| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
|
|
|
| |
We no longer need the split between container-docker and
containerd-opencontainers and dependent layers have been
given over a year to adapt.
We do keep the provides and rprovides around for a bit
longer, but those will also be removed in the future.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Update containerd to v2 to fix following containerd version:
containerd github.com/containerd/containerd/v2 2.0.0-beta.0+unknown
it should be like:
containerd github.com/containerd/containerd/v2 v2.0.0-beta.2-204-gb1624c362.m b1624c3628954e769dd50783b63823040b2db38c.m
* Remove CONTAINERD_PKG, it is not used
* Update default PACKAGE in Makefile to v2
Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
We refresh our GO_FLAGS patch for new context, and drop the install
of v1 or unversioned shims as the runtime-v1 has been dropped
Bumping containerd to version v2.0.0-beta.0-88-g87bf39a7f, which comprises the following commits:
96aaf5a3b Add core and internal root packages
c0363754f sandbox: get runtime info from sandbox or container
95d2a3b7c upgrade: add cri upgrade test case
0bc963341 runtime/v2: net.Dial gRPC shim sockets before trying grpc
e1b495866 sandbox: keep rootDir and stateDir compatible
b0fef6738 sandbox: migrate sandbox_mode to sandboxer
c8012b6d7 sandbox: make a clear dependency of cri plugins
2ead89509 Support gzip and zstd HTTP transport compression to fetch remote resources
8e567aa58 mv pkg/process cmd/containerd-shim-runc-v2/process
a813097dc Bump up github.com/fsnotify/fsnotify to v1.7.0
c384e3717 containerd-stress: use config address for CRI test
d4c828c2c integration: add new binary upgrade case
8e91edb71 fix(pkg/dialer): minor fix on dialer function for windows
ad3f8c563 tomlext.Duration add MarshalText method
6da015284 go.mod: github.com/containerd/continuity v0.4.3
cd348e6ef .golangci.yml: remove directories that don't exist
4b556a6e0 Bump up golangci-lint to v1.55.2
c51d4f9b6 push: always inherit distribution sources from parent
e15c24655 Move CRI image service into a separate plugin
80dd779de remotes/docker: close connection if no more data
7f410ae05 integration: reproduce #9347
2e9686c05 fix: deflake TestCRIImagePullTimeout/HoldingContentOpenWriter
4aa932337 CI: update Fedora to 39
f6c4de6b5 fix: podsandbox depends on Lease plugin
1b65fe264 fix ticker leak
1af0cba1a Update documentation for containerd v2.0 packages
4f42da416 adopters.md: remove Eliot project
01c442147 Enhance container image unpack client logs
e7390d4ed vendor: upgrade OpenTelemetry to v1.19.0 / v0.45.0
1a1bd6d0a runtime/v2/shim: use structured log for plugin ID
71fd85f5e runtime/v2/shim: run(): remove unused "name" argument
0a59c33be runtime/v2/shim: rename var that shadowed package var
be22e12d5 services/server: use structured log for plugin ID
09de4f1fc services/server: rename var that collided with import
14e621cf9 services/server: gofumpt
32bf805e5 sandbox: add a sandboxService interface to criService
25a4c3d23 sandbox: remove SandboxersServicePlugin
0cf48bab2 sandbox: podsandbox init its own client
7d65a4563 Move runc shim implementation to cmd
e682da76c fix labels in pod sandbox
64c41162c update tests to use labels from cri/labels
7e79225ce refactor labels used in cri server
274a16282 update runc binary to v1.1.10
2e014fa2a cri: fix update of pinned label for images
cb555fa16 golangci-lint: enable depguard to prevent re-introducing libcontainer
dac056fe7 integration: deflake TestIssue9103
7b9fcfd7c add default enable unprivileged icmp/ports
a7cd49c68 expected and actual field position adjustment
e099717f9 validate kernel version for unprivileged icmp/port
76049170b document runtime and shim configuration and selection
2fab240f2 integration: init release upgrade test
2af6db672 switch back from golang.org/x/sys/execabs to os/exec (go1.19)
a596d09ec cri: add deprecation warning for configs
35924bccc cri: add deprecation warning for auths
d7cb25d77 cri: add deprecation warning for mirrors
58cc275eb cri: add ability to emit deprecation warnings
68cac3f62 client: remove obsolete ErrCheckpointRWUnsupported
df19888f8 add warning use inheritable Capabilities
411e2bce4 Remove plugins package
9db21401c Switch to github.com/containerd/plugin
a48ddf4a2 Don't allow io_uring related syscalls in the RuntimeDefault seccomp profile.
2dfae4c4b Prepare release notes for v2.0.0-beta.0
6ca4b5260 Update mailmap
a67efe88d Add tests cases
f1d659dc5 Update package name in Makefile
0ffc3e987 Handle ArgsEscaped for new Sb Server
b85df264e Rename opt to avoid stutter
261e01c2a Move client to subpackage
b6adf43d4 test: use 'Autoclear: ture' in TestRwLoop and add Autoclear test
124d3a20a Sync ops.md, update CLI --help output to be consistent in descriptions
5fdf55e49 Update go module to github.com/containerd/containerd/v2
abfc8be53 Fix lint in integration/client
ddd73ad30 Move protofiles generated into v2 directory
638b474c8 Temporarily remove imgcrypt in CRI to fix circular dependency
192168038 Temporarily remove integration/client submodule
4e3fbd36e vendor: github.com/klauspost/compress v1.17.2
856d1053f vendor: google.golang.org/grpc v1.58.3
466ee870d Check scheme and host of request on push redirect
3fff8b4f6 ctr: new deprecations command
079383dbe dynamic: record deprecation for dynamic plugins
260e71abc server: add ability to record config deprecations
bc861b66f pull: record deprecation warning for schema 1
9aab44673 introspection: add support for deprecations
57c897f10 api/introspection: deprecation warnings in server
240733ce2 warning: new service for deprecations
aff5b809c deprecation: new package for deprecations
d48ceb606 Avoid TLS fallback when protocol is not ambiguous
ed759bae3 Update go fuzz to directly instantiate server
09e40511a fix bug that using invalid token to retry fetching layer
2fea521d0 Disable windows-2019 integration test temporarily
9fc407d8c ci: bump up golangci-lint to v1.55.0
8b4f9656d sandbox: remove ValidateMode as it is not used
337cc2171 pkg/cri: should ignore no sandbox bucket
f515cd5c5 Reorder fields when writing bootstrap params
3d53fbe85 Fix CRI integration tests
f76eaf5a6 Fix 'not a directory' error when restoring bootstrap.json
cf75cfa32 Add more logs around shim restore
8061cb023 Save bootstrap.json instead of address file
e03bf32b8 Switch runc to v3
7a2d801d6 Expose shim instance version
f66c46806 Bridge task service v2
daaf67662 Switch runc shim to task v3
bb64e6a8e Initialize sandbox controller list on CRI server creation
03d81f595 Use cri streaming pkg from k8s staging
b006f1c15 integration/client: replace hardcoded strings for OCI-spec consts
d3f5e0c90 images/archive: replace hardcoded strings for OCI-spec consts
8e7c10c6d CRI: enhance ImageFsInfo() to support multiple snapshotters
e4639ad18 Add exports to proxy plugin config
3986f80c3 go.mod: bump up github.com/opencontainers/image-spec to v1.1.0-rc5
f7c9e9942 vendor: golang.org/x/net v0.17.0
c3652540c vendor: golang.org/x/text v0.13.0
ff602c213 vendor: golang.org/x/sys v0.13.0
39b168cdb vendor: google.golang.org/grpc v1.57.1
930ee552e Fix typos
3ef300ca7 sandbox: remove global variable of podsandbox controller
7bca70c0c sandbox: do not call Connect when loadShim
d2d434b7d sandbox: add all sandbox information to Create method
0707f6869 sandbox: ignore not found error when remove sandbox
2951fb6dc sandbox: support more sandbox controllers
8b3597685 sandbox: add Sandboxer field to sandbox metadata
69e501e7c sandbox: change SandboxMode to Sandboxer
f372b3501 sandbox: add sandboxer field of sandbox requests
a782fd6da Use LOOP_CONFIGURE when creating loop devices
771237563 Add a new image label if it is docker schema 1
5ad6f3432 CRI: use (snapshotter_id, snapshot_key) to uniquely identify snapshots
41b2b2a7b go.mod: bump up github.com/klauspost/compress from v1.17.0 to v1.17.1
4febb0852 deprecated: go-plugin library as runtime plugin
51c9ffe46 remotes: add handling for missing basic auth credentials
4f339b5b5 RELEASES.md: mark legacy CRI as removed status
0a4f79211 Remove use of v1 runtime plugin type for Unix
71f8b4357 Move dynamic plugins to a subpackage
7b2a91821 Generalize the plugin package
a80606bc2 Move plugin type definitions to containerd plugins package
cb969085f Temporarily remove zfs as built in plugin
2486c1298 Exit shim when shutdown manager is done
1b3199324 Rename sbserver to server
4edc6c2d9 Add note about configuration versions in releases
c5c94dc86 Fix CRI tests panic on CI
a3c2c1e4d Clean shell scripts
fa1d3a9cc Fix dependencies after remove
3742f7f0d idmapped: use pidfd to avoid pid reuse issue
2332b9ba1 Remove legacy CRI from CI
536abf1b3 Remove legacy CRI
33b1a833c Move CRI testing package out
016114ff6 Move bandwidth package out of CRI server
3c1e7ffb8 Integration: Alter TestContainerPids for Windows
8f013bb71 Add migration for older configuration versions
313f514fd update to go1.21.3. gp1.20.10
6b752b536 update to go1.21.2, go1.20.9
8f3d1c9d9 add cpu-burst param to ctr command
3ddcd6120 add Duration type to compatible toml v1 version
535916d1d Skip exec.LookPath if a specific gzip implementation is disabled
4b59d67dd add a new flag "skip-reference-check" to skip reference name check
34378ec9b Use Intel ISA-L's igzip if available
7d6369087 Fix windows default path overwrite issue
13dcf558e Fix windows default path overwrite issue
39478eeec go.mod: Bump up github.com/klauspost/compress v1.16.7 to v1.17.0
859c2651e remotes/docker: Fix MountedFrom prefixed with target repository
c85b1d1e4 Bump up golangci-lint to v1.54.2
6169433b6 Fix linter issues for golangci-lint 1.54.2
e3cb7471a CRI: Snapshotter per runtime handler adjustments
42dc8faba Bump x/net to 0.13
79772a0dd remotes: always try to establish tls connection when tls configured
11a7751af *: add runc-fp as runc wrapper to inject failpoint
68dd47ef7 containerd-shim-runc-v2: avoid potential deadlock in create handler
6604ff6c5 containerd-shim-runc-v2: remove unnecessary `s.getContainer()`
0d76fe5c1 Fix some assertions for integ tests
1dced31c3 ci-fix: pin the mingw version 12.2.0.3042023
aae71aa8e update gitignore to indicate that where contributors can use global gitignore
8ffb03d68 cri: stop recommending disable_cgroup
5365f4b29 cri: call RegisterReadiness after NewCRIService
46645b393 Call migrations per version
5518a5026 remotes: simplify mediatype logic
8b105984b pkg/transfer/local: simplify mediatype logic
79acce462 integration: use mediatype helpers
0ba5b4b62 oci: use mediatype helpers
cdba61603 remotes: use mediatype helpers
69034f755 pkg/display: use mediatype helpers
5ab04ac5a pkg/unpack: use mediatype helpers
da1196979 pkg/snapshotters: use mediatype helpers
f1cbc5f90 containerd: use mediatype helpers
4b1bb1293 remove github.com/opencontainers/runc dependency
62f621a34 images: simplify mediatype logic
377c5ca9c images/archive: use mediatype helpers
bb8a472f2 images: use mediatype helpers
e7254406c Require plugins to succeed after registering readiness
62f273d50 Add migrate subcommand to config command
0320ad184 Add config migration to plugin package
f58158e2d Add config migration and bump config version
bf4fbe4e8 docs: Update `transfer` service docs to reflect completed implementations for 1.7
b40e95e0e images: Config: explicitly return nil-error
36c2222d3 Add usage calculation test
3b60e9366 Create new imagetest package
4c344f2fa Add warning for plugin configs with unknown fields
a9ba33f8f Allow for images with artifacts to pull
650148313 Add warning log for unknown config fields
b5615caf1 Update go-toml to v2
8b413daff Remove log package except for exported const used by hcsshim
2f1b92710 Update zfs library to use new log repository
508aa3a1e Move to use github.com/containerd/log
f1070c4e1 docs/userns: Clarify requirements for k8s 1.25/1.26
42eee8bf0 fix: Add `containerd` to the message type reference
9e819fb4a Update CRI image store to not use containerd client
dcb2e7447 Improve doc of func NewNetNS
2ce971d89 Add delete target to image remove
f8fb2dad3 api: update image service to support target in delete request
8e3722c7d CI: Set slow_chown for overlayfs snapshotter
46d3094aa docs/userns: Fix small typo
d008d64a8 docs/userns: Clarify containerd 1.7 limitations
e37908200 docs/userns: Document the need to opt-in for a slow chown
8bf8e2b97 snapshotter: Use capa prefix consistently for capabilities
ec9e0dca9 overlay: Require opt-in if idmap mounts are not supported.
03b9ce56b deprecate logs package, but disable linter (for transitioning)
d69ae811d alias log package to github.com/containerd/log v0.1.0
729c97cf3 Handle unexpected shim kill events
ed5f7e7c8 Update image in client to use new usage package
96a23ccc1 Create new usage package
79f781d00 Refactor: Removing inherently flaky and unused SourceDateEpochOrNow function.
8cbb4ea5d vendor: github.com/containerd/nri v0.5.0
3ca39ef01 fix: Remove `LimitNOFILE` from `containerd.service`
83240a4f7 Bump crun to 1.9
967313049 doc: Add documentation about CRI user namespaces
2e13d3954 pkg/process: Only use idmap mounts if runc supports it
fce1b9507 go.mod: Update runtime spec to include features.MountExtensions
a81f80884 Revert "cri: Throw an error if idmap mounts is requested"
e832605a8 integration: Simplify WithVolumeMount()
24aa808fe integration: Add userns test with volumes
ab5b43fe8 cri/sbserver: Pass down UID/GID mappings to OCI runtime
e916d77c8 platforms: move ToProto, FromProto to api/types
381442945 platforms: remove errdefs dependency
e0b2b17de cri/server: Add tests for the linux-specific parts of VolumeMounts()
10cb112e4 cri/server: Add tests for ContainerMounts()
97dfa7f55 cri/server: Pass down uidMappings to OCI runtime
b42bdd125 release: remove `cri-containerd-*.tar.gz` release bundles
9656b8c0d nri: update mock plugin handlers
6f9de91ef vendor: update github.com/containerd/nri@v0.4.0
f7089ba22 leases: add WithLabel
1480e3bd4 leases: cleanup TestWithLabels
d94a789d1 Fix usages of `mountinfo.PrefixFilter`
45e303eea task: expose criu work path opt
f77185f9e Fix "even if IPv4 comes first" test to have IPv4 first
88a849626 Don't use `To16() != nil` to detect IPv6 addresses
eaf607101 update to go1.21.1, go1.20.8
1a7490c5a Add link to CONTRIBUTING from README
0413f1272 Add contributors guide
05093d7c0 vendor: github.com/cncf-tags/container-device-interface v0.6.1
ac1d556b9 Add image verifier transfer service plugin system based on a binary directory
55b2df560 go.mod: github.com/grpc-ecosystem/grpc-gateway/v2 v2.16.2
a00888db8 fix reference to canonical fieldmask type
0041996ca CI: bump up crun to 1.8.7
4bc0b2660 Revert the removal of the parameter Container
6ec0d4a3a prevent ctr from creating tags with forbidden characters
a4bdbf784 content: reduce the contention between ref lock and boltdb lock
abfabb6d8 contrib/fuzz: fix redeclared issue
295bcec07 snapshotter: implement unit tests for idmapped mounts for overlay
9d01ed1c3 integration: add test for idmapped mounts
e49e6d6fd snapshotter: implement slow path for idmapped mounts check for overlay
1555a31bf mount: support idmapped mount points
723c88ce3 snapshotter: add "--remap-labels" support to overlayfs
e8ddf669f snapshotter: support "remap-ids" capability for overlayfs
ef6b91947 fix(docs): fix on the windows installation script
5d31e9378 pkg/systemd: use sync.Once for systemd detection
7d0ab4fc2 remove uses of github.com/runc/libcontainer/cgroups
9bc6441c2 vendor: github.com/google/uuid v1.3.1
13ff185ba Blockfile: Enlighten blockfile copy on Darwin
a3e8503ed .github: enable fuzz build
cd705af89 metadata: add image delete events during garbage collection
3f9756c18 gc: add support for image expiration
b32638e21 ctr: pull or fetch image metadata by default
20f79300c push: inherit distribution sources from parent
24aca53fa Update use of content.Infoprovider
f8c789f31 content: add InfoProvider interface
02d519ad6 Update hcsshim tag in runhcs-version script
a2817ca16 CRI: Include sandbox ID in failed to load error
492347090 replace reference/docker for github.com/distribution/reference v0.5.0
26dcae2f6 fix ossfuzz building error
19d6c37a3 Revert "log: define G() as a function instead of a variable"
fd5d92a7f Update hcsshim tag versioning to v0.12.0-rc.0
779875a05 Add missing unpacker.Wait for image import
4f5db2bc0 metadata: format unit test output
15b13fb3e Windows: Supply windows shim version via file
7a0ad09a0 make repositories of install dependencies configurable
34def8b33 Remove redundant nil check
fc45365fa Remove most logrus
f9c35feb3 Makefile: allow overriding GO_BUILD_FLAGS via environment
490905be6 go.mod: github.com/containerd/continuity v0.4.2
03abceac5 Update LTS description
34f32043b Blockfile: Expose RecreateScratch option
b4f487ce9 Apply suggestions from code review
1e3540e11 Add stale bot
4e236962f Update critools to 1.28.0
c92f4a160 Update RELEASES
c3f3cad28 Use sandboxed CRI by default
b76cd4d9f replace some fmt.Sprintfs with strconv
bbdbf7ab6 Add inspect image commands
78308b4a4 Add manifest printer library
11a5dd826 snapshots: replace some fmt.Sprintfs with strconv
06765c9ef oci: replace some fmt.Sprintfs with strconv
710d22366 removes/docker: replace some fmt.Sprintfs with strconv
d7bc8694b pkg/cri: replace some fmt.Sprintfs with strconv
73e9cfd1c append k8s 1.28 to releases
6d8329d7f Remove unnecessary joinError unwrap
8399a4ee7 Remove temporary replace
7ad0a6ccf Update to latest releases in RELEASES.md
cd8c8ae4b Remove hashicorp/go-multierror
1571a5aa0 ctr: metrics: drop unused retval from printWindowsStats()
7063ae1f6 Makefile: add rule for installing documentation
de4c338ab Docs: Document proxy plugin diff support
d09f7cbe0 cri: Fix sandbox_mode "shim"
60b2cb143 cmd: containerd: allow building w/o systemd notify
23c95359a Add WithMetaStore to overlay snapshotter to allow bringing your own
0c1ad52ea cri: spec_linux: drop unused retvals
eacd74c2b Go 1.21.0
5756cb00e CI: increase timeout for Binaries
c883410c9 CI: Explicitly upgrade MinGW on Windows 2019 GitHub runners.
