containerd

Author	SHA1	Message	Date
Lantao Liu	f4c9ef2647	Add symlink follow into unmount util. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-03-24 01:25:31 +00:00
Mike Brown	94df315de8	adds volatile state directory to the fs plan for cntrs/pods/fifo Signed-off-by: Mike Brown <brownwm@us.ibm.com>	2018-03-24 00:05:52 +00:00
Lantao Liu	aa83a7a0aa	Change for new containerd. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-03-23 23:03:16 +00:00
Lantao Liu	c6fecb2115	Merge pull request #688 from Random-Liu/cleanup-kata-code Address comments for privileged runtime code.	2018-03-22 23:01:31 -07:00
Lantao Liu	ca67f94ee0	Address comments for privileged runtime code. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-03-23 02:17:46 +00:00
Lantao Liu	55d512b98c	Make const private. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-03-23 00:48:50 +00:00
Lantao Liu	5ae4de1cc2	Merge pull request #681 from mikebrow/tls-config adds tls certificate to tls config	2018-03-22 17:34:04 -07:00
Mike Brown	89adb74414	adds tls certificate to tls config Signed-off-by: Mike Brown <brownwm@us.ibm.com>	2018-03-22 09:42:31 -05:00
Nitesh Konkar	6a542c596b	Bump pause container to multi-arch gcr.io/google-containers/pause:3.1 Signed-off-by: Nitesh Konkar <niteshkonkar@in.ibm.com>	2018-03-22 05:44:12 +00:00
Lantao Liu	9177cb16bc	Remove omitempty from config json. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-03-21 07:28:25 +00:00
Jose Carlos Venegas Munoz	bdc5eee544	test: Add unit tests for privileged runtime functions - Add unit test for privilegedSandbox - Add unit test for getRuntime Signed-off-by: Jose Carlos Venegas Munoz <jose.carlos.venegas.munoz@intel.com>	2018-03-20 18:04:23 -06:00
Jose Carlos Venegas Munoz	ca16bd601a	runtime: Add trusted runtime option Some CRI compatible runtimes may not support provileged operations. Specifically hypervisor based runtimes (like kata-containers, cc-runtime and runv) do not support privileged operations like: - Provide access to the host namespaces - Create fully privileged containers with access to host devices Hypervisor based runtimes create container workloads within virtual machines. When a running host privileged containers using them, they wont provide support to requested the privileged opertations. This commits add the new options to define two runtimes: Trusted runtime : Used when a privileged container is requested. Default runtime : for non-privileged workloads. A container that belongs to a privileged pod will inherent this property an will be created with the trusted runtime. - Add options to define trusted runtime - Add logic to decide if a sanbox is trusted - Export annotation containers below to a trusted sandbox Signed-off-by: Jose Carlos Venegas Munoz <jose.carlos.venegas.munoz@intel.com>	2018-03-20 13:56:49 -06:00
Lantao Liu	387da59ee5	Rename all variables to remove "cricontainerd". Signed-off-by: Lantao Liu <lantaol@google.com>	2018-03-19 21:59:32 +00:00
Lantao Liu	e1fe1abff0	Use `github.com/pkg/errors` Signed-off-by: Lantao Liu <lantaol@google.com>	2018-03-17 02:24:38 +00:00
abhi	2bdf428eb7	Removing DAD config and updating plugins to v0.7.0 Signed-off-by: abhi <abhi@docker.com>	2018-03-16 14:46:46 -07:00
Lantao Liu	1dcbf4f742	Merge pull request #663 from abhi/cni Moving to use go-cni library from containerd	2018-03-15 17:53:50 -07:00
Lantao Liu	5e5a5f50d1	Merge pull request #671 from Random-Liu/ctrcri-to-ctr-cri Ctrcri to ctr cri	2018-03-15 17:14:59 -07:00
abhi	003bbd4292	Modifying fake cni plugin Signed-off-by: abhi <abhi@docker.com>	2018-03-15 17:05:33 -07:00
Lantao Liu	7e67d96b9b	Replace `ctrcri` with `ctr cri`. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-03-15 23:22:00 +00:00
Lantao Liu	d389af83a9	Cleanup event backoff. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-03-15 18:49:36 +00:00
yanxuean	c751847350	Handle containerd event reliably fix #434 Signed-off-by: yanxuean <yan.xuean@zte.com.cn>	2018-03-15 17:14:02 +08:00
