github/containerd
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 2 Wiki Activity
14,623 Commits 3 Branches 4 Tags
2879c0790c5c8e3a26e67f19e37a8c73d7ccf0ec
Commit Graph

12 Commits

Author SHA1 Message Date
Samuel Karp
a39f1146b0 docs: include note about unprivileged sysctls 
We changed the default setting for `enable_unprivileged_ports` and
`enable_unprivileged_icmp` in the CRI plugin in
https://github.com/containerd/containerd/pull/9348, but missed including
this change in the release notes.

Signed-off-by: Samuel Karp <samuelkarp@google.com>
 2025-03-07 08:34:08 +00:00
Akihiro Suda
6f3833f258 CRI: remove disable_cgroup 
`disable_cgroup` was implemenetd in containerd/cri PR 970 (Nov 2018)
for supporting very early version of Usernetes on cgroup v1 hosts,
when most distros were still not ready to support cgroup v2.

This configuration is no longer needed, as cgroup v2 delegation is
now supported on almost all distros.

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-08-15 06:08:30 +09:00
bzsuni
22f2af40c0 update pause image to 3.10 
Signed-off-by: bzsuni <bingzhe.sun@daocloud.io>
 2024-05-25 08:17:46 +08:00
Michael Zappa
332caf1a15 Provide ability to set lo up without CNI 
Signed-off-by: Michael Zappa <michael.zappa@gmail.com>
 2024-05-17 14:34:55 -06:00
Abel Feng
b8dfb4d8f5 cri: support io by streaming api 
Signed-off-by: Abel Feng <fshb1988@gmail.com>
 2024-05-07 20:26:40 +08:00
Derek McGowan
2ac2b9c909 Make api a Go sub-module 
Allow the api to stay at the same v1 go package name and keep using a
1.x version number. This indicates the API is still at 1.x and allows
sharing proto types with containerd 1.6 and 1.7 releases.

Signed-off-by: Derek McGowan <derek@mcg.dev>
 2024-05-02 11:03:00 -07:00
Derek McGowan
3e9cace720 Move runtimeoptions to api directory 
Signed-off-by: Derek McGowan <derek@mcg.dev>
 2024-05-02 10:52:02 -07:00
Derek McGowan
4a45507772 Move runc options to api directory 
Signed-off-by: Derek McGowan <derek@mcg.dev>
 2024-05-02 10:52:00 -07:00
Abel Feng
a60e52f582 sandbox: add struct tags for PinnedImages 
Signed-off-by: Abel Feng <fshb1988@gmail.com>
 2024-02-26 10:15:24 +08:00
Akihiro Suda
1b3a96da6c cri: propagate deprecation list to runtime status 
Propagate the deprecation list to CRI runtime conditions.

The propagated conditions are visible via `crictl info`,
but not visible via `kubectl get nodes -o yaml` yet, although
the CRI API says "These conditions will be exposed to users to help
them understand the status of the system".

https://github.com/kubernetes/cri-api/blob/v0.29.1/pkg/apis/runtime/v1/api.proto#L1505-L1509

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-02-14 03:59:49 +09:00
Akihiro Suda
6670695836 Revert "cri: make read-only mounts recursively read-only" 
Revert PR 9713, as it appeared to break the compatibility too much
https://github.com/kubernetes/enhancements/pull/3858#issuecomment-1925441072

This reverts commit b2f254fff0.

> Conflicts:
>	internal/cri/opts/spec_linux_opts.go

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-02-04 01:17:14 +09:00
Maksym Pavlenko
bbac058cf3 Move CRI from pkg/ to internal/ 
Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>
 2024-02-02 10:12:08 -08:00