0f043ae43 seccomp, apparmor: add go:noinline
5d9bf7d13 CI: temporarily disable ci_fuzz due to incompatibility with recent Go
e2ce4f58f Populate commit memory for windows memory usage stats
823e0420e Fix transfer service dependencies:
cfb30a31a Invoke Stable ABI compatibility function in windows platform matcher
0cea317a5 FreeBSD: set default runtime
def5ff3c4 Sandbox: Add annotations to controller CreateOptions
939ccbed4 Sandbox: Add annotations to CreateSandbox surface
1fd3a4652 archive/tarheader: fix FreeBSD hdr for regular files
f8edd5555 update runc binary to v1.1.9
f35d1f08e go.mod: github.com/opencontainers/runc v1.1.9
00ef8ba99 Vagrantfile: add strace tool
601699a18 integration: add ShouldRetryShutdown case based on #7496
8dcb2a6e6 pkg/cri/sbserver: fix leaked shim issue for podsandbox mode
72bc63d83 pkg/cri/server: fix leaked shim issue
5bdd9ca93 integration: add case to reproduce #7496
b451fa96a bump client-go v0.26.4
a645ff2e6 Update dependencies after protobuf update in hcsshim
e7e5619fe Update hcsshim tag to v0.10.0
54baf766e add metrics for discarding events
189a1599c archive/compression: update out of date RFC draft link
cac8b6f4b Makefile: allow overriding the binary executable target dir
90443f038 CI: update Rocky Linux to 8.8
0a57dc2a0 CI: update Fedora to 38
30dd0a17f CI: install Vagrant from Hashicorp
965641dbc Makefile: allow REVISION be overwritten by environment
fc32197d4 Makefile: fix overriding go command
2d3360ec7 CI: move Vagrant tests to GitHub Actions (larger runners)
4f3c8c468 replace mcr.microsoft.com registry to ghcr.io/containerd registry
d41c62a55 .github/workflows: add dmesg step for integration-linux
fd8778fba delete checkout branch in doc
c62abcb14 docs: document CRI cgroup driver auto detection
c80a3ecaf cri/sbserver: Use platform instead of GOOS for userns detection
157dff281 update to go1.20.7, go1.19.12
687a5f51a fix: allow attaching to any combination of stdin/stdout/stderr
aa8b094ab platforms: clarify docs for amd64/arm64 variant normalization
710d987d2 Fix default platform matcher when ctr import
2d64ab8d7 cri: Don't use rel path for image volumes
85a2c9a01 log: swap logrus functions with their equivalent on default logger
6baff1694 log: add package documentation and summary of package's purpose
238da2c52 log: make Fields type a generic map[string]any
634a4a1bb log: add log.Entry type
dd67240f1 log: define OutputFormat type
778ac302b log: define G() as a function instead of a variable
81ac648d9 log: add all log-levels that are accepted
0b6333a41 log: group "enum" consts and touch-up docs
4a36022e2 log: WithLogger: remove redundant intermediate var
40ee5fb11 log: SetFormat: include returns in switch
6fe7e03b8 log: remove testify dependency
e2ad5a985 removes/docker: remove unnecessary conversion (unconvert)
ed47d6ba7 cri: implement RuntimeConfig rpc
a1cdf60cb docker: add test to ensure not found error is returned by resolve
b4814a29d docker: return most relevant error from docker resolution
7f7ba31b6 cri: fix using the pinned label to pin image
480757135 pkg/epoch: fix Y2038 on 32-bit hosts
98974117b migrate to community owned bucket
a3404ac42 docker: add missing info log for 4XX/5XX responses
850b2e1bf go.mod: update cri-api to v1.28.0-beta.0
480bc8a2b .github/workflows/ci.yml: upgrade Ubuntu from 20.04 to 22.04
bc96b9039 go.mod: github.com/AdamKorcz/go-118-fuzz-build v0.0.0-20230306123547-8075edf89bb0
da2740885 go.mod: google.golang.org/genproto v0.0.0-20230720185612-659f7aaaa771
73dc13ad6 go.mod: github.com/urfave/cli/compare v1.22.14
1c4fc568b go.mod: github.com/prometheus/client_golang/compare v1.16.0
68abb525a go.mod: github.com/minio/sha256-simd v1.0.1
1f2216cc7 go.mod: github.com/klauspost/compress v1.16.7
3c6ab0420 go.mod: dario.cat/mergo v1.0.0
4bda0a69e go.mod: github.com/grpc-ecosystem/go-grpc-middleware v1.4.0
0f033b612 go.mod: github.com/emicklei/go-restful/v3 v3.10.2
90e050298 go.mod: github.com/containernetworking/plugin v1.3.0
0498acefb go.mod: github.com/.../container-device-interface v0.6.0
74b8cb850 go.mod: github.com/opencontainers/runc v1.1.8
895dd2e93 go.mod: github.com/opencontainers/image-spec v1.1.0-rc4
235a4452d go.mod: github.com/opencontainers/runtime-spec v1.1.0
06f18c69d cri: memory.memsw.limit_in_bytes: no such file or directory
f3daf32c7 Fix ro mount option being passed
b2967a8d6 update runc binary to v1.1.8
90ecb8104 fix: `ctr images check` outputs not unpacked images in quite mode
98f27e1d9 Revert "Add support for mounts on Darwin"
e939d1319 Revert "Revert 416899fc8e81a80a4b09b59c801f98d36ddc0e74"
6c9c71112 Revert 416899fc8e81a80a4b09b59c801f98d36ddc0e74
2799b28e6 Add support for mounts on Darwin
56d80f81a Update hcsshim tag to v0.10.0-rc.9
9c673f967 pkg/cri/server: TestImageGetLabels: use registry.k8s.io
f914edf4f [cri] Handle Windows pod transitions gracefully
52ef3468b Update Go to 1.20.6,1.19.11
48cdf1fe2 integration: Enable userns tests for sbserver
9160386ec cri/sbserver: Test net.ipv4.ping_group_range works with userns
1c6e26844 cri/sbserver: Fix net.ipv4.ping_group_range with userns
36a96d7f3 cri/sbserver: Remap snapshots for sbserver too
508e6f6e0 cri/sbserver: Add userns tests to TestLinuxSandboxContainerSpec()
fb9ce5d48 cri/sbserver: Support pods with user namespaces
c99cb95f0 cri/sbserver: Let OCI runtime create netns when userns is used
73c75e2c7 cri/sbserver: Copy userns helpers to podsandbox
0b6a0fe77 cri/sbserver: Move runtimeStart to match position with cri/server
90087ac44 WithRemapperLabels: Update doc to mention overlay supports it
9d9903565 cri: Fix comment typos
9e34b8b44 Uncopypaste parsing of OCI Bundle spec file
232538b76 bugfix(port-forward): Correctly handle known errors
5c480d9c8 Modify loopback size
7ef133ad4 Fix mount pkg typo
83ff030e4 Change http.Header copy to builtin Clone
cdb153ec9 Resolve docker.NewResolver race condition
01a6e1c73 Dedup WithNewSnapshotView
6a913ac82 Cirrus CI: configure apt-get to wait for locks
38f9bc3e0 fix ci Linux Integration test fail
c17d3bdb5 pkg/cri/server: Test net.ipv4.ping_group_range works with userns
9bf5aeca7 pkg/cri/server: Fix net.ipv4.ping_group_range with userns
05fef52b6 vendor: github.com/containerd/zfs v1.1.0
073de9308 Fix the auto restart fail when using LogURI and TTY together
00e5ae211 shim: change ttrpcService and ttrpcServerOptioner to exported interfaces
e9f63f64f update go to go1.20.5, go1.19.10
22a7c63c0 Sandbox: Change to mount.Mount for CreateOptions
51a1e7f0b Fix example shim to actually use its task service
a9cb6090e ci: remove libseccomp-dev installation for nightly
0607e7326 Move GetTopic function out of runc shim
5dedb6d0d archive: use 1970-01-01 as the whiteout timestamp
d6dbc4040 go.mod: Update cgroups to 3.0.2
f3b7436b6 Platforms: Add From/ToProto helpers for types
b3ab1f26c Snapshots: Add From/ToProto helpers for types
0a6b8f0ee OCI: Add From/ToProto helpers for Descriptor
4df27fd77 Update ginkgo to match cri-tools' version
9a202e342 seccomp: always allow name_to_handle_at
55a8102ec mount: Add From/ToProto helpers
e85352183 integration/client: Rework withBytesBuffers
54a93c6c5 Make ptypes.Empty a var in contentserver
cdc90c838 Remove duplicated code in content Copy
50376ec9f remotes: allow FetchByDigest client to pass mediatype as header
0a92661e6 Add a platform.ParseAll helper
e89d7204e MergeStringSlices use sets
8760b8717 pkg/epoch: extract parsing SOURCE_DATE_EPOCH to a function
9924e56f4 pkg/epoch: fix tests on macOS
dfd7ad8b3 Reword Windows file related TODO
44e2b26a8 pkg/epoch: replace some fmt.Sprintfs with strconv
f82d9b799 Integration: Align empty IO func on Windows
f3124d569 Makefile: Remove hcsshim related TODO
2aeac9a8f Remove duplicated writeIndex func
7601dd9a9 Dedup manifest config platform helper
f3df7f739 log when a lease expires
a01118bbe Minor changes to sandbox metadata
f60a4a271 cri: drop unused arg from generateRuntimeOptions
1fb835f04 Remove unnecessary label bucket loop
a207b430e snapshots/blockfile: fix lint issue
59b0b39af vendor: update github.com/containerd/continuity
d358f1680 fix unbound variable
f4ad68d5f fix-push-image-rate
7de95cbc4 snapshots/blockfile: deflaky the testsuite
6dfb16f99 snapshots|pkg: umount without DETACH and nosync after umount
72b7d1650 mount: support direct-io for loopback device
437f13410 Don't run CI on push
e26c97cb8 Save marshalled empty response in streaming service
9e09bfb59 Use RWMutex in NSMap and reduce lock area
38b0f970f No more nondistributable layers in MS registry
d278d37ca Sandbox: Add Metrics rpc for controller
d115129d1 Add configurable mount options to overlay
d56722ef2 Sandbox: Add SandboxMetrics rpc
4bb709c01 avoid "any" as variable name
577696f60 replace some basic uses of fmt.Sprintf()
5cd6210ad runtime/v2/runc: handle early exits w/o big locks
df280942a integration/client: add timeout to `TestShimOOMScore`
6dd529e40 Pass in imagespec.Platform to WithVolumes()
d18026592 release ticker correctly
28a5199ff Add a check to skip stats for containers that are not running
34a93a0c2 task: don't `close()` io before `cancel()`
007c5b6e3 Setup otlp from env
104b9ef9e Update x/sys to 0.8.0
69b451af5 RELEASES.md: de-deprecation of CNI conf_template will be v1.7.3
ab5365222 ctr: update WritePidFile to use atomicfile
c409c631c shim: WritePidFile & WriteAddress use atomicfile
3c4a1ab1c cri: write generated CNI config atomically on Unix
f3ba7c8a3 atomicfile: new package for atomic file writes
28d8c79de Replace atomicBool with the standard library atomic.Bool
fe4f8bd88 Pinned image support
a85b12d4d docs: cherry-pick individual commits instead of merge commit
738c4c6fa Fix issue for HPC pod metrics
52997ea98 remotes/docker: ResolverOptions: fix deprecation comments
a35ead5b9 bugfix: add nil pointer check for cgroup v1 mem usage
2a60fe5a6 Remove events from init context
d3887b2e6 Support CDI devices in ctr --device flag
3ca5b4437 Remove cni conf_template deprecation
94f0af3ec Image.IsUnpacked(): make error-handling more iodiomatic
54658a115 Image: rename variable that shadowed import
d2b7a1e29 cleanup DEPRECATED TLS config
f857626d6 Move PLEG event back to CRI
fc50334ca Generate sandbox exit events from CRI
d2605de73 add handling of a '.' commondir and bounds checking to mount_linux
cf5605459 Move pod sandbox recovery to podsandbox/ package
45dbb4e54 Publish sandbox events
65906335b Add sandbox events protos
21b3318eb Fix several conversions of "ocispec.Image" to "ocispec.Platform"
f2bc73782 Add cpuset-mems flag to 'ctr run' command
f642c0a5f ctr: add cpuset-cpus flag to 'ctr run' command
314d758fa update auths code comment
9702d4aee snapshots/blockfile: use passed in dst in scratchGenerator
bb82f3683 snapshots/blockfile: use loop if options is empty
9287711b7 upgrade registry.k8s.io/pause version
fbb38ab6b Fix the spelling of repository within the NRI plugin documentation.
752e13d9a fix(docs): minor fix on the windows installation steps
c1b926800 Windows Integration: Switch Azure-based CI to vanilla 2019 image.
b9dfd29b7 Update tests to use volume-copy-up:2.2
4bfcac85f notify readiness when registered plugins are ready
7819da843 Document Protocol Buffer Setup
579b5596c Update volume-ownership image with latest hashes
88a3e25b3 Add targetOS to WithVolumes()
c7ec95caf Reword comment and make slight change to code
ec2bec648 Fix non C volumes on Windows
3d7522b7f ctr: allow run to override mounts
7beaa5e85 Add mount options to blockfile snapshotter
261d45efe docs/remote-snapshotter.md: update links and description
7274e33e3 CRI: Make stats respect sandbox's platform
82deabf9d Optimize metadata Schema notes to correctly match metadata structures
a6cd5e3f4 bugfix: resolve symlink when looking up mountpoint
b9f2e48e3 feat: make overlay sync removal configurable
becf04a59 Update to docker/login-action V2
79709a205 disable provenance
1be571b14 Add sync before unmount on snapshotter layer test
b729962e3 Add blockfile snapshotter to snapshotters doc
798dba9fa Add blockfile as a builtin
0c386e2eb Add blockfile snapshotter
d280cb83b chore: update comment for NetworkPluginSetupSerially
f8907ab87 Update volume-copy-up
811456b31 go.mod: github.com/containerd/continuity v0.4.0
6f715ab10 go.mod: github.com/containerd/go-runc v1.1.0
85cf9a09e Bump seccomp version to be the same as one in runc repo
cdaa4025e Fix some typos
3d9dd2022 ctr: fix the cleanup of task
66307d0b4 CRI: Support Linux usernames for !linux platforms
5dbae3819 snapshots/testsuite: Rename: fix fuse-overlayfs incompatibility
df65e321e Simplify closing bundle dir fd
718250b6b Update ttrpc to v1.2.2
7e42dc34d improve container Task comment
4347fc8bc go.mod: github.com/opencontainers/image-spec v1.1.0-rc3
5e054ee63 go.mod: github.com/opencontainers/runtime-spec v1.1.0-rc.2
bb61a6d4b cache diffIDs
6e2c915a4 Bump up golangci-lint to v1.52.2
ecb693ec7 bump typeurl to v2.1.1
f5211ee3f Change to Readdirnames for some cases
e60a17925 .github: disable cache for actions/setup-go@v4
52afa34f5 cri: update WithoutDefaultSecuritySettings comment
6f34da5f8 Cleanup logrus imports
717169bb8 plugin: remove go < 1.8 stub, enable on windows and arm64
28d749c9e move to CRI-TOOLS v1.27.0
27f56e607 Fix umarshal metrics for CRI server
b947a6f52 update go to go1.20.4, go1.19.9
c54b706c0 Add faasd and actuated into the ADOPTERS file
d56466cf3 [transfer] avoid setting limiters when max is 0
2e53c0ec8 Windows integration: fix critest binary path in Azure-based workflow.
9e7f8fe30 Update CRI registry configuration docs
0d975230e Fix panic when remote differ returns empty result
c58a229e5 Run CI when adding to the merge queue
0ba066474 vendor: github.com/opencontainers/runc v1.1.7
cbd10e41a vendor: github.com/opencontainers/runc v1.1.6
27c0fe3eb update runc binary to v1.1.7
4891bba83 Update tar tests to run on Darwin
d9f3e387c Remove entry for container from container store on error
8ba285f6b fix unable to checkpoint the container more than once
370be0c18 Move logrus setup code to log package
92b93e376 cri: Vendor v0.27.1
8c80ccc7f Update external repo links that changed default branch to main
519457e3e ctr: Add sandbox flag to ctr run
c786994ea Update transfer configuration
4e5693938 Add platform config to proxy plugins
4192ca8f8 pkg/cri/server: sub-test uses array and capture range var
8bcfdda39 pkg/cri/sbserver: sub-test uses array and capture range var
745ec84e5 Add diffservice to contrib
3784c1c91 Add proxy differ
cb2c3ec8f oci: partially restore comment on read-only mounts for uid/gid uses
f23816740 go.mod: add comment explaining go-fuzz-headers replace rule
ec9e74ed9 go.mod: remove replace for github.com/opencontainers/runtime-tools
6c40cf305 go.mod: integration: use non-pre-release of containerd
92d1e9bee go.mod: integration: move indirect dependencies to the right group
18d7e84f9 runtime/shim: fix the nil checkpoint options
cd16b31cd Get CDI devices from CRI Config.CDIDevices field
da4de96e2 containerd support k8s 1.27
4b35c3829 update shim example
71ababe30 runtime/shim: remove runc/v2/services
b71f4b751 runtime/shim: rename RunManager to Run
49111b115 update runc binary to v1.1.6
85df1cc6b doc: update CI signal info in README
7e6ab8488 cri: Throw an error if idmap mounts is requested
85afda6f5 cri: Vendor v0.27.0-beta.0 for mounts uid/gid mappings
f7b8b1181 update the version of the runc shim in the readme and examples
dc2fc987c capture desc variable in range variable just in case that it run in parallel mode
05bb52b27 Use t.TempDir instead of os.MkdirTemp
7a7519a78 CRI Sbserver: Make PodSandboxStatus friendlier to shim crashes
79cb4b000 [sbserver] handle missing cpu stats
464a4977a [sbserver] Refactor usageNanoCores be to used for all OSes
e0b817ec1 Fix argsEscaped tests
aee358765 Update to setup-go@v4 action
811be6085 Update Azure-based Windows workflow image SKUs.
dfc7590d5 remotes/docker: Add MountedFrom and Exists push status
db223271e Register imagePullThroughput and count with MiB
6f0714efc Use RunWithPrivileges
b41ca1159 Fix access denied on mounted vhdx root
a7fddb40b Use wait instead of a sleep to check for startup delay
d0527e228 Support for dropping inheritable capabilities
0fb2d9132 update go to go1.20.3, go1.19.8
cab056226 oci: Use WithReadonlyTempMount when adding users/groups
c9e5c33a1 UnmountAll is a no-op for missing mount points
8538e7a2a Improve error messages and remove check
ba74cdf15 Make ReadOnly() available on all platforms
7bb2756bc Increase integration test tmieout to 20m
1279ad880 Remove bind code path in mount()
6a5b4c9c2 Remove "bind" code path from diff
76690706f CI: bump up crun to 1.8.3
d373ebc4d Properly mount base layers
ca5605b4a Skip parent layer options on bind mounts
7f82dd91f Add ReadOnly() function
157fe6a13 docs: fix typo in comment of ExitStatus.Exit(Code|Time)
4012c1b85 Remove escalated privileges
54f8abe55 Use DefaultSnapshotter
47dd3dcff use t.Fatal if we cannot enable process privileges
e31bef15f Update continuity
95687a932 Fix go.mod, simplify boolean logic, add logging
7a36efd75 Ignore ERROR_NOT_FOUND error when removing mount
db3279859 Update continuity, go-winio and hcsshim
00efd3e6d Remove unused function
dc980b14a Grant needed privileges for snapshotter tests
feb637f92 Fix layer comparison and enable read-only checks
36dc2782c Use bind filer for mounts
d591bb042 Enable TestSnapshotterClient on Windows
7b36becd2 Run Windows snapshotter through the test suite
ac30eabbd Fix misspelling of 'Native' as 'Naive'
639c5799a Add paired 'mount' log for 'unmount'
8395e3a89 Don't use all-upper-case filenames in snapshot tests
909730dec Skip tests that do not apply to WCOW on Windows
469c13997 Ensure mounts are unmounted before leaving the test
84cc3e496 Unify testutil.Unmount on Windows and Unix
474a257b1 Implement Windows mounting for bind and windows-layer mounts
34b07d3e2 Implement WCOW parentless active snapshots and view snapshots
82ec62b86 fix: cio.Cancel() should close the pipes
ac84bf7c8 Update sbserver to add noexec nodev and nosuid to /etc/resolv.conf mount bind.
