containerd

Author	SHA1	Message	Date
Derek McGowan	66dc4d1069	Update API for import types Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:56 -08:00
Derek McGowan	b991c71e90	Update pull command to use filter arguments Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:56 -08:00
Derek McGowan	40d3fa3afd	Add filter fields to image store types Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:56 -08:00
Derek McGowan	9ae92f16e0	Improve push handler ordering Allow manifest uploads to happen in parallel and defer manifest list and index until end. Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:55 -08:00
Derek McGowan	737257bb48	Add push progress Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:55 -08:00
Derek McGowan	e88baa0873	Fixup pull authorization and labeling Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:55 -08:00
Derek McGowan	478f1c934d	Lint fixes Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:55 -08:00
Derek McGowan	28ea754565	Regenerated protobuf files with updated version Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:55 -08:00
Derek McGowan	b0f519703d	Add transfer docs Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:54 -08:00
Derek McGowan	cd67a98ec7	Add transfer integration test Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:54 -08:00
Derek McGowan	0aca4bb1f2	Update ctr commands to use transfer interface Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:54 -08:00
Derek McGowan	6b5df1ee16	Update transfer packages Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:54 -08:00
Derek McGowan	2a8d7a744b	Update transfer API Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:53 -08:00
Derek McGowan	7318a2def6	Add transfer plugin registration Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:53 -08:00
Derek McGowan	d1627e3c71	Add basic import and export handlers Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:53 -08:00
Derek McGowan	adfaeeff0d	Add binary stream functionality and helpers Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:53 -08:00
Derek McGowan	e506cd103f	Implement client interface for transfer service Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:53 -08:00
Derek McGowan	81afd9c36e	Add progress Signed-off-by: Derek McGowan <derek@mcg.dev> Update progress to reference parents Signed-off-by: Derek McGowan <derek@mcg.dev> Update Progress logic Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:52 -08:00
Derek McGowan	0e4e96544f	Add transfer proxy client Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:52 -08:00
Derek McGowan	6f64cb8598	Transfer interface and plugin work in progress Signed-off-by: Derek McGowan <derek@mcg.dev> Transfer service implementation Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:50 -08:00
Derek McGowan	f61ed7e943	Transfer API types Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:00 -08:00
Derek McGowan	a24ea31c2d	Add transfer API Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:56:00 -08:00
Derek McGowan	dcf5687cab	Add streaming service Adds a service capable of streaming Any objects bi-directionally. This can be used by services to send data, received data, or to initiate requests from server to client. Signed-off-by: Derek McGowan <derek@mcg.dev>	2022-11-30 12:55:56 -08:00
Derek McGowan	c469f67a2b	Merge pull request #6019 from klihub/pr/proto/nri NRI: add support for NRI with extended scope.	2022-11-30 10:42:17 -08:00
Fu Wei	9c9f564a35	Merge pull request #7710 from AkihiroSuda/source-date-epoch-with-mod-time-upper-bound archive: set WithModTimeUpperBound when WithSourceDateEpoch is set	2022-11-30 19:26:10 +08:00
Derek McGowan	40a94641ed	Merge pull request #7702 from austinvazquez/resolve-order-of-operations-in-leases Fix order of operations when setting lease labels	2022-11-29 16:42:02 -08:00
Derek McGowan	763d4e1261	Merge pull request #7730 from djdongjin/ctr-prune Add ctr image prune command	2022-11-29 15:39:42 -08:00
Derek McGowan	18cb7f2f5f	Merge pull request #7708 from kiashok/CheckForNullptrs Check for nullptr before dereferencing	2022-11-29 15:36:57 -08:00
Kirtana Ashok	08d5879f32	Added nullptr checks to pkg/cri/server and sbserver Signed-off-by: Kirtana Ashok <Kirtana.Ashok@microsoft.com>	2022-11-29 13:25:49 -08:00
Maksym Pavlenko	aff2cbefcc	Merge pull request #7736 from jellor/pull-image use MaxConcurrentDownloads instead of MaxConcurrentUploadedLayers	2022-11-29 12:43:07 -08:00
Derek McGowan	6f7ed272e8	Merge pull request #7694 from AkihiroSuda/introspection-pid introspection: expose the daemon's PID and PIDNS	2022-11-29 11:41:14 -08:00