yanxuean	7583bce4ab	some comments Signed-off-by: yanxuean <yan.xuean@zte.com.cn>	2018-03-15 15:55:54 +08:00
abhi	92110e1d74	Moving to use go-cni library from containerd This fix aims to use the cni library form containerd. The library avoid usage of nsenter. Signed-off-by: abhi <abhi@docker.com>	2018-03-14 19:25:54 -07:00
Mike Brown	d4e7154625	move links for cri-containerd to cri Signed-off-by: Mike Brown <brownwm@us.ibm.com>	2018-03-13 17:06:26 -05:00
Lantao Liu	f0a500a390	Use direct function call. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-03-13 04:51:19 +00:00
Lantao Liu	80b2f751d3	Merge pull request #654 from stevvooe/simplify-stopch pkg/store: use a sync.Once to synchronize channel close	2018-03-09 15:29:32 -08:00
Lantao Liu	e20c6eb8a8	Merge pull request #558 from Random-Liu/report-containerd-version Report containerd version instead of cri-containerd version.	2018-03-09 15:25:32 -08:00
Stephen J Day	4ed26f3116	pkg/store: use a sync.Once to synchronize channel close Signed-off-by: Stephen J Day <stephen.day@docker.com>	2018-03-09 14:43:16 -08:00
Abhinandan Prativadi	1f28f8d2fe	Merge pull request #650 from Random-Liu/fix-resolver Handles 401 in resolver.	2018-03-07 10:59:43 -08:00
Lantao Liu	40c8372f0e	Handles 401 in resolver. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-03-07 07:35:02 +00:00
Lantao Liu	f01c6d73a6	Fix cleanup context. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-03-07 07:05:27 +00:00
Lantao Liu	d3b112a989	Merge pull request #639 from Random-Liu/remove-standalone-mode Remove standalone mode	2018-03-05 17:23:06 -08:00
Lantao Liu	ceb540d823	Fix potential panic. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-03-05 22:09:58 +00:00
Lantao Liu	d1e9960180	Remove standalone mode Signed-off-by: Lantao Liu <lantaol@google.com>	2018-03-05 21:45:20 +00:00
Lantao Liu	36b4c05354	Report containerd version instead of cri-containerd version. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-03-01 01:26:37 +00:00
Lantao Liu	f5390d01d6	Fix a potential panic Signed-off-by: Lantao Liu <lantaol@google.com>	2018-02-22 03:17:16 +00:00
Lantao Liu	6d538ccbf6	Do not block on stream server close. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-02-14 08:41:29 +00:00
Lantao Liu	a8264ec035	Support reopening container log. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-02-13 17:57:45 +00:00
Lantao Liu	6900cbdada	Use mountpoint as image fs identifier. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-02-09 07:46:49 +00:00
Mike Brown	6e1c57ec01	update runc vendor and containerd Signed-off-by: Mike Brown <brownwm@us.ibm.com>	2018-02-08 19:01:48 -06:00
Lantao Liu	46fc92f65f	Use new namespace mode and support shared pid namespace. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-02-08 03:10:57 +00:00
Lantao Liu	605b4a7b6a	Update imports Signed-off-by: Lantao Liu <lantaol@google.com>	2018-02-08 02:45:44 +00:00
Lantao Liu	047df7aca6	Merge pull request #602 from mikebrow/critools-install-minor-update update critools	2018-02-07 18:44:37 -08:00
Mike Brown	edb2b2379d	change crictl sandboxes to pods; other references to sandboxes Signed-off-by: Mike Brown <brownwm@us.ibm.com>	2018-02-07 17:23:59 -06:00
Lantao Liu	8925ef90be	Use trace support in containerd. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-02-07 19:17:26 +00:00
Lantao Liu	2b8800df2b	Merge pull request #592 from Random-Liu/fix-registry-mirror Fix registry mirror.	2018-02-02 15:37:29 -08:00
Lantao Liu	92995e29e5	Fix registry mirror. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-02-02 22:52:36 +00:00
Lantao Liu	d113c16802	Update ocicni to my fork. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-02-02 19:45:26 +00:00
Lantao Liu	7ddd9255b6	Add golang version in `Status` info. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-02-01 20:10:39 +00:00
Abhinandan Prativadi	8094fe69d4	Merge pull request #531 from abhi/registry-mirror Adding Registry Mirror support	2018-01-31 13:01:25 -08:00
