fix double caching 47c13e037 [FEAT] Add new parameter disable_hostport_mapping in CRI-O df7df847d build(deps): bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc f7f085f6f Makefile: Remove GOPATH references 1eeaad851 build(deps): bump cachix/install-nix-action from 20 to 21 7cc3e206c build(deps): bump github.com/onsi/gomega from 1.27.6 to 1.27.7 3b5c9f115 build(deps): bump crate-ci/typos from 1.14.10 to 1.14.11 7003312b0 OCPNODE-1286: Add a CI job to run cri-o e2e tests by enabling the evented pleg feature 47958dc0b Update crun to v1.8.5 9b6a4cff7 Wrap CRI errors on image pull defdf1c9e build(deps): bump github.com/sirupsen/logrus from 1.9.0 to 1.9.2 6a3ee4e6b docs: update cri-o podman doc and remove stale information 7ed2cfc7f deps: bump runc to 1.1.7 f59c1f72a sandbox: Handle PodLinuxOverhead and PodLinuxResources CRI fields f5e58c0ea build(deps): bump crate-ci/typos from 1.14.9 to 1.14.10 1009668bb build(deps): bump github.com/stretchr/testify from 1.8.2 to 1.8.3 42e0f7fac go.{mod,sum}, vendor: update NRI. d97ac8a10 contrib/test: reenable Statefulset Basic tests 3761965f8 contrib/test: re-enable block volmod tests 003edc26c high perf hooks: disable CPU quota with libcontainer as a pre start hook a875ef486 test: add test for cpu-quota.crio.io e1c3cf960 Check and fix typos in CI fa57ffd3e *: switch to go-chi/chi mux 6330b1d5f build(deps): bump github.com/cloudflare/circl from 1.1.0 to 1.3.3 786109a6e build(deps): bump github.com/containerd/containerd from 1.7.0 to 1.7.1 ecc712850 Support image policy verification error ccaef6a7d build(deps): bump github.com/onsi/ginkgo/v2 from 2.9.4 to 2.9.5 484870532 build(deps): bump sigs.k8s.io/release-utils from 0.7.3 to 0.7.4 3480e9efa Fix GitHub action `bundles` test 937ed8cf6 - Convert status cli as a subcommand of crio - Moved commands to the internal criocli package and used them in the crio and crio-status binaries - Adding the status subcommands directly to the binary a247c52d9 pkg/config: update the description for templateStringCrioImagePinnedImages 4fadec5f1 internal/storge: fix CompileRegexpsForPinnedImages test case 5e751fda3 vendor: fix vendoring 5ecc82e6f contrib/metrics-explorer: fix nested modules 640624ec9 Update CNI plugins to v1.3.0 9fc177ed4 build(deps): bump golang.org/x/net in /contrib/metrics-exporter 8b230dec7 clients connected to container event stream now receive the same data 3fd71bdc9 vendor: fix CI due to incosistent vendoring 20fd7770e fix kubectl version in bug report template 21b47b11c *: update sandbox/pause image to 3.9 edbd4890f internal/storage: add sandbox/pause image to the list of pinned_images b0531365f build(deps): bump github.com/containernetworking/plugins 22ad8957b Changes to build binaries for ppc64le architecture. 32ec246ba Update README.md and associated files f10ea341d build(deps): bump golang.org/x/net from 0.9.0 to 0.10.0 c9bb988d1 *: fix warnings related to gosec 0e65290c4 .github/worflows: add go vulnerability management check for cri-o f9abf50c9 pkg/config: reload pinned_images when the new config is provided bbe9a7a2c *: add support for pinned_images in crio configuration dfcf222c3 refactoring vars 386509caf Use native crierrors package for registry unavailable a90d00103 build(deps): bump golang.org/x/sys from 0.7.0 to 0.8.0 16ab25339 Vendor latest Kubernetes master 6a095aef7 build(deps): bump google.golang.org/grpc from 1.54.0 to 1.55.0 5c064914f build(deps): bump golang.org/x/sync from 0.1.0 to 0.2.0 639b6dddf OWNERS: add sohankunkerkar to cri-o-reviewers 4477a804b tests: add a fake pinns call to delay things and cause the timeout 6fa761497 tests: use crictl binary directly when checking its capabilities 1ff3303df cni: configure cgroupPath capability arg e52e63a41 vendor: bump ocicni to tip 914763fb1 Remove vendor specific changes 08cd56fc9 Migrate image registry to registry.k8s.io 3311658af build(deps): bump github.com/uptrace/opentelemetry-go-extra/otellogrus 02fe074f2 build(deps): bump github.com/onsi/ginkgo/v2 from 2.9.2 to 2.9.4 0b8a2c068 build(deps): bump github.com/sigstore/rekor from 1.1.0 to 1.1.1 660b63bd7 cgmgr: set sched_load_balance to disabled on sandbox cgroup 5a1707e4c test/pod.bats: update to current setup f83a4faba cgmgr: create cgroups for systemd cgroup driver for dropped infra pods f21e178f8 build(deps): bump github.com/prometheus/client_golang bf23f5c01 Support `RegistryUnavailable` type e80464e07 Update generated docs ed9c419e7 OWNERS: allow cri-o reviewers to approve dependabot PRs 58c101634 build(deps): bump github.com/urfave/cli/v2 from 2.25.1 to 2.25.3 a4fc119af .github/workflows: remove auto-approve workflow a0009cb25 build(deps): bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc 541b6563d Extend cpu-c-states.crio.io annotation to add max latency 2417374a6 build(deps): bump k8s.io/klog/v2 from 2.90.1 to 2.100.1 249c340d3 contrib/test/ci: fix the bin folder location for cri-tools cf30845e7 #6833 user ns: Fix segfault while constructing id mappings 38774e14a Use ImageRef instead of ImageName for restore 1f224d1e0 build(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc 7c6676f02 contrib/test/ci/build: use `force:yes` while linking crictl/critest c9cc1529f .github/workflows: fix the github_token field a1c09ad99 .github/workflows: fix the token field 30ddd6d89 Fix events generated by Evented PLEG b8d8ff14b Update c/common to v0.53.0 b34038f8f build(deps): bump actions/setup-go from 3 to 4 4c828dc48 build(deps): bump github.com/opencontainers/runtime-spec 928d5d49c build(deps): bump github.com/prometheus/client_golang e806005d6 test/network: skip flaky test running on a node with cgroupv2 e914f0e15 test: combined oom test to avoid CI flake d5048e7ff test/seccomp: fix the syscall 473ee6b73 contrib/test/ci: remove duplicate code a1c6ae7e4 test/*: consolidate images used for integration tests 25fb4fa76 build(deps): bump github.com/Microsoft/go-winio from 0.6.0 to 0.6.1 a950c837d Download more dependencies instead of vendoring 839bd1203 build(deps): bump github.com/containers/conmon-rs from 0.5.0 to 0.5.1 edbe9c27e build(deps): bump github.com/go-logr/logr from 1.2.3 to 1.2.4 e53dcc003 Stop vendoring release notes tool 1c26776cb .github/workflows: auto approve dependabot PRs e967a178c user ns: fix segfault when host id mapping is empty 19c0b4d7b server: fix failing tests edf6a88a9 build(deps): bump k8s.io/release from 0.15.0 to 0.15.1 7a612bc4b Allow restoring of containers with different names 86b36ee6e build(deps): bump lumaxis/shellcheck-problem-matchers from 1 to 2 6da5b1272 build(deps): bump actions/stale from 7 to 8 1c1cfb92a Fix Flannel PodCIDR in kubeadm tutorial bac3a79b6 adding support for configmap namespace 603f176a0 Add debug to identify when a relabel was not requested f9fa10915 Update tutorials/debugging.md 75c8b181b Added documentation to force the Go garbage collector for CRI-O 11f5c4326 Remove remnants of CONTAINER_MANAGE_NS_LIFECYCLE Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* containerd: update to 1.7.5Bruce Ashfield2023-09-151-3/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bumping containerd to version v1.7.5-8-g86dc86e62, which comprises the following commits: ed4bac11e Blockfile: Enlighten blockfile copy on Darwin 4d1cfbbdd Revert "log: define G() as a function instead of a variable" a34e93241 make repositories of install dependencies configurable b449440a4 CRI: Support Linux usernames for !linux platforms 503ab21bf go.mod: github.com/containerd/continuity v0.4.2 93b23eb10 Prepare release notes for v1.7.5 fb1292c8d Bump version to v1.7.4 7a0cae3ca [release/1.7] Prepare release notes for v1.7.4 537d7526e integration: issue7496 case should work for runc.v2 only 0f4885c16 Add configurable mount options to overlay 8804a27d7 feat: make overlay sync removal configurable 5add172be Vagrantfile: add strace tool 207e28f36 integration: add ShouldRetryShutdown case based on #7496 b4f480fb3 pkg/cri/sbserver: fix leaked shim issue for podsandbox mode 88ff575c5 pkg/cri/server: fix leaked shim issue 9f61dfb7c integration: add case to reproduce #7496 2a9ae3c51 log: swap logrus functions with their equivalent on default logger 01445bb73 log: add package documentation and summary of package's purpose 932795f45 log: make Fields type a generic map[string]any 707ca94d8 log: add log.Entry type 0a79e67e4 log: define OutputFormat type dbbe28b7d log: define G() as a function instead of a variable 93b6cb784 log: add all log-levels that are accepted e8e086e02 log: group "enum" consts and touch-up docs 7aa4f8fdc log: WithLogger: remove redundant intermediate var bfdce4ce4 log: SetFormat: include returns in switch 6621e0888 log: remove testify dependency df76aaede removes/docker: remove unnecessary conversion (unconvert) 1c2dd5198 Remove temporary replace 2bf6bd143 vendor: update github.com/containerd/continuity 30a163086 snapshots|pkg: umount without DETACH and nosync after umount c9eebe3d1 mount: support direct-io for loopback device 1c2977db0 Modify loopback size cf9c78d2d snapshots/blockfile: fix lint issue b823b4f54 snapshots/blockfile: deflaky the testsuite 6daeceb11 snapshots/blockfile: use passed in dst in scratchGenerator 99b61aee3 snapshots/blockfile: use loop if options is empty fd39769ac Add mount options to blockfile snapshotter 8d732c6c2 Add sync before unmount on snapshotter layer test 8472a407e Add blockfile snapshotter to snapshotters doc 6740d77ca Add blockfile as a builtin 07cc24b32 Add blockfile snapshotter 32e3b76ee Add diffservice to contrib 661e505c8 Add proxy differ af79c07fd update runc binary to v1.1.9 c0b1c8f74 fix ci Linux Integration test fail 4e97a115f cri: Don't use rel path for image volumes 34a5d0330 fix: allow attaching to any combination of stdin/stdout/stderr c5e7b84c0 update to go1.20.7, go1.19.12 2eaeb3205 Fix ro mount option being passed Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* conmon: update to 2.1.8Bruce Ashfield2023-09-151-2/+2
| | | | | | | | | | | | | | | | | | | | Bumping conmon to version v2.1.3-87-g6d88cb3, which comprises the following commits: 6d88cb3 fix(deps): update module github.com/onsi/ginkgo/v2 to v2.12.0 00e08f4 bump to v2.1.8 57d5e7f fix(deps): update module github.com/containers/storage to v1.48.0 adc748c cli: log parsing errors to stderr b0bdc23 Update nix and use an overlay 04cf7ba chore(deps): update dependency containers/automation_images to v20230809 ccdae54 gh actions: bump to go 1.21 4e61870 gh actions: drop perma-failing jobs 730d92c fix(deps): update module github.com/onsi/ginkgo/v2 to v2.11.0 73ab92e Changes to build conmon for `riscv64` 53b3691 stdio: ignore EIO for terminals 77ce312 refactor: handle a broken pipe with write_sync_fd fa67ce6 ensure console socket buffers are properly sized Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* buildah: update to 1.31.3Bruce Ashfield2023-09-151-2/+2