126ab72fe Keep linux mounts for linux sandboxes on Windows/Darwin
990199a02 Test to ensure nosuid,nodev,noexec are set on /etc/reolv.conf mount.
96490734b update runc binary to v1.1.5
b55dad06a go.mod: github.com/opencontainers/runc v1.1.5
c89438e83 integration: add container start test using abs runtime path
3557ac884 Extract image service from CRI
97064b077 WithRuntimePath uses the TaskInfo.RuntimePath field
c56f54aa1 devmapper plugin: skip plugin when not configured
a11e47b48 Use built in atomic.Bool
87346df54 Defer uid lookups on Darwin
ae4dbb60d Add noexec nodev and nosuid to sandbox /etc/resolv.conf mount bind.
1be08b10f ctr/tasks: fix unmarshal the task metrics for cgroups v1
8322bcb88 Adds a file header
50b576a94 Adds a dev container and Codespaces docs
0bbca7f1b Cleanup protobuild config
daa3a7665 Add `WithReadonlyTempMount` to create readonly temporary mounts
f48ae2227 fix: Update error message format based on feedback
3193650f1 fix: 'failed to resolve symlink' error messaging
14714b94d Fold the output of `crictl info`
5fdca538d adding cni metadata to the container in the `ctr run --config`
32d431a7c Update crictl doc
690ae58ca Update cri-tools version on windows
5956cdea8 Remove third-party package cri-api
c011502bd Remove cri v1alpha1 services
23d288a80 Remove the CriuPath field from runc's options
62f98a1c1 CRI: Don't always close netConfMonitor channel
a4d33a784 Remove support for config.toml `version = 1`
3e87f05b6 Fix image pulling with Transfer service
c5f1086ad Update docs
fda5c84bc Update gce contrib to use v2 by default
8bd82e355 Remove no_pivot when creating container from CRI
07c2ae12e Remove v1 runctypes
c50a3ef04 Update Makefile and CI
ef516a150 Remove runtime v1
76778aee6 integration: add restart monitor test for paused task
35a103d32 Remove "containerd.io/restart.logpath" label (deprecated since v1.5)
08337f356 Pre-splice strings and determine whether it is a file and check criCleanup err.
e0d9b9663 Fix restarting the paused containers
86fc1ccab Remove `aufs` snapshotter (deprecated since v1.5)
50740a1a0 use strings.Cut instead of strings.Split for parsing imageConfig.User
b39ac5d09 docs: fix typo in comment of plugin.Plugin.Err()
d835fd2a3 Sandbox: Correct/add some fields to Status()
d3e856da7 export: add test for WithSkipDockerManifest
70da5c783 Sandbox: Cleanup shim on Start failure
406583165 archive: consistently respect value of WithSkipDockerManifest
727b25403 fix userstr for dditionalGids on Linux
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping containerd to version v1.7.0-beta.0-284-gf2cf411b7, which comprises the following commits:
d5010a12d docs: Authorizer.Authorize could return ErrUnexpectedStatus
2eabcf702 fix: check for tmpfs when evaluating if userxattr should be used
a6929f9f6 Add Evented PLEG support to sandbox server
a338abc90 Add container event support to containerd
e14753fc5 Respect no_cri constraint
3bc8fc4d3 Cleanup build constraints
c040f8382 Fix default config for Darwin
0b349428e CI: Vagrant: pin rockylinux/8 to v5.0.0
662d8a085 vendor: golang.org/x/net v0.4.0
f9295aa49 Fix context when waiting sandbox
8ab1d4496 Pass runtime configuration as TOML blob
3e92dedc2 Update runtime options to include bytes blob
a113737cc sbserver bug fixing
85776d2c6 update to go1.19.4, go1.18.9
840a657eb Change PushContent to require only Provider
847294679 Adding unit tests to opentelemetry tracing
8a25fa584 Unwrap proto errors in streaming client
b0dd50655 fix panic when containerd-stress density --count 0
39cc684c6 docs: Add extra security instructions
afa19a0a7 Fix process_vm_* syscall names in seccomp
740e90177 go.mod: re-vendor NRI from the official repo.
345332175 upgrade the ops.md output for current 1.7 version .
f88162587 Rename transferer to transferrer
fc2754204 Cleanup code comments and lint fixes
f1598cf5e Update transfer docs
01bd314b1 Rename local transfer plugin
c387a5205 Add variables names to transfer interface
8304a61b5 Combine stream fuzz tests
0762a3a75 Add media type to export stream
52341a234 Update export API types
42eedc0bc Update ctr to make local the default for distribution
ef61e13a6 Update import cli to use transfer service
11c1c8e6f Update import logic
66dc4d106 Update API for import types
b991c71e9 Update pull command to use filter arguments
40d3fa3af Add filter fields to image store types
9ae92f16e Improve push handler ordering
737257bb4 Add push progress
e88baa087 Fixup pull authorization and labeling
478f1c934 Lint fixes
28ea75456 Regenerated protobuf files with updated version
b0f519703 Add transfer docs
cd67a98ec Add transfer integration test
0aca4bb1f Update ctr commands to use transfer interface
6b5df1ee1 Update transfer packages
2a8d7a744 Update transfer API
7318a2def Add transfer plugin registration
d1627e3c7 Add basic import and export handlers
adfaeeff0 Add binary stream functionality and helpers
e506cd103 Implement client interface for transfer service
81afd9c36 Add progress
0e4e96544 Add transfer proxy client
6f64cb859 Transfer interface and plugin work in progress
f61ed7e94 Transfer API types
a24ea31c2 Add transfer API
dcf5687ca Add streaming service
08d5879f3 Added nullptr checks to pkg/cri/server and sbserver
8e0a3c51a Add ctr image prune
ceab73007 use MaxConcurrentDownloads instead of MaxConcurrentUploadedLayers
f012617ed CRI stream server: Fix goroutine leak in Exec
9f4ba4883 [sandbox] Fix panic when waiting for sandbox controller
dbc6d33ac [sandbox] Specify sandbox ID when using sandboxed shims
9a53a6c34 [sandbox] Don't access pause container when creating pod container
cc111eef6 [sandbox] Move sandbox info to podsandbox controller
a0daf1c28 docs: add NRI-related documentation.
02f0a8b50 pkg/cri/server: nuke old v0.1.0 NRI hooks.
ca84aba6c integration: add first NRI integration tests.
b27ef6f16 pkg/cri/server: experimental NRI integration for CRI.
43704ca88 nri: add experimental NRI plugin.
a6d1d53cc [sandbox] Update Controller.Status protos
2136736f5 go.mod: golang_protobuf_extensions v1.0.4 - prevent incompatible versions
63c6c55ab go.mod: roll back github.com/containerd/cgroups to v1.0.4 release
3c1c0878e integration/client: update containerd version to v1.7.0-beta.0
ebd63adac integration/client: fix go.mod grouping
8d868dadb Add ptrace readby and tracedby to default AppArmor profile
8c035d387 Resolve warnings in Windows GitHub Actions periodic workflows
ae0da7dc5 Use sandbox store to retrieve runtime info for sandboxed containers
3ddaa3444 Retrieve sandbox creation time from store.
4b3281982 Remove duplicated helpers
3f331e7d1 Specify runtime configuration for sandbox shims
c4dee237f Fix order of operations when setting lease labels
a22f0a4c3 archive: set WithModTimeUpperBound when WithSourceDateEpoch is set
ed3a49c0e fix for OSS-Fuzz infra changes
ac4af4df8 integration: enable CNI slow test for sbserver
a74f7e902 sbserver: save netns in sandbox metadata on create
085d8e633 integration: enable tests for sbserver
1deaedd38 sbserver: persist sandbox during partial teardown
5a7c108ba Resolve Scorecards GitHub Actions workflow warnings
b7b185c92 update github.com/cpuguy83/go-md2man/v2 to v2.0.2
6142a2a24 sys: remove unused GetOpenFds()
f0ce2f6d3 remotes/docker: remove deprecated NewAuthorizer alias
c71a31156 sys: remove aliases for deprecated EpollCreate1, EpollCtl, EpollWait
3e5b444ac pkg/cri/util/: remove deprecated NormalizeImageRef alias
3a7cfaebb sys: remove alias for deprecated sys.RunningInUserNS()
bd912bbee go.mod: github.com/matttproud/golang_protobuf_extensions v1.0.2
5f23daeb2 go.mod: github.com/moby/sys/sequential v0.5.0
763ec7c86 go.mod: github.com/cpuguy83/go-md2man/v2 v2.0.2
0f616e354 go.mod: github.com/AdaLogics/go-fuzz-headers v0.0.0-20221118232415-3345c89a7c72
df4d07352 go.mod: golang.org/x/sys v0.2.0
4e68634ef go.mod: github.com/sirupsen/logrus v1.9.0
579c7f43d Change fsnotify event status condition.
2cea525ee Bump fsnotify to v1.6.0
73c6db881 Bump urfave-cli to v1.22.10
bf777a70b remove duplicated tx rollback
70b65062c Missed out `platform interface` when reused the conn for Client.
0c4d32c13 cri: add pod uid annotation
438db09b0 Fix building.md for btrfs
792294ce0 Update to cri-api v0.26.0-beta.0
234bf990d Copy cri-api v1alpha2 from v0.25.4 to containerd internal directory
e224f77eb Add process_vm read and write calls to default seccomp profile
e4130b2a0 overlay: Remove unused method param
661aaae3b introspection: expose the daemon's PID and PIDNS
f6232793b can set up the network serially by CNI plugins
2f5dd7c66 CI: update Fedora to 37
3fc5802d1 gotestsum match go version 1.19
aaf59efd2 Expose Done and Err in Shutdown service
5d0457df9 Refactored ctr to allow for tty allocation when container has {terminal:true} within Spec
c245347e9 tx rollback when GetInfo return error
14a08721c Remove OpenTelementry imports from remotes/docker package
405024db0 complement sub-command note for containerd-main
e38e2c8a4 make status more readable and update easy.
3abcfb5c0 keep the lower case letter for flag info
69af001b3 Replace broken and redirection link for CRI and kubelet in docs
b0133882f bump critools into ca1571e6edd116b2c95f52e3dfa0b4779b74223a
8bb599973 Remove the outdated comment
dd86128e0 Convert hcsshim's stats to cgroups' stats
6596a7086 Use github.com/containerd/cgroups/v3 to remove gogo
38ad785ce Bump k8s.io deps to v0.25.4
bd66f588b Bump OpenTelemetry contrib to v0.36.4
3fca677c1 Release: add static binaries
0c63c42f8 Fix slice append error
b829e6f2d Bump OpenTelemetry to v1.11.1
7def13dde Add a thin wrapper around otel Span object
ab194e65f Bump grpc to v1.50.1
b742aa2e7 fuzzing: bump go-fuzz-headers
91e295d76 Add `--debug` args
0f54c4740 feat add sandbox api status func
c953eecb7 Sandbox API: Add a new mode config for sandbox controller impls
99ac7a771 add oci.WithCPURT
717aa5929 Remove uses of deprecated go-digest.NewDigestFromHex, go-digest.Digest.Hex
3a9044f24 Rename darwin-kubelet to containerd
5f48e00af Extra documentation for content interfaces.
202abf8fc Bump k8s.io deps to v0.25.3
eaedadbed replace strings.Split(N) for strings.Cut() or alternatives
f90219d47 services/server/config: TestMergeConfigs(): use correctly formatted values
4866d8ba4 registry: support ipv6 addresses
8bec2b652 Replace references to `re` with `regexp.MustCompile`
5c510e47a Improve how reference regexps are built
98ff27265 Clarify repo name regex intention
2a8a53178 go.mod: change imports to github.com/distribution/distribution/v3
a97eb6955 Update repo normalize error message to include the name of the repo.
b979f0069 Fix bug in parsing domain from repository reference
f96660286 reference/docker: add unit-tests from upstream distribution/distribution
7de88c5ba reference/docker: align files with original code
f32595a0c Fix "getCPUInfo for OS freebsd: not implemented" on FreeBSD/arm64
11a06c1a3 ctr: add `ctr content fetch-blob`
dfd6a3aa6 remotes: add FetcherByDigest for fetching blobs without foreknown descriptors
c607f83c3 Fix missing closed fifo
a24ef0993 Replace mount fork hack with CLONE_FS
8b1b81eef Update hosts doc
f0bf9e7f8 Support default hosts.toml configuration
81bbd9dac add option to resolve symlinks to linux device
ee64926a7 add SpanAttribute
2d9f0f2fb add additional info in backport process
3b87d46ce Add tracing spans in CRI image service and pull.go
902b96cf2 fix comments
30c3078ae go.mod: golang.org/x/*: use tagged versions
422a24066 Bump go version to 1.19.3
9c2a63440 Fix ctr crash when pulling with http-trace and http-dump
78ac0046a ctr export strictly match default platform
a270d6e8a Harden GITHUB_TOKEN permissions
98269c061 s390x: initial enabler
4b2a23e7e overlayutils: Add fastpath for userxattr check
2da782468 Add sequence diagram for shim runtime v2
0be981595 Sandbox API: Move remote impls to /sandbox/proxy
2e83d885d fuzzing: improve archive fuzzer
7c77b3540 Add Workflow for running critest with Hyper-V Containers on Windows.
9494f0b80 Add HyperV config in tests
53f67705c Add release notes for v1.7.0-beta.0
c776a3631 Update mailmap
b7d0d1271 Cleanup sandbox interfaces
be3987a92 Migrate away from GitHub actions set-output
9a0331c47 maintenance: Remove WithWindowsNetworkNamespace from pkg/cri
3f3e2b3cc Fix LogURI generation-related tests on Windows.
ddb8a65be update codeql-action to v2
727b33c71 Retry client connection in waitForStart
3e4449862 Add logging volume metrics to Containerd CRI plugin
3ddcbf5f1 Update 1.5 release support timeframe
9a8611d63 bump go-fuzz-headers
fc86be501 not init a tracing processor when not loaded
47fa603e1 Update required Go version in BUILDING.md
8e7ef890a Use logtest if possible to clean up logs
a76d68ee4 Separate containerd logs in GitHub Actions' console
e47bdbd16 Upgrade critools from 1.24.1 to 1.25.0
878dbc7af Upgrade actions/upload-artifact from v2 to v3
198277202 Use `go env` to determine GOPATH in Makefile.
6a07a1c07 go.mod: matttproud/golang_protobuf_extensions v1.0.2 (use tag)
972399538 sys: synchronize mkdirall() with latest os.MkDirAll()
063c5f980 sys: create SecurityAttribute only once (Windows)
a983599e2 sys: update volumePath regex to allow returning earlier
d422c87e4 sys: compile volume-path regex once, and update GoDoc
f8f052482 Vagrantfile: explicitly specify rsync as the shared folder driver
4839f1bdf Add timeouts to all CI jobs
890398677 cri: PodSandboxStatus should tolerate missing task
fb6a40dc9 Don't unmount on Darwin when deleting bundle
c7e6a889b sys: remove unused IsAbs() (windows)
48daccb4d fix the --no-pivot flag being ignored by `ctr tasks start`
ea53e52fc CI: update GHA instances from Ubuntu 18.04 to 20.04
49a54e23c Stats() shouldn't assume s.container is non-nil
e7c8a5ab0 Move up actions versions to prep for deprecation
752bff981 cmd/containerd: use golang.org/x/sys/windows.SetStdHandle()
8b5df7d34 update golangci-lint to v1.49.0
f9c80be1b remove unneeded nolint-comments (nolintlint), disable deprecated linters
29c7fc952 clean-up "nolint" comments, remove unused ones
d21572513 pkg/cri/(server|sbserver): criService.getTLSConfig() add TODO to verify nolint
0eaace306 golangci-lint: sort linters in config file
3ebeb6d79 linting: address gosec G112/G114
347397cf2 update go.mod and go.sum
643dc1656 improve CDI logging
8ed910c46 CDI: configure registry on start
eec7a76ec move WithCDI to pkg/cri/opts
634bf0dd3 cmd/containerd: use golang.org/x/sys Service.SetRecoveryActions()
17a932403 Update the default seccomp to block socket calls to AF_VSOCK
d4b9dade1 Updates oci image config to support upstream ArgsEscaped
047e684bb fix install cni script
b7f6a6804 runtime/v2/shim: clean up the use of containerdBinary
b41d6f40b Update container with sandbox metadata after NetNS is created
8fc68db0c cmd/containerd: replace deprecated windows.IsAnInteractiveSession()
63a7d8a7f fix pusher concurrent close channel
260af5e1d TestTaskResize must use a terminal
39158629f diff/apply.readCounter: check negative size
70fbedc21 archive: add WithSourceDateEpoch() for whiteouts
0aefb5280 archive: windows: chtimes(): remove redundant conversion
f9c9121e5 archive: validate digests before use
8162e044b Add long term stable release branches
e2d8f3859 vendor: github.com/opencontainers/selinux v1.10.2
011fca6ed fuzzing: create structured tar bytes in archive fuzzer
54f2b5121 Update to go 1.19.2 to address CVE-2022-2879, CVE-2022-2880, CVE-2022-41715
f330ffd83 cri doc: Update kata containers reference
0119d43a4 use raw link to containerd.servic config
a59ecc50e CRI: implement Controller.Delete for SandboxAPI
9d18b5746 Modify WithDiscardUnpackedLayers
4333e6a6d Swap to net.ErrClosed checks for services
acb2964d6 go.mod: Bump go-winio to v0.6.0
4196fad02 Add integration tests with failpoint
4f4aad057 Persist container and sandbox if resource cleanup fails, like teardownPodNetwork
396b6d670 fix missing close
7a66f70b5 cri-integration: pass ENABLE_CRI_SANDBOXES to test
2432b54a5 Add new ctr option for discarding unpacked layers
b4558bedc Add test flag for skipping shim cgroup test
c6f571fc7 Set grpc code for unimplemented cri-api methods
82890dd29 CRI: implement Controller.Stop for SandboxAPI
927906992 CRI: implement Controller.Wait for SandboxAPI
dcb0d8f9e remove stray .zuul.yaml
e22a7a383 reference CDI configuration details
bc01f8fc0 Add reader option to local content reader at
c8010b9cb sbserver: return resources in ContainerStatus
b92f3160a cri-integration: propagate ENABLE_CRI_SANDBOXES
b79dcabd6 chore: enable Scorecard Github Action
8f4c23b69 retry request on writer reset
a37c64b20 Refactor CRI fuzzers
bf26140d9 Fix LogURIGenerator on Windows
adfbda464 Add ext2 fs support to devmapper snapshotter
f0fbc8dfd Upgrade fuzzing-related packages to reduce dependencies
e7c593edd Fuzzing: Instrument with new sanitizers
9cdf9f6c6 Use jq and only show failed tests on summary
34ad96bab CI: Output a summary using GITHUB_SUMMARY
524d3aca8 github.com/emicklei/go-restful CWE-285: Improper Authorization
3cfde732e remotes/docker/config: Skipping TLS verification for localhost
0f51aa874 Add NoSameOwner option when unpacking tars
b2a7183a8 matching the casing of other flags for ctr's pull command.
