github/containerd
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 2 Wiki Activity
11,491 Commits 3 Branches 2 Tags 112 MiB
373c26d585
Commit Graph

11491 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Maksym Pavlenko
373c26d585
Merge pull request #7709 from lucacome/bump-grpc 
Bump grpc to v1.51.0
 2022-12-13 22:21:00 -08:00
Derek McGowan
c666147592
Merge pull request #7805 from chaunceyjiang/painc 
fatal error: concurrent map iteration and map write
 2022-12-13 15:01:25 -08:00
Kazuyoshi Kato
0100595ae9
Merge pull request #7804 from lucacome/bump-golangci 
Bump golangci-lint to v1.50.1
 2022-12-13 14:41:26 -08:00
Phil Estes
ecf00ffe84
Merge pull request #7783 from inspektor-gadget/qasim/cri-disable-swap 
cri: make swapping disabled with memory limit
 2022-12-13 15:21:51 -05:00
chaunceyjiang
5a3a9baec9 fatal error: concurrent map iteration and map write 
Signed-off-by: chaunceyjiang <chaunceyjiang@gmail.com>
 2022-12-13 20:08:23 +08:00
Fu Wei
d2f68bfb36
Merge pull request #7313 from pacoxu/image-pull-metrics 
add metrics for image pulling: error; in progress count; thoughput
 2022-12-13 19:49:22 +08:00
Luca Comellini
c5fff10fe7
Bump golangci-lint to v1.50.1 
Signed-off-by: Luca Comellini <luca.com@gmail.com>
 2022-12-12 22:48:55 -08:00
Derek McGowan
7db53e0e8c
Merge pull request #7793 from dmcgowan/prepare-v1.7.0-beta.1 
Prepare release notes for v1.7.0-beta.1
 2022-12-12 21:24:08 -08:00
Phil Estes
2a76a1e78d
Merge pull request #7771 from akhilerm/fetch-from-private-buckets 
support fetching containerd from non public GCS buckets
 2022-12-12 13:06:21 -05:00
Phil Estes
133ddce7cf
Merge pull request #7651 from AkihiroSuda/custom-image-createdat 
images: support specifying SourceDateEpoch via ctx
 2022-12-12 12:59:38 -05:00
Derek McGowan
182375794d
Merge pull request #7718 from AdamKorcz/fuzz1234 
fuzzing: improve archive fuzzer
 2022-12-12 09:29:34 -08:00
Luca Comellini
d7507c3c13
Bump grpc to v1.51.0 
Signed-off-by: Luca Comellini <luca.com@gmail.com>
 2022-12-12 09:16:53 -08:00
Akhil Mohan
b94c1018af
disable tracing while handling token 
Signed-off-by: Akhil Mohan <makhil@vmware.com>
 2022-12-12 19:19:48 +05:30
Fu Wei
5e51347a63
Merge pull request #7798 from calvin0327/fix-sdNotify 
fix sdNotify func when debug level
 2022-12-12 14:36:12 +08:00
calvin0327
f219f7d1ea fix sdNotify func when debug level 
Signed-off-by: wen chen <wen.chen@daocloud.io>
 2022-12-12 10:06:35 +08:00
Akihiro Suda
75b09ac4a7
images: support specifying SourceDateEpoch via ctx 
Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2022-12-12 09:02:35 +09:00
Akihiro Suda
dc48349248
epoch: propagate SOURCE_DATE_EPOCH via ctx 
Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2022-12-12 09:02:35 +09:00
Maksym Pavlenko
36641eade6
Merge pull request #7794 from austinvazquez/upgrade-github-actions-packages 
Upgrade GitHub actions packages in release workflow
 2022-12-11 10:37:34 -08:00
Samuel Karp
e3ceecf92e
Merge pull request #7796 from austinvazquez/enable-local-linux-ci 
Enable GitHub Actions local Linux CI runs
 2022-12-11 00:30:16 -08:00
Austin Vazquez
66f71ea4d5 Enable GitHub Actions local Linux CI runs 
Sync package index and automatic yes to apt repository prompts.

Signed-off-by: Austin Vazquez <macedonv@amazon.com>
 2022-12-11 04:37:21 +00:00
Austin Vazquez
14a38e12b7
Upgrade GitHub actions packages in release workflow 
Resolve NodeJS 12 and command deprecation warnings by upgrading
docker/setup-buildx-action and crazy-max/ghaction-github-runtime
packages.

Signed-off-by: Austin Vazquez <macedonv@amazon.com>
 2022-12-10 07:58:35 +00:00
Derek McGowan
33e706aec6
Prepare release notes for v1.7.0-beta.1 
Signed-off-by: Derek McGowan <derek@mcg.dev>
 2022-12-09 15:59:59 -08:00
Mike Brown
4f4fa9b497
Merge pull request #7791 from fuweid/follow-up-7073 
integration: increase timeout in container_event_test.go
 2022-12-09 12:43:05 -06:00
Phil Estes
a7428f4473
Merge pull request #7732 from AkihiroSuda/sha256-simd 
digest: use github.com/minio/sha256-simd
 2022-12-09 09:37:37 -05:00
Phil Estes
e5751d44c4
Merge pull request #7787 from ginglis13/restore-fail 
allow client to remove created tasks with PID 0
 2022-12-09 09:29:51 -05:00
Wei Fu
423f4388b4 integration: increase timeout in container_event_test.go 
Follow-up: https://github.com/containerd/containerd/pull/7073#discussion_r1044142416

Signed-off-by: Wei Fu <fuweid89@gmail.com>
 2022-12-09 15:26:49 +08:00
Fu Wei
f2cf411b79
Merge pull request #7073 from ruiwen-zhao/event 
Add container event support to containerd
 2022-12-09 15:24:23 +08:00
Akihiro Suda
ce7694b2b1
Merge pull request #7786 from davidhsingyuchen/docs-err-unexpected-status 
docs: Authorizer.Authorize could return ErrUnexpectedStatus
 2022-12-09 14:42:02 +09:00
Derek McGowan
f3368b4a5b
Merge pull request #7772 from mathis-m/fix/userxattr_on_tmpfs 
fix: check for tmpfs when evaluating if userxattr is needed
 2022-12-08 16:02:08 -08:00
Gavin Inglis
80839f11e2 allow client to remove created tasks with PID 0 
Fixes #7357

If a container is restored from a checkpoint that has a configuration
error, the task for the restored container is created, but fails to
start and is left in the state CREATED with a PID of 0. Before this
change, the only way to remove this task was to find the PID of the shim
monitoring the task and kill that process. Now, ctr t rm <task