| | | | | | | | | | | | | | | | | | | | | | Bumping buildah to version v1.31.1-23-g0926e05c3, which comprises the following commits: f449589dd [release-1.31] Bump to v1.31.4-dev 3ae75d4a4 [release-1.31] Bump to v1.31.3 68fa52ca5 [release-1.31] Bump c/common 0.55.4, c/image 5.26.2, c/storage 1.48.1 140f028d6 rpm: spdx compatible license field 20b479ec4 RPM: fix buildtags d1e3a7bf3 [release-1.31] Bump to v1.31.3-dev d4d1d7513 [release-1.31] Bump to v1.31.2 4d9260cc3 [release-1.31] Bump to v1.31.2-dev 800b1549b [release-1.31] Bump to v1.31.1 0a63bc63d [release-1.31] Remove zstd:chunked from man, bump c/common to v0.55.3 98f684ff3 [CI:BUILD] Packit: add fedora-eln targets 708c07761 [CI:BUILD] RPM: build docs with vendored go-md2man 68fa9389a packit: Build PRs into default packit COPRs 95e1dfb3d [CI:BUILD] Packit: remove pre-sync action 806fcccee CI:BUILD] RPM: define gobuild macro for rhel/centos stream Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* runc-docker: update to 1.9.0Bruce Ashfield2023-09-151-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bumping runc to version v1.1.9-2-g26a98ea2, which comprises the following commits: 11737f55 VERSION: back to development ccaecfcb VERSION: release 1.1.9 f44190e0 libct/intelrdt: check if available iff configured 6cf9ac15 libct/intelrdt: skip remove unless configured 4796f49c libct/intelrdt: elide parsing mountinfo 6a7a6a57 libct/intelrdt: skip reading /proc/cpuinfo 7c83dbe6 libct/intelrdt: delete IsMBAScEnabled() 5ebcfa62 [1.1] libct: rm intelrtd.Manager interface, NewIntelRdtManager 69473d0a libct: rm TestGetContainerStats, mockIntelRdtManager dfdc7d07 libct/intelrdt: explain why mountinfo is required 5ba1b8ec libct/intelrdt: faster init if rdt is unsupported a5407b9a libct/intelrdt: remove findMountpointDir test dc8d0cc1 libct/intelrdt: wrap Root in sync.Once 929d04fc libct/cg/fs2: use `file` + `anon` + `swap` for usage bdbfe042 ci: bump golangci-lint, remove fixed exception d398ad2a gha: disable setup-go cache for golangci job 5888c55d ci/gha: rm actions/cache from validate/deps job a47c15b4 build(deps): bump actions/setup-go from 3 to 4 44a53f08 ci: fix TestOpenat2 when no systemd is used cff41a89 ci: fix TestNilResources when systemd not available 37405ca0 Fix running tests under Docker/Podman and cgroup v2 1c524242 [1.1] ci/gha: rm unsup Go 1.19.x, add 1.21.x ac310917 ci/cirrus: improve host_info ecccc432 [1.1] ci/cirrus: use Go 1.19.x not 1.19 bb2401ee [1.1] ci/cirrus: use Go 1.20 aaed58c8 add a test case about missing stricky bit 3d3a2b38 fix some file mode bits missing when doing mount syscall Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* runc-opencontainers: update to 1.9.0Bruce Ashfield2023-09-151-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bumping runc to version v1.1.9-2-g26a98ea2, which comprises the following commits: 11737f55 VERSION: back to development ccaecfcb VERSION: release 1.1.9 f44190e0 libct/intelrdt: check if available iff configured 6cf9ac15 libct/intelrdt: skip remove unless configured 4796f49c libct/intelrdt: elide parsing mountinfo 6a7a6a57 libct/intelrdt: skip reading /proc/cpuinfo 7c83dbe6 libct/intelrdt: delete IsMBAScEnabled() 5ebcfa62 [1.1] libct: rm intelrtd.Manager interface, NewIntelRdtManager 69473d0a libct: rm TestGetContainerStats, mockIntelRdtManager dfdc7d07 libct/intelrdt: explain why mountinfo is required 5ba1b8ec libct/intelrdt: faster init if rdt is unsupported a5407b9a libct/intelrdt: remove findMountpointDir test dc8d0cc1 libct/intelrdt: wrap Root in sync.Once 929d04fc libct/cg/fs2: use `file` + `anon` + `swap` for usage bdbfe042 ci: bump golangci-lint, remove fixed exception d398ad2a gha: disable setup-go cache for golangci job 5888c55d ci/gha: rm actions/cache from validate/deps job a47c15b4 build(deps): bump actions/setup-go from 3 to 4 44a53f08 ci: fix TestOpenat2 when no systemd is used cff41a89 ci: fix TestNilResources when systemd not available 37405ca0 Fix running tests under Docker/Podman and cgroup v2 1c524242 [1.1] ci/gha: rm unsup Go 1.19.x, add 1.21.x ac310917 ci/cirrus: improve host_info ecccc432 [1.1] ci/cirrus: use Go 1.19.x not 1.19 bb2401ee [1.1] ci/cirrus: use Go 1.20 aaed58c8 add a test case about missing stricky bit 3d3a2b38 fix some file mode bits missing when doing mount syscall Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* k3s: not compatible with mipsKai Kang2023-09-151-0/+2
| | | | | | | | | k3s depends on 'virtual-containerd' provided by containerd-opencontainers which is not compatible with mips. So set COMPATIBLE_HOST for k3s that not compatible with mips to align with containerd-opencontainers. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* packagegroup-kubernetes: set COMPATIBLE_HOSTKai Kang2023-09-151-1/+1
| | | | | | | | | packagegroup-kubernetes requires kubernetes which is only compatible with x86_64, arm and aarch64, so set COMPATIBLE_HOST for packagegroup-kubernetes to align with it. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* docker-compose: not compatible with mipsKai Kang2023-09-151-0/+2
| | | | | | | | docker-compose rdepends on docker which is not compatible with mips. So set COMPATIBLE_HOST for docker-compose accordingly. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* packagegroup-container: not compatible with mips and riscvKai Kang2023-09-151-1/+1
| | | | | | | | | | The recipe docker-moby which is required by packagegroup-container is not compatible with mips. And it inherits goarch.bbclass, so it is not compatible with riscv32 too. Update COMPATIBLE_HOST accordingly for packagegroup-container. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* conf: drop mickledore, only specify nanbieldBruce Ashfield2023-09-151-1/+1
| | | | | | | | | | | - mickledore was incorrectly spelled - we aren't actively going to test both branches with master, so go to only nanbield If there's demaand, and test results to support it, we can reconsider later. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* conf: update compatibility to match oe-coreBruce Ashfield2023-09-111-1/+1
| | | | | | | | | OE Core has bumped to the next version, we update to match. For now, we keep both mickledore and nanbield as compatible while progressing towards release. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* lxcfs: add systemd to REQUIRED_DISTRO_FEATURESBruce Ashfield2023-09-071-1/+2
| | | | | | lxcfs requires systemd, so we add it to the feature check. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* go-context: add CLEANBROKENMartin Jansa2023-09-041-0/+2
| | | | | | | | | | | | | * fixes: DEBUG: Executing shell function do_configure NOTE: make clean make: *** No rule to make target 'clean'. Stop. ERROR: oe_runmake failed WARNING: exit code 1 from a shell command. Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* oci-image-tools: don't build for riscv64Changqing Li2023-09-043-0/+6
| | | | | | | | | | | | | | | | Currently oci-image-tools has a do_compile error for riscv64. The problem could be reproduced by: MACHINE=qemuriscv64 bitbake oci-image-tools So explicitly set COMPATIBLE_HOST here to avoid it building for riscv64. When someone interested in using this recipe for riscv64 fixes the compile issue, this setting could be removed. Also don't build packagegroup-container/packagegroup-kubernetes since they depends on oci-image-tools Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* virtiofsd: add seccomp to REQUIRED_DISTRO_FEATURESMartin Jansa2023-09-041-2/+5
| | | | | | | | | | * otherwise causes world build failures for DISTROs without seccomp: ERROR: Nothing PROVIDES 'libseccomp' (but meta-virtualization/recipes-extended/virtiofsd/virtiofsd_1.7.0.bb DEPENDS on or otherwise requires it) libseccomp was skipped: missing required distro feature 'seccomp' (not in DISTRO_FEATURES) Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* libvirt-glib: fix introspection and documentation buildMarkus Volk2023-09-042-4/+48
| | | | | | | | | | | | | | | | | | Building Gobject introspection during cross-compilation is not an easy task. Therefore, the meson.build file disables the build for introspection and also for gtkdoc by default. This commit adds a patch to enable this, as introspection can be easily built on newer platforms with yocto/oe. The options to enable/disable introspection/doc are defined as feature while the corresponding bbclass defines it as a boolean. Override this so that it should be possible to be enabled/disabled by using DISTRO_FEATURES. Inherit gettext bbclass as used in libvirt-glib. Add a missing dependency on libxslt. Signed-off-by: Markus Volk <f_l_k@t-online.de> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* go-build: add SRCREV_FORMATBruce Ashfield2023-08-291-0/+1
| | | | | | | | | | | Javier Tia reported that go-build is now in breach of the oe-core requirement to have SRCREV_FORMAT when multiple SCMs are used. It should have always had this set, so we fix the build by adding a format to track our two SCMs. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* cloud-init: bump SRCREV to fix update to 23.2.2Martin Jansa2023-08-292-52/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | * the update from commit 0f1601d98f2c926a109b7beb7df21a5dfe6188d9 Author: Bruce Ashfield <bruce.ashfield@gmail.com> Date: Thu Aug 3 20:15:04 2023 +0000 Subject: cloud-init: update to 23.2.2 Bumping cloud-init to version 23.2.2, which comprises the following commits: e65a715d Release 23.2.2 was missing the SRCREV update, so it was still 23.1: cloud-init/v23.2.2+git/git $ git describe --tags 23.1-52-ge02c46079 fix that by using the right one of the 23.2.2 tag: cloud-init/v23.2.2+git/git $ git show-ref -d 23.2.2 293c6546f038ef4da98910dfeb8d0ade65707952 refs/tags/23.2.2 e65a715d524456285e07ac521457424713ea4aa5 refs/tags/23.2.2^{} * this fix also allows up to drop the patch backported from 23.2 Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* libvirt: update from fuse2 to fuse3Markus Volk2023-08-271-1/+1
| | | | | | | | | | | | | Using fuse2 and fuse3 in the same environment can be problematic. Most projects I know of now support fuse3. ostree, flatpak, xdg-desktop-portal and some other recipes in meta-openembedded are configured to use fuse3 and libvirt is also able to do so. This commit switches libvirt to fuse3 to reduce the number of recipes that still use the old version. Signed-off-by: Markus Volk <f_l_k@t-online.de> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* netavark: skip plugins in ptestPatrick Wicki2023-08-271-1/+6
| | | | | | | | Skip the plugin tests that were introduced in 1.6.0 and lead to ptest failure. Signed-off-by: Patrick Wicki <patrick.wicki@siemens.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* netavark: require iputils for ptestPatrick Wicki2023-08-271-0/+2
| | | | | | | Fixes ptest not working on systems using busybox ping. Signed-off-by: Patrick Wicki <patrick.wicki@siemens.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* go-mux: update to v1.8.0Bruce Ashfield2023-08-241-2/+5
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bumping mux to version v1.8.0-23-g85123bf, which comprises the following commits: 85123bf changed the routeVariables text content. (#708) 79f2f45 Clarify documentation examples of Route methods (#672) 395ad81 [BUG] Inconsistent HTTP status code on query mismatch (#712) 24c3e7f Fix `Single Page Application` example in `README.md` file (#678) 546dd0c run go fmt with Go 1.20 (#725) 651928c Update issues.yml (#727) cfc696d Update issues.yml (#726) 809d128 Update LICENSE (#723) 753457f Updated the logo in README.md (#724) ff63d0e Update LICENSE (#722) 2392d7d Delete AUTHORS (#721) 81b48a3 Delete stale.yml (#720) 96847b8 Delete release-drafter.yml (#719) 1fa2ee8 [GPT-95] Update go version, add tools for verification and testing (#718) 7456b4e Update README.md eb99d7a archive mode 5e1e8c8 archive mode 07eedff [docs] `authenticationMiddleware` initialization in the `README.md` file (#693) c889844 regexp: use iota instead of hardcoded values for regexType* (#679) 91708ff docs: update README w.r.t new maintainer ask (#660) 3cf0d01 Include "404" and "405" in the docs (#602) d07530f build: CircleCI 2.1 + build matrix (#595) 98cb6bf fix: regression in vars extract for wildcard host (#579) 948bec3 docs: Remove stale text from comment. (#568) 75dcda0 perf: reduce allocations in (*routeRegexp).getURLQuery (#544) 49c0148 lint: Remove golint warning (#526) 4de8a5a fix headers regexp test (#536) 946b623 Fix the CORSMethodMiddleware bug with subrouters f395758 Remove/cleanup request context helpers (#525) ff4e71f Guess the scheme if r.URL.Scheme is unset (#474) 884b5ff Added capacity to slice creation, when capacity is known (#516) e1863a6 Modified http status codes, using constants provided by the http package (#514) 9536e40 bugfix: subrouter custom methodNotAllowed handler returning 404 (#509) (#510) e0cdff4 Update README (self-host logo) (#513) e67b3c0 Remove TravisCI badge (#503) 7a1bf40 [docs] Add documentation for using mux to serve a SPA (#493) eab9c4f Simplify code (#501) 50fbc3e Avoid unnecessary conversion (#502) d83b6ff Update config.yml (#495) 00bdffe Update stale.yml (#494) 0534769 Improve CORS Method Middleware (#477) d70f7b4 Delete ISSUE_TEMPLATE.md (#492) 48f941f Use subtests for middleware tests (#478) 6495467 Delete .travis.yml (#490) 4248f5c Fix nil panic in authentication middleware example (#489) 212aa90 [WIP] Create CircleCI config (#484) ed099d4 host:port matching does not require a :port to be specified. c5c6c98 [build] Remove sudo setting from travis.yml (#462) 15a353a adding Router.Name to create new Route (#457) 8eaa9f1 fix go1.12 go vet usage (#458) 8559a4f [docs] typo (#454) a796238 replace rr.HeaderMap by rr.Header() (#443) 797e653 Call WriteHeader after setting other header(s) in the example (#442) 08e7f80 Ignore ErrNotFound while matching Subrouters (#438) f3ff42f getHost() now returns full host & port information (#383) ef912dd [bugfix] Clear matchErr when traversing subrouters. a31c178 Replace domain.com with example.com (#434) 6137e19 remove redundant code that remove support gorilla/context (#427) d2b5d13 Update and rename stale to stale.yml (#425) 419fd9f Add stalebot config (#424) 758eb64 Improve subroute configuration propagation #422 3d80bc8 Use subtests in mux_test.go (#415) 521ea7b Use constant for 301 status code in regexp.go (#412) deb579d README.md: Update site URL 9e1f595 Always run on the latest stable Go version. (#402) cf6680b Create release-drafter.yml (#399) 8771f97 Drop support for Go < 1.7: remove gorilla/context (#391) 962c5be Add 1.11 to build in travis (#398) e48e440 Add test for multiple calls to Name(). Fixes #394 815b8c6 Clarify behaviour of Name method if called multiple times. cb46983 Update LICENSE & AUTHORS files. (#386) e0b5aba Initialize user map (#371) c856192 [deps] Add go.mod for versioned Go (#376) e3702be [docs] Improve docstrings for middleware, skipclean (#375) fdeb7bc [docs] Doc fix for testing variables in path (#374) 5e55a4a Add CORSMethodMiddleware (#366) ded0c29 Fix linter issues (docs) (#370) b57cb16 [build] Update Go versions; add 1.10.x (#364) 94231ff Fix table-driven example documentation (#363) 4dbd923 Make Use() variadic (#355) 07ba1fd Modify http status code to variable in README (#350) d284fd8 Modify 403 status code to const variable (#349) c0091a0 Create authentication middleware example. (#340) 0fdf828 [docs] Clarify SetURLVars (#335) 077b44c [docs] Document route.Get* methods consistently (#338) dc83507 [docs] README.md: Improve "walking routes" example. (#337) (#323) 3dbb9ed README.md: add miss "time" (#336) ad87908 [docs] Fix doc.go (#333) 69dae3b [docs] Add testing example (#331) 63c5c2f [docs] Fix Middleware docs typos (#332) 85e6bff Update doc.go: r.AddMiddleware(...) -> r.Use(...) 0b74e3d Make shutdown docs compilable (#330) 53c1911 [feat] Add middleware support as discussed in #293 (#294) 5bbbb5b [docs] Add graceful shutdown example (#329) 512169e refactor routeRegexp, particularily newRouteRegexp. (#328) 5ab525f Public test API to set URL params (#322) 7904d2e [docs] Add example usage for Route.HeadersRegexp (#320) c572efe [docs] Note StrictSlash re-direct behaviour #308 (#321) 65ec724 Create ISSUE_TEMPLATE.md (#318) 4a3d4f3 [bugfix] Fix method subrouter handler matching (#300) (#317) 2d5fef0 [docs] fix outdated UseEncodedPath method docs (#314) 7f08801 MatchErr is set to ErrNotFound if NotFoundHandler is used (#311) 9f48112 [docs] Document router.Match (#313) bc452d9 [build] Allow tip failures (#312) 7625a85 .travis.yml: Remove versions < go1.5 from build matrix c9183aa use req.URL.EscapedPath() instead of getPath(req) (#306) 10490f5 GetQueryTemplates and GetQueryRegexp extraction (#304) 9bd9ff2 Added 1.9 build step (#303) bdd5a5a Fix WriteHeader in TestA301ResponseWriter. (#301) 3f19343 [docs] Document evaluation order for routes (#297) 24fca30 [docs] README.md: add missing `.` (#292) bb285ea [docs] Fix missing space in docstring (#289) a659b61 Fix #271: Return 405 instead of 404 when request method doesn't match the route ac112f7 Prefer scheme on child route when building URLs. 37b3a6c Use scheme from parent router when building URLs. 8c683ee Fix typo 18fca31 Add test and fix for escaped query values. c7a138d Update docs. f9aa23a Add tests for support for queries in URL reversing. 9c9af15 Add support for queries in URL reversing. 043ee65 Update Walking Routes Section 59ce668 Fix invalid example code 85b8c20 Removing half of conflict marker (#268) 456bcfa Update README with example for Router.Walk 4d814f7 Update ancestors parameter for WalkFunc for matcher subrouters a322b2c Update Walk to match all subrouters bcd8bc7 Support building URLs with non-http schemes. (#260) 751308a Updated README b552615 Added method Route.GetMethods 1856953 Added method Route.GetPathRegexp 4c1c395 fixed typo (#250) 599cba5 Fixing Regexp in the benchmark test (#234) ad4ce0e updating logic in route matcher, cleaner and saner (#235) 89d16fe Add sourcegraph badge 94e7d24 Add Go 1.8 to .travis.yml 392c28f [bugfix] fail fast if regex is incorrectly specified using capturing groups. (#218) cafdb65 [docs] Add route listing example to README b9ff34f Adding some extra tests, to hit all the use cases 293ebe1 Adding in a check for routes with just / 910dd3a Remove unnecessary line from example 239e05f Clarify how route variables work. (#151) 14f5df0 document non-capturing groups (closes #143) 0a192a1 Add useEncodedPath option to router and routes (#190) 0b13a92 Simplify extractVars, fixes edge cases. (#185) 34bf6dc make the getPath method safer, fixing panics within App Engine (#189) 674ef1c Add mechanism to route based on the escaped path (#184) cf79e51 .travis.yml: add go1.7 7804150 [docs] Add logo to README. (#180) 3b15f12 [docs] Add static file example to README; doc.go. (#179) 327d4b6 Clean up some naming in mux_test.go cf57124 Fix error handling in Router.Walk 198f95d fix README.md 9fa818a [ci] Update .travis-ci to skip install block. (#170) fdfca9f Support native context.Context when go1.7 is used. 5dd5699 Add failing context.Context test for go1.7. 0d753bb Log ListenAndServe's err response. 12a13f3 `go vet` is part of Go now 05d9d90 Add `SkipClean()` to `*Route` 9935257 Add test for `SkipClean` a41434a Clarify more of `SkipClean` 8e05c69 old_test: const DefaultRemoteAddr is unused. 65c2651 fixing regexp changes from PR #144 786d36e `go fmt` 8ac5cf9 Add SkipClean option f7ac725 Update doc strings based on feedback 02c98b3 [docs] Satisfied golint. f84ab9a Fix go fmt issues 0d60c4b Add tests for GetPathTemplate. Added GetHostTemplate and associated tests as well 5f42f0f [docs] Add http://www.gorillatoolkit.org/pkg/mux to README. 7872f90 Update .travis.yml to build Go 1.6 78fb8eb Added benchmark with deep path f489272 Named groups replaced with conditional wrapping of regexps 66181ed Update README.md 82a9c17 Covering change with unit test c329c7d Potential fix for #20 9a9f155 Travis: Perform gofmt, go vet checks; use race detector during tests. a90bbbc Correct a printf verb type ac3897e Fix a typo in the comments, add a few comment docs 8ae7a23 Fixed documentation from Issue 16 ee18154 Update .travis.yml f8220e0 travis-ci: more recent go versions e45852e Fixed GoDoc badge. b0b2bc4 Quote domain names in README.md. Use example.com instead of domain.com 5112c33 slightly improve printing of regexps in failed tests. d17b93c Refactoring for better performance 273db68 Fix regexp syntax error caused by variable names containing any characters except letters, digits, and underscores 577b9e4 Add tests for hyphenated variable names ca524fd Updated README w/ runnable example. Addresses #32. c3c5f00 Add test which used to fail for queries. 780d050 Update README e73f183 fix use of capturing subexpressions in pattern matches. 13c8226 Update comment and specify KeepContext option. 39cff34 Add note about the availability of CurrentRoute. 98fb535 Issue 16: Return the regexp compile error ba336c9 getUrlQuery: Use SplitN with a max of 2. 3339267 adding tests fe40f0d updating query match string 19f0a91 adding test and updating condition 2b32409 fix for empty query 92ae1d6 Update the walk method to walk matchers so it walks the full list of routers and child routers 8eb02a9 Add URLPathTemplate to Route to make it easier to generate a API page that lists all routes by template 9cb89f0 Add a couple of additional tests for query strings. 0c9d5c0 refactoring a710a8b adding ^ and $ to query pattern c21431a Fixed up commenting and removed unused code c0a5cbc Fix typo a063f14 Fix typo 77f424d Fix typo 9641367 Fix up doc formatting, use spaces for alignment (tabs are for indentation only). e98fd88 Add complementary test for patterns with pipe 00bf0e0 Add tests for patterns with pipe d7e4639 Rearrange rules for matching strict slash 8df3a80 Rearrange getHost function 8f1a419 Remove blank line to fix docs for Route.Queries 3351f60 gofmt 854d482 Fix racy modification of NotFoundHandler. 451fd8b Additional code cleanup (see comments on issue #56) 3505396 Code cleanup (see comments on issue #56) 69237ea Fix "Queries" matcher to support out-of-order query string parameters 0a0d6a1 Add tests for regexp variables in query strings Fix how regular expression gets built for query string so that order of parameters is always preserved c946952 Fix old tests Remove tests that don't apply anymore Fix scheme matcher tests 65cc9b5 Add ability to capture variables in query strings a883d5a Call parent BuildVarsFuncs cef3b0c Add BuildVarsFunc to allow modifying route variables before generating a route's URL b864f07 Propagate StrictSlash to subrouters instead of rudely turning it off 3509745 Add tests for all four StrictSlash cases bac1372 Convert TestStrictSlash to a table driven test 033224c Document behaviour of StrictSlash and PathPrefix better, and add tests to nail this down 525eff4 Improve docs about leading and trailing slashes We also update the license checksum, as it has a new date We also drop the configure/compile tasks, as this is a source only dependency package (and having them causes build issues). Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* go-mux: Switch to main branchMingli Yu2023-08-241-1/+1
| | | | | | | The project has renamed the master branch to main. Signed-off-by: Mingli Yu <mingli.yu@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* go-context: update to v1.1Bruce Ashfield2023-08-241-2/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Bumping context to version v1.1-14-g1cbd4c1, which comprises the following commits: 1cbd4c1 Update go version, add tools for verification and testing (#43) a01379d Update README.md 8559d4a Update README.md (#40) dc31bb2 Create config.yml (#39) 30a41ee Update README.md (#38) 51ce91d README.md: Update site URL 08b5f42 [docs] godoc fix. (#34) f81bcf7 [docs] Note http.Request.WithContext() conflict. (#33) 01ef6ff .travis.yml: Add go1.7 531bdb2 Fix typo ffc4422 [ci] .travis.yml go vet fix. b53bb42 Update .travis.yml to build Go 1.6 1c83b3e Update .travis.yml ecbca1c Add Travis-ci tests build on Go version 1.3 / 1.4 50c25fb benchmark: fix parallelWriter. 9af5636 Fix racy code in Get We tweak the license checksum, as the year has changed. We also drop do_compile, as go install is now being used to fetch linting modules at build time. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* devtools/go-context: update branch to mainBruce Ashfield2023-08-241-1/+1
| | | | | | | Upstream has changed the branch to main and deleted master, so we need to update our SRC_URI to match. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* virtiofsd: add recipeErik Schilling2023-08-243-0/+174
| | | | | | | virtiofsd allows sharing host directories with VMs over virtio-fs. Signed-off-by: Erik Schilling <erik.schilling@linaro.org> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* recipes/classes/scripts: Drop SRCPV usageBruce Ashfield2023-08-2461-61/+61
| | | | | | | | | bitbake has been enhanced such that SRCPV is no longer needed in PV to handle updating git hashes and task signatures. We can simplify our PV by dropping SRCPV Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* podman: introduce README for testing/configurationBruce Ashfield2023-08-241-0/+20
| | | | Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* docker-compose: drop python variantBruce Ashfield2023-08-241-41/+0