829dd2145 update cdi version to v0.5.1
0f743ce4f vendor: golang.org/x/net v0.0.0-20220906165146-f3363e06e74c
8f2bbd5e8 Update to go 1.19.1, 1.18.6 to address CVE-2022-27664, CVE-2022-32190
6ce0f6a26 Fix missing close
8575a0d6f Remove unused variable from images action
5e57d463d feature: use client default namespace
3c0e6c40a feat: upgrade registry.k8s.io/pause version
f9166aa53 .zuul: remove the zuul because it is offline
e041d1a2c integration: TestUpdateContainerResources_MemoryLimit: remove TODO comment
3a2197f5f metrics/cgroups/v1: Remove unused event parameter
bfb280fb3 Update golangci-lint timeout to match config
407703f09 Make checkContainerTimestamps less strict on Windows
344b25995 delete redundent import alias and and type conversion
17e436c20 Pin github.com/AdamKorcz/go-118-fuzz-build
a3bfa58b0 Make oss-fuzz mandatory
2e677c932 sys: move ForceRemoveAll to integration/client
19db697a5 archive: replace tarName() with filepath.ToSlash()
3cc3d8a56 mount: use ioctl helpers from x/sys/unix
0c6553bfd go.mod, vendor: bump golang.org/x/sys to latest version
93342d637 replace sys Sequential funcs with moby/sys/sequential
9ae2cc3a8 mount: remove unused ErrNotImplementOnWindows
dcfaa30ba chore: remove duplicate word in comments
b170eb3ca Add Kubernetes v1.25 supported version as v1.24
fdff11def ctr: add privileged-without-host-devices for run command
d063597e8 Upgrade github.com/klauspost/compress from v1.11.13 to v1.15.9
eb664aed0 go.mod: github.com/opencontainers/runc v1.1.4
ad597015c update runc binary to v1.1.4
962841fc7 Clarify containerd 1.5.0+ for k8s 1.20,1.21
90f6bd21c script/setup: handle cnidir with SUDO
331066f87 update intergration
49e2fe2ab bump cri-api
b7b1200dd ContainerStatus to return container resources
9525b3148 migrate from k8s.gcr.io to registry.k8s.io
f0036cb9d windows: Add runhcs-wcow-hypervisor runtimeclass to the default config
f318947b0 Do not rename test files on-the-fly to share functions
912d43b2b Revert "Downgrade MinGW to version 10.2.0"
850f667f5 contrib/fuzz/daemon.go: reformat the fileheader
460b0533b pkg/cri/streaming: increase ReadHeaderTimeout
9d286baed crypto/sha256 must be imported
adc7d5b2e Don't patch github.com/cilium/ebpf
470d3ee05 Upgrade containerd/cgroups to remove github.com/cilium/ebpf's fuzzer
43907515b adding support of CAP_BPF and CAP_PERFMON
13b14736a Don't fail test when GOOGLE_APPLICATION_CREDENTIALS is unset
095044710 Remove Windows special case in TestContainerdRestart
1f8db2467 go.mod: Bump hcsshim to v0.10.0-rc.1
396d2a7e4 ci: remove GOPROXY environment variable due to https://github.com/go-yaml/yaml/issues/887
1d8b1bc75 Cleanup shim manager
ff65fc2d0 Make TaskList generic
6e4b6830f Update CRI-API
782fd3c8e Vagrantfile: dump containerd log after critest
74c09b756 Fix contrib/ header
8add7e5d3 Rework permission handling in scripts
6ba91de84 release workflow: remove Go setup action
f8add9263 release workflow: increase timeout to 30 minutes
2dbff1dbc oci: skip checking gid for WithAppendAdditionalGroups
481861020 release: rollback Ubuntu to 18.04 (except for riscv64)
68bae258a Update protobuf definitions
ca3b9b50f Run gofmt 1.19
4a11a4018 Update golangci-lint to 1.48 with Go 1.19 support
ea6613029 Switch to Go 1.19
7787168cc Use global env variable to specify Go version on CI
5cf77fc43 Add TODOs for the remaining work
e1c5d71c0 Update golang to 1.18.5, 1.17.13
ee0f2e906 Change os.Stderr reassign for Windows service
426fcfbc5 fix protobuf aarch64
aa3303b69 Update sandbox protobuf to match CRI
882322417 Update controller's start response to incldue pid and labels
3d028308e Cleanup CRI files
c085fac1e Move sandbox start behind controller
f51014f8d Add sandbox to in memory services
6c14ca25d Fix cleanup in critest
e47c433d5 Add sandbox store helpers
f5fb2c32d Regenerate protos with updated protoc-gen-go
b16c3e9ad Windows HostProcess container CRI stats test
106433b79 Use httputil.DumpRequestOut for dumping client req
2fa84b1b8 Add extra context to error when push unauthorized
f4d05f207 chore: bump macos runner version
276a6f133 test: error strings should not be capitalized
2b92c70fa Fix command line parsing for image list
14003683f go.mod: Bump hcsshim to v0.9.4
1e0698e8e Fix CRI image pull timeout test for ppc64le
c15d8e156 go.mod: Bump hcsshim to 0.9.3
a9514da75 Update image references for Windows tests
2ae5f405d Use image lists instead of hardcoded images
552d76344 Use image lists in client tests
d121efc6d replace with selinux label
e6a2c0790 integration: simplify CNI-fp and add README.md
344431cdd fix: support simultaneous create diff for same parent snapshot
050cd58ce Drop deprecated `ioutil`
500ff95f0 Make getServicesOpts a helper
ee6fc5c2e adds an env var commented out for sandboxed mode
cbebeb944 pkg/failpoint: add FreeBSD link and update pkg doc
3c5e80b63 integration: Add injected failpoint testing for RunPodSandbox
be91a219c integration: CNI bridge wrapper with failpoint
1ae6e8b07 pkg/failpoint: add DelegatedEval API
b297775ea runtime/v2/shim: return if error in load plugin
5f9b318e5 bin/ctr,integration: new runc-shim with failpoint
822cc51d8 runtime/v2: manager supports server interceptor
ffd59ba60 pkg/failpoint: init failpoint package
3125f7e1a cri_stats: handle missing cpu stats
7eeec8987 adds support for using env file for systemd boot
7dc66eee6 using ContextDialer instead
6639b2b02 test: Add ability to switch between cgroupv1 or cgroupv2
0d6881898 Refactor usageNanoCores be to used for all OSes
f6bc986dc go.mod: github.com/stretchr/testify v1.8.0
628f6ac68 code cleanup
cc30880e8 ci: workaround Cirrus CI's INVALID_ARGUMENT
d8d63a7aa docs: Fix sample config.toml syntax
88bcbb036 adds a comment explaining how to disable experimental sbserver
3a3f43f72 Fix linter warnings
60f51c1aa Update and align golangci-lint version
98a1b7ff1 Add log messages when choosing CRI server
bbb8d3470 seccomp: add get_mempolicy, mbind, set_mempolicy, with CAP_SYS_NICE
19e847983 seccomp: seccomp: add syscalls related to PKU in default policy
2ba635331 Change metrics namespace for sandboxed CRI to prevent panic
b8e93774c Enable integration tests against sandboxed CRI
cf5df7e4a Fork CRI server package
4ffef752d update golang to 1.18.4, 1.17.12
c733119db cri doc: fix formatting for CDI options
f77d45e3b ctr: support --user for run/create
22dfc68ad Fix protobuf script to install protobuf on darwin
bcdc8468f Fix out of date comments for CRI store packages
174b01344 update some devmapper docs
575095fcd seccomp: allow clock_settime64 when CAP_SYS_TIME is added
e9e33f847 Copy fuzzers from github.com/cncf/cncf-fuzzing
b31631859 Upgrade github.com/AdaLogics/go-fuzz-headers
6d4b61007 integration/client: fix typo in export_test.go
b8bb33b92 fix can't edit object by using ctr content edit command
548c9c317 Fix WWW-Authenticate parsing
b8403d2e1 Update k8s.io/cri-api to v0.25.0-alpha2
a44cabf51 Update go-restful/v3 to latest release
c2703c08c pkg/cri: use marshal wrapper for version convertor
d2588b3fa LCOW differ return ErrNotImplemented for wrong mount type
0a240ff81 Fix missing closed HTTP Body
f7de1c8f9 Do not hardcode fuzzers
2b60770c4 Move container_fuzzer.go under integration/client/
66cc0fc87 Copy FuzzCRI from cncf/cncf-fuzzing
ca5637104 Remove mainfuzz package and StartDaemonForFuzzing
17f9c3a0e Move builtins_*.go to cmd/containerd/builtins to make the files reusable
d97b754a5 Cleanup metadata tests
1ef4bda43 Downgrade MinGW to version 10.2.0
1ab42be15 refactor: reduce duplicate code
47ad5f70e Fix Doc:
fb5b6612a ctr: Fix `ctr c create` fails to parse arguments
68a55fe8b make xattr EPERM non-fatal in createTarFile
99e210c50 Move metadata plugin registration to seperate package
4f0ea7831 fix: missing sudo for devmapper doc
72b87ad00 add WithAdditionalGIDs test
5bf705255 add WithAppendAdditionalGroups helper
5cde04bc7 Forward ctr snapshotter flags on Windows
4ac1031e0 Add snapshotter key to snapshot events
b27a229df Move contrib/fuzz/docker_fuzzer.go to remotes/docker
f91616e45 Copy FuzzConvertManifest from cncf/cncf-fuzzing
c9c5fee37 Do not hardcode fuzzing targets
50f1a4e42 Don't log "ignored xattr ..." warnings
112497bc3 Make oss_fuzz_build.sh quiet
6e53ffb10 ctr: add --hostname flag to create, run
7002fc2c4 Ensure Windows Periodic workflow errors out while still uploading results.
2e288f5b1 improve content-flow
d4ab64988 Revert MinGW to oldest known working version in Windows setup script.
55dd56e52 Make CI Fuzz optional
82adbc849 Run fuzzing tests with go test -fuzz
a1eb2d8a6 Use testing.F on FuzzPlatformsParse
57200edf2 Use testing.F on FuzzParseProcPIDStatus
0b3c31dd7 Downgrade MinGW in Windows setup scripts.
42a386c81 CRI: change the /dev/shm mount options in Sandbox.
a62a95789 CRI: remove default /dev/shm mount in Sandbox.
8245e35eb Make test path a constant
ee14f9316 Run fuzzers in CI
52593cfc8 containerd-stress: add support for running through CRI
5560b622d archive: Explicitly specify stdio for tar(1)
95f1d7971 platforms: Run goimports for FreeBSD
42e019e63 cri/server: Disable tests on FreeBSD
ad8e59806 oci: Remove empty mount option slice for FreeBSD
c15f0cdaf oci: FreeBSD devices may have major number 0
2ab8c12fc archive: use Linkat on FreeBSD for hardlinks
61690d76d Improve naming consistencies in comments in snapshotter.go
c101f7999 Allow CRI on Darwin
0167e55ab update runc binary to v1.1.3
c3fb7dfa7 go.mod: github.com/moby/sys/mountinfo v0.6.2
fa4720fa1 fix add ro mount for userattr-unmount unexpected timeout
92d360b58 fix minor spelling mistake: lablel -> label
6190b0f04 Correct spelling mistake ("sanbdox" to "sandbox")
5a6e4144a go.mod: github.com/containerd/cgroups v1.0.4
088c8df3a go.mod: github.com/containerd/continuity v0.3.0
012d68ff9 add gc scheduler metrics: collection count
44e12dc5d Windows snapshotter touch ups and new functionality
40aa4f3f1 Implicitly discard the input to drain the reader
00eb74a4c Make building static binaries simpler
d25b4e6f3 Bump Golang and MinGW versions in Windows setup script.
7b9f1d405 Added support for runtime level snapshotter, issue 6657
8bc6ccc07 Bump k8s.io deps to v0.24.1
5fcde823d Bump grpc to v1.47.0
1b3c3860d update golang to 1.18.3, 1.17.11
e3b4d750d update go-cni/for cni update fixing plugins that don't respond with version
8ed54849a Move docker reference logic to reference/docker package
f7aa90d27 Fix containerd-stress duration flag
ae22854e2 Linux containers on FreeBSD
49ca87d72 Limit the response size of ExecSync
1cf6f2032 promote pause image to 3.7
b5e1b8f61 Use t.Run for /pkg/cri tests
b572a82ad CRI: Remove deprecated error types and update error msg
978ff393d Add validations for Windows HostProcess CRI configs
1a8024b46 Makefile: use urfave_cli_no_docs for binaries that don't need it
5bb47fb95 vendor: github.com/urfave/cli v1.22.9
a3a2d14ec fix verify-vendor if go.mod does not contain replace rules
688b30cf5 CRI: Move truncindex to pkg
e44335800 CRI: Move reference sorting to reference package
b5366f8d7 CRI: Retrieve image spec on client
4ba5415fb build: Fix references to check-protos target in Makefile
8a3114b37 Fix broken oss-fuzz build
d2f30150b archive: add human-readable hint to Lchown error
9f9ebbd99 Fix tx closed error when upperdirlabel specified
739cb4c99 config: improve config v1 deprecation message
b5107a898 Fix Windows install powershell script
b69182c71 add note that a namespace cannot be named "version"
8d95f2b59 fix comments on metadata schema
900019b30 ctr sandbox: handle sandbox config
8ec1fc70d adjust format
a42688639 Restore decompression benchmarks
8494f7f11 adjust format in comment
92b7bc9ed ctr: fix label args used in NewContainer
4da4a8879 update doc url
eaec6530d fix some confusing typos
65150600d Separate windows-2019 and windows-2022 test results
7300296cb reverts removal of parallel run from critest
523d069a2 sandbox: replace github.com/pkg/errors with native errors
c4ce13a28 vendor: github.com/opencontainers/runc v1.1.2
25858d621 update runc binary to v1.1.2
c1140aef6 Bump OpenTelemetry dependencies
f710505f4 shim: fix debug flag not working
72cd3b476 update golang to 1.18.2, 1.17.10
f5b7a4b3d CI: update Fedora to 36
a3ac15600 oci: WithDefaultUnixDevices(): remove tun/tap from the default devices
ad8b87ba2 Add `Wait` to `binaryProcessor`
d9fc5f4b0 Enable git commands due to git CVE fix
09c2c2a75 Pass explicit JUnit outfile to critest.exe in Windows workflow.
2c98a7b09 ctr import: strictly match platform
d1c49781e go.mod: Bump k8s deps to v0.24.0
c721c8e27 devmapper docs: small fixes
bb11c9d24 update critools to v1.24
8a2e8cd8d move report dir option to eol
af24e3871 Update Kubernetes version matrix in release docs
7a834516f Share images between TestRestartMonitor and TestRestartMonitorWithOnFailurePolicy
cedb7d3bd containerd 1.6.4 k8s 1.24 readme announce
57d2bce74 docs: minor fixes in snapshots.Snapshotter comments
42584167b Officially deprecate Schema 1
55401ac9c Update k8 docurl in file
d4127a9f2 CI: add riscv64 builds
0e56e4f9f release/Dockerfile: update Ubuntu to 22.04 for supporting riscv64
4b412b800 seccomp: support riscv64
8160a3efc Reduce the number of the concurrent HTTP requests in TestUserNamespaces
7183fc81d Skip TestImagePullWithConcurrencyLimit on Cirrus CI
10576c298 cri: support blockio class in pod and container annotations
9b04d2fae docs: Adding windows installation steps to getting-started.md
227156dac Add ctr support for CPUMax and CPUShares
b5370b040 Fix comment for metadata/db.go
5d0730370 Update go-cni to v1.1.5
180c7535d Upgrade protoc, protoc-gen-go and protoc-gen-go-grpc
2c6760005 go mod tidy & go mod vendor
29b937956 make protos
fcba48636 Remove gogo from .proto files
ae29594d0 Bump opencontainers/selinux from 1.10.0 to 1.10.1
46773c341 Cleanup leaked shim process
7f23296b9 Upgrade google.golang.org/grpc and google.golang.org/protobuf
7353006f6 Remove kzys/typeurl
7215f85ac Don't use "uname -a" as Cirrus CI's cache key
45c0cbec5 Create ppc64le release
5f43118ce Move Vagrant-based tests from GitHub Actions to Cirrus CI
00d102da9 feature: support image pull progress timeout
fceab7f4c remove duplicate
0e6c7bf93 Fix undefined error in use of errors package
a9f5190fb images/image.go: typo
da3e2f985 fix incorrect syntax in comments
7a4f81d8b Fix tests
aefd1849b go mod tidy and go mod vendor
f616dd471 Upgrade containerd/typeurl
9dbe000a3 make protos
1a095e18b Rename Size_ to Size
e3db7de8f Remove gogo/protobuf and adjust types
fd37cc75b Use protoc-gen-go instead of protoc-gen-gogoctrd
e044759eb Upgrade containerd/ttrpc
8710d4d01 cri: close fifos when container is deleted
7331b2af4 Add Container-Optimized OS into Adopters
dfa6e8763 diff: hide types.Any from clients
01dfb110c Add go_package on all proto files
aa1526def Use proto.Marshal instead of calling Marshal() on objects
95dde4959 Embed "Unimplemented" structs as proto recommended
35994a475 fix monitor restart
237ef0de9 Remove all gogoproto extensions
22cd13b37 fix nil pointer panic for monitor
bd90ce043 Keep shim API backward compatible
39692e767 unpack: return error when no platforms defined
8017daa12 Add unpack interface to be used by client
e2fd25f3d Move runtime v2 proto Move runtime v2 protos to api/runtime package.