abhi	f3ccd85891	Adding Registry Mirror support This commit aims to add registy mirror support similar to docker. The UI is similar to docker where user can provide mirror urls and the image resolves against the provided mirrors before fetching from default docker regitry mirror url. Signed-off-by: abhi <abhi@docker.com>	2018-01-31 10:47:34 -08:00
yason	6931a69881	add filter for containerd event Signed-off-by: yanxuean <yan.xuean@zte.com.cn>	2018-01-30 14:13:22 +08:00
Lantao Liu	4dfd8250fd	Fix a privileged check. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-01-27 02:25:52 +00:00
Yanqiang Miao	61c1fdb098	Use channel to propagate the stop info of sandbox Signed-off-by: Yanqiang Miao <miao.yanqiang@zte.com.cn>	2018-01-26 16:58:13 +08:00
Lantao Liu	f401662123	Merge pull request #571 from Random-Liu/do-not-list-task Avoid containerd access as much as possible.	2018-01-25 16:13:43 -08:00
Lantao Liu	df58d6825d	Avoid containerd access as much as possible. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-01-25 23:36:00 +00:00
Lantao Liu	e7f2a74a84	Add runtime cgroup and fix a cli panic. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-01-25 22:32:57 +00:00
Yanqiang Miao	c663d2423e	Use channel to pass the stop info instead of polling for container stop Signed-off-by: Yanqiang Miao <miao.yanqiang@zte.com.cn>	2018-01-25 11:07:54 +08:00
Lantao Liu	635e5747c0	Update containerd and leverage plugin graceful stop. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-01-23 22:46:46 +00:00
Lantao Liu	2b6f084f36	Disable IPv6 dad by default. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-01-22 23:54:16 +00:00
Lantao Liu	4e9ca399e1	Use containerd plugin config. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-01-19 02:25:03 +00:00
Lantao Liu	7d18d61674	Move cgroup and oom score setting to cmd. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-01-19 01:35:36 +00:00
Lantao Liu	74d8880032	Merge pull request #552 from Random-Liu/use-containerd-grpc-server Use containerd grpc server	2018-01-18 12:36:05 -08:00
Lantao Liu	62e6921145	Use containerd grpc server Signed-off-by: Lantao Liu <lantaol@google.com>	2018-01-18 18:51:18 +00:00
Lantao Liu	6fadb7f5e9	Minor code cleanup. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-01-18 07:31:16 +00:00
Lantao Liu	3d68005c04	Replace glog with logrus Signed-off-by: Lantao Liu <lantaol@google.com>	2018-01-17 21:57:31 +00:00
Lantao Liu	383a89b948	Add flags and utils for logrus Signed-off-by: Lantao Liu <lantaol@google.com>	2018-01-17 21:57:31 +00:00
Jose Carlos Venegas Munoz	b383b0261a	Annotations: Provide container metadata for VM based runtimes For hypervisor-based container runtimes (like Kata Containers, Clear Containers or runv) a pod will be created in a VM and then create containers within the VM. When a runtime is requested for container commands like create and start, both the instal "pause" container and next containers need to be added to the pod namespace (same VM). A runtime does not know if it needs to create/start a VM or if it needs to add a container to an already running VM pod. This patch adds a way to provide this information through container annotations. When starting a container or a sandbox, 2 annotations are added: - type (Container or Sandbox) - sandbox name This allow to a VM based runtime to decide if they need to create a pod VM or container within the VM pod. Signed-off-by: Jose Carlos Venegas Munoz <jose.carlos.venegas.munoz@intel.com>	2018-01-17 09:57:20 -06:00
Lantao Liu	cdb1bf0946	Use new cio package. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-01-12 22:35:24 +00:00
Lantao Liu	8782f18d50	Add integration test for volume copy up. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-01-11 19:10:52 +00:00
Lantao Liu	54b3b4e0b0	Use graphdriver/copy instead of chrootarchive Signed-off-by: Lantao Liu <lantaol@google.com>	2018-01-11 19:10:11 +00:00