| | | | | | | | The python variant of docker-compose is no longer updated. We have the golang version, so we drop this recipe to avoid use of an obselete and potentially non-secure application. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* openvswitch: 3.1.2Bruce Ashfield2023-08-241-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bumping ovs to version v3.1.2-12-g8b1795c69, which comprises the following commits: 8b1795c69 ovsdb-tool: Fix json leak while showing clustered log. d4d068fef ovsdb-server: Fix excessive memory usage on DB open. 369daff0d tests: Add ovsdb execution cases for set size constraints. eb33626b5 ovsdb: relay: Fix handling of XOR updates with size constraints. 8d2c8c33e ovsdb: file: Fix diff application to a default column value. 379755815 ovsdb: file: Fix inability to read diffs that violate type size. 96d02ee7a ovs-tcpdump: Clear auto-assigned ipv6 address of mirror port. 618d3bdbb ofproto-dpif: Fix removal of renamed datapath ports. 11c542104 netdev-dpdk: Negotiate delivery of per-packet Rx metadata. cad4759fa ofproto-dpif-upcall: Mirror packets that are modified. 17022ea06 vswitchd: Wait for a bridge exit before replying to exit unixctl. 4aba34b82 Prepare for 3.1.3. 916777447 Set release date for 3.1.2. aba1862d8 ofproto-dpif-upcall: Don't set statistics to 0 when they jump back. 859071224 ovsdb: monitor: Destroy initial change set when new columns added. 54e45e3fe ovsdb: Monitor: Keep and maintain the initial change set. 5fe322e16 fatal-signal: Don't share signal fds/handles with forked process. 3fcb81784 cpu: Fix cpuid check for some AMD processors. 01f0668fd tc: Fix crash on malformed reply from kernel. 45dba48f3 netdev-dpdk: Fix warning with gcc 13. faddfa21d utilities/bashcomp: Fix PS1 generation on new bash. 33db42a34 netdev-offload-dpdk: Fix crash in debug log. 55535451b stream-ssl: Disable alerts on unexpected EOF. e3b84fd4a tests: layer3-tunnels: Skip bareudp tests if not supported by kernel. e91339405 ovs-fields: Modify the width of tpa and spa. 23d77ba10 netdev-vport: RCU-fy tunnel config. 0f303e4a7 smap: Make argument of smap_add_ipv6 constant. 467b891f7 netdev-vport: Fix unsafe handling of GRE sequence number. ea2014688 tests: dpdk: Pass `--no-pci` to tests that do not use physical ports. f4cc9ca82 dpctl: Fix dereferencing null pointer in parse_ct_limit_zones(). 9e27e8fe8 netdev-offload: Fix deadlock/recursive use of the netdev_hmap_rwlock rwlock. 087439e41 ofproto-dpif-xlate: Fix use-after-free when xlate_actions(). bf9c834e6 ci: Separate DPDK from OVS build. bf1b32e20 ovsdb-idl.at: Fix write-changed-only tests without change tracking. c6cb82887 tc: Fix cleaning chains. 29c61a402 python-stream: Handle SSL error in do_handshake. 615548e53 dpif-netlink: Fix memory leak dpif_netlink_open(). 42edc9a1d ofp-parse: Check ranges on string to uint32_t conversion. d3a479c4b learning-switch: Fix coredump of OpenFlow15 learning-switch. 9529e9aa9 ovsdb: Allow conversion records with no data in a clustered storage. 7006bb112 ovsdb: Check for ephemeral columns before writing a new schema. 27678b3a1 ovsdb-tool: Fix cluster-to-standalone for DB conversion records. 771c989a9 ovs-tcpdump: Stdout is shutdown before ovs-tcpdump exit. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* cni: update to v1.1.2Bruce Ashfield2023-08-241-4/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bumping cni to version v0.8.0-171-gca96f4c, which comprises the following commits: a899051 libcni: add version v1.1.0 c768dcb SPEC: bump version to v1.1.0-dev e34f9d2 build(deps): bump github.com/onsi/ginkgo/v2 from 2.9.7 to 2.11.0 2161bf8 build(deps): bump github.com/onsi/ginkgo/v2 from 2.9.4 to 2.9.7 b6608f8 build(deps): bump github.com/onsi/ginkgo/v2 from 2.9.2 to 2.9.4 15612fc build(deps): bump github.com/onsi/ginkgo/v2 from 2.8.0 to 2.9.2 10ec024 build(deps): bump actions/setup-go from 3 to 4 db718fc build(deps): bump github.com/containernetworking/plugins 9302e5f enable more linters 05f80e4 3rd party plugins - spiderpool aef15f6 Porting over getCachedNetworkInfo routine from cri-o 435fcb1 add meeting link to README d4c7848 ci(lint): enable errorlint linter 1ffb655 fix wrong notes for ValidateInterfaceName() 420e594 Extend capabilities with cgroup path 024c57f build(deps): bump github.com/vishvananda/netns from 0.0.2 to 0.0.4 121798a build(deps): bump github.com/onsi/ginkgo/v2 from 2.7.0 to 2.8.0 da8672c ci(lint): setup lint job 8ac5c8a build(deps): bump github.com/onsi/ginkgo/v2 from 2.6.1 to 2.7.0 5fa3464 build(deps): bump github.com/vishvananda/netns from 0.0.1 to 0.0.2 45761d9 update github.com/vishvananda/netns to v0.0.1 aeb1d8e build(deps): bump github.com/containernetworking/plugins dd2d40c build(deps): bump github.com/containernetworking/cni in /plugins/debug 9795493 Update dependabot.yml 0a26996 build(deps): bump alpine in /.github/actions/retest-action cc03617 build(deps): bump github.com/onsi/gomega from 1.17.0 to 1.24.2 55be4cc Create dependabot.yml f024754 refactor: move from io/ioutil to io and os packages Bumping cni-plugins.git to version v1.1.0-181-g9d9ec6e3, which comprises the following commits: c1a7948b vrf: fix route filter to use output iface 8e69e38d test_linux.sh: Do not fail if called twice 0a100e5d meta: firewall: Fix firewalld test with non-abstract sockets 3eb775c5 plugins: meta: portmap: Implement a teardown() fast path 719f60bb utils: iptables: Use go-iptables' ChainExists() 2ba7f160 spoofcheck: Make use of go-nft's ApplyConfigEcho() ba41448f test: install binaries using `go install` 13fd3de7 build(deps): bump golang.org/x/sys from 0.9.0 to 0.10.0 470eee13 [tuning]add ability to set tx queue len 2216cff9 build(deps): bump github.com/onsi/ginkgo/v2 from 2.9.2 to 2.11.0 83029bef build(deps): bump golang.org/x/sys from 0.7.0 to 0.9.0 48aa2f4e Fix race conditions in DHCP test ca12d49b Add routes propagation for VRF plugin 0389a290 github: remove stale issue cleanup edab9efd tap: allow for a tap device to be created as a bridge port 1b2dc7c2 build(deps): bump alpine in /.github/actions/retest-action 7e918412 [sbr]: Ignore LinkNotFoundError during cmdDel 99b475ab build(deps): bump github.com/Microsoft/hcsshim from 0.9.8 to 0.9.9 d8fc886b Bump to golang 1.20 to pick up go1.19.6 / go1.20.1 CVE fixes c347755f Fix ValidateExpectedRoute with non default routes and nil GW 5b7a263e tuning: fix cmdCheck when using IFNAME 135292e0 bridge, del: timeout after 55 secs of trying to list rules 7dcd738d bridge, spoofcheck: only read the prerouting chain on CNI delete 83fe87c5 build: consume specific tables/chains via go-nft 090af7db bridge: add vlan trunk support 10ddd9e4 enable govet and unparam linters 435ef223 build(deps): bump golang.org/x/sys from 0.6.0 to 0.7.0 821982da Add parameter to disable default vlan cac8230e bridge, spoof check: remove drop rule index bc5f3def go.mod: bump all deps 7bbd4d19 linter: fix ginkgolinter errors 6c0d73ec Fix wastedassign linter errors 086f7eb7 build(deps): bump actions/stale from 7 to 8 d71d0f2d Fix revive linter errors 00e0d3b7 build(deps): bump actions/setup-go from 3 to 4 2fb0efe8 enable durationcheck, predeclared, unconvert, unused and wastedassign linters c0fe3b7b remove govet and gofmt from test_linux.sh 09f36a29 enable ginkgolinter linter a02bf4b4 enable revive linter 79f52468 enable gocritic linter 5a7619c0 enable gosimple linter 709e775b enable nonamedreturns linter 3a04eb00 enable ineffassign linter 16ba4222 enable contextcheck linter 177e0bf2 enable staticcheck linter d12b81de ci(lint): setup golangci-lint 6223674f ci(lint): setup yamllint linter Signed-off-by: Matthieu MOREL <matthieu.morel35@gmail.com> 9ee4d322 Fix overwritten error var in getMTUByName 2d1005ec Update tests to utilize ginkgo/v2 23c21341 Update ginkgo to v2 in go.mod, go.sum, vendor 01d00314 Tap plugin 9a2f7633 build(deps): bump github.com/onsi/gomega from 1.24.2 to 1.26.0 29e64861 build(deps): bump golang.org/x/sys from 0.4.0 to 0.5.0 fb5d195f Only check ipv6 when an IPv6 is configured ac7cf825 Add support for in-container master for macvlans c798f809 Add support for in-container master for ipvlan 9fa80036 Add support for in-container master for vlans 2c4c27eb bridge: re-fetch mac address 0fc229df Update Allocate method to reuse lease if present ec924a4b build(deps): bump github.com/safchain/ethtool to v0.2.0 20a92ff3 build(deps): bump golang.org/x/sys from 0.3.0 to 0.4.0 fa2ed0fd Add IPv6 support for AddDefaultRoute b769956c build(deps): bump github.com/containernetworking/cni from 1.0.1 to 1.1.2 df141fc7 build(deps): bump github.com/coreos/go-systemd/v22 from 22.3.2 to 22.5.0 35047644 build(deps): bump github.com/onsi/ginkgo from 1.16.4 to 1.16.5 352f181f build(deps): bump alpine in /.github/actions/retest-action 91b1a0e3 build(deps): bump github.com/godbus/dbus/v5 from 5.0.4 to 5.1.0 648dd2e1 build(deps): bump github.com/vishvananda/netlink 615420fa build(deps): bump github.com/alexflint/go-filemutex from 1.1.0 to 1.2.0 90ed30a5 build(deps): bump github.com/Microsoft/hcsshim from 0.8.20 to 0.9.6 020b8db6 build(deps): bump github.com/onsi/gomega from 1.15.0 to 1.24.2 c5e81e3c Update dependabot.yml 3be17f4a build(deps): bump actions/checkout from 2 to 3 f64652fa build(deps): bump actions/stale from 4 to 7 edfd2274 build(deps): bump actions/setup-go from 2 to 3 d7efab18 Update dependabot.yml 12471312 Update dependabot.yml c1e2be27 ci(deps): setup dependabot fd9408bc Fix tuning path validation 9dc2ed2c Update email to gmail 6b30e290 Update portmap test's iptables error check 1a6f4789 Remove references to io/ioutil package 63a6dbcf fix bug on getting NextIP of addresses with first byte 0 198ab129 Fix path substitution to enable setting sysctls on vlan interfaces 0463fd19 support masquerade all config 87c3643d host-local: remove unused Release(ip) from type Store interface f89a0057 Cleanup Socket and Pidfile on exit 7fcf8e48 dummy: Create a Dummy CNI plugin that creates a virtual interface. c78e1e46 Use the same options for acquiring, renewing lease 9f4090da bridge: update vlanFiltering variable to make code more readable f1aa6c26 ci: only rerun failed jobs on `/retest` bf4068e1 build: support riscv64 7c452c77 Check for duplicated sysctl keys f8917228 Update github.com/vishvananda/netlink to v1.2.0-beta a70e87c3 bridge: support IPAM DNS settings 0a0853a7 Bump to go 1.18 8b8825bc V2 API support for win-overlay CNI e3d563b0 bug: return errors when iptables and ip6tables are unusable e952f16c github: ignore issues with "keep" label from stale closing 5ad4fcf8 Make description for `static` plugin more exact 57c1cb50 workflow: add something to auto-close stale PRs 7a989794 ipam/dhcp: Fix client id in renew/release 7aa07efe call ipam.ExceDel after clean up device in netns fix #666 96c3af81 Add sysctl allowlist Bumping flannel-cni-plugin.git to version v1.1.2-13-g6464faa, which comprises the following commits: 6464faa Fixed release artifacts path bff4cf9 FIx bug in actions/download-artifact@v3 ffabfad Update go.mod 088da1a Use writeAndSyncFile instead of just write 04854df Update ginkgo to v2 eb47c95 Upgrade go version to 1.20.5 6f13a99 Fix some errors thrown by lint tool 3511c0a Updated Docker registry f271951 only include the binary file for one architecture in the release archive 1537c92 update of GH workflows Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* virt-viewer: update to 11.0-tipBruce Ashfield2023-08-241-1/+1