3742c756e Don't generate a Go file, if that would be empty
5f3b72432 Fix protoc-gen-go-fieldpath
3b82f9e33 metadata: use resource max and end on registration
88c0c7201 Consolidate gogo/protobuf dependencies under our own protobuf package
80b825ca2 Remove gogoproto.stdtime
dbdf50cc0 update golang to 1.18.1, 1.17.9
fd704d334 Build bin/gen-manpages instead of using "go run"
b497e6414 Fuzz filter package with Go 1.18's fuzzer
94faa70df allow ptrace(2) by default for kernel >= 4.8
fe8da6dca Move lease manager plugin to separate package
147f0a7e0 check for duplicate nspath possibilities
942af1203 fix pool_device_test.go
5f3ce9512 Do not append []string{""} to command to preserve Docker compatibility
8367f69fb Add collectible resources to metadata gc
c525aa5f8 Set timeout when collecting metrics from shim's Stat
49235ccba Change architecture path in README.md
8a1280b2b metrics/cgroups: fix deadlock issue in Add during Collect
a5dfbfcf5 cri: load sandboxes/containers/images in parallel
6d69aca56 make consistent for checkpoint path
6341e0696 ADOPTERS: Update AKS Info
b446c7647 [Sandbox] Remove outdated documentation
d0b32c053 [sandbox] Migrate from gogo to Any
85a49e4ee [sandbox] Cleanup interfaces
de4974572 [sandbox] Fix CI
b7a36950f [Sandbox] Add Wait and PID
0d165e654 Restore sandboxes on daemon restart
0c5e5c357 Fix protobuf after rebase
fa02477ca [sandbox] Add sandbox shim skeleton
35195737e [sandbox] Register shim plugin after #6301
17a2aaded [sandbox] Add ctr support
982de8a5d Launch sandboxed containers from task service
00f7a6bf2 [sandbox] Address PR review comments
6343fe3ea [sandbox] Implement sandbox controller
eaccbf1d0 [sandbox] Add clients
df234edeb [sandbox] Add controller service
a433beb79 [sandbox] Update vendor
0e77f758a [sandbox] Implement store service
13eb1a4bb [sandbox] Revendor API changes
d7ece8724 [sandbox] Save sandbox ID to container's store
cab7d5b3d [sandbox] Implement metadata store
87d4c8923 [sandbox] Add basic sandbox structures and interfaces
4445d0a8d [sandbox] Add protobuf definitions
3df767405 add restart policy for enhanced restart manager
7e70ad9fb Pin upload-cloud-storage action to 0.8.0 in Windows workflow.
927b34e41 tracing: fix panic on startup when configured
1a45c2c5f docs: add Deckhouse to the list of adopters
825c1c58a CDI: update go.mod and vendor deps
ff5c55847 move CDI calls to the linux-only code
c9b4ccf83 add configuration for CDI
aed0538da cri: implement CDI device injection
35383fb42 docs/cri: simplify
493baa6e7 Add docs/snapshots
811375856 CRI: improve image pulling performance
16fbbaeee Skip flaky test on Windows
44d7cd152 mv design docs/historical/design
195fc7424 docs: migrate config v1 to v2
84cebafe8 docs: remove deprecated `io.containerd.runtime.v1.linux`
83665bf8d docs/getting-started.md: typo
ccea927d9 Move historical docs to `docs/historical`
50921e71b Run go mod tidy in integration tests
99c194e03 go.mod: move indirects, and update integration go.mod to 1.18
6ccec53d3 Remove gotest.tools
871b6b6a9 Use testify
6da318310 Disable writing freelist to make the file robust against data corruptions
62c846b17 Update linters to use t.Setenv
2d59a3944 Use t.Setenv instead of os.Setenv
4bdac2b43 Adding multi-arch support for the configure.sh script
6f269ccb3 docs/getting-started.md: massive update
c7bdcdfbe Address some timeout issues in the Windows CI
a2d22ac05 BUILDING.md: update supported Go versions
d0bd65d3c Remove unmaintained contrib/linuxkit
f2d5f71a7 update runc binary to v1.1.1
11a31320b go.mod: github.com/opencontainers/runc v1.1.1
0b2a95e10 Add no_tracing tag
b42e936c5 CI: add Rocky Linux 8
b1030e7b6 CI: bump up crun to 1.4.4
b737cb10e Update README.md
cf571fa96 added make help for cri integration
44a8ac7b0 Turn paths from cmdline into absolute paths
2689432bf Fix error message in TestNewBinaryIO
96b16b447 Use typeurl.Any instead of github.com/gogo/protobuf/types.Any
fe426227d native: fix deadlock from leaving transactions open
a51da91c1 moving up to go-cni v1.1.4
36612d692 go.mod: remove replace and update github.com/gogo/googleapis v1.4.1
df93940fb fix: ctr images mount with snapshotter option can't get snapshotter
c091d48cb Use cgroups.AddProc() for cgroups v1
d2013d2c9 runtime: deprecate runc --criu / -criu-path option
388ee880d Upgrade containerd/imgcrypt and opencontainers/image-spec
70a06d0c8 Upgrade to Go 1.18
067611fde Remove enumvalue_customname, goproto_enum_prefix and enum_customname
bfde58e3c Bug fix for mount path handling
e9bb9c3bc Skip tty critest testcase on Windows Server 2022
3eeeb9429 Remove gogoproto.customtype
040babe00 Vendor dependencies with module graph pruning
a19ad9bb6 Use Go 1.18 to build and test containerd
56f95e3d8 Test turning off golang CI lint cache
ee49c4d55 Add nolint:staticcheck to platform-specific calls
c56875233 Update prometheus client vendor
9aadef1be vendor: golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
fdb746442 document log level and format
52d307ac1 test: remove redundant `mountPoint`
2a0b2ee9e fix: ctr run --cni get failed
18ec2761c test: use `T.TempDir` to create temporary test directory
b8bf504e9 Enable gosec linter for golangci-lint
2ddcb2019 Make OpenLab's CI jobs blocking
cc526a98a Make mkfs.xfs available on OpenLab's CI environment
ba1674389 typo fixes under cmd.
2e080bf49 Add shared content label to namespaces
2a425990c Implement `--device idType://id` for `ctr run` on Windows
39d52118f Plumb CRI Devices through to OCI WindowsDevices
6a25be94e CRI integration test for Windows Device mounts
622a35a4f Upgrade golangci-lint and its GitHub Action
59b1871b3 Fix link in getting-started.md
88de65112 Don't build a second copy of containerd-shim-runhcs-v1.exe
807ded41f Update TestNormalize to only test Windows
80bc32f06 Use temp file for export/import test
0d0b2bd4f Mount devmapper xfs file system with "nouuid" option.
14901335c Increase wait timeout for TestDaemonRestart
718adfe06 Use the latest image for Windows test workers
894e78001 Improve ErrUnexpectedStatus default string
48b478381 Skip most of script/setup/prepare_env_windows.ps1
768bf73dd Enable cri-tools critest on Windows
59b978847 Enable CRI Integration tests on Windows
5b78a9a8f Remove hardcoded /tmp in tempfile paths
03a5e648b Use version 2 config and mention containerd config command
e0a6f9c7d update to go 1.16.15, 1.17.8 to address CVE-2022-24921
b90c466c3 Add ErrUnexpectedStatus to resolver
fdaf859aa Update status of 1.4 release
7b045ea5f ctr: improve error relative shim path error msg
e5efc260d Update latest release versions
63dd929af Update release process to include Kubernetes test infrastructure
0c79257f5 Add --user support for ctr run Windows
de3d9993f Adds support for Windows ArgsEscaped images
775facd57 cri: fix integration test on cgroupsv2 system
f1f69d4ee integration: remove duplicated util pkg
352a8f49f cri: relax test for system without hugetlb
ec90efbe9 Make the temp mount as ready only in container WithVolumes
ea3d2e643 go.mod: update to github.com/tchap/go-patricia/v2 v2.3.1
2b68c03a6 Update Go version recommendation in getting started
77c0539e9 Use containerd/protobuild instead of stevvooe/protobuild
d28981d48 Fix build with gccgo
f4f41296c Replace golang.org/x/net/context with std library
296f75bd0 Do not use weak import
3febabffe Add protoc-gen-go-fieldpath
7901f4b33 containerd-shim-runc-v1: return init pid when clean dead shim
a3303e721 Update TestContainerSymlinkVolumes to use windows path
481fb923c go.mod: update to github.com/emicklei/go-restful/v3 v3.7.3
fb0b8d617 Use fs.RootPath when mounting volumes
1a31772a7 go.mod: github.com/moby/sys/signal v0.7.0
b1881bdc0 go.mod: github.com/moby/sys/mountinfo v0.6.0
b6a6757c1 go.mod: github.com/fsnotify/fsnotify v1.5.1
83c80388b Initialize platform matchers for current platform
b63000c65 [Windows][Integration] Enable TestRestartMonitor
7275411ec cgroup2: monitor OOMKill instead of OOM to prevent missing container OOM events
6906b57c7 Fix the Inheritable capability defaults.
fdbfde5d8 cmd/containerd-shim: add -v (version) flag
e79aba10d integration/images/volume-ownership: strip path information from usage output
b8cadf753 runtime/v2/shim: strip path information from version output
356ca7575 containerd-shim-runc-v2: return init pid when clean dead shim
86d52fc26 Fuzzing: refactor metadata fuzzers
894af07e3 integration: Adds Windows equivalent for TestSandboxRemoveWithoutIPLeakage
54e95e6b8 fix Implicit memory aliasing in for loop
5d4dc5780 remotes/docker: log registry URLs as info instead of debug
afe39bebf add oci.WithAllDevicesAllowed flag for privileged_without_host_devices
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
While the insane.bbclass upstream-status check hasn't been made
default, users of meta-virtualization may have it enabled in their
distros .. so the effect is the same. We must have this tracking
tag in out patches.
This is a bulk update to add the tag and silence the QA message.
As packages get updated, the normal/routine process of checking
the patches will continue, and the status fields may (or may not)
get more useful.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
| |
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
| |
restructure the containerd source layout to avoid symlinking vendor
dependencies. This avoid go recording paths in the final binaries.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
We get the following QA warning on build:
WARNING: containerd-opencontainers-v1.6.8+gitAUTOINC+579a6380ec-r0 do_package_qa: QA Issue: File /usr/bin/containerd-shim-runc-v2 in package containerd-opencontainers contains reference to TMPDIR
File /usr/bin/containerd-ctr in package containerd-opencontainers contains reference to TMPDIR
File /usr/bin/containerd-shim-runc-v1 in package containerd-opencontainers contains reference to TMPDIR
File /usr/bin/containerd in package containerd-opencontainers contains reference to TMPDIR
File /usr/bin/containerd-shim in package containerd-opencontainers contains reference to TMPDIR [buildpaths]
This is the first step in fixing the QA warning, by dropping our
debug patch, passing -trimpath and not defining GO_DEBUG.
This leaves a final reference similar to:
path _/opt/poky/build/tmp/work/core2-64-poky-linux/containerd-opencontainers/v1.6.8+gitAUTOINC+579a6380ec-r0/git/src/import/cmd/ctr
That is being stored in the .rodata of the binaries.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Updating to the released 1.5.x containerd.
We also add a patch to fix the following:
Since our oe-core go infrastructure insists on both -pie and static
builds (for the most part), and that is not recommended by many
packages, we end up with errors like:
cannot find package runtime/cgo (using -importcfg)
...
recipe-sysroot-native/usr/lib/aarch64-poky-linux/go/pkg/tool/linux_amd64/link:
cannot open file : open : no such file or directory
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Updating containerd to the 1.4.x release series, which contains the
following changes:
97d690d20 Prepare v1.4.1 release
42f387186 Always consume shim logs
f247618a3 Report correct stats for windows containers
cc5d1518f Update go list to respect build tags
086e859d2 BUILDING.md: fix description about static builds
16712ae49 bump cni version to v0.8.0
1575c88cc seccomp: add `faccessat2` syscall.
8bd2becea seccomp: add `openat2` syscall.
4e3397e05 shimv1: downgrade poroccess missing log to debug
d118c90d3 Ignore SIGURG signals in signal forwarder
3ee6189fe Exit signal forward if process not found
a1289d6b8 tasks: Monitor v2 tasks in initFunc as well
1f823f76d seccomp: allow io-uring related system calls
3d28944be seccomp: allow clock_settime when CAP_SYS_TIME is added
e5cc7d527 seccomp: allow quotactl with CAP_SYS_ADMIN
20273a803 seccomp: allow sync_file_range2 on supported architectures.
357d10021 seccomp: allow personality with UNAME26 bit set
0c9de6629 seccomp: allow syscall membarrier
caa461167 seccomp: allow adjtimex get time operation
2b80b7dc4 seccomp: allow add preadv2 and pwritev2 syscalls
e71eccbca seccomp: move the syslog syscall to be gated by CAP_SYS_ADMIN or CAP_SYSLOG
feff914af runtime: ignore ErrNotExist when remove rootfs
23e0ea27b snapshots/devmapper: fix rollback
d68ddb0c0 Prepare v1.4.0
6be2eccd7 Update releases page for v1.4.0
d469bffcd CI: disable crun on Vagrant to decrease flakiness
77a33e3db systemd: add license header to systemd unit
8d39722fe Vagrantfile: increase memory
41469ed72 Update version for 1.4.0-rc.1
60fa35f11 Fix DCO commit limit
d2472ecc5 Add CRI release build
1c7312e5d Update containerd systemd unit file
ccda53760 Create etcd user in cloud init.
e973719cc use containerd/project header test
cb7ffd4b0 Fix indent in cni.template.
3e03ba7aa Update deployment and integration test
9c5451792 Add TaskMax=infinity
523b0b3c6 Remove `noSnat`
231d291b2 Use v2 config.
1e1688d21 Use per-pod shim.
87bd84a7b Add DefaultRuntimeName option.
cfab98a5f Use ctr images import.
5e3ac16cc Add `cri` as required plugin.
5b9d8476e Use runc.v1 for now for debugging.
e6e272e74 Enable runc.v2 as the default runtime in test.
d19aa0fd2 Use local env to avoid writing to passed-in readonly env.
ee6d69bbc Set default "" to extra runtime handler.
474c79bd5 Expose vars to configure an additional runtime handler
ce12477f4 Support docker 18.09 in the test script.
146712101 Remove the unused `health-monitor.sh`.
201ad4d3c Support netd in GCE bootstrap.
5ce705750 Serve streaming on localhost by default to match k8s 1.11 default.
b553fdaf3 Remove crictl on GCE for all cases.
d8ce08fd9 Set stream server to serve on localhost on GCE.
1629bab7f Make max container log line size configurable through cloud init.
042378dcf Disable TLS streaming to work with new kubelet streaming proxy.
37f2ecad9 Update cni.template
b58b6fef8 Disable restart plugin on GCE.
f938a166c Fix kube-container-runtime-monitor.
91f8e61bd Use crictl installed in kube-up.sh
5161f663e Add `unix://` prefix for socket addresses used by CRI remote client.
1b995fcaf Add KUBE_CONTAINER_RUNTIME_NAME to fix fluentd support.
48457a254 Try using preloaded containerd if no version is specified.
c67a38b0b Add log level support.
4453aac00 Improve gce bootstrapping in various ways.
1bd3cdc57 Add cni config template support.
d520fac50 Enable TLS streaming in all the setup.
cdb4aec93 Use systemd service cgroup and oom score adj.
af8bd8068 Fix for kube-up.sh and update several documments.
005da4a9b Replace `ctrcri` with `ctr cri`.
0e2bd216c Update GCE cluster bootstrapping and e2e test
59e65e1f3 Enable container log rotation.
85b4e69c9 Do not block on stream server close.
2ea6584ca Add initial wait for health-monitor and use pkill -x.
56b7ef2c4 The ENV is finalized as KUBE_KUBELET_EXTRA_ARGS.
24a3a0a06 change crictl sandboxes to pods; other references to sandboxes
8bc30e7a2 Update ocicni to main stream.
a01071558 Add a separate CLI for cri-containerd `ctrcri`.
a843a3064 Use registry-1.docker.io as backup
ec649079a Put version into metadata so that version won't be changed across restart.
7cbc1c8dc Set registry mirror.
9f0816ac4 Configure container runtime cgroups for cgroup.
be72f47ec Add runtime cgroup and fix a cli panic.
680e21c43 Update all glog flags to `log-level`.
d50b9dd64 Update containerd to 6c7abf7c76c1973d4fb4b0bad51691de84869a51.
869ea6b0c Add document for kube-up.sh
30cbfb62e Add OS and arch in release tarball.
0512d1e0b Add `cluster` directory and health-monitor.sh.
a1736f98a vendor: containerd/cri 4e6644c8cf7fb825f62e0007421b7d83dfeab5a1
15fa7f378 vendor: update kubernetes v1.19.0-rc.4
4a0ac319c vendor: golang.org/x/sys v0.0.0-20200622214017-ed371f2e16b4
f80b4dc58 vendor: golang.org/x/net v0.0.0-20200707034311-ab3426394381
5a9a6a145 vendor: golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9
aa40ebb41 vendor: json-iterator/go v1.1.10
b4376e986 Update Vagrantfile for testing SELinux
55c9eade3 Bump Golang 1.13.15
e3e2c3946 update docs/rootless.md
843360298 update runc to v1.0.0-rc92
e20a5079e Add --cpu-quota, --cpu-period flag to ctr
3cc2be2a8 Update cri-tools to v1.18.0-100-g2bf7674 for Go 1.15 compatibility
628855923 Prepare 1.4.0-rc.0 release
74e9aa7ab snapshots/devmapper: don't hardcord the platform strings
adeba792f Add namespace query parameter for registry proxying
5a190c707 Remove seccomp/Linux deps steps in GH Actions
6988b4d64 remove `seccomp` buildtag
362b7167a vendor: update cri (no more libseccomp cgo dependency)
03b5a053e remotes: mark GetTokenScopes public
b43a01a22 Change nodeset to `ubuntu-xenial-arm64-openlab`
04b98bb0e Deprecate legacy shims
b87023185 vendor runc library to v1.0.0-rc91-48-g67169a9d
02afa9425 Add --cpus flag to ctr
aa56cfc0a Import Windows manifest into test build, rather than copying by script
5b1627410 vendor: update containerd/continuity efbc4488d8fe1bdc16bde3b2d2990d9b3a899165
1ec1e9eab Add Windows 10/Windows Server 2004 for integration tests
faa4ff56e Usefully fail tests with unknown or bad Windows Build version
3795dd41a Always report server log from verbose integration test runs
4318f93f9 Add Spec() method to task
3611efdce update cri to 8448b92d237e877bed1e4aa7a0baf0dee234
1b320bcc2 update for cni config
c2081369c Add doc about remote snapshotter
403dc83a2 mount: retry executing the helper binary on ECHILD
06fb93e0f Reject host-mode networking on Windows
ca15cb0d8 Fix incorrect (cut-and-paste) method comment
c8b14ae4c Set content labels based on content type
d7b9cb001 shim: move event context timeout to publsher
b97c660e1 cgroup2 CI: add RUNC_FLAVOR=runc
1a7bbd1f7 vendor: update containerd/cri
96099550b parseIDMapping: accept 32-bit IDs
089672fff Bump Golang 1.13.14
c383436af snapshots/devmapper: suspend a device to avoid data corruption
71f11db8a Annotate bare ErrNotImplemented returns
061d338ec CI: run CRI tests on Fedora 32
decbb0499 RELEASES.md: fix a dead link
b2ee43206 CI: add back shim v1 test
c4418bb3a CI: remove an unreferenced variable
212c29833 Updates to go-systemd and selinux
b47c7ec27 Update to later version of critools with timing fix.
