github/containerd
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 2 Wiki Activity
1,849 Commits 3 Branches 2 Tags 112 MiB
0049d4f973
Commit Graph

1849 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Alex Price
3353ab76d9 Add flag to overload default privileged host device behaviour 
This commit adds a flag to the runtime config that allows overloading of the default
privileged behaviour. When the flag is enabled on a runtime, host devices won't
be appended to the runtime spec if the container is run as privileged.

By default the flag is false to maintain the current behaviour of privileged.

Fixes #1213

Signed-off-by: Alex Price <aprice@atlassian.com>
 2019-08-08 12:16:42 +10:00
Lantao Liu
95bd02d28f
Merge pull request #1200 from jterry75/image_user 
Assign ImageSpec User if SecurityContext is not set
 2019-08-07 13:50:08 -07:00
Lantao Liu
8ea0cc90aa
Merge pull request #1221 from jterry75/log_g 
Switch to containerd/log package
 2019-08-07 13:49:33 -07:00
Justin Terry (VM)
bc2cff625b Assign ImageSpec User if SecurityContext is not set 
By default the SecurityContext for Container activation can contain a Username
UID, GID. The order of precedences is username, UID, GID. If none of these
options are specified as a last resort attempt to set the ImageSpec username.

Signed-off-by: Justin Terry (VM) <juterry@microsoft.com>
 2019-08-07 12:20:52 -07:00
Justin Terry (VM)
193918b702 Switch to containerd/log package 
Moves to the containerd/log package over logrus directly. This benefits the
traces because if using any log context such as OpenCensus on the entry gRPC
API all traces for that gRPC method will now contain the appropriate TraceID,
SpanID for easy correlation.