| | | | | | | | | | | | | | | | Bumping virt-viewer to version v11.0-52-gde864c1, which comprises the following commits: de864c1 Read oVirt CA and pass it to gtk-vnc db3b070 Translated using Weblate (Friulian) b2a50c1 session-vnc: Plug leak in error path 97ed170 rpm: convert license to SPDX format f374f7a Add support for usb-redirect-on-connect in vv-files 0a6155c src: Fix ssh tunnel with non-POSIX remote shells dec15f9 build: use full_path() for referencing programs f7900e4 Translated using Weblate (German) 1e99e5e ci: refresh with latest lcitool manifest Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* libvirt: update to 9.6.0Bruce Ashfield2023-08-242-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bumping libvirt to version v9.6.0-18-g1ca3c339a1, which comprises the following commits: fb12c5e049 Release of libvirt-9.6.0 fe306190bf NEWS: Mention CVE-2023-3750 and BeeGFS migration support a3a8cc0415 Translated using Weblate (Korean) c964dd09f0 NEWS: Document my contributions for upcoming release 010cfec969 Translated using Weblate (Ukrainian) caf4344339 Translated using Weblate (Czech) e33054b72c rpm: Delete unused macros a7bc8d1606 rpm: Switch to new macros for handling of systemd units 3bfc76a953 rpm: Introduce new macros for handling of systemd units df1e4e34cc rpm: Remove custom libvirtd restart logic ea45933d35 rpm: Reduce use of with_modular_daemons 1f3065a552 rpm: Reorder scriptlets 05ef4da4d7 rpm: Style/alignment tweaks bdb10f9de8 rpm: Bump min_fedora 8e958c1644 Update translation files dab2b7529b po: Refresh potfile for v9.6.0 ea4c67f567 remote: handle partial data transmission 0cec8abdba docs: formatdomain: Mention the QEMU requirement for discard_no_unref 3d9e35b837 virrandom: Accept "nodedev" driver in virRandomGenerateWWN() baeefe0327 qemu_domain: Partially validate memory amounts when auto-adding NUMA node 5b6badcfbf Translated using Weblate (Czech) 658660681c util: file: Mark 'BeeGFS' as shared filesystem 51ae80d6a7 ci: Switch to OpenSUSE Leap 15.5 edf17b5e99 sync_qemu_models_i386.py: Add missing features a2c6000c72 cpu_map: Add missing feature "pbrsb-no" db81435b92 cpu_map: Add missing feature "psdp-no" 4143916b1d cpu_map: Add missing feature "fbsdp-no" fb426d7957 cpu_map: Add missing feature "sbdr-ssdp-no" 95a442dee6 cpu_map: Add missing feature "mcdt-no" 8cb0c11f29 docs: Mention vhostuser for queues and queue_size ba9a8b5b56 NEWS: qemu: Implement QEMU NBD reconnect delay attribute 411cbe7199 remote: fix stream use-after-free 54e59e9135 net: add debug logs 6c3ef66cc6 qemu_tpm: Try harder to create emulator state 1b33578854 virfile: Introduce virDirIsEmpty() ac9c9b621f conf/domain_validate: Validate the disk queue_size cef25914eb conf/domain_validate.c: Improve the err for queue validation 986596f7a5 Translated using Weblate (Swedish) 033c4fcddf qemu_monitor: Remove helpers for 'query-commands' 0af5a514ee qemu: capabilities: Don't probe 'query-commands' d8b6801095 qemu: capabilities: Probe presence of commands from QMP schema instead of 'query-commands' 7ca777cc09 node_device: Don't leak error message buffer from virMdevctlListDefined|Active 294cf405d5 qemu: capabilities: Retire QEMU_CAPS_(IDE|SCSI)_DRIVE_WWN 37f20a9bdb qemu: Always assume support for QEMU_CAPS_IDE_DRIVE_WWN 5eed97e313 qemu: Always assume support for QEMU_CAPS_SCSI_DISK_WWN f276dbeefe qemu: capabilities: Update capabilities test data for qemu-8.1 dev cycle 9a47442366 storage: Fix returning of locked objects from 'virStoragePoolObjListSearch' a7f7bfa347 qemuTestDriverInit: Don't autopopulate qemu capabilities when initializing driver b1126c46eb qemudomaincheckpointxml2xmltest: Use real 'x86_64' capabilities in all test data f45aff1635 qemuagenttest: Use real x86_64 capabilities for parsing domain definitions 86edcfac4d tests: qemudomainsnapshotxml2xmlout: Use real 'x86_64' capabilities in all test data faa4d488e5 qemumemlocktest: Use 'testQemuInsertRealCaps' bb142b6db1 testutilsqemu: Introduce 'testQemuInsertRealCaps' helper 4cac4867ad testQemuGetRealCaps: Extract caching of the caps into a new helper b5ddd072bc testQemuGetRealCaps: Strip the default machine alias before insertion into cache 64dcb59756 domaincapstest: Use obviously fake firmware name in capabilities 0cbe448977 testutils: Print number of failed tests c90c97a734 Properly mark auto-added 'terminator' virStorageSource 49aca0a845 qemu: driver: Reformat helpers for saving VM state d051e0623c util: add logging about node suspend availability 6103584284 src: remove dep on systemd-logind.service from unit files 29f2222dd5 util: relax requirement for logind to be running 38abf9c34d src: set max open file limit to match systemd >= 240 defaults 04b82f961b rpc: automatically raise max file limit in all daemons c41cc852f6 util: add helper for raising the max files limit 3967174d03 util: remove pointless wrappers for setrlimit/getrlimit 427eef8959 src: remove deps on ip[6]tables/firewalld.service from systemd units a315070047 src: remove After=local-fs.target from systemd units c7ceac59f3 tests: Refresh valgrind suppressions 7ba20863a7 meson: Annotate each test() with 'suite' 3cde509f1a storage: zfs: Use 'zfs list' to check pool status fa0d5f4ebc nodedev: report mdev persistence properly 988f8443fb qemu: require memfd memory for virtio 'blob' support ecbce92371 qemu: Adapt to new way of specifying PC speaker f9641d2c37 qemu_capabilities: Retire QEMU_CAPS_USB_STORAGE_REMOVABLE 1a663b53c0 qemu: Always assume QEMU_CAPS_USB_STORAGE_REMOVABLE d90a34cf29 virrandommock: Drop virRandomGenerateWWN ae7df11377 test_driver: Pass virt_type to virNodeDeviceDefParse() in testNodeDeviceCreateXML() b857ad0696 virrandom: Fix printf format string in virRandomGenerateWWN() f6e88f6113 virsh: Make cmdVersion() work with split daemon 59d73ae768 NEWS: cpu_map: Add SapphireRapids cpu model c002e51dab NEWS: qemu: Support removable attribute for scsi disk 8417c1394c qemu: S390 does not provide physical address size aece25f665 conf: domcaps: Add 'async-teardown' domain capability f5d4f5c8ee qemu: Add NUMA node automatically for memory hotplug 2d7542a8a5 docs: expand clangd instructions 6b8cf9ffff Translated using Weblate (Georgian) 8311d1794f Translated using Weblate (Georgian) fc366d7e13 Translated using Weblate (Georgian) 6853f83613 Translated using Weblate (Georgian) 36b247b908 docs: Reword ninja invocation note to clarify build directory ef7228f5ca docs: Fix deprecated use of implicit meson "setup" command 4d50cd23c9 docs: Point to mailing list archives from submitting-patches 7160215146 docs: Advise running CI tests prior to submission 941fc36f11 docs: Reword "Preparing Patches" to clarify 3da8d8b5b1 docs: Add config instructions for clangd with libvirt 401a6171a3 docs: Point to compiling guide from code contribution guide 7218970862 docs: Link main "contributing" from programming-specific guide 225f6de45f docs: Missing "full-stop"/"period" on some bullet items cccf129c2d docs: Link to main docs directory from Quick Links 14026db9b0 nodedev: update mdevs from the mdevctl thread 9b7fadc5dc nodedev: refactor mdevctl thread functions 37481aa1f1 nodedev: transient mdev update on nodeDeviceCreateXML 851c5f075b qemu_domain: Deduplicate targetNode check in qemuDomainDefValidateMemoryHotplugDevice() b9eeeebddb libxl: Advertise support for VIR_MIGRATE_CHANGE_PROTECTION f3ed5c2713 libxl: Don't attempt to resume domain on canceled migration ded44a0406 node_device: Enclose Linux specific code in ifdef __linux__ 3bf02acdc5 qemu: allow use of async teardown in domain 65c6513811 qemu: add run-with async-teardown capability 584820b6bb tests: add capabilities for QEMU 8.1.0 on s390x d8e95ab6b7 tests: remove acpi support from s390x ccw hotplug tests 1ed695bcff qemu: Support removable for scsi disk 5f7f6ceb47 Revert "meson: attr_dep switch to dependency()" 00cd7d2b1a Translated using Weblate (Georgian) cd4bdcb8cf NEWS: Mention overrides for AppArmor profiles and abstractions 4c6feb832f apparmor: Make all profiles extensible 21a84ec994 apparmor: Improve virt-aa-helper include b6092de883 apparmor: Make abstractions extensible 84e01d182e apparmor: Only support passt on 3.x 63a312fa2d apparmor: Allow version-specific bits in abstractions too 19eb8abc9a apparmor: Allow version-specific bits in profiles 4a779f21bd meson: Detect AppArmor 3.x b7ca6f93f1 NEWS: Fix vertical spacing 6742edff2e Post-release version bump to 9.6.0 692543b5cc Release of libvirt-9.5.0 7f1562a739 NEWS: Document changes for the release 95ca371f3b NEWS: Move section about 'discard_no_unref' to features 63792a286d Revert "lxc_fuse: Tell FUSE that /proc/meminfo is nonseekable" 4163dcc4cb Translated using Weblate (Ukrainian) a9e7d5c587 Translated using Weblate (Korean) 28141adfdc scripts: Fix the flake8 syntax-check failures d7fb8deb6a Revert "apparmor: Add support for local profile customizations" d725932a28 Update translation files db1cf10784 po: Refresh potfile for v9.5.0 a46ad01d5e Translated using Weblate (Korean) 2d6659e778 qemu: prevent SIGSEGV in qemuProcessHandleDumpCompleted 83686f1eea qemu_passt: Actually use @logfd ceb4dc8e17 docs: Move passt log file in our example XML 8511b96a31 qemu_passt: Precreate passt logfile f4fea84f59 Explicitly reject unsupported storage types for legacy config generators db4dd170a2 tests: qemucapabilitiesdata: Update data for qemu-8.1 dev cycle 7b793a00bd util: don't validate empty params b7f7f07542 qemuDomainWaitForDeviceRemoval: recheck the value of priv->unplug.alias when timeout 2fbc1b05d9 NEWS: Update NEWS with new discard_no_unref option b855f8ea1e Add discard_no_unref option for qcow2 images 1092a88e13 qemu: capabilities: Introduce QEMU_CAPS_QCOW2_DISCARD_NO_UNREF 91856be29b qemuxml2(argv|xml)test: Add case for validating proper DIMM slot validation e4b4765f4f conf: Allow omitting 'slots' attribute of <maxMemory> e3ce39195c qemu_domain: Properly validate count of memory slots a52c68443d qemu_command: Always use modern syntax of '-m' 1dddd44451 virGlobalInit: Make glib init its own global state a5bf2c4bf9 NEWS: Mention an improvement for virConnectBaselineHypervisorCPU ce6d1dca6d qemu: Include maximum physical address size in baseline CPU be1b7d5b18 qemu: Report physical address size in domain capabilities 078e645cc3 conf/nwfilter: Initialize size_t attr to zero e31ac985f5 meson-dist: Use shutil.copy for copying a file 2ed41d7cd9 util: Use g_ascii_strtoll fd340227a7 util: Remove virStrToLong_l e940cac98e util: Parse RSS into ullp a7ee9eac83 conf: virtiofs: validate that the target dir is unique even for hotplug 063e8b9d62 meson: Use dependency().found() instead of conf.has() 2ef5876e2b meson: numactl_dep switch to dependency() dffeef89ef meson: attr_dep switch to dependency() 63ca3e656c meson: acl_dep switch to dependency() 97f0bd00b4 Translated using Weblate (German) d09b73b560 qemu: Drop @unionMems argument from qemuProcessSetupPid() 83adba541a qemu: Allow more generous cpuset.mems for vCPUs and IOThreads fddbb2f12f qemu: Don't try to 'fix up' cpuset.mems after QEMU's memory allocation 9b743ee190 apparmor: Add support for local profile customizations 17565ee0aa qemucapabilitiestest: Add data for the qemu-8.1 8b11489284 qemumonitorjsontest: Work around deprecation of 'vcpu' argument of 'trace-event-get-state' debe7f5406 Translated using Weblate (Korean) 1b8c1ce704 virnetsshsession: Adapt to changed libssh2 API 794c583f46 docs: fix changed API calls bc2c392bd1 conf: nwfilter: Refactor virNWFilterFormatParamAttributes 3a5f9a4041 conf: nwfilter: Refactor virNWFilterIncludeParse 9cb4e78ffd virNWFilterRuleDefDetailsFormat: Refactor formatter 59a1455012 virNWFilterRuleParse: Refactor attribute parser 3774fca88f virNWFilterRuleParse: Parse 'priority' via 'virXMLPropInt' f0c5da0f24 virNWFilterRuleDef: Turn 'action' and 'tt' into proper enum types 43f280cc65 conf: nwfilter: Refactor XML formatting in virNWFilterRuleDefFormat d50eb74b9d conf: network: Refactor XML parsing in virNetworkDHCPDefParseXML 7abf1d864b nwfilterxml2xmltest: Add test case for parser and formatter quirks dcd49d2cd6 util: xml: Introduce virXMLNodeGetSubelementList 4aafa900ce virNetworkDHCPDefParseXML: Refactor cleanup 355582e3df virNetDevBandwidthParse: Use virXMLNodeGetSubelement instead of looped parser 036e677886 virNetDevBandwidthParseRate: Refactor parsing ede5ee9eca virNetDevBandwidthParse: Use 'virXMLPropUInt' to parse 'classID' 92332ade1f virNetDevBandwidthParse: Don't validate element name 79b04c9606 testQEMUSchemaValidateObjectMember: validate QMP object member deprecation 9d6867198d qemuMonitorSetBlockIoThrottle: Drop 'diskalias' argument f0296aa9a3 qemuMonitorGetBlockIoThrottle: Drop 'diskalias' argument 52c874d913 qemumonitorjsontest: Use 'id' instead of deprecated 'device' argument of 'block_set_io_throttle' 4ba032a2a2 qemu: Refuse setting <iotune> for 'SD' disks 6d6a87f229 qemuDiskConfigBlkdeviotuneEnabled: Make 'disk' argument const cec5a9989c qemumonitorjsontest: Drop 'schema-meta' case 7975702aec Drop unused qemuMonitorTestAddItemParams 6019679092 