7af3d7e17 Don't clash with GH Actions runner's containerd
c520f819a Bump Go 1.13.13
7119a2a15 platforms: don’t log arm variant error on darwin
fc0448518 Update version to 1.4.0-beta.2
cc493eba3 vendor: containerd/cgroups 318312a373405e5e91134d8063d04d59768a1bff
7855b0a78 Make title similar with other CI workflow jobs
852587cd1 [events/exchange_test] Fix deadlock in TestExchangeFilters
d47c0392d Updating build doc to require Go 1.13
09f453394 CI: {v1, v2} -> io.containerd.runc.{v1,v2}
d7e59b141 enable removecontainer to forcibly remove containers
963625d7b Update runc to v1.0.0-rc91
c041970e9 update crun to v0.14
a6dd1f27d update urfave/cli v1.22.1, go-md2man v2.0.0, blackfriday v2.0.1
68b736ddf cio: should not open fifo for stderr if terminal
57a9f0b50 Minor actions fixes/updates
148cc8f71 [events] Fix deadlock in TestExchangeBasic
aa191deff Change log for unknown mt to debug
45c28f56b Add ability to use remapper labels versus remapping snapshot helper
c76bf5504 Make unique snapshotter opt for label-assisted remapping
331793118 allow user namespace remapping using snapshotters
e977564a8 seccomp: allow 'rseq' syscall in default seccomp profile
e7f069e2c describe content flow and dependencies
b96f5f4b5 Fix deprecation warnings in CRI tests due to missing unix:// scheme
fd99b6566 decrease log level of cgroup2 ToggleController error when running in UserNS
2b0a994cc explicitly fail apparmor when !linux
bebfbab03 vendor: update bbolt to v1.3.5
1a83f9a63 Bump Golang 1.13.12
03ab1b2ca Add config for allowing GC to clean unpacked layers up
ee734e867 Add test case with backticks
ea0687769 vendor: golang.org/x/text v0.3.3
f1a469a03 shim v2 runc: propagate options.Root to Cleanup
8897e1520 Add more test cases with single quotes
cb91b1724 Add testcase containing mountpoint with escaped backslash
87f9fdb06 Cope with double quotes in Linux Mountinfo
4c49ff88c integration: assume TEST_RUNTIME to be io.containerd.runc.v2 by default
785f4c5cd Bump CRI for 1.4x release
730b7a932 Change the type of PdeathSignal
d656fa38c restart plugin: support binary log uri
0f831093c Update usage of whitelist in project
d36810d66 overlay: use index=off to fix EBUSY on mount
7213cd89d Process I/O: Fix goroutine leak
ae08491bf waitForPid: fix goroutine leak
8fcd5a1f2 Streamline hcs shim release flow
ef0cf1264 Match version used in CRI project
2be80f999 Add windows hcsshim to release pipeline
3e95727f3 Make killing shims more resilient
e64b14820 Revendor CRI to 62c91260d2f43b57fff408a9263a800b7a06a647
3dd8242a6 Add host specific headers
2f601013e cgroup2: implement `containerd.events.TaskOOM` event
62fd1750e Revendor CRI to 8898550e348932e406049e937d98fb7564ac4e7a
2bc4e90f6 Don't inadvertently clip release notes
636c533d9 Add ctr subcommand to print default OCI spec
230cf6ded Add unit test for func in remotes/docker/handler.go
bb2b2825b Add release GH Action triggered by signed tag
8f1ddb142 Update release for 1.4.0-beta.1
c376f4f76 Move Windows testing to GH Actions
322628347 Fix client tests to work on Windows.
b8ccdcb07 Add `ctr` flags for configuring default TLS credentials.
c5273930b Update CRI to 52c2c6b5df15790b671ebd6cbbc6039a4d30
af131d725 cgroup2 CI
e34bf08e5 riscv64 arch does not support -buildmode=pie
0c9b05fa6 Fix image usage calculation error
84619ee99 Fix configurations with no server provided
06b0cd45b Fix nil pointer errors
03755821d seccomp: remove the unused query_module(2)
5765991f2 seccomp: Whitelist `clock_adjtime`
db74d3115 unpacker: Fix data race and possible data corruption
232518252 docker: fix data race on err
d07a71b97 Bump Golang 1.13.11
0207b7ff0 Enable running CodeQL on PRs that modify Action
1a06884f1 Add CodeQL Analysis workflow
563964e9d Trigger nightly builds on pull reuqest events
77ab0104e Add release notes for 1.4 beta
6eeed18cb vendor: opencontainers/go-digest v1.0.0
7cdacdda8 Set codecov to not comment on PRs
3e7bbb8a4 vendor: update containerd/cri, remove "docker/distribution" dependency
9898dc2a6 Code about `task` in "README.md" is out of date
f09e99909 vendor: containerd/go-runc 7016d3ce2328dd2cb1192b2076ebd565c4e8df0c
d9d1d5b62 vendor: containerd/fifo f15a3290365b9d2627d189e619ab4008e0069caf
c5078a5b7 vendor: containerd/continuity d3ef23f19fbb106bb73ffde425d07a9187e30745
b437938d2 Transfer error to ErrNotFound when kill a not exist container, also add test case.
2c77dc63a vendor: update containerd/cri to current master
a4f8be1d4 vendor: kubernetes v1.18.2
0d198fd09 vendor: roll docker/distribution back to latest (v2.7.1) release
1b9640496 ConfigureHosts: remove deprecated DualStack option
e9e765d6e Use tagged versions in vendor file
bd3210d29 remove releases/*-beta.toml
ed261720c Update ttrpc/typeurl to v1.0.1
dc92ad652 Replace errors.Cause() with errors.Is()
f212e7d1f vendor: github.com/pkg/errors v0.9.1
63b7587cd snapshots/devmapper: fix race windown causing IO hangup
24b331ad1 omit sudo when EUID eqto 0
0088c2de8 sys: RunningInUserNS(): use sync.Once
76c62f272 sys: simplify RunningInUserNS to original implementation
6a9b94927 Remove remaining uses of libcontainer/system package
37c839e59 sys/proc: remove GetSystemCPUUsage as it is unused
1b66fecad Integrate sys.SetSubreaper, sys.GetSubreaper in sys/reaper package
fffea312a move sys.Reap() into sys/reaper package
295e74008 sys: remove custom setChildSubreaper const
ec12d3042 vendor: sirupsen/logrus v1.6.0
23aab35fd Remove libcontainer from containerd-shim
ae7cdc814 vendor: update containerd/cri
c1096864a Update to latest hcsshim - 0.8.9
ea182aec8 vendor: sirupsen/logrus v1.5.0
68f151593 vendor konsorten/go-windows-terminal-sequences v1.0.3
046a520c9 vendor: update containerd/cri dc7afe8fbe53db06c3f883f6f8c9895a9dfb2314
8e76d18ef remove if condition because it is handled by the sdNotify daemon func
1a10211e3 WithLease: always return context and done fn
98b30f469 Add commands to mount/unmount image from ref
cd0e62f5c Allow more time for containerd to start for integration
9687ba631 test: TestRuntimeWithEmptyMaxEnvProcs should cleanup
b566859ac .zuul: update go version to 1.13.10
32649fe30 Fix retrieval of golangci-lint specific version
126e497e6 vendor: update ttrpc with 6e416eafd26e6e738df716b21d421d5b59702bb4
0116352e1 runtime: ignore ttrpc.ErrClosed when delete task
917e7646a Add binary IO tests
9175401b2 Cleanup binary IO resources on error
0dc7c8595 Don't use timeout package when stopping shim logger
857408315 This config no longer exists, so remove from docs.
e79d666cd vendor: update containerd/cri 61b7af7564602234662562a9d37e772f5a54facb
61597b431 Disable Travis CI on master
74ceb35f5 Small fixes to our Actions CI workflow
7a252f3ca Build runc with selinux support
041545cd6 Fix protobuild and CI check protos
e3bc5c487 Use GH Actions CI status for badge
49200a1dd CRI plugin needs selinux tag as well
d97cca47e RELEASES.md: update release1.2 status
4615111ba content/local: validate digest before calculating path
a6828e8c3 CI: Some Go 1.13.10 updates that were missed
7da1e13b5 Bump Golang 1.13.10
35c14c6b5 sys/mount_linux: use pipe for communicating mount result
f328f61b8 Update to selinux 1.5.1
f7c2bf544 Migrate functions to actions
d7c2513ff Update integration test timeout
0caa23315 Rework shim logger shutdown process
067aba732 Add test for default setup for host configuration
d9a1c3f9e bugfix: add default host config if not set
6d4429edd Setup dependencies between jobs
e598e5e0c Add CRI tests
4175ebf23 Move integration tests to Github Actions
599547d9c Make binaries with Github Actions
3968fb0a4 Revert "vendor: update go.etcd.io/bbolt v1.3.4"
056d60224 vendor: update go-events to fix alignment for 32bit systems
4fb3410f6 vendor: cilium/ebbf 4032b1d8aae306b7bb94a2a11002932caf88c644
e822296fc vendor: runtime-spec v1.0.2
3261fb5c4 vendor: containerd/cgroups b4448137398923af7f4918b8b2ad8249172ca7a6
aa76d9537 Bump Golang 1.13.9
ad090e67e man: move ctr.1, containerd-config to section 8, and fix generation
356782cb4 Makefile: man page: rename containerd.1 to containerd.8
547301cb0 Update ctr resolver to use new config package
17b6050d2 Add Docker resolver configuration package
dc131aa86 support loading certs from a directory
c263c5b14 Add unit test for func in remotes/docker/handler.go
c8d9c6f2a Add unit test for func in remotes/docker/handler.go
fb9e3d9f2 vendor: update go.etcd.io/bbolt v1.3.4
e4cbbc78b Move checks to Github actions
c1a218195 Add docs for build tags used by cri.
d654dbafa Allow the id for cgroup metrics to be changed
78ab1d13d Correct logic of FIFO cleanup
92a36dc10 Add version numbers for newly tagged repos
0c78dacbc Move isFifo from process/io to sys/ and make public
9529c69b8 seccomp: add 64-bit time_t syscalls
ebd745f91 ctr: do not assume runc options by default
e2269f2ae archive: skip chmod IsNotExist error
bd2265300 Add devmapper configuration examples
5ef66e48f ParseSignal: drop add'l check for numeric signals
649f2aac6 add -v to shim binaries
4ff9d6996 Increase golangci-lint timeout
c00cf9a67 vendor: containerd/cri 92cb4ed9786a6cd271152ba1f862183d84701003
488d6194f fix dial error when clean up a dead shim
6e638ad27 Nit: fix use of bufio.Scanner.Err
4326fc624 Update Golangci-lint v1.23.8
4756258fa service_windows.go: remove unused "service" variable
a9bd451ab Avoid duplicate imports of github.com/gogo/protobuf/types
cad67b73f Update btrfs dependencies in docs for debian buster and ubuntu 19.10 * Fixes: #4090
632023698 Partial revert of sys: windows: use golang.org/x/sys/windows
0a7fd55f3 sys: deprecate EpollCreate1, EpollCtl, EpollWait
7b06192f6 sys: windows: use golang.org/x/sys/windows
1b7d1e81b vendor: golang.org/x/sys 5c8b2ff67527cb88b770f693cebf3799036d8bc0
ddae905b8 Support NOTIFY_SOCKET
b78dfbdfb vendor: golang.org/x/sys 52ab431487773bc9dd1b0766228b1cf3944126bf
ba6796abd vendor: update kubernetes v1.18.0-beta.1
f3d062423 vendor: sigs.k8s.io/yaml v1.2.0
04c805e63 vendor: github.com/google/gofuzz v1.1.0
12c7d6976 vendor: update containerd/cri 1a00c068864a59835ff442e0dddfa5a254be6bb3
5607b23b0 vendor.conf: move some imports to match position with containerd/cri
e3ab8bda6 Avoid allocating slice for finding Process
1239f5403 export cgroups collectors
8c9e84174 RELEASES.md: update release status
e0a8fe7cb vendor: bump golang.org/x/crypto bac4c82f6975
a687d3a36 Check error return from json.Unmarshal
a3ca8a0df Add linux resource oci.SpecOpts
00e6be9f4 Add ctr c info --spec flag to output spec
3be12fe1c Do not loose snapshotter options
8cddb5f91 Pass snapshotter opts during Pull
a3685262f snapshots/devmapper: do not stop snapshot GC when one snapshot removing fails
b6bf7b97c devmapper: async remove device using Cleanup
c7eec0c17 Fix file header in builtins_cri.go
f2edc6f16 vendor: update gotest.tools v3.0.2
026e43806 Update to a released version of opencontainers/selinux (1.3.3)
f8ade8deb Use named error return for service#StartShim
985b26f2f AppVeyor: disable download progress on choco installs
4105135e3 fix killall when use pidnamespace
4dd75be2b Unify dialer implementations
8e448bb27 vendor protobuf & grpc
c134a9bef Use spec's mountLabel when mounting the rootfs
1d888ad6a cleanup the image synchronously for Usage case
18e581dd9 bugfix: cleanup dangling shim by brand new context
fed8890e9 Enable CRI plugin for Windows builds as well
84464b801 v2: Cancel shim log ctx when ttrpc is closed
f3652d068 vendor: golang.org/x/crypto 1d94cc7ab1c630336ab82ccb9c9cda72a875c382
773adf7ab Remove the executable bit for api/*.txt files
8e685f78c support building with BUILDTAGS="no_zfs no_aufs"
61596169b Update .mailmap
f44d36099 Update .mailmap with changes from release-branches
499ab8a99 Update Golang 1.13.8
246a560ed script: use github.com/kubernetes-sigs/cri-tools directly
75d0c5f2e Fix incorrect comment from copy/paste of starting script
0dd6d24d2 Fix reference to LICENSE in README.md
89de113de Support 32-bit userspace on 64-bit ARM cores
d8a0d29c2 Set octet-stream content-type on put request
348e683ce Fix zsh autocomplete script
263ab7014 vendor: bump gopkg.in/yaml.v2 v2.2.8
4c3827889 vendor: update containerd/cri c0294ebfe0b4342db85c0faf7727ceb8d8c3afce
f0652e143 Make tests less flaky
bb8af922b Add support for custom wcow and lcow sandbox scratch sizes
5e6d56ee2 Fix startup_delay within default configuration
833701165 ctr events: do not exit on an error
200241163 vendor: update golang.org/x/crypto 69ecbb4d6d5dab05e49161c6e77ea40a030884e1
32ba75f0f Update Golang 1.13.7 (CVE-2020-0601, CVE-2020-7919)
e42110f32 Fix broken link to release-tool
e2e07c9bc RELEASES.md update links to latest v1.2.11 and v1.3.2
0dc69620b update dependencies of containerd/cri
53ced5ffe update to latest containerd/cri (master)
faf03c3d2 Pick up fix for CVE-2019-16884 in opencontainers/selinux
923c05bed Bump to opencontainers/runc new version - v1.0.0-rc10
e44d00865 Appveyor on_success field should be an array.
a224937d2 Disable CGO for AppVeyor build steps
75af17946 Pull: create image record after blobs download
45a17cffb Vendor Microsoft/hcsshim with CGO removal
94964b36d Update Golang 1.13.6
22b73a9a7 vendor: bump containerd/btrfs to 153935315f4ab9be5bf03650a1341454b05efa5d
1189cc40f snapshots: fix flaky TestMetastore
35a8e6e58 sys: clean up process after test
3eb57b01b Added IO metrics
e859b8a92 gc: increase sleep time in test
486d33631 test runtime v2 CPU settings
66508589d fix: eventfd leak for v2 runtime with v1 cgroups
9456040ac fix: eventfd leak
2f0db8e2a vendor: bump prometheus/client_golang v1.3.0
e10c91187 vendor: bump prometheus/client_golang v1.1.0
845b91d6b vendor: bump prometheus/client_golang v0.9.4
04506b87d vendor: bump docker/go-metrics v0.0.1:
99911ea66 vendor: bump prometheus/procfs v0.0.8
ed6ae8186 vendor: bump prometheus/common v0.7.0
c02dc24ec vendor: bump prometheus/client_model v0.1.0
77a3780c2 vendor: bump beorn7/perks v1.0.1
e1221e69a revendor containerd/cgroups
4d62d8795 bump microsoft/hcsshim to 0.8.7
95fbf3dc2 Fix unpacker to pass use apply options
3af3a7602 Fix filter errors
7b52bc506 Add unit test for func in filter.go
cd1cad9d5 Support disk usage in windows-lcow snapshot
f3090ce80 ci: set pipefail in zuul script
90cd777a6 platforms: fill default arm variant when parse platform specifier
b553bc14a update docs/rootless.md
94d499843 Add Makefile variable to skip test packages
123af61c0 Add Cleanup to snapshot API
465c11dc8 Fix build with gccgo
52e477f94 Fix outdated comments
b127b666a ctr: support $CONTAINERD_ADDRESS env var
a4b423b19 overlay: test actual Opts
067a66b90 .travis.yml: run test with crun
1fb1d9321 v2: Fix missing ns when openShimLog on windows
a18f77bea create local version of introspection service
e739314ed mount: support FUSE helper
87e2a9595 Fix a typo in task.go
d82fa4319 v2: Call shim.Delete at first when create is failed
493a36de9 Move label filter to snapshots package
06f6ea099 switch nighly builds to Go 1.13.5
c07e356d2 Update Golang 1.13.5
072dfbaf3 Support pushing a specific platform of a multi-architecture docker image to a registry
4ccb7aa22 Enable to propagate necessary information to snapshotter during unpack
496836c09 Update containerd/console vendor for fix
a057bfbd7 Add more adopters to ADOPTERS.md
facedf898 Remove an empty line
05d192929 Update checkImages to accept images.MediaTypeDockerSchema2Manifest
c4ed3ff1e Replace ocispec.MediaTypeImageManifest with manifest.MediaType
fbd46d709 runtime v2: Close platform in runc shim's Shutdown method.
02dcf384b Disable criu tests in Travis CI
62adc516d sys: mkdirAs: do chown if dir already exists
49e7039a8 cpu metrics consistency
b9d9bdf1f make cpu metrics consistent with v2 docs
929ab521c fix system usage naming
659c971ca task metrics fix
23dbae3e7 Schema name fix
17d61d6b7 Units fix
f287bc229 Schema names fix
6bfb24824 Fix prometheus metrics units
b98cc7918 Added memory and cpu metrics for cgroupv2
75efbaf67 Attempt to make device mapper snapshotter tests less flaky
9eef69e3a Update after review comments
43fca9eba metrics: rename pids_v2 to pids
a022c2181 Improve host fallback behaviour in docker remote
fa62b6d23 Use logrus instead of printf for warning
08517e586 Allow empty scope authorization
499fbb033 Improve install scripts
e0011978f start.go: Improve help text
9862cb8f8 support user remapping in ctr
b02e20f12 cgroup2: enable controllers automatically
8f870c233 support cgroup2
caeacfce3 Correct grammar/typo in BUILDING.MD
51a6813c0 Split uid and gid user ns remapping in oci
30d92eff1 Defer layer download until unpack
9d5a095b0 Bump containerd console for os.File changes
cd23ad244 Bump go-runc for buffer race fix
6a22a8fc9 Return the underlying images metadata
787be0efe Modify ctr run to search for read-only flag instead of readonly
cfb4f734d Make sure for next release branch appveyor runs
f92470b3e Fix dependency in BUILDING.md
a6b6097c9 Fix container pid.
726dcaea5 update cpuinfo to make variant matches aarch64 and so on
6fa9a42ea vendor.conf: sort imports alphabetically
a44189d2f vendor.conf: pin all dependencies by git-sha
55ea3dc9b vendor.conf: reformat to use columns
8da434668 Fix cleanup error on content client test
252d6550f Update cri and docker vendors
8a66dc6ed bump containerd/go-runc a2952bc25f5116103a8b78f3817f6df759aa7def
526c0db69 Support target snapshot references on prepare
d1261b508 Update snapshot parent filter property to always exist
11ef041ff Update golang.org/x/sys to recent commit
afd33bce8 test add tests to spec_opts
731e144a4 devmapper: update example base image size in README
19f7f3ccc test: Do SynchronousDelete cleanup before testing ImageIsUnpacked
0bb48aef0 Add `--log-file` flag for windows service.
c56059162 Avoid deadlock in unpacker.