Signed-off-by: Justin Terry (VM) <juterry@microsoft.com>
 2019-08-07 12:18:18 -07:00
Mike Brown
29104d94d6
Merge pull request #1223 from Random-Liu/update-support-metrics 
Update support metrics to reflect 1.11 EOL.
 2019-08-07 08:13:55 -05:00
Mike Brown
5fd4ab7ef9
Merge pull request #1226 from Random-Liu/use-golangci-lint 
Use golangci-lint
 2019-08-07 08:12:37 -05:00
Lantao Liu
9bf53555a0 Use golangci-lint. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-08-07 01:20:52 -07:00
Lantao Liu
c7b48c09d7
Merge pull request #1224 from Random-Liu/infer-systemd-cgroup 
Infer systemd cgroup
 2019-08-06 13:33:40 -07:00
Lantao Liu
eae5fc360f Infer systemd cgroup based on path suffix. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-08-06 11:00:51 -07:00
Lantao Liu
30fb9ea9b2 Update support metrics to reflect 1.11 EOL. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-08-05 18:17:30 -07:00
Lantao Liu
f9760af8d4
Merge pull request #1220 from Random-Liu/remove-no-pivot-deprecation 
Do not deprecate no_pivot yet.
 2019-08-05 18:15:51 -07:00
Lantao Liu
871a8b89c8 Do not deprecate no_pivot yet. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-08-05 15:12:50 -07:00
Lantao Liu
b213648c5b
Merge pull request #1219 from Random-Liu/rename-test-containerd-bin 
Rename the test binary to containerd-test.
 2019-08-05 10:11:07 -07:00
Lantao Liu
7665f4ac22 Rename the test binary to containerd-test. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-08-02 15:43:06 -07:00
Lantao Liu
a99766612f
Merge pull request #1218 from Random-Liu/more-proc-mount-test 
Add test for disable_proc_mount.
 2019-08-02 14:02:56 -07:00
Lantao Liu
986d04aec1 Add test for disable_proc_mount. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-08-02 11:22:34 -07:00
Lantao Liu
fb5210e2aa
Merge pull request #1217 from Random-Liu/print-deprecated-notice 
Print warning message for deprecated options.
 2019-08-02 10:04:32 -07:00
Lantao Liu
b74653b821 Print warning message for deprecated options. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-08-02 01:10:11 -07:00
Lantao Liu
f636fb0519
Merge pull request #1215 from Random-Liu/update-kubernetes 
Update kubernetes
 2019-08-01 10:28:25 -07:00
Lantao Liu
8a5b6b8dff Update cri-tools to v1.15.0 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-07-31 23:52:03 -07:00
Lantao Liu
ba8788c6b9 Update kubernetes dependency to 1.15.0. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-07-31 23:52:03 -07:00
Lantao Liu
fe5eb76cb4
Merge pull request #1209 from Random-Liu/fix-proc-mount-support 
Fix proc mount support.
 2019-07-31 23:23:04 -07:00
Lantao Liu
467f9e0e8a Fix proc mount support. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-07-31 17:11:15 -07:00
Mike Brown
b23e2cf9d1
Merge pull request #1212 from mrIncompetent/return-annotations-bandwith-error 
Return actual error when fetching the bandwidth info from annotation fails
 2019-07-29 13:39:51 -05:00
Lantao Liu
f0a677e76f
Merge pull request #1211 from Random-Liu/add-max-concurrency-support 
Add max concurrent downloads support.
 2019-07-28 23:52:24 -07:00
Henrik Schmidt
9aec38164d Return actual error when fetching the bandwidth info from annotation fails 
Signed-off-by: mrIncompetent <henrik@henrik-schmidt.de>
 2019-07-28 09:47:31 +02:00
Lantao Liu
c78caf902d Add max concurrent downloads support. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-07-26 18:15:17 -07:00
Lantao Liu
994cea830b
Merge pull request #1207 from Random-Liu/move-cancel 
Move context cancel into defer.
 2019-07-26 14:04:33 -07:00
Lantao Liu
d3cacff8e1 Move context cancel into defer. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-07-25 15:00:43 -07:00
Lantao Liu
74d2b6947c
Merge pull request #1152 from jterry75/deadline_exceeded 
Return gRPC codes.DeadlineExceeded for all timeout operations
 2019-07-25 14:58:29 -07:00
Mike Brown
d2986eb5aa
Merge pull request #1187 from alculquicondor/feature/tcp 
Add option to register on TCP server
 2019-07-25 16:36:05 -05:00
Lantao Liu
240e19d7ac
Merge pull request #1202 from Random-Liu/not-cache-image-handler 
Do not cache image handler.
 2019-07-25 11:57:33 -07:00
Aldo Culquicondor
4b43303203 Add option to register on TCP server 
Signed-off-by: Aldo Culquicondor <acondor@google.com>
 2019-07-25 09:42:49 -04:00
Lantao Liu
5fdb4b8eef
Merge pull request #1204 from Random-Liu/fix-ctr-readiness-check 
Fix ctr readiness check in test.
 2019-07-25 00:25:20 -07:00
Lantao Liu
0f313f977d
Merge pull request #1205 from Random-Liu/no-snat 
Remove `noSnat`
 2019-07-25 00:24:37 -07:00
Lantao Liu
deb8e82502
Merge pull request #1206 from Random-Liu/add-font-art 
Add containerd font art.
 2019-07-25 00:24:18 -07:00
Lantao Liu
0c1ff73894 Add containerd font art. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-07-24 18:06:14 -07:00
Lantao Liu
c6a3662874 Remove noSnat 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-07-24 17:35:03 -07:00
Lantao Liu
e83fe56075 Fix ctr readiness check in test. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-07-24 15:38:55 -07:00
Lantao Liu
fe0cb22026 Do not cache image handler. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-07-24 15:38:18 -07:00
Lantao Liu
64bf4bebf3
Merge pull request #1188 from alculquicondor/fix/doc 
Update docs to v2 config
 2019-07-24 14:25:42 -07:00
Lantao Liu
8faf3ea063
Merge pull request #1203 from Random-Liu/update-containerd 
Update containerd for config backward compatibility.
 2019-07-24 13:40:12 -07:00
Aldo Culquicondor
e2550f6285 Update docs to v2 config 
Signed-off-by: Aldo Culquicondor <acondor@google.com>
 2019-07-24 09:30:13 -04:00
Lantao Liu
0344ac239b Update containerd for config backward compatibility. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-07-23 19:14:28 -07:00
Mike Brown
b5e9d13261
Merge pull request #1173 from mikebrow/make-update-sync-cli 
synching up a bit with containerd Makefile
 2019-07-16 17:26:56 -05:00
Mike Brown
f30af565c8
Merge pull request #1176 from mikebrow/golang-1.12 
move up to golang 1.12.x
 2019-07-16 17:03:20 -05:00
Justin Terry (VM)
7b0c78bacd ExecSync should block unless client context is canceled 
A call to ExecSync should only return if the client context was canceled or
exceeded. The Timeout parameter to ExecSyncRequest is now used to send SIGKILL
if the exec'd process does not exit within Timeout but all paths wait for the
exec to exit.

Signed-off-by: Justin Terry (VM) <juterry@microsoft.com>
 2019-07-16 09:47:55 -07:00
Justin Terry (VM)
71cecedc44 StopContainer should block unless client context is canceled 
A call to StopContainer should only return if the client context is canceled or
its deadline was exceeded. The Timeout parameter on StopContainerRequest is now
used as the time AFTER sending the stop signal before the SIGKILL is delivered.
The call will remain until the container has exited or the client context has
finished.

Signed-off-by: Justin Terry (VM) <juterry@microsoft.com>
 2019-07-16 09:44:23 -07:00
Justin Terry (VM)
d7c3ecd0fb RunPodSandbox should block unless client context is canceled 
A call to RunPodSandbox should only return timeout if the operation has timed
out because the clients context deadline was exceeded. On client cancelation
it should return gRPC Canceled otherwise it should block until the sandbox has
exited.

Signed-off-by: Justin Terry (VM) <juterry@microsoft.com>
 2019-07-16 09:35:56 -07:00