testQemuMonitorJSONqemuMonitorJSONSetBlockIoThrottle: Rewrite using qemuMonitorTestAddItemVerbatim 1885c7a9ca testQemuMonitorJSONqemuMonitorJSONSendKeyHoldtime: Rewrite using qemuMonitorTestAddItemVerbatim b4f07b371d testQemuAgentFSTrim: Rewrite using qemuMonitorTestAddItemVerbatim 5e7def0b81 testQemuAgentCPU: Rewrite using qemuMonitorTestAddItemVerbatim f8625248ac virRaiseErrorLog: Don't skip error printing when enabling debug logging env variable 25420111ba ci: fix Cirrus CI jobs run from merge requests 8b9d2bda8a qemu: Set proper PCI backend for <interface/>-s that are actually hostdevs adf67ca987 ci: refresh with latest lcitool manifest f26923fb2e qemuMonitorTestAddItemExpect: Remove unused helper e79ccbae1c qemuMonitorJSONTestAttachOneChardev: Rewrite using qemuMonitorTestAddItemVerbatim 9482098395 testQemuMonitorJSONAttachChardev: Move all setup code under virTestRun 594fe5f882 qemuMonitorTestAddHandler: Remove return value d74f8e95e3 qemuMonitorTestAddItemVerbatim: Simplify cleanup 2380242928 docs: Use '--exit-status=' option for 'rst2html5' 9f49f60aca docs: go: Add 'go-import' metadata via rST 54c1f31fda docs: page.xsl: Drop passhrough of <script> elements into header 464450772f docs: newapi: Remove unused 'docomponents' template 1c7335add9 qemu_passt: Format portForward device even without address a36318be9d conf: Reject invalid device's <seclabel relabel='yes'/> with no <label/> 68545ed21b Post-release version bump to 9.5.0 80d670f63d Release of libvirt-9.4.0 80bb89ad0a Translated using Weblate (Georgian) 0033998e9a conf: node_device: use separate variables for parsing integers c47e17689e include: Fix 'Since' for new VIR_MIGRATE_PARAM_COMPRESSION_* macros 9222f35dc6 NEWS: Document my contributions for upcoming release 632999b929 Translated using Weblate (Korean) e35b5df3f5 Translated using Weblate (Ukrainian) a1bdffdd96 qemu_command: Generate .memaddr for virtio-mem and virtio-pmem 2c15506254 qemu: Fill virtio-mem/virtio-pmem .memaddr at runtime 677156f662 conf: Introduce <address/> for virtio-mem and virtio-pmem f08309d868 conf: Run virDomainInputDefPostParse() only for VIR_DOMAIN_DEVICE_INPUT 997994b6b1 Update translation files e712afcab3 po: Refresh potfile for v9.4.0 1a86c27edb sync_qemu_models_i386.py: Add missing features af6b5c1edf sync_qemu_models_i386.py: Fix complaint from flake8 b4560dc69b cpu_map: Add missing feature "vnmi" b038d52e30 cpu_map: Add missing feature "stibp-always-on" 5d1a8d0053 cpu_map: Add missing feature "prefetchiti" e680f69f77 cpu_map: Add missing feature "null-sel-clr-base" 822c5df993 cpu_map: Add missing feature "no-nested-data-bp" 0876e2cd9f cpu_map: Add missing feature "lfence-always-serializing" 877f609b8c cpu_map: Add missing feature "flush-l1d" bd93b13294 cpu_map: Add missing feature "fb-clear" aff0caeae8 cpu_map: Add missing feature "cmpccxadd" 7d57f0f1e5 cpu_map: Add missing feature "avx-vnni-int8" 3836efdaaf cpu_map: Add missing feature "avx-ne-convert" c8c44a59fe cpu_map: Add missing feature "avx-ifma" 01be1472f9 cpu_map: Add missing feature "auto-ibrs" c0dfb6b953 cpu_map: Add missing feature "amx-fp16" c8d67f644c cpu_map: Add missing feature "amd-psfd" a8c983d0fa docs: Clarify values reported by virDomainMemoryStats() 6a15e22265 docs: newapi.xsl: Generate overall docs for enums too 1fa7443dc7 docs: newapi.xsl: Generate docs on generic typedefs 96c8d39af0 cpu_map: Add SapphireRapids CPU model 44a0f2f0c8 nodedev: update transient mdevs e53291514c qemu_hotplug: Temporarily allow emulator thread to access other NUMA nodes during mem hotplug 3ec6d586bc qemu: Start emulator thread with more generous cpuset.mems c4a7f8007c qemuProcessSetupPid: Use @numatune variable more 1bb439e4b0 qemu: Use thread-context even with numatune's restrictive mode 1716ec3d36 cpu-data.py: Filter out apic current logical processor 17e92b4305 NEWS: Mention support for compressing parallel migration 3b6d69237f Revert "conf: Introduce MTE domain feature" 4fd5f0d660 Revert "qemu:: Introduce QEMU_CAPS_MACHINE_VIRT_MTE capability" 178a66f9af Revert "qemu: Validate MTE feature" 167138a525 Revert "qemu: Generate command line for MTE feature" 4850a9a39b rpm: Explain BuildRequires on qemu-img 17c8a173b6 numa_conf: Deny other memory modes than 'restrictive' if a memnode is 'restrictive' f6ba9fc12a numa_conf: Move memnode mode validation into virDomainNumaDefValidate() a152d856c3 virDomainNumatuneNodeSpecified: Fix const correctness 90404c5368 docs: make isa-debugcon example more useful / directly applicable f06d15b512 docs: fix typo in isa-debugcon example ffa258a39d qemu: support set parallel migration compression method 4ab5591c95 virsh: Add migrate options to set parallel compress level 150ae3e62b Add public API for parallel compression method 5ee27c37e6 docs: xsl: Simplify templating XSL f11c773014 docs: newapi.xsl: Remove support for generating index page 7aa2706d3b docs: html: Add a manually written index page 02e7f8d709 css: Remove override of width for 'hvsupport' page dc9c6c5405 hvsupport: Split out common APIs from hypervisor API section eca6846376 scripts: hvsupport: Properly register virConnectOpenAuth/virConnectOpenReadOnly APIs ef01df4a5c docs: Remove XSLT table of contents generator 5ff58a0ce7 docs: index: Convert to 'rst' c0a06c081c docs: acl: Convert to 'rst' 0f1d6ef6e7 css: Fix styling of the "3 panel" pages 82db6fb765 css: mobile: Make colums in "3 column" mobile layout wider 2b9d96fcac css: mobile: Fix hiding of big logo in mobile layout 0e8f61beba css: mobile: Fix responsive design of 'docs' and 'knowledgebase' pages 1a39a07879 css: mobile: Replace tabs with spaces e51922335c css: Drop styles for '.gitmirror' class e21b32ed4f css: Drop styles for '.mail' class 08de356e1d css: Drop style for 'p.image' selector 79e1853186 css: Drop style for '#changelog' id e28fe28b04 css: Drop styles for '#projects' id af621caa6b conf: numa: Allow formatting 'none' values for 'associativity' and 'policy' of cache 0d5fc7219a virDomainNumaDefNodeCacheParseXML: Refactor parsing of cache XML a8a63587ff qemuxml2xmltest: Modernize all 'audio-' cases c051fa874f qemuxml2argvtest: Use real caps instead of fake caps for 'audio-default-*' cases 36d7d87c87 qemuxml2xmlout: Replace symlinks of all 'audio-' tests by real files b10bc8f7ab qemu: Generate command line for MTE feature c6c9b5d251 qemu: Validate MTE feature 1347a19f75 qemu:: Introduce QEMU_CAPS_MACHINE_VIRT_MTE capability 720e8f13ff conf: Introduce MTE domain feature 37e41b7f16 qemu: Drop @forceVFIO argument of qemuDomainGetMemLockLimitBytes() 4f355fa5b7 qemu: Drop @forceVFIO argument of qemuDomainAdjustMaxMemLock() c925bb9273 qemu_domin: Account for NVMe disks when calculating memlock limit on hotplug 9884e89236 schemas: backup: Allow missing 'type' attribute for backup disk 1222ada2af conf: backup: Fix logic for generating default backup filenames de48ade195 virDomainBackupDefAssignStore: Restructure control flow a091edf9db virmockstathelpers: Adapt to musl-1.2.4 4a681995bc Translated using Weblate (Hungarian) 517d76466b qemu: Update documentation for dbus_daemon qemu.conf key 4400f63636 meson: Stop looking for dbus-daemon 769de39f50 qemu: Find dbus-daemon at runtime db91bf2ba3 qemu: Update documentation for qemu.conf keys b134a9bd2a meson: Stop looking for QEMU helpers 934113d376 qemu: Find helpers at runtime ef91f9e52a util: Introduce virFileFindInPathFull() d92054c867 util: Small refactor dcb9ee99f3 ci: integration: Flip QEMU upstream integration tests to Fedora 38 2bb0efa367 ci: Flip mingw jobs from Fedora 37 to Fedora 38 ffd2a97070 ci: Drop Fedora 36 target 96ffb7318e ci: Add Fedora 38 target 45abfaf68d Translated using Weblate (Hungarian) 9469587314 virfirewallmock: Replace virFindFileInPath() with virFirewallDIsRegistered() c033377a17 util: include virfirewall.h in virfirewalld.h 3d6bc5c611 conf: qemu: Add support for multi-channel mode for 'usb' sound cards 783c6bc2f0 conf: Register autoptr cleanup for 'virDomainSoundDef' and refactor virDomainSoundDefParseXML d6d4cfa5fc qemuxml2(argv|xml)test: Modernize 'sound-device' case 351504744e qemuxml2(argv|xml)test: Remove 'sound' case 374c716af9 docs: formatdomain: Use code blocks to emphasize various sound device options 30a1ceb67c qemu: Report domain name in unexpectedly closed monitor message 25ce34998b logging: Provide empty VIRTLOGD_ARGS in the unit file 236d2c0f4a .gitlab-ci.yml: Fix Leap 15.4 codestyle job 9b8bb536ff qemu: hotplug: Reorder setup of disk backend metadata d18572b4b7 meson: Improve initconfdir defaults 6f42d9610c meson: Move definition of os_release e54a419693 rpm: Set initconfdir explicitly 32f772e986 meson: Use initconfdir 9850b37e39 meson: Introduce initconfdir option 4419e74117 util: Improve comment for workaround e533074983 qemu: Fix error message d4c39bad85 cpu_riscv64.c: add update() implementation 2f197ab695 meson: Fix qemu_{user,group} defaults for Arch b4f5e6c91b tools: virsh-domain: display progress with enhanced granularity 51cfca2210 tools: virsh-domain: refactor variable initialization 4b5a9e34ad qemu: Use configured iothread poll parameters on startup 83eee66f81 conf: Store the iothread 'poll' settings in the XML 6df1d137dd virsh: cmdIOThreadSet: Use bigger types for --poll-grow and --poll-shrink 6f9d66c828 qemu: Store all iothread's 'poll*' attributes as unsigned long long 6d8dcc644c qemu: Remove iothread 'poll-' value validation e094d21004 virsh: cmdIOThreadSet: Refactor to use virTypedParamList 07652410a7 virTypedParamsValidate: Allow typed params to be both _UINT and _ULLONG b5ee977d17 virTypedParamsValidate: Refactor variable declaration and cleanup 111eeba7a7 util: virtypedparam: Introduce virTypedParamsGetUnsigned e280e83bff util: typedparam: Introduce virTypedParamListAddUnsigned f9f40a6d4b util: virtypedparam: Remove return values from virTypedParamListAdd* APIs 29dd390ea6 util: virtypedparam: Store errors inside virTypedParamList ec3a076c9e util: virtypedparam: Refactor return value of virTypedParamListStealParams 88925728f6 util: virtypedparam: Privatize definition of struct _virTypedParamList 50be70ded3 Use 'virTypedParamListFetch' for extracting identity parameters list 0fac024958 util: virtypedparam: Introduce 'virTypedParamListFetch' 8ea33c8c18 qemuDomainGetStatsBlock: Don't directly access virTypedParamList e3dff704bf util: typedparam: Introduce 'virTypedParamListConcat' 0d09e79b42 util: virtypedparam: Introduce virTypedParamListNew() 2e18d84746 virtypedparam.h: Consistently use contemporary header style 6813a46db5 util: virtypedparam: Simplify error handling in virTypedParamListAdd* ff8a626c58 virTypedParameterAssignValueVArgs: Ensure proper typed param type in caller 81391c0e1d virTypedParamsDeserialize: Remove unnecessary line breaks 49dc447d31 util: virtypedparam: Use proper enum type for all switch() statements d9ed32bb27 virTypedParameterAssignValue: Drop 'copystr' parameter 30403ef1d6 Post-release version bump to 9.4.0 Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* skopeo: update to 1.13.1Bruce Ashfield2023-08-241-2/+2
| | | | | | | | | | | | | | Bumping skopeo to version v1.13.1-4-g416218f5, which comprises the following commits: 882b087b Packit: remove pre-sync action 3162e17e [release-1.13] Bump to v1.13.2-dev 8ace37a4 [release-1.13] Bump to v1.13.1 cac20311 [release-1.13] Bump c/common to v0.55.2 d5b1f34e [release-1.13 backport] [CI:BUILD] Packit: install golist before updating downstream spec 85d99af2 [release-1.13] Bump to v1.13.1-dev 8b9999e1 Bump to v1.13.0 Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* runc-docker: update to 1.1.8Bruce Ashfield2023-08-241-2/+2
| | | | | | | | | | | | | | | | | | | | Bumping runc to version v1.1.8-7-gaa68c400, which comprises the following commits: aaed58c8 add a test case about missing stricky bit 3d3a2b38 fix some file mode bits missing when doing mount syscall 7c36375a Update github actions packages in validate workflow 1fa89476 VERSION: back to development 82f18fe0 VERSION: release 1.1.8 ef6491ec tests/int/delete: make sure runc delete removes failed unit ebdd4fa6 [1.1] tests/int: add "requires systemd_vNNN" 1188c5a1 runc delete: call systemd's reset-failed 71e76007 libct/cg/sd: remove logging from resetFailedUnit 3a4b3af6 tests/int/cgroups: remove useless/wrong setting 6bc3f22a libct/cg/sd/v1: do not update non-frozen cgroup after frozen failed. d375351b ci/cirrus: enable rootless tests on cs9 e1a8b52f tests/int/cgroups: filter out rdma Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* runc-opencontainers: update to 1.1.8Bruce Ashfield2023-08-241-2/+2