32ef2e630 Update README
82651d386 Cross build nightly builds (arm64, s390x, ppc64el)
c479156b8 Add Github workflow for nightly builds
856ea3055 Add client unpack opts
3db1c3b8f Better support windows binaries.
843423ec3 snapshots: return error if readSnapshot fails
5bf2c6fc2 Fix panic on reference.Spec.Hostname()
fda652be5 Update name for btrfs headers package
a647407ca Fix dependency in BUILDING.md
608791bfc Update to Golang 1.13.4
cfb425fc1 Update .mailmap to reduce duplicates
15669a1d3 Update to Golang 1.12.13
8f74de9e9 ctr: allow specifying --runc-systemd-cgroup
7f5d90076 ctr: allow specifying --runc-binary
0f4374169 Add proto path /usr/include to Protobuild
4c99c8132 mips: -buildmode=pie is not supported for the mips arch
fdf7a795b Clarify requirements for identifiers validation
76aa4e546 Use common identifiers package with less restrictive regex
84879b7c4 Add CGO makefile flag
7c016b655 add tests to server_test
8f9eff4fe Support disk usage in windows snapshot.
d21f0f116 windows process shim installer
a2688b972 bring back aufs and zfs
78be73662 Return not found error if no platform matched.
d12b53a07 ppc64: -buildmode=pie is not supported
5e5584196 Makefile: Drop vndr whitelist
20e844a22 Use logrus trace support.
66aa1d3ef Add snapshot walk implementations
e8c14c07c Added filters to snapshots API
f593efdf0 RELEASES.md: 1.1 EOL
aaccfcbe2 Fix `containerd config dump`.
c224edc5c apply: use naive applier when running in UserNS
37b56cafc Add ctr metrics support for Windows/LCOW containers
178469e2a Update Microsoft/hcsshim vendor
3bf461ae8 Move autocomplete files to contrib/
885232b72 bump google.golang.org/grpc v1.23.1
6356e55be Update Golang 1.12.12 (CVE-2019-17596)
074b453ac vendor: call vndr to remove useless pkgs and update vendor
7177af84a Allow 202 response code for commit
d52cbc19b snapshots/native: ignore xattr errors during CopyDir
f8cca26f3 Handle large output in v2 shim with TTY
d5b7bf51a Move flag.Parse in tests to TestMain
54257bb5e Add local-fs.target to service file
a6d3f4d30 Add device opts to ctr --privileged
ffcb1cc9b Fix delete error code on the containerd daemon side.
036db34f3 build: Fix manpage generation
06be794cb Fix shim delete error code.
901bcb223 Add distribution subpkgs to core
eaef634ef version: use runtime.Version() directly
25947db04 Add support for spec generation with host devices
c0984941e adding go version to client description
fe947e83d bump runc v1.0.0-rc9
772032598 Fix flaky btrfs test
e4e7e554d Make client's WithLease more flexible.
18be6e371 Use cached state instead of `runc state`.
f277665ed Bump runc to 1b8a1eeec3f337ab5d94f28980
e33f70385 Add more detail on releases
8ff5827e9 Update cri and cgroup packages
b5fa55b0c ctr: Enable shell autocompletion
45ce73567 Limit travis release script to a single build
0cb7e4d5f Perfect documentations
b172b7f9d Update release docs for 1.3.0
394db03f1 Fix all media types in Accept header to match RFC
90735a5d1 Update cri to 5d49e7e51b43e36a6b9c4386257c7d08c602237f.
1b1b862eb Get CRI dependency versions from containerd vendor.conf.
35d3bae1e AppVeyor: bump golang 1.12.10 (CVE-2019-16276)
95dbbdc8c Bump runc for CVE-2019-16884
62c2eea78 fix-up typo
c5821baa4 Sync and stat btrfs loopback in tests
5ea936362 Perfect documentation
a0ae24b98 Word spelling correction
85eac2550 Add release note for gc fix
cbbb6a229 Update release note.
fc31fa176 Update cri to 4ea022f82a55c449bf15bfc62ac8b0de968d81be.
0b224ac7d Update metadata interfaces for containers and leases
2a636f8c3 gen-manpages: Create man directory if it does not exist
0a2129222 Check for more kill error types
dd5122809 Don't search for state.json path
6f31417d4 Generalize media types
f3148d0b9 Add metrics type alias
57b51b948 Move golangci-lint deadline to config file
e84a84a5a Add function to set custom auth scope in context
bca374aa1 Get media type key from context
20d3fae3d Add Opt for modifying shm size
83a72858f Makefile: increase deadline to 2m for golangci-lint
b4211d94e fail on file not found for shim reconnect on containerd restart
fd6299be9 Fix density spec generation
3bc99755d Try set GOGC for golint
19ecd49ed implement ctr -connect-timeout
58892a3ba Skip darwin deploy
5bb0281d1 Fix missing vendor packages
5a656cacb Move manpage gen to separate binary
6ed809168 Publish cri release to gs://cri-containerd-release.
f997c30ec Skip cleanup in travis deploy and avoid gcs race condition.
36c543a72 Remove extra CI testing on older Ubuntu
4e8a49948 Encrypt the secret file in containerd/containerd.
f3a5b8c0a Add command to generate man pages
d1a12823b Update gcs cri release.
424d33c5b Update go-runc to e029b79d8cda8374981c64eba71f28e
3db5a5ad2 Fix darwin build for cri release
1b4cec979 Update cri test to fix image reference test and fix gcs deploy.
e3abd03ae Fix CRI release build.
61f113e60 Automate CRI tarball release.
c1fc21e92 ctr: use NewDockerAuthorizer instead of deprecated NewAuthorizer
fa11147e5 Add --env-file to ctr
5c576b026 Update and simplify mailmap
c8cb864ce platforms: update known OS and arch values
3d1fdaccc config_test: sort result before check
8788af7f8 modify-document-duplicate-word
d6a6e0b8b Support foreign and encrypted layers in the unpacker.
a4482d9a6 Fix proxy plugin config validation
01f726589 Support v1 configurations for config dump
cd79e0edf travis: fix Xenial tests not being run on master
555cb31fd Support configurable default platform in the client.
c410f0eae Fix potential panic for task in unknown state.
dd24d76a1 Fix potential containerd panic during graceful shutdown.
fa546dc3e travis: don't run old Xenial LTS on pull requests
94e4b6879 travis.yml: add TRAVIS_DISTRO env-var for easier identification
214b8328d travis: add Bionic (Ubuntu 18.04 LTS) to test matrix
b6c811b7a Update cri to 0165d516161e25e52b4ab52a404a00823f8f0ef6
db3a71173 Add 'containerd config dump' subcommand
779701b29 Add --seccomp flag to ctr
86f8be86e Add sigprocmask to default profile
f4927a298 fix mis-spelling in nvidia.go
bc692cc59 Use default UNIX env when image has no environment
a292bf0f2 bump containerd/zfs 2ceb2dbb8154202ed1b8fd32e4ea25b491d7b251
97962976a Update ttrpc to 92c8520ef9f86600c650dd540266a00
92a5b08a6 fix-grammar-mistake
372472b5f archive: truncate modification time
2d8a65b1b Export shim publisher functions
6624a70d9 runtime/opts: move WithNamespaceCgroupDeletion from containerd to its own package
8266a3c5e fix-up spelling mistake
09b184c15 rootfs: use new ctx to cleanup instead of canceled one
2f54a7cb6 bump containerd/ttrpc 9abb3e268010ea188f4e4051f77eb5aca49315fb
eb7a6bf02 bump google.golang.org/grpc v1.23.0
56bcc7767 Handle layers with the same digest in unpacker.
6f8fb9ee5 add WithImageName container opt
a40c3830d Add option to pull all metadata
55f737bd3 bump hashicorp/golang-lru v0.5.3
ed1df65c2 bump hashicorp/go-multierror v1.0.0
cbb3a3790 bump hashicorp/errwrap v1.0.0
5cab0d3f3 update the max if cur will be greater than max for setting the limit
24b9e2c1a Merge configs section by section
8ebffecbc Use map for stream processors
aae2d0d75 delete unnecessary checks and fix a test
9e183f5e5 add cli option to download all manifests
ea6c749e3 Update config doc
19cd0a4f1 Append slices when importing config files
b5f03eacd Pin to libseccomp 2.3.3
4d11bb36a devmapper: activate dm device if snap device marked as activated
bca085753 Fix toml plugin decoding
a1e3779ca Support config imports #3289
6e2228df7 Vendor github.com/imdario/mergo
6cf031e1e Pass ttrpc address to shim via env
89eae6429 Cleanup: fix some typos in code comment
d7e1b2538 Allow explicit configuration of TTRPC address
03aafaa1c Update the integration test.
60f73b6cf Support simultaneous image unpack.
550518ab8 Read trailing data on apply
348e9f7c3 Update release notes and mailmap
8acf5a142 Update release note for CRI plugin for 1.3.
041e9debb Revendor github.com/Microsoft/hcsshim
21174cb49 Change bufferSize back to 32
1073868e5 runtime: only check killall for init process
64a0b2eb2 Revendor to remove unused dependencies
7379fa663 Remove the process default ENV
5023d96ad Remove Windows EventLog logging hook
276363938 Try to preserve exit event order
04caf1fc4 Ignore fifo error when using v2 multi-container shim
9cbd18ac7 Update cri to f1d492b0cdd14e76476ee4dd024696ce3634e501.
bcc4a146e Support applying with parent directories
5a0ff41c8 Update continuity vendor
80d31d15b Update fifo for typed errors
6d0e355c6 cleanup code typos in leases.go
bee4c1a8a Add retry and non-blocking send for exit events
0d27d8f4f Unifi reaper logic into package
bb4c92c77 Fix shim hung
1c30d4d04 bugfix: override image.Env with process.Env, rather than be contrary
7682acb9e AppVeyor: update to go 1.12.9
81386df91 Add direct unpack support for overlay and aufs
1b389b362 AppVeyor: update to go 1.12.8 (CVE-2019-9512, CVE-2019-9514)
2e8ea9fd6 Allow timeouts to be configured in config
a80db38c3 blkio.go: correct help message word spells.
3ef26cd87 bump x/sys to fix riscv64 epoll
2ff7183cc AppVeyor: update to go 1.12.7
c017e0efe Use a child context for errgroup in dispatch
75771c463 Add usage function to client
b6fca48fe bump go.etcd.io/bbolt v1.3.3
0dadef19c Add docs for stream processors
d085d9b46 Remove encryption code from containerd core
282b19efd remotes: remove useless line
a3a30635e namespace: Copy ttrpc metadata before setting header
04b7f1b59 Remove ppc64le from travis
2fac3ee27 Add release notes for stream processor
116140977 Limit multiple platform manifests to one for size check
fe3638e88 Add UnpackOpts to RemoteContext
d8322e38c cast Rdev of Stat_t to uint64 for mips
af7b7cdb0 Save default namespace in the client.
552a0b1be Handle stderr in stream processors
3fded74bc Add unpack opts
26b90619e Pass apply opts through rootfs/* code
e1489f93c Use named pipes for windows processors
134d3c815 Add windows apply code
f867401c6 Use fds and pass Payloads over diff api
366823727 Add server config for stream processors
97a98773c Add StreamProcessor for apply
0bc5df035 Clarify text on `ctr` support/inclusion
0a3769eec pusher.go: error message typo correction
635ccc067 Add cri release notes
4667ee47a Update Microsoft/go-winio v0.4.14
7792c23b1 Limit default matrix to runc v2 runtime
9f0bc2b53 Add UUID and server info to introspection
08483d18a v2: Close ttrpc connection when `Delete()`
4b5dfaee1 Completely remove Windows v2 in-tree shim
2398421d5 Fix travis matrix
a5940da62 Remove `ctr cri load` and update cri-tools to v1.15.0
0a4bf1bd1 Mark faulty devices
c99961c6c Update cri to b213648c5bd0a1d2ee42709c10dff63fbfee3ad7
4b4ce4a26 remotes: remove unnecessary string formatting
d1b9ee543 travis: Enable travis CI for ppc64le arch
bb9968891 Fix containerd on windows.
3e52e2902 Fix bug in export named manifest option
594f42319 protobuf: Bump Protobuf version to 3.7.0
c965a6c4d Prevent push by tag for sub-manifests
5cf79913e gpg: Use a Pipe() rather than a file
6a2512879 gpg: Pass the passphrase to the gpg2 tool using a file
3741fd859 Remove deferred flag when removing devmapper device
b16e7c5de Update pkg/ttrpcutil with improved pipe dial logic
daf12cd19 Improve error return from AnonDialer on Windows
4d5a0e19e Mark faulty device in one transaction
878a3205c Better error recovery in devmapper
578216950 Add note about pb.txt files
f68186e10 Improve custom cgroup test
8a6190856 Add 1.3 beta release note
612628c2f fix wrong spells in compression.go
98ead46d1 Call Update of snapshotter plugin
f543f2fbc Call CloseIO when stdin closes in ctr
eb4b3e877 Fast path getting pid from task
8cd480c23 Specify protocols in ctr encrypt recipients
e3cc9c20c bug fix:#3448
c27e48d66 fix mis-spelling in client.go
22f44c44d Add garbage collection doc
02826345c Add option to compress blobs on import
9da7d3036 archive: return chtimes error with path information
3d1fa6969 Implemented constructors for both encryption and decryption
392668d00 ctr:Support deleting multiple tasks at a time
05a2b63e8 Create CryptoConfig constructors in place of dcparameters
1c7eab197 Allocate a conhost during Windows service startup
364de4c35 Wrap creation of CryptoConfig in constructors
51bc61533 Update releases doc for 1.1 release
101d4b78e Add timeout to task state calls
e097ab8bb Disable windows integration tests
f055bdb0a Remove windows v1 runtime
d531e7849 Modified image_enc_test to use a different image from other tests
5e5ae23d8 test: Check manifest.Platform before dereferencing
1945e26ac Add concurrent execs in stress tests
ffa86b25f Add new shims for checking binary sizes
c118c45f8 Change image_enc_test so that it more reliably delete images
c6d437fd7 Corrected lease implementation
c00517a94 Made fixes and optimizations to encryption GC
725d3ad8c Add --device flag to ctr
518be1cb0 Fix bug in setting request body
dd0a45dfe Add flat GC label for leases
dca17853d Add WithLinuxDevices Opt
804ae89be errors: use errdefs errors in client and commands
dde436e65 Crypto library movement and changes to content helper interfaces
bf8804c74 Implemented image encryption/decryption libraries and ctr commands
30c344394 Add crypto dependencies/vendoring
a1f3ebaec Update cgroups to c4b9ac5c7601384c965b9646fc51588
b72673fdc Makefile: allow custom base path to install
fab016c7a runtime/v1/linux: ignore ErrCgroupDeleted in Task.Start
ce0d2489a Fix regiression from #3403 with snapshot cmd
0b29c9c37 Update resolver to handle endpoint configuration
63ceaf877 Add testing log context
f63eab32e Add testing log hook to context
61d930ad5 Move specific errors to their respective packages
82826df9b Small refactor due to CI linter changes
ef7f46eb7 Fix linter errors
2b521e25a Switch to golangci-lint
abc152d14 fix name in containers file
70b00a0fa fix variable name
4988424fc * fix: view snapshot is deleted before diff
db95af43f centralize harded-code message
d643f1dc8 images: only fetch the best matched manifest info
550a6f1d7 Fix integration tests
1918ee4d1 Respect default snapshotter label
47d2ac090 Improve default label handling
4e2fc81ed Add aliases to namespaces subcommand
2a92c2741 Bump travis to criu 3.12
5ed1a3ce0 Add RELEASE note about config versioning
6601b406b Refactor runtime code for code sharing
7d2117245 Fix metadata content store to call writer digest after commit
af93e4009 ctr: Add images tag subcommand
ec8d9d3d7 shimv2: remove the dead task from runtime task list
d3e1a51f8 vendor: bump go-runc
46af8ccd2 Check exec log flags compatibility
9fda4a5fe Bumps the version of go-winio.
6b59b425e Support --log-uri for exec subcommand
844c58102 Add cgroup delete opt for ns deletion
3d3dbc8fb Handle RequestTimeout and TooManyRequests
7dfc605fc Set shim OOM scores to +1 containerd daemon score
719a2c594 Robust pid locking for shim processes
2d0379115 docs: remove shim_no_newns in ops.md
0886e4f1b No need to keep 2017 DockerCon doc
650a7e5c1 Add hashsum for release archives
cb4a8f51a bump runc v1.0.0-rc8-32-gf4982d86
bb41ef87f bump libseccomp-golang v0.9.1
174c4907d Fix shim's file IO logging
1a8df3f23 Reserve exec id to prevent race
245052243 Add timeout for I/O waitgroups
12a14c442 fix: polish log to make more clear
ec78305c4 Close the inherited socket fd
fbf96d302 Fix path in LogFile creator
63a8dee60 Switch to GitHub's new issue templates.
341c7c144 Update dependency containerd/cgroups
5e0d79380 Fix bugs in BinaryIO creator
75f183887 Allow opts to flow to the backend snapshotter during snapshot creation.
95f9bbf18 Add timeout in load shim v2
62e9e1169 switch to a working link
41e1bb832 Fix snapshotter getter in client code
052551573 Ensure labels is not nil in differ
67cf9f7f0 AppVeyor: Bump golang 1.12.6
0b7abc02b ttrpc updates for interceptors, close, and metadata
d15a06b19 docs: Fix typo to some markdown files in /docs.
dd7c0aabc remotes: support cross-repo-push
bca566736 Make newBinaryIO public
31afff294 Fix backwards compat with v2 containerd configs
bb0087280 Add user agent header to all requests
9547d269a Add v2 server config support with plugin URIs
9e0cd529d fix shim std logs not close after shim exit
fb6b0ae4c Update x/sys, x/net and bbolt modules to support Risc-V
ed308ea1e Unmount rootfs with separate Remove() in bundle
cf7fb14ef Update timestamp atomic write
4f6ba8286 Ensure close in content test
faf925ba2 Handle EOF from ReadAt in content.ReadBlob
fa6a9f063 Add ttrpc namespace support
42f24b57e Update ttrpc to a5bd8ce9e40bc7c065a11c6936f4d032ce
7531c66d5 Ensure that the rootfs dir is created in the bundle
bf24fb0ca Close file r.log after used to release resources.
5b9a43d2e Fix seccomp contributed profile for clone syscall
cee19d1e6 Change restart delay for Windows service to 15s
8a388d623 leases: support resource management
ac4485c76 Add support to gRPC errdefs for context cancel/deadline exceeded
bbe45e446 add Restart=always to unit file
a274dbe82 Fix run with specified platform
48b81e872 Do not return error when rootfs already exists.
e0c4fe411 Forcibly sync writes on lcow layer.vhd after write
5e2d7efd8 Use a single custom annotation for export
41b7b0e0d Ensure namespaced writer commit has correct namespace
7f79fbb24 Move ttrpc client to pkg/ttrpcutil
5b7a327c4 Improve atomic delete
fe6a2b03e Add shim cgroup support for v2 runtimes
62609d66d Fix typo in description comment
90c6c1af4 Pass options on shim create for v2
690706286 ctr: make ctr shim command easy to use
7b06c9a1c Add TTRPC client
5e962dd8b Remove unused Resize method from initState
66036d920 v1: Respect the `shim_debug` flag when load tasks
a6a888cb5 Bump ttrpc
fbb80b951 containerd-shim: redirect output into stdout fifo
543d1e807 Add travis_wait to prevent vndr timing out
00bc2f5cf Update to Golang 1.12, and prepare for ppc64le
67b45aef4 Add WithoutRefreshed metadata
ad25c1a9c Improve ARM platform matching
bd27bef4a Move checkpoint and restore commands to new files
cf6e00854 Fix fd leak of shim log
6f463d350 test/snapshots: umount before committing snapshot
388705317 snapshots/devmapper: deactivate thin device after committed
bdd7dce31 Add OpenLab CI configuration
660554d67 Fix error handling for task deletion.