Derek McGowan	6a0d413951	Merge pull request #7635 from thaJeztah/update_reference reference/docker: synchronize fork with upstream distribution/distribution	2022-11-29 11:24:27 -08:00
Jin Dong	8e0a3c51a5	Add ctr image prune Signed-off-by: Jin Dong <jindon@amazon.com>	2022-11-29 18:11:34 +00:00
guodong	ceab73007f	use MaxConcurrentDownloads instead of MaxConcurrentUploadedLayers Signed-off-by: guodong <guodong9211@gmail.com>	2022-11-30 00:32:08 +08:00
Danny Canter	f012617edf	CRI stream server: Fix goroutine leak in Exec In the CRI streaming server, a goroutine (`handleResizeEvents`) is launched to handle terminal resize events if a TTY is asked for with an exec; this is the sender of terminal resize events. Another goroutine is launched shortly after successful process startup to actually do something with these events, however the issue arises if the exec process fails to start for any reason that would have `process.Start` return non-nil. The receiver goroutine never gets launched so the sender is stuck blocked on a channel send infinitely. This could be used in a malicious manner by repeatedly launching execs with a command that doesn't exist in the image, as a single goroutine will get leaked on every invocation which will slowly grow containerd's memory usage. Signed-off-by: Danny Canter <danny@dcantah.dev>	2022-11-29 06:31:38 -08:00
Maksym Pavlenko	9f4ba48839	[sandbox] Fix panic when waiting for sandbox controller Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>	2022-11-28 13:29:21 -08:00
Maksym Pavlenko	dbc6d33ac5	[sandbox] Specify sandbox ID when using sandboxed shims Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>	2022-11-28 13:27:54 -08:00
Maksym Pavlenko	9a53a6c34a	[sandbox] Don't access pause container when creating pod container Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>	2022-11-28 12:48:57 -08:00
Maksym Pavlenko	cc111eef61	[sandbox] Move sandbox info to podsandbox controller Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>	2022-11-28 12:06:41 -08:00
Krisztian Litkey	a0daf1c288	docs: add NRI-related documentation. Co-authored-by: Mike Brown <brownwm@us.ibm.com> Signed-off-by: Krisztian Litkey <krisztian.litkey@intel.com>	2022-11-28 21:51:56 +02:00
Krisztian Litkey	02f0a8b50e	pkg/cri/server: nuke old v0.1.0 NRI hooks. Remove direct invocation of old v0.1.0 NRI plugins. They can be enabled using the revised NRI API and the v0.1.0 adapter plugin. Signed-off-by: Krisztian Litkey <krisztian.litkey@intel.com>	2022-11-28 21:51:42 +02:00
Krisztian Litkey	ca84aba6cc	integration: add first NRI integration tests. Signed-off-by: Krisztian Litkey <krisztian.litkey@intel.com>	2022-11-28 21:51:25 +02:00
Krisztian Litkey	b27ef6f169	pkg/cri/server: experimental NRI integration for CRI. Implement the adaptation interface required by the NRI service plugin to handle CRI sandboxes and containers. Hook the NRI service plugin into CRI request processing. Signed-off-by: Krisztian Litkey <krisztian.litkey@intel.com>	2022-11-28 21:51:08 +02:00
Krisztian Litkey	43704ca888	nri: add experimental NRI plugin. Add a common NRI 'service' plugin. It takes care of relaying requests and respones to and from NRI (external NRI plugins) and the high-level containerd namespace-independent logic of applying NRI container adjustments and updates to actual CRI and other containers. The namespace-dependent details of the necessary container manipulation operations are to be implemented by namespace- specific adaptations. This NRI plugin defines the API which such adaptations need to implement. Signed-off-by: Krisztian Litkey <krisztian.litkey@intel.com>	2022-11-28 21:51:06 +02:00
Maksym Pavlenko	a6d1d53cc2	[sandbox] Update Controller.Status protos Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>	2022-11-28 10:13:37 -08:00
Phil Estes	e0be97ccee	Merge pull request #7721 from thaJeztah/protobuf_extensions_fix go.mod: golang_protobuf_extensions v1.0.4 - prevent incompatible versions	2022-11-28 12:22:50 -05:00
Fu Wei	4b8002e5d1	Merge pull request #7714 from hoyosjs/patch-1 Add ptrace readby and tracedby to default AppArmor profile	2022-11-28 22:32:59 +08:00
Fu Wei	6bfe6e38b2	Merge pull request #7684 from mxpv/sb-runtime-fix Fix sandbox API when calling sandboxed shims	2022-11-28 22:32:08 +08:00
Fu Wei	24020812bb	Merge pull request #7669 from yanggangtony/status-clean make status more readable and update easy.	2022-11-27 23:12:23 +08:00
Fu Wei	0db400a8ba	Merge pull request #7720 from thaJeztah/fix_gomod integration/client: fix go.mod grouping, containerd to v1.7.0-beta.0, cgroups back to v1.0.4	2022-11-27 23:11:26 +08:00

... 10 11 12 13 14 ...

11956 Commits