| | | | | | | | | | | | | | | | | | | | Bumping runc to version v1.1.8-7-gaa68c400, which comprises the following commits: aaed58c8 add a test case about missing stricky bit 3d3a2b38 fix some file mode bits missing when doing mount syscall 7c36375a Update github actions packages in validate workflow 1fa89476 VERSION: back to development 82f18fe0 VERSION: release 1.1.8 ef6491ec tests/int/delete: make sure runc delete removes failed unit ebdd4fa6 [1.1] tests/int: add "requires systemd_vNNN" 1188c5a1 runc delete: call systemd's reset-failed 71e76007 libct/cg/sd: remove logging from resetFailedUnit 3a4b3af6 tests/int/cgroups: remove useless/wrong setting 6bc3f22a libct/cg/sd/v1: do not update non-frozen cgroup after frozen failed. d375351b ci/cirrus: enable rootless tests on cs9 e1a8b52f tests/int/cgroups: filter out rdma Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* podman-tui: update to v0.9.1Bruce Ashfield2023-08-241-3/+3
| | | | | | | | | Bumping podman-tui to version v0.9.1, which comprises the following commits: d77db5fd bump to 0.9.1 ad29f4fa Container create error fix when selecting a volume Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* podman: update to 4.6.0Bruce Ashfield2023-08-241-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bumping libpod to version v4.6.0-14-g2215847e6, which comprises the following commits: f05f00717 do not redefine gobuild for eln 45fd917fa [CI:BUILD] RPM: define gobuild macro for rhel/centos stream 8ee1f1197 [v4.6] [CI:BUILD] RPM: separate out gvproxy for copr and fedora >= 38 5831bd68b System tests: add test tags 954177e7e API: kill: return 409 on invalid state e4e983e7a Mention TimeoutStartSec in quadlet man page d68ee576e If quadlets have same name, only use first 94431182b Bump to v4.6.1-dev 38e6fab96 Bump to v4.6.0 8aec5997e Update release notes for v4.6.0 09b1da382 Ensure that we appropriately warn that TCP is insecure 0115a4800 CI: remove build without cgo task 598ebe8a1 libpod: use io.Writer vs io.WriteCloser for attach streams 574b78291 top: do not depend on ps(1) in container 255111269 api: fix doc for default ps_args 34274ce15 Add more tests for liveness probes with default hostname & named ports 48deafc64 Fix TCP probes when the optional host field is not given 6817e0ae3 Add support for using port names in Kubernetes health probes 5445bd6f0 [CI:DOCS] fix command incorrect in windows 50195c244 [CI:DOCS] Reformat and reorder table with --userns options 924bc7055 [CI:DOCS] Better document the default value of --userns e4c38e719 Add missing return after utils.InternalServerError() 7a4bd4c95 Fix markdown in docs for podman-network-create 7cbe41212 Fix multiple filter options logic for `podman volume ls ` 5ea019419 Should be checking tmpfs versus type not source b4859d283 Use constants for mount types 39b7ac99d Fix `podman container prune` docs for `--filter` 7ba306ec6 docs: podman-build --network add slirp and pasta c810420c8 docs: podman run --network mention comma separted names 2c970dd01 network create: document --internal better 5106b7a38 pkg/specgen: fix support for --rootfs on FreeBSD 41f809e3e systests: quadlet: fixes for RHEL8 061841c0c Fix windows installer 8f05405db Podmansh: Better error, increase timeout to 30s 2b683a400 Emergency gating-test fixes for RHEL8 d0dee61e7 Packit: remove pre-sync action 70e30a2be [CI:DOCS] Update RELEASE_NOTES.md with Makefile change b8ef289e3 Bump to v4.6.0-dev bfe2e0fca Bump to v4.6.0-rc2 145748d1f Makefile: `package` -> `rpm` be21bc082 Update release notes 8fffcf4d6 system tests: refactor registry code 624bb8350 machine start: qemu: wait for SSH readiness 732a02c57 machine start: qemu: adjust backoffs afe48ba36 auto update: fix usage of --authfile 24439cdd2 [CI:BUILD] Packit: downstream task action fix 7b3d47c3b Fix container errors not being sent via pod removal API 9d0470f12 netavark: macvlan networks keep custom nameservers 5583358f6 add hostname to network alias 2aea98cab libpod: set cid network alias in setupContainer() d0b0c6285 Fix: cgroup is not set: internal libpod error after os reboot 258135221 test/e2e: wait for socket a3a62854f api: fix slow version endpoint 28e92b9de manifest inspect: support authentication e354514dc libpod: don't make a broken symlink for /etc/mtab on FreeBSD c81a00101 make --syslog errors non fatal edc51d9ff Fixes typo in the path where quadlet looks for files a673bb23e [CI:DOCS] uidmap man pages: fix corrupt italics dd7dbb826 [CI:DOCS] podman-system-service.1.md: document systemd usage a312553fc Use bytes size consistently instead of human size 2ef2a671e bugfix: do not try to parse empty ranges 662cca7cc pkg/specgen: properly identify image OS on FreeBSD cf5c4c9ee [CI:DOCS] Document support of pod security context IDs c8cfcc253 pkg/specgen: add support for 'podman run --init' on FreeBSD fc8f229bd Remove 'inspecting object' from inspect errors ee6329374 Fix readonly=false failure a3598ff61 pkg/specgen: Add support for Linux emulation on FreeBSD e30197e6f Fix up podmansh man page 47e6ce19c Pass in correct cwd value for hooks exe f654f7cc7 specgen: honor --device-cgroup-rule with a new user namespace fcf673d5d specgen, rootless: raise error with --device-cgroup-rule f70189991 make image listing more resilient 62fc35c07 Trim whitespace from unit files while parsing ed5618759 play.go: remove volumes on down -f 04897ee64 Vendor c/common v0.55.2 ff71df0e8 system service: unset listen fds on tcp 6960a8183 [CI:DOCS] [Release Notes]: add static routes e4cf2afbc [CI:DOCS] tag podmansh as tech preview in RELEASE_NOTES.md c422072b6 [CI:DOCS] uidmap man pages: fix corrupt tables Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* netavark: update to 1.7.0Bruce Ashfield2023-08-243-296/+444
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bumping netavark to version v1.7.0-49-gab03eec, which comprises the following commits: 067bbde fix(deps): update rust crate serde to 1.0.180 0ae529b fix(deps): update rust crate serde_json to 1.0.104 e155cbf fix(deps): update rust crate serde to 1.0.179 e64a5a9 fix(deps): update rust crate serde to 1.0.176 6f5dc41 fix(deps): update rust crate clap to 4.3.19 074de60 fix(deps): update rust crate serde to 1.0.175 2a2d066 fix(deps): update rust crate clap to 4.3.17 cb49b4f fix(deps): update rust crate clap to 4.3.15 69c802a fix(deps): update rust crate clap to 4.3.12 c627b76 fix(deps): update rust crate serde_json to 1.0.103 747384d [CI:BUILD] Packit: remove pre-sync action 64d55ee fix(deps): update rust crate serde_json to 1.0.102 cc1d2aa fix(deps): update rust crate nispor to 1.2.12 c227eed macvlan: use netlink type for bclim f92a065 bump netlink deps ba31874 fix(deps): update rust crate serde to 1.0.171 355ad29 fix(deps): update rust crate serde to 1.0.167 91665d4 fix(deps): update rust crate clap to 4.3.11 dd3a221 fix(deps): update rust crate serde to 1.0.166 0eb2033 fix(deps): update rust crate serde_json to 1.0.100 1340988 iptables: improve error when ip6?tables commands are missing 6f56308 fix(deps): update rust crate clap to 4.3.10 e7518b2 fix(deps): update rust crate zbus to 3.14.1 3455012 [CI:BUILD] RPM: Fix ELN build and cleanup spec 1691f8c bump to v1.8.0-dev 158e11b release v1.7.0 6ba1f8a Update release notes for v1.7.0 15af075 fix(deps): update rust crate tokio to 1.29 6e06b7d netavark: make --config required for dns 816d73d fix(deps): update rust crate serde_json to 1.0.99 14d4c54 fix(deps): update rust crate clap to 4.3.8 c5784bc [CI:BUILD] Packit: add Fedora downstream tasks d2d3092 run cargo update da6ee1f fix(deps): update rust crate serde_json to 1.0.97 0d62a35 fix(deps): update rust crate sha2 to 0.10.7 77b09a7 fix(deps): update rust crate clap to 4.3.4 68080c7 chore(deps): update dependency containers/automation_images to v20230614 0e976f1 fix(deps): update rust crate clap to 4.3.3 175c095 fix(deps): update rust crate log to 0.4.19 23c48d8 aardvark: fix missleading dns disabled log d31c157 firewall: add NETAVARK_ISOLATION_3 chain for strict isolation bb690f9 docs: fix link to getting started ca147fb fix(deps): update rust crate serde to 1.0.164 871096c netlink: fix incorrect info log for del_route 72aa0dd dhcp-proxy: apply new ip address/gateway 2a17957 test-dhcp: fix broekn has_ip() check 44b5a28 dhcp-proxy: actually implement renewing leases 1a5f674 dhcp-proxy: simplify code f7e950b dhcp-proxy: drop macaddr dependency 827bdd9 dhcp-proxy: remove some unused traits 5b2662e fix(deps): update rust crate zbus to 3.13.1 8fd57c7 fix(deps): update rust crate clap to 4.3.2 7000903 chore(deps): update rust crate once_cell to 1.18.0 e495d0b fix(deps): update rust crate url to 2.4.0 3a2c8e5 fix(deps): update rust crate clap to 4.3.1 3fcbfab chore(deps): update dependency containers/automation_images to v20230601 be0e01e chore(deps): update rust crate chrono to 0.4.26 3bdb499 chore(deps): update rust crate chrono to 0.4.25 f9dce04 fix(deps): update rust crate log to 0.4.18 8db90d8 chore(deps): update rust crate once_cell to 1.17.2 e4e78f0 macvlan: add bclim option 3d3563b parse_option(): return option instead of default e0ae9bc add no_default_gateway option d39db0b fix(deps): update rust crate clap to 4.3.0 ba0cb46 chore(deps): update dependency containers/automation_images to v20230517 62b35fd fix(deps): update rust crate serde to 1.0.163 416853b Add ability to add static route d2ef6cc fix(deps): update rust crate serde to 1.0.162 9e0e186 Cirrus: Update fedora name to match image 11626fc fix(deps): update rust crate clap to 4.2.7 e6ee988 chore(deps): update dependency containers/automation_images to v20230426 85dde17 correct typo in Makefile 8418f9b simplify path printing 65ff4f1 fix(deps): update rust crate tokio to 1.28 690fa8d aardvark-dns pid: return better errors 394789f fix comment in Subnet definition 2362e82 aardvark: no error when aardvark config is not there 5d41c71 fix(deps): update rust crate zbus to 3.12.0 bdf84b8 fix(deps): update rust crate clap to 4.2.4 fced2f1 fix(deps): update rust crate clap to 4.2.2 6aeabc0 fix(deps): update rust crate serde_json to 1.0.96 f0d5cc8 update clap to v4 be0e133 fix(deps): update rust crate serde to 1.0.160 173d7ac bump to v1.7.0-dev 2f01092 v1.6.0 release 1d2d150 Update release notes for v1.6.0 e1b0aa9 dhcp-proxy: fix typo for --activity-timeout f125bf0 chore(deps): update dependency containers/automation_images to v20230405 8b4c678 dhcp-proxy: use better error when connection fails c4a216d add documentation for netavark plugins 3ad293d add stderr example plugin to test stderr passthrough cee4d9f add netavark plugin driver b2ffb90 add example error plugin bc35cdd add host-device example plugin ab8156d plugin: add simple plugin interface 092b9a3 netlink: add dump_addresses cc1730e netlink: add set_link_ns 14a5205 dhcp-proxy: correctly exit > 0 on errors 24698f1 fix(deps): update rust crate tonic to 0.9 50b0fbb fix(deps): update rust crate mozim to 0.2.2 a5eba62 fix(deps): update rust crate serde to 1.0.159 dd0034c fix(deps): update rust crate netlink-sys to 0.8.5 40695e6 dhcp-proxy: create socket directory only when used fe9ca67 dhcp-proxy: do not remove socket when running under systemd dca3d53 Makefile: netavark-dhcp-proxy.service use correct path 71d128a fix(deps): update rust crate http to 0.2.9 5d85d4e chore(deps): update rust crate once_cell to 1.17.1 08d163e fix(deps): update rust-futures monorepo to 0.3.28 0370986 fix(deps): update rust crate serde_json to 1.0.95 2d7cb2a chore(deps): update dependency containers/automation_images to v20230330 9fd64cf Disable Dependabot in favor of Renovate 5ed1430 chore(deps): update rust crate chrono to 0.4.24 3f3a73e build(deps): bump ipnet from 2.7.1 to 2.7.2 1b8d361 build(deps): bump serde from 1.0.158 to 1.0.159 a3d7d79 build(deps): bump