2ed8e60fa bump google.golang.org/grpc v1.20.1
d1c59513d bump google.golang.org/grpc v1.12.2
2f22d8e67 Fix broken link to containerd logo
cb7c780af ctr images import: add --no-unpack option
ee902afa5 Compute manifest metadata when not provided.
5c9811ded Cleanup dead v2 shim.
cfc36388b Remove redundant error checks
38e369657 Use cancel on errors
eded188f4 Fix misspells
969035bcb Stop logging error on v2 multi shim log failure
c7f067f27 Update vendor/ with new required vndr go.mod files
8c5779c32 bump containerd/ttrpc 699c4e40d1e7416e08bf7019c7ce2e9beced4636
dff745680 Return NotFound error for kill and delete in deleted state.
5d17ed230 Update cri to 2fc62db8146ce66f27b37306ad5fda34207835f3.
e5aab17a0 bump opencontainers/selinux v1.2.2
dd85aea62 bump runc v1.0.0-rc8
5b9bd993a differ: fix deadlock on commit error
48f46516a Support disabling default setup of shim logger.
c79c7921c bump docker/go-units v0.4.0
dfa51c927 runtime-v1: kill shim in cleanupAfterDeadShim
0376dd460 Don't write dumped stacks to file for ETW capture state
e6fc0ed22 Convert Windows CI to use Microsoft MCR image urls
06a3a480c bump containerd/console 0650fd9eeb50bab4fc99dceb9f2e14cf58f36e7f
a333dbcfb Update x/crypto to 88737f569e3a9c7ab309cdc09a07fe7fc87233c3
0fd02564a bump gocapability
7718d060e Write stack dump to `os.TempDir()` as well
a4942ca4f Fix error on pull hang in CI
6bcf463b0 Move to sha-specified test image for nanoserver
cfb8b5573 .mailmap: update Akihiro Suda's email address
be2cbd0b2 Access to client's GRPC connection object
78f3dc433 Allow dumping stacks via ETW capture state
05dd66b2e Update go-winio in vendor.conf
c9059c767 bump mistifyio/go-zfs f784269be439d704d3dfa1906f45dd848fed2beb
63c7a879b Requeue events in the shim publisher
fc167f957 Correct PusherFunc helper to match Pusher intf
a7af3c13a Correct import path in services/server package
9cc58781f Check task list to avoid unnecessary cleanup.
97d247cd0 Rename `hrpc` to `tcpServer`
047348e19 Add dialer for events service
ae87730ad Improve shim shutdown logic
a12f836d5 Use $TEST_RUNTIME for cri test.
4b3b99ea1 Add support for required plugins.
4ba756edd Fix API forward events for shims
1a1f8f11a Set nofile to 1048576
b911ae342 Add tcp service for grpc listeners
a6f587e4c Use ttrpc to publish runtime v2 events
a8a805cad Add ttrpc server to containerd
c93d64543 Add GetOOMScore function
ae5ca8177 Refactor mount path check and add comments
7045801fd delete the ingest when any errors happen during resuming status
dcf6023c4 Extend release timeline
d5b770aa8 Introduce 'clean-test' target in Makefile
2583d9e42 update gogo/googleapis v1.2.0
a98df70da update containerd/btrfs af5082808c833de0e79c1e72eea9fea239364877
aa8dccd22 update containerd/aufs f894a800659b6e11c1a13084abd1712f346e349c
ed61d7f68 bump containerd/zfs and dependencies
d667628ca bump github.com/pkg/errors v0.8.1
68ef17835 bump github.com/BurntSushi/toml v0.3.1
1978c0b74 bump gotest.tools v2.3.0, google/go-cmp v0.2.0
2741dbe2c contrib: Dockerfile: bump go 1.12
a84f87d84 contrib: Dockerfile: add a base stage
a07e12cde contrib: Dockerfile: reformat, and use --no-install-recommends
ba9e1ea23 contrib: Dockerfile: use build-arg for go-version
4754d2aee Update image export to support Docker format
74eb0dc81 Return event publish errors.
10cf21dcf Export ExitStatus init func
a73358749 Update cri to 6d353571e64417d80c9478ffaea793714dd539d0.
de1da8be3 Update handling of registry errors
8d1ae237e Always add compressed blobs to Docker import manifest
c0f0b2131 Apply PR feedback
2a5e4c4be Skip rootfs unmount when no mounts are provided
abfc89ce0 Update CRI to master
4730088cb Update runc to resolve selinux issues
2d11f5e6d Regenerate protobufs
830b0294c Update protobuf v1.2.0
7c1365b46 bump sirupsen/logrus v1.4.1
01310eaeb do not use unkeyed fields in compose literals
90085a7ac Add empty file to prevent build from failing
baf340343 Extend Applier's Apply() method with an optional options parameter
8784eb630 Move snapshotters benchmark to a separate package
adc4fa217 Use pkg/errors for all errors
c22effb16 fix parseInfoFile does not handle spaces in filenames
559dfa59a Add configurable plugin path
d9526f5c4 Move CloudFormation template to contrib
ae04c1660 runtime: guard Close() until both streams are complete
e96ac2040 runtime: log IO error when copying output streams
515be73c8 Add snapshotters benchmark
872296642 fix shouldKillAllOnExit check for v2
fa5f744a7 fix shouldKillAllOnExit check
f7f6dd7b4 test: add custom cgroup test
2b8df8309 bump containerd/cgroups 4994991857f9b0ae8dc439551e8bebdbb4bf66c1
bc6ac0878 update opencontainers/runc v1.0.0-rc7
808b22353 Fix race and panic.
87289a0c6 devmapper: implement Usage
010b4da36 devmapper: implement dmsetup status
871094016 Windows: Build shim binary from Microsoft/hcsshim
e16e99593 Vendor Microsoft/hcsshim@8abdbb82
5d50b9c2b Extend adaptImage function with annotations case
388c8a176 Fastpath opt and ExecProcess loading
a84966451 Windows:ProgramFiles to ProgramData
6034c1950 Windows:Create root/state with ACL
7361b1987 Update Windows lcow differ to set NT VIRTUAL MACHINE\Virtual Machines SID
4c9b5ef8e Update vendor github.com/Microsoft/go-winio
d15832a4c Address review comments
8f8fd3c3a seccomp: whitelist statx syscall
908b77108 Add code to return message field of returned registry errors
9a8727cf0 Allow to import an image for the default platform only.
4506eb45b seccomp: whitelist io_pgetevents
f3ff95ab7 decouple api.ContentServer implementation package from bbolt dependency
14a050688 ctr: fix image cmd ArgsUsage
bdd84abf0 Add additional capability handling opts
a631796fd horten the unix socket path for shim
b858cfb41 Makefile: allow overriding package name
7ca2c3d68 contrib/nvidia: export helper binary path and list of Nvidia capabilities
a7aeffc22 Update mailmap for cgroup authors
e6ae9cc64 Shim pluggable logging
506b81548 remotes: add distribution labels to blob data
b8d40b353 update runc to 2b18fe1d885ee5083ef9f0838fee39b62d653e30
09cf2a629 Extend metadata images test with fieldpaths for Annotations
5124f9ee5 Write the Annotations map into the bolt db
02cc1485d Prepare boltutil for reading and writing another map
1e893b19c devmapper: add no_devmapper build tag
79248fea2 Add test for ocispec.Descriptor Annotations
34f377295 Allow WithNewSnapshot and WithNewSnapshotView to take in snapshotter options.
aaae81189 Update checkpoint opts with runtime handling
160737d2c Fix no pivot and keyring opts
0b711d616 Copy annotations around where necessary
4d2a26d75 BUILDING.md: update testing section
6424a3603 ctr/commands/images/push: don't show progress if it is debug mode
7cfb99ab9 Add content gc ref labels from containers, images, and snapshots
f0d5dd3c8 Use unix.SignalNum in ParseSignal on unix platform
1745951ba Vendor golang.org/x/sys d455e41777fca6e8a5a79e34a14b8368bc11d9ba
e13a4b67e Update the snapshotter docs to refer to the snapshots package for WithLabels.
277147135 Fix issue with NewFIFOSetInDir with Terminal true
828f6eb84 Fix a bug in shim log on Windows that can cause 100% CPU utilization
c6703d4c7 Add missing annotations map to Descriptor for gRPC transfer
d2bec5422 Bump cgroups to dbea6f2bd41658b84b00417ceefa416b97
208957ba3 devmapper: proper cleanup in pool device test
734989c2a Update README
fb8048371 docs: Add NAME section in all manpages
95f0a4903 devmapper: rollback thin devices on error
adf5c640f devmapper: don't create or reload thin-pool from snapshotter
7efda48c5 devmapper: more precise way of checking if device is activated
37cdedc61 devmapper: add linux tags, fix build
0c6d194cc devmapper: add README and minor fixes
2218275ec devmapper: register plugin
cec72efc2 devmapper: add snapshotter
3a7588252 devmapper: add pool device manager
6e0ae68e1 devmapper: add snapshotter config
fcd9dc274 devmapper: add pool metadata
809e5fd3b devmapper: add dmsetup
fe05e4d1a devmapper: add losetup
d83e4e9b3 Vendor Microsoft/go-winio@v0.4.12
e0d7ed12a Windows: Enable ETW logging
cbc032ed3 Update go.etcd.io/bbolt to v1.3.2
5e8406984 Update travis to xenial worker
84a24711e Add runc.v2 multi-shim
6bcbf88f8 Move runc shim code into common package
fd6ac5d02 Vendor sirupsen/logrus@1.3.0
b553a12be runtime: allow specifying supported platforms with config
f6ac73d71 fixing typo and added a missing comment.
4b3e0a8aa metadata: merge snapshot labels with metadata's labels
88f19a90a Windows: Update stackdump event name
14f7e5272 Unpack should set 0755 when the parent directory doesn't exist.
a6f43b549 Add website update to release process
17b2c8498 Update supported versions
b87e9eef3 Add ExecID for StateResponse
bfb266ab5 Fix some misspells in helpers_test.go
dc09ed1e1 Add image handler wrapper
a4f7b3758 Add support for TaskDelete event on exec in RuntimeV2
00895670e Stop sending stderr with TTY on Windows
6a21728fb Use defaults package for listing namespace labels
14eaad0cd Update runc to 6635b4f0c6af3810594d2770f662f34ddc15b40d (CVE-2019-5736)
98766e863 Vendor opencontainers/runtime-spec 29686dbc
225d9b120 Fix LCOW layer ordering
0190e5f39 Removes the oci.test.exe binary.
525802f9c Use distribution's reference.ParseDockerRef
3538174e6 Bump github.com/docker/distribution to 0d3efadf0154c2b8a4e7b6621fff9809655cc580
2dacef07c Add shim skeleton code
59ea134ce OCI Modifiers for Windows
d25007e54 Add structure documentation for metadata
823b7a8a0 Cleanup releases directory
7bd8dcd0d Fix potential containerd panic.
41f540621 Add release documentation
f014adfa1 readme: fix example for checkpoint
dfcc5942f Fix deadlock in Windows runhcs shim exec
da2ab865e Add documentation for using namespace labels for configuring defaults.
952d58297 Add a separate lock for pid.
9777d7689 Revert "use state machine management for exec.Pid()"
34323985a Use labels only when default namespace is provided and prefer given options.
59432aaec Take default runtime and snapshotter from namespace labels
6629f853a BUILDING: update BUILDING.md
d7ed40307 Add image pull concurrency limit.
7f5d7ff6b Update snapshots docs with garbage collector label
34672d483 metadata/gc: remove the noop-loop for snapshot reference
6ed293ba9 Fix bug in shim path lookup
d63099c4a Allow matching shim path side by side with containerd
764afa0d1 Include extension for shim binary format on Windows
dfebb404c remove excessive []byte(s) conversion
85aa8ad36 Move task events to runc v2 shim
28f8a90bd Update cri plugin to 4dd6735020f5596dd41738f8c4f5cb07fa804c5e.
bb32c0f61 Revendor github.com/Microsoft/hcsshim v0.8.4
f44469698 Return out of windows signal handler
26ab393e7 Use context.Background for `O_NONBLOCK` `OpenFifo`.
7db569771 unix.UtimesNanoAt now supported on Darwin
132ee9b82 fix: linter issue
6468619d7 Implement the Runtime v2 Shim async task model for runhcs
b444d7d50 Handle additional cleanups from prior PR
4ef9bf5c8 Windows: Publish exit status correctly in TaskExit
90caf6f6a Windows:NewDirectIOFromFIFOSet
3aec9e7be bump up runc
0befa457d Update ttrpc to support context timeout.
946e40266 Update releases files
c5a8c9fc1 Fix issue in runhcs shim CloseIO
31616e794 Fix runhcs shim bug in Create with "len(Rootfs) == 0"
bcd4cc51c Fixes a bug in runhcs shim Exec.Pid
bc76e01a8 Update runhcs options to include CRI Sandbox support
a79879e9d Add security audit report to README
dee0945e1 Fix spurious ttrpc client shutdown error log on success
64a004641 Update cri-tools to v1.13.0.
b55c9c6c3 Update cri to 4b4b2abb2eb19ad6913a6c5d2a6869a0a43a3fc1.
17b77aeb0 Fix annotation typo errors
5137fc6f1 bugfix: support application/octet-stream during pull
568b5be93 runtime: add Add/Delete method in PlatformRuntime interface
7faaa64cf fix: miss remove temp file in createSnapshot
4247f2684 metadata: define content sharing policy
1be86af10 add test for WithImageConfigArgs
36e4dc603 Ensure bundle removal is atomic
723797d32 docs: remove website leftovers
d4ecb00f6 checkpoint: return empty image if checkpointPath exist
f2344db40 do not mutate defaults in replaceOrAppendEnvValues
da9471fb1 fix oci.WithImageConfigArgs for windows
897afeaf3 Revert "Fix CI due to Golang 1.10.6 / 1.11.3 regressions (workaround)"
0ec6526fd Update the delete docs for Runtime V2 on Windows
e20ba5fa5 test: add test for c/r without image
40267382c fix ctr image export not found error
8be05eb23 Fix freebsd build
7b1e6f323 fix: use func args instead of build new one
9baecf66b fix: fix defer in loop
903abf33c Fix annotation typo error
52de37170 Fix CI due to Golang 1.10.6 / 1.11.3 regressions (workaround)
2d96aad77 bugfix: unpack should always set the snapshot gc label
a2a424197 Add timeout and cancel to shim fifo open
6f944e419 fix: SCHILY.xattrs should be SCHILY.xattr
6ccb0d062 fix: remove dead code
2db0c6c26 Explicitly stating utf-8 when fetching oauth token
603e97a9e ctr/content: make editor flag is required
7ac221e8d Adding ctr memory and cpu flags
822ae18b1 Update cgroups to 1152b960fcee041f50df15cdc67c29db
3ae8e8a30 Add shim config for shim binary options
66c20f2b7 Update runc to 96ec2177ae841256168fcf76954f7177af
79499980e Kill should still work in stopped state.
27ba2db10 Revendor github.com/Microsoft/hcsshim to v0.8.3
2d3a4f99e should no defer when detach
70084ea6c Add /proc/asound to masked paths
6daf8b778 Eliminate misuses of errors.Wrapf
a404f27a0 Add more adopters
6593399e9 cr: support checkpoint/restore without image
996c60616 fix: fix error info start capitalized
b4a642f6a Add dumpStacks support for containerd on Windows
40d898a82 Windows: Allow running as a service
97dd5df66 Update runc to v1.0.0-rc6
09bf314bf Cache shim v2 exec.LookPath results
fd16bf6d4 runtimev2: add image-path and work-path for c/r
83ebcf999 runtimev1: add image-path and work-path for c/r
f90e5d564 Move ctr run --isolation to Windows only
bbc2a995f use state machine management for exec.Pid()
461222dba fix: should get runtime name from container info
2101b1362 add ctr delete --exec-id to debug DeleteProcess
a2e8ab9ff remotes: avoid panic with default resolver conf
7d91d631e Lock `KillAll`.
9639db552 refactor: no need defer in closeAll
e76a8879e fix pipe in broken may cause shim lock forever for runtime v1
b3438f7a6 fix pipe in broken may cause shim lock forever for runtime v2
956e49a36 Revert v2 dropped events
1d4105cac Use named pipes for shim logs
581a63ce4 Add build requirement doc on fedora/centos
01f5aa387 add flag -d for ctr t exec to run a service in container
51ad4d302 change args usage for ctr c create
bd2a21985 fix container cmd args may parsed as ctr args
90880078b Adding a --load-kmods flag to the NVIDIA OCI hook
e1a59ba0f Update runc to 10d38b660a77168360df3522881e2dc2be
8e25ca6bf Revendor github.com/sirupsen/logrus to v1.0.3
0e7a70dbf skip already exists content
6f2f4e434 checkpoint: add copts to checkpoint; save snapshotter to annotation
40caece8d update tests
4fdf720b8 move rw to opt; make snapshot opt; move to NewContainerOpts
147208061 add image name and runtime name media types; remove task operation on checkpoint
ce0673fd7 Restore take image
0e4d9da75 remove task handling from Restore
2d3db08da refactor spec and snapshot restore into opts
45c700a95 refactor checkpoint and restore to client
555ea3fb4 Ignore modprobe failures in ExecStartPre (systemd unit)
abd971cfb Revendor github.com/Microsoft/hcsshim
831a41b95 Fix process locking and state management
c4feaa75c fix: fix failed to get container-shim relation with io.containerd.runc.v1
c524b9ce4 Partially revert the event discard change in #2748.
38d7d59e8 enhance: update v1/v2 runtime
ce6d4c9a9 add docs/rootless.md
dd0539b09 ctr: add --cgroup for oci.WithCgroup
18363d0c9 Add ADOPTERS.md file
354dab0ca Forward ctr.exe --debug as io.containerd.runhcs.v1 options
a33ad4024 Implement io.containerd.runhcs.v1 shim log opts
ec3dbd155 Add io.containerd.runhcs.v1 shim proto options
7d70d2b78 Fix Makefile to run protobuild on paths with spaces
83f4ab885 makefile: remove emoji on Linux
8329a491b Build Windows V1 and V2 runtimes always
124194b98 check task existence before new task
a02f7cea8 bugfix: use skip-verify flag in ctr instead of insecure
2bb7da843 Fix mingw version back to working version with Golang
068880ff1 Add custom headers option to dockerResolver
fa912a79b update link for slack invite
7c85d873a fix typo in ResolverOptions.Credentials documentation
232a06349 Increase reaper buffer size and non-blocking send
00ba92364 bugfix: CloseIO should return correct status code
1cc93460d Bump aufs for unsupported errors
1301813f7 Update ZFS for unsupported warnings
16aaf6c06 Change unsupported snapshot warnings to INFO
07237e34e Bump to Go 1.11.x
c206da795 optimize shim lock in runtime v1
c5a0c7f49 Add build option "GODEBUG=1"
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
|
|
It defaults to "-s -w" [1] which strips debug information, refresh a backported
patch to build unstripped binaries
https://golang.org/cmd/link/
Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