Lantao Liu	025ffe551f	Rename kubernetes-incubator/cri-containerd to containerd/cri-containerd. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-01-10 22:35:33 +00:00
Lantao Liu	5bfa5e451a	Merge pull request #528 from cpuguy83/skip_selinux_test Minor cleanup on selinux test	2018-01-09 16:30:41 -08:00
Brian Goff	2a07847d67	Use `t.Run()` instead of `t.Log()` for subtest log Signed-off-by: Brian Goff <brian.goff@docker.com>	2018-01-09 15:45:13 -05:00
Brian Goff	96484eb3e7	Use t.Skip() when selinux is not enabled Signed-off-by: Brian Goff <brian.goff@docker.com>	2018-01-09 15:43:56 -05:00
Lantao Liu	dca05358dc	Add flag to skip imagefs uuid related logic. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-01-08 18:41:13 +00:00
Lantao Liu	aee7a366f3	Merge pull request #525 from abhi/cniip Caching IP allocated by CNI plugin	2018-01-05 00:27:48 -08:00
abhi	f1dbc0b375	Caching IP allocated by CNI plugin Signed-off-by: abhi <abhi@docker.com>	2018-01-04 20:00:55 -08:00
Lantao Liu	31bc964195	Enable HostSpecific option in runtime-tools generator. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-01-03 19:04:47 +00:00
Lantao Liu	cebe1b39f7	Remove default rlimits. Signed-off-by: Lantao Liu <lantaol@google.com>	2018-01-02 18:53:01 +00:00
Lantao Liu	b701b0e496	Add our own DeepCopy. Signed-off-by: Lantao Liu <lantaol@google.com>	2017-12-16 00:23:14 +00:00
Lantao Liu	737efe70a7	Merge pull request #493 from Random-Liu/minor-cleanup Minor cleanup.	2017-12-12 23:30:47 -08:00
Lantao Liu	e4753edf0a	Minor cleanup. Signed-off-by: Lantao Liu <lantaol@google.com>	2017-12-13 03:15:01 +00:00
yason	6c9a837b7a	cleanup some comment for removeImage Signed-off-by: yason <yan.xuean@zte.com.cn>	2017-12-13 10:07:52 +08:00
Lantao Liu	a9c7237e67	Merge pull request #470 from mikebrow/debug-image adding info map for verbose image status	2017-12-12 15:09:57 -08:00
Mike Brown	31223fd5b1	adds oci image spec to image info placed into imagestore Signed-off-by: Mike Brown <brownwm@us.ibm.com>	2017-12-12 15:58:07 -06:00
Lantao Liu	cbda4256cd	Merge pull request #487 from yanxuean/image-improve improve image	2017-12-12 11:58:43 -08:00
Mike Brown	03ac989644	adding info map for verbose image status Signed-off-by: Mike Brown <brownwm@us.ibm.com>	2017-12-12 13:44:08 -06:00
Lantao Liu	c9b279bb79	Merge pull request #479 from Random-Liu/improve-container-sandbox-status Improve container sandbox status	2017-12-12 11:42:51 -08:00
yason	5f6d9a5fcc	reliably remove image when content missing Signed-off-by: yason <yan.xuean@zte.com.cn>	2017-12-12 18:44:59 +08:00
yason	4762b3e273	remove taskService and imageStoreService Signed-off-by: yason <yan.xuean@zte.com.cn>	2017-12-12 16:51:22 +08:00
Lantao Liu	f4c572fba7	Add restart test for sandbox recovery. Signed-off-by: Lantao Liu <lantaol@google.com>	2017-12-11 21:21:08 +00:00
Lantao Liu	dd017e6e6c	Move less important function to the end. Signed-off-by: Lantao Liu <lantaol@google.com>	2017-12-11 18:45:57 +00:00
Lantao Liu	b25b06577e	Improve container and sandbox status. Signed-off-by: Lantao Liu <lantaol@google.com>	2017-12-11 18:45:56 +00:00
yason	41c8763e2b	improve calling for content Signed-off-by: yason <yan.xuean@zte.com.cn>	2017-12-11 15:28:10 +08:00
Mike Brown	220411b73b	adding info map for verbose pod status Signed-off-by: Mike Brown <brownwm@us.ibm.com>	2017-12-05 19:40:39 -06:00
Lantao Liu	11eb24c26f	Merge pull request #475 from Random-Liu/order-container-status-fields Use one big info struct before we change info to an array.	2017-12-05 14:37:36 -08:00
Lantao Liu	85b943eb47	Use one big info struct before we change info to an array. Signed-off-by: Lantao Liu <lantaol@google.com>	2017-12-05 21:37:12 +00:00
Lantao Liu	266e49a3bf	Merge pull request #471 from yanxuean/improve-unmount Improve unmount for snapshot	2017-12-05 09:54:05 -08:00
yason	2a25cf7c1f	sync Unmount for snapshot best effort to remove temp dir for snapshot Signed-off-by: yason <yan.xuean@zte.com.cn>	2017-12-05 19:05:32 +08:00

1 2 3 4 5 ...

473 Commits