serde_json from 1.0.94 to 1.0.95 4f0dcc0 update,main: dont write empty space when no network_dns_servers is given 9532644 fix(deps): update rust crate tokio to 1.27 5ea45b7 Quit Leasing when Client disconnects b2aeb6c build(deps): bump mozim from 0.2.1 to 0.2.2 f36ff11 iptables: fix incorrect debug statement cdf27dc build(deps): bump serde from 1.0.156 to 1.0.158 8a1975a iptables: port fw handle wildcard address correctly ab6c621 chore(deps): update dependency containers/automation_images to v20230320 2f38b17 build(deps): bump zbus from 3.11.0 to 3.11.1 99142bf build(deps): bump anyhow from 1.0.69 to 1.0.70 e42393c [CI:BUILD] Packit: trigger builds on commit to main branch c30f461 Cirrus: Invalidate v2 bin cache 28c63f2 Include Systemd Files in RPM Package 8ec9d4b Cirrus: Fix success failing on artifact extraction 95c6fc4 fix lint issue with new rust version 1.68 d84e415 Cirrus: Update to newer CI VM images c637b1a build(deps): bump serde from 1.0.152 to 1.0.156 ca27aa6 combine dhcp-proxy and netavark into one binary cecef1e update: should allow empty network_dns_servers 07dfcae build(deps): bump libc from 0.2.139 to 0.2.140 bf22c29 fix aarch64 ncat flake 98f18b8 update to mozim 0.2.1 64bb7f0 build(deps): bump zbus from 3.10.0 to 3.11.0 4199dc0 packit: Update build release tag correctly de88f04 test: move proto option into run_nc_test() 91f3bfb test: add netns pid param to port checks eea98ee test: import podman code to check for ports 9d070c8 cirrus.yaml: add new binaries in art_prep_script bca5370 fix netavark-dhcp-proxy binary in system unit 31b4bb4 import netavark-proxy-dhcp tests c599b2e add build_proxy_client target c76e257 add netavark-dhcp-proxy to rpm a8cff4d Fix dhcp-proxy build 8dc8c96 Merge nv-dhcp-proxy into nv 3a365ed fix default route metric test name ad222b7 build(deps): bump tokio from 1.25.0 to 1.26.0 c505c58 Support none parameter on NETAVARK_FW 2272042 build(deps): bump anyhow from 1.0.68 to 1.0.69 2798f06 Fix typos 88a2a7a update netlink-packet-{route,core} to 0.15 and 0.5 216f6f6 build(deps): bump serde_json from 1.0.92 to 1.0.93 bbbec75 build(deps): bump zbus from 3.8.0 to 3.10.0 70d6f33 [CI:BUILD] Packit: initial enablement 065243d Allow custom cargo binary path 5ce550d build(deps): bump serde_json from 1.0.91 to 1.0.92 781b84e Cirrus: Reduce requested CPUs for compile-tasks 9deb91b bump to version 1.0.6-dev dbdeb9a v1.0.5 release 43c9bf2 release notes updates for v1.0.5 97f91f0 build(deps): bump netlink-sys from 0.8.3 to 0.8.4 b8fae87 build(deps): bump tokio from 1.24.1 to 1.25.0 3919e0f build(deps): bump zbus from 3.7.0 to 3.8.0 f688710 Switch to explicit platform list for `cargo vendor-filterer` 67b7da4 Add renovate.json5 c02fb16 Convert a few words to more inclusive 102b81c build(deps): bump nix from 0.26.1 to 0.26.2 60c08e9 Minor: Add script remote re-use comment. dae850f Cirrus: Fix two minor typos. c361afa Cirrus: Improve caching effectiveness f11a8fc Fix UDS path 823e69b build(deps): bump ipnet from 2.7.0 to 2.7.1 c55b1b3 build(deps): bump tokio from 1.23.0 to 1.24.1 e7c41c8 build(deps): bump zbus from 3.6.2 to 3.7.0 d690d35 build(deps): bump serde from 1.0.151 to 1.0.152 5a19903 build(deps): bump libc from 0.2.138 to 0.2.139 040f3d6 add ipvlan support 058be67 fix lint issues for rust 1.66 2524e56 update CI images 8055fb4 build(deps): bump serde_json from 1.0.89 to 1.0.91 f80f417 Add ability for MacVLAN dhcp a810489 build(deps): bump serde from 1.0.150 to 1.0.151 53c6774 build(deps): bump anyhow from 1.0.66 to 1.0.68 bcb52af CI: install mandown for validate 97e90a3 fix make docs 3eee824 build(deps): bump serde from 1.0.149 to 1.0.150 820d538 build(deps): bump sysctl from 0.5.2 to 0.5.4 753c3de build(deps): bump ipnet from 2.6.0 to 2.7.0 bd1bf8b build(deps): bump zbus from 3.6.1 to 3.6.2 a3f90ec build(deps): bump ipnet from 2.5.1 to 2.6.0 3a1ff24 lock: stop using yanked 0.8.13 crossbeam-utils 75b440c Cirrus: Add backup to aardvark-binary artifact DL a03b7b1 Bump to v1.4.1-dev c2a4b9a Release v1.4.0 0e3268b Update release notes for v1.4.0 011f899 release,make: add rule crate-publish for publishing crates.io 302828f main: Pass config_dir as `&str` bb4c73d [skip-ci] GHA/Cirrus-cron: Fix execution order d957601 build(deps): bump serde from 1.0.148 to 1.0.149 cece3d6 build(deps): bump nix from 0.25.0 to 0.26.1 354450f build(deps): bump libc from 0.2.137 to 0.2.138 8c1a071 build(deps): bump zbus from 3.5.0 to 3.6.1 7563db2 remove verify_vendor CI task 15894f3 chrono: use from_timestamp_opt 0c61f05 update: add support for netavark update command 2f0b025 Add nspath to commands 64d762f build(deps): bump serde from 1.0.147 to 1.0.148 d27588c build(deps): bump env_logger from 0.9.3 to 0.10.0 46f9f59 aardvark, netavark: support network scoped dns via network_dns_servers c9cbc6a build(deps): bump serde_json from 1.0.88 to 1.0.89 84b9078 Drop now unneeded futures dep c858e2f Make use of zbus::blocking wrappers 84a0ddd Port to zbus 3.5 a3c8156 Drop direct zvariant dep 03cb6a5 remove number of .clone() calls 581352c build(deps): bump serde_json from 1.0.87 to 1.0.88 9dad47a fix iptables teardown d7d88da fix rust doc comments effd448 GHA: Add cirrus-cron rerun job ada06b4 fix new lint issues reported with rust 1.65 2af0d9f update CI images f5d114d Correct dev version 34f1488 Bump to v1.3.0-dev 6df8139 Release v1.3.0 53a7b00 v1.3.0 Release notes 832098f run cargo update d36af04 build(deps): bump ipnet from 2.5.0 to 2.5.1 e383f8d build(deps): bump env_logger from 0.9.1 to 0.9.3 0cc2556 macvlan modes: use upstream consts e6d09ff macvlan: remove tmp interface when name already used in netns 0789f44 Add support for route metrics 52b1b08 Drop indirect dependency on time 0.1 72c42b6 netlink: return better error if ipv6 is disabled 980d68a macvlan: fix name collision on hostns 3c03dce build(deps): bump libc from 0.2.136 to 0.2.137 99459c1 build(deps): bump clap from 3.2.22 to 3.2.23 8247f46 Ignore dns-enabled for macvlan bd18cb1 build(deps): bump libc from 0.2.135 to 0.2.136 3f7e75e build(deps): bump serde_json from 1.0.86 to 1.0.87 b65a35b build(deps): bump serde from 1.0.145 to 1.0.147 885f657 netlink: check sequence_number 795fa47 build(deps): bump anyhow from 1.0.65 to 1.0.66 61181e5 tests: add test for verifying multiple custom dns severs 95c982b tests: unskip exisiting test for custom dns server 698627b build(deps): bump futures from 0.3.24 to 0.3.25 6e04f79 netlink: improve error message on invalid netlink result 3aac0a0 NetworkOptions::load(): do not open /dev/stdin f07cc04 use cargo-vendor-filterer to create vendor tarball d89f4bd teardown: handle errors better c9de5d0 error: remove unused equal code c11c5f8 fix broken build f6e0258 netavark ,aardvark: accept and populate custom dns_servers for containers 59be422 netlink: add del_{addr,route} calls 6646be4 error: NetavarkError use Into<String> Trait 0417eb8 netlink: add basic unit tests 454ebb3 bridge: do not set gateway for internal network c017bfe README.md: remove latest release section 652d233 build(deps): bump libc from 0.2.134 to 0.2.135 3166b7b build(deps): bump serde from 1.0.144 to 1.0.145 ca5f4f6 build(deps): bump serde_json from 1.0.85 to 1.0.86 7c93f79 Do not use ipv6 autoconf #2 36a20bf fix test issues in podman 0fb6ddc improve error messages 96993f4 netlink: use low level sync api 4881651 add simple script to measure the netavark perfomance 4294bf6 Do not use ipv6 autoconf 0805420 build(deps): bump tokio from 1.21.1 to 1.21.2 060c6a6 Make build date reproducible 08c3152 Cirrus: Use images w/ fixed-in-time rust + clippy 3d4fe6b build(deps): bump libc from 0.2.133 to 0.2.134 7ab86f6 build(deps): bump clap from 3.2.8 to 3.2.22 cbc0a31 Bumping to v1.2.0-dev 90cccc1 Release v1.2.0 We also refresh one patch, and add protobuf-c as a build depenency Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* lxcfs: update to 5.0.4 and convert to mesonBruce Ashfield2023-08-244-83/+45
| | | | | | | | | | This is a large update to lxcfs, that includes a move to meson as the build backend. We drop a couple of uneeded patches, and add a new meson specific one as the detection of pid_* functions is failing. Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* lxc: update to 5.0.3Bruce Ashfield2023-08-241-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bumping lxc to version lxc-5.0.3, which comprises the following commits: cb8e38aca Release LXC 5.0.3 85d3f4b1d github: Update for main branch d195603e3 CONTRIBUTING: add a note on AI generated code 54227bdb1 get_hierarchy: dont WARN about no usable controller be7efff35 github: Add DCO/target tests 8751cd208 explicitly convert *mainloop_handler to __u64 c16bb5b71 tests: fix parse_config_file seccomp test 95ef57c73 src/tests: Fix container creation errors 30c79f8a7 rename functions which clash with libsystemd's 3801a6a3d mainloop: io_uring: disable IORING_POLL_ADD_MULTI fba0ae071 terminal: make a terminal FDs non-blocking 1af412d2f file_utils: add fd_make_nonblocking helper eaaf041f6 file_utils: rename fd_make_nonblocking to fd_make_blocking d05fb8a45 setproctitle(): Handle potential NULL return from strrchr() 709d42691 make setproctitle()'s /proc/pid/stat parsing safe b183d437b console-log test: make sure container is stopped before restarting d638d5951 tree-wide: convert fcntl(FD_CLOEXEC) to SOCK_CLOEXEC c12c0acb0 Allow fuse mounts in apparmor start-container. c93418d98 Add support for squashfs images in oci via atomfs 3754e803f apparmor: don't try to mmap empty files 706ee25cd initutils: use PRIu64 for uint64_t in setproctitle 3cdd5078c lxc-net.in: fix nftables syntax for IPv6 NAT 97bf62247 Fix strlcat's return value checks 7c81572af Fix typo: bev_type -> bdev_type 727adc052 drop broken lxc-test-fuzzers Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* docker-distribution: update to 2.8.2Bruce Ashfield2023-08-241-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bumping docker-distribution to version v2.8.2-2-g8728c52e, which comprises the following commits: ab7178cc Pass BUILDTAGS argument to go build a173a9c6 Add v2.8.2 release notes 483ad69d registry/errors: Parse http forbidden as denied 2b0f84df Revert "registry/client: set Accept: identity header when getting layers" 5f3ca1b2 Add release notes for 2.8.2-beta.2 release e884644f Dockerfile: fix filenames of artifacts ac6c72b2 Add 2.8.2-beta.1 release notes ae58bde9 Fix gofmt warnings 3f2a4e24 update to go1.19.9 9c04409f [release/2.8] ignore deprecation of io/ioutil 3d8f3cc4 Dockerfile: update xx to v1.2.1 70db3a46 bump up golang version db1389e0 dockerfiles: formatting 018472de dockerfiles: set ALPINE_VERSION 19b3feb5 Update to xx 1.1.1 14bd72bc Dockerfile: switch to xx 2392893b bump up golang v1.17 092a2197 [release/2.8] fix package name in Dockerfile 22a80503 fix(ci): use go install instead of go get 1d52366d Merge pull request #2815 from bainsy88/issue_2814 521ea3d9 Fix runaway allocation on /v2/_catalog ad5991de Fix panic in inmemory driver 38018aeb Fix CVE-2022-28391 by bumping alpine from 3.15 to 3.16 Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
* crun: update to v1.8.6Bruce Ashfield2023-08-241-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | Bumping crun to version 1.8.6-11-gd7ee549, which comprises the following commits: c786d4c linux: simplify error handling c972772 linux: do not write twice errors 74a3874 linux: use helper functions instead of custom read/write 35a0166 linux: define helper to ack on the sync socket c3e518e libcrun: drop symbol for crun_make_error 080e560 features: use exported function libcrun_make_error 5c2dedc Make the spec file parseable without copr_username defined 73f759f NEWS: tag 1.8.6 26ef1e0 linux: add sync before sending mounts 71c53b0 RPM: Set Epoch only for Copr builds ee0e405 tests: install procps-ng for podman tests 6a3d7a7 Packit: initial enablement 58bb52c tests: fix cpu-weight-systemd test under a user manager ee111ae tests: skip test_uid_tty if no tty is attached 74dd5f9 tests: use get_crun_path() in oci_features b160e2c cgroup-resources: allow setting swap to 0 19cd8aa ps: fix segfault with pids=NULL Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>