containerd

Author	SHA1	Message	Date
Kazuyoshi Kato	0100595ae9	Merge pull request #7804 from lucacome/bump-golangci Bump golangci-lint to v1.50.1	2022-12-13 14:41:26 -08:00
Phil Estes	ecf00ffe84	Merge pull request #7783 from inspektor-gadget/qasim/cri-disable-swap cri: make swapping disabled with memory limit	2022-12-13 15:21:51 -05:00
Fu Wei	d2f68bfb36	Merge pull request #7313 from pacoxu/image-pull-metrics add metrics for image pulling: error; in progress count; thoughput	2022-12-13 19:49:22 +08:00
Luca Comellini	c5fff10fe7	Bump golangci-lint to v1.50.1 Signed-off-by: Luca Comellini <luca.com@gmail.com>	2022-12-12 22:48:55 -08:00
Derek McGowan	7db53e0e8c	Merge pull request #7793 from dmcgowan/prepare-v1.7.0-beta.1 Prepare release notes for v1.7.0-beta.1	2022-12-12 21:24:08 -08:00
Phil Estes	2a76a1e78d	Merge pull request #7771 from akhilerm/fetch-from-private-buckets support fetching containerd from non public GCS buckets	2022-12-12 13:06:21 -05:00
Phil Estes	133ddce7cf	Merge pull request #7651 from AkihiroSuda/custom-image-createdat images: support specifying SourceDateEpoch via ctx	2022-12-12 12:59:38 -05:00
Derek McGowan	182375794d	Merge pull request #7718 from AdamKorcz/fuzz1234 fuzzing: improve archive fuzzer	2022-12-12 09:29:34 -08:00
Akhil Mohan	b94c1018af	disable tracing while handling token Signed-off-by: Akhil Mohan <makhil@vmware.com>	2022-12-12 19:19:48 +05:30
Fu Wei	5e51347a63	Merge pull request #7798 from calvin0327/fix-sdNotify fix sdNotify func when debug level	2022-12-12 14:36:12 +08:00
calvin0327	f219f7d1ea	fix sdNotify func when debug level Signed-off-by: wen chen <wen.chen@daocloud.io>	2022-12-12 10:06:35 +08:00
Akihiro Suda	75b09ac4a7	images: support specifying SourceDateEpoch via ctx Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>	2022-12-12 09:02:35 +09:00
Akihiro Suda	dc48349248	epoch: propagate SOURCE_DATE_EPOCH via ctx Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>	2022-12-12 09:02:35 +09:00
Maksym Pavlenko	36641eade6	Merge pull request #7794 from austinvazquez/upgrade-github-actions-packages Upgrade GitHub actions packages in release workflow	2022-12-11 10:37:34 -08:00
Samuel Karp	e3ceecf92e	Merge pull request #7796 from austinvazquez/enable-local-linux-ci Enable GitHub Actions local Linux CI runs	2022-12-11 00:30:16 -08:00
Austin Vazquez	66f71ea4d5	Enable GitHub Actions local Linux CI runs Sync package index and automatic yes to apt repository prompts. Signed-off-by: Austin Vazquez <macedonv@amazon.com>	2022-12-11 04:37:21 +00:00
Austin Vazquez	14a38e12b7	Upgrade GitHub actions packages in release workflow Resolve NodeJS 12 and command deprecation warnings by upgrading docker/setup-buildx-action and crazy-max/ghaction-github-runtime packages. Signed-off-by: Austin Vazquez <macedonv@amazon.com>	2022-12-10 07:58:35 +00:00
Derek McGowan	33e706aec6	Prepare release notes for v1.7.0-beta.1 Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-12-09 15:59:59 -08:00
Mike Brown	4f4fa9b497	Merge pull request #7791 from fuweid/follow-up-7073 integration: increase timeout in container_event_test.go	2022-12-09 12:43:05 -06:00
Phil Estes	a7428f4473	Merge pull request #7732 from AkihiroSuda/sha256-simd digest: use github.com/minio/sha256-simd	2022-12-09 09:37:37 -05:00
Phil Estes	e5751d44c4	Merge pull request #7787 from ginglis13/restore-fail allow client to remove created tasks with PID 0	2022-12-09 09:29:51 -05:00
Wei Fu	423f4388b4	integration: increase timeout in container_event_test.go Follow-up: https://github.com/containerd/containerd/pull/7073#discussion_r1044142416 Signed-off-by: Wei Fu <fuweid89@gmail.com>	2022-12-09 15:26:49 +08:00
Fu Wei	f2cf411b79	Merge pull request #7073 from ruiwen-zhao/event Add container event support to containerd	2022-12-09 15:24:23 +08:00
Akihiro Suda	ce7694b2b1	Merge pull request #7786 from davidhsingyuchen/docs-err-unexpected-status docs: Authorizer.Authorize could return ErrUnexpectedStatus	2022-12-09 14:42:02 +09:00
Derek McGowan	f3368b4a5b	Merge pull request #7772 from mathis-m/fix/userxattr_on_tmpfs fix: check for tmpfs when evaluating if userxattr is needed	2022-12-08 16:02:08 -08:00
Gavin Inglis	80839f11e2	allow client to remove created tasks with PID 0 Fixes #7357 If a container is restored from a checkpoint that has a configuration error, the task for the restored container is created, but fails to start and is left in the state CREATED with a PID of 0. Before this change, the only way to remove this task was to find the PID of the shim monitoring the task and kill that process. Now, ctr t rm <task> will work on tasks that result in the CREATED state with PID 0. Signed-off-by: Gavin Inglis <giinglis@amazon.com>	2022-12-08 22:04:24 +00:00
Hsing-Yu (David) Chen	d5010a12df	docs: Authorizer.Authorize could return ErrUnexpectedStatus Signed-off-by: Hsing-Yu (David) Chen <davidhsingyuchen@gmail.com>	2022-12-08 13:24:48 -08:00
Maksym Pavlenko	e1abaeb386	Merge pull request #7764 from mxpv/config Pass TOML configuration options for runtimes CRI is not aware of	2022-12-08 12:59:13 -08:00
mathis-m	2eabcf7026	fix: check for tmpfs when evaluating if userxattr should be used Signed-off-by: mathis-m <mathis.michel@outlook.de>	2022-12-08 20:55:15 +01:00
ruiwen-zhao	a6929f9f6b	Add Evented PLEG support to sandbox server Signed-off-by: ruiwen-zhao <ruiwen@google.com>	2022-12-08 19:31:36 +00:00
ruiwen-zhao	a338abc902	Add container event support to containerd Signed-off-by: ruiwen-zhao <ruiwen@google.com>	2022-12-08 19:30:39 +00:00
Maksym Pavlenko	34513f9c11	Merge pull request #7776 from mxpv/build Cleanup build constraints	2022-12-08 10:28:07 -08:00
Maksym Pavlenko	e14753fc54	Respect no_cri constraint Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>	2022-12-08 09:36:23 -08:00
Maksym Pavlenko	3bc8fc4d30	Cleanup build constraints Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>	2022-12-08 09:36:20 -08:00
Maksym Pavlenko	d39ee7b1b7	Merge pull request #7775 from mxpv/defaults There is no way to disable debug endpoint on Darwin	2022-12-08 09:31:34 -08:00
Maksym Pavlenko	c040f83825	Fix default config for Darwin Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>	2022-12-08 07:49:14 -08:00
Qasim Sarfraz	69975b92bb	cri: make swapping disabled with memory limit OCI runtime spec defines memory.swap as 'limit of memory+Swap usage' so setting them to equal should disable the swap. Also, this change should make containerd behaviour same as other runtimes e.g 'cri-dockerd/dockershim' and won't be impacted when user turn on 'NodeSwap' (https://github.com/kubernetes/enhancements/issues/2400) feature. Signed-off-by: Qasim Sarfraz <qasimsarfraz@microsoft.com>	2022-12-08 13:54:55 +01:00
Akihiro Suda	cde9490779	digest: use github.com/minio/sha256-simd Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>	2022-12-08 18:50:00 +09:00
Akihiro Suda	8b42517786	Merge pull request #7777 from AkihiroSuda/vagrant-rocky-version CI: Vagrant: pin rockylinux/8 to v5.0.0	2022-12-08 17:21:27 +09:00
Akihiro Suda	0b349428e9	CI: Vagrant: pin rockylinux/8 to v5.0.0 Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>	2022-12-08 11:37:36 +09:00
Akihiro Suda	50da24c5ec	Merge pull request #7774 from thaJeztah/bump_golang_net vendor: golang.org/x/net v0.4.0	2022-12-08 09:46:50 +09:00
Maksym Pavlenko	d10dbd2d2d	Merge pull request #7773 from mxpv/ctx Fix context when waiting sandbox	2022-12-07 13:53:37 -08:00
Derek McGowan	241563be06	Merge pull request from GHSA-2qjp-425j-52j9 CRI stream server: Fix goroutine leak in Exec	2022-12-07 13:50:26 -08:00
Sebastiaan van Stijn	662d8a085e	vendor: golang.org/x/net v0.4.0 golang.org/x/net contains a fix for CVE-2022-41717, which was addressed in stdlib in go1.19.4 and go1.18.9; > net/http: limit canonical header cache by bytes, not entries > > An attacker can cause excessive memory growth in a Go server accepting > HTTP/2 requests. > > HTTP/2 server connections contain a cache of HTTP header keys sent by > the client. While the total number of entries in this cache is capped, > an attacker sending very large keys can cause the server to allocate > approximately 64 MiB per open connection. > > This issue is also fixed in golang.org/x/net/http2 v0.4.0, > for users manually configuring HTTP/2. full diff: https://github.com/golang/net/compare/c63010009c80...v0.4.0 other dependency updates (due to (circular) dependencies between them): - golang.org/x/sys v0.3.0: https://github.com/golang/sys/compare/v0.2.0...v0.3.0 - golang.org/x/term v0.3.0: https://github.com/golang/term/compare/v0.1.0...v0.3.0 - golang.org/x/text v0.5.0: https://github.com/golang/text/compare/v0.4.0...v0.5.0 Signed-off-by: Sebastiaan van Stijn <github@gone.nl>	2022-12-07 22:20:44 +01:00
Maksym Pavlenko	f9295aa49f	Fix context when waiting sandbox Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>	2022-12-07 12:52:04 -08:00
Maksym Pavlenko	8ab1d44967	Pass runtime configuration as TOML blob Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>	2022-12-07 10:55:06 -08:00
Maksym Pavlenko	3e92dedc2e	Update runtime options to include bytes blob Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>	2022-12-07 10:55:06 -08:00
Akihiro Suda	5f845588a5	Merge pull request #7765 from thaJeztah/update_go_1.19.4 update to go1.19.4, go1.18.9	2022-12-08 00:43:12 +09:00
Akhil Mohan	9df96dc46a	support fetching containerd from non public GCS buckets - add support to fetch and download containerd tarball from GCS buckets that require authentication. GCS_BUCKET_TOKEN should have read access to the bucket from which artifacts are to be fetched. The token is expected to be present in the instance metadata of the VM, similar to other node environment variables Signed-off-by: Akhil Mohan <makhil@vmware.com>	2022-12-07 18:35:56 +05:30
Paco Xu	c59f1635f0	add metrics for image pulling: success/failure count; in progress count; thoughput Signed-off-by: Paco Xu <paco.xu@daocloud.io>	2022-12-07 15:11:00 +08:00

1 2 3 4 5 ...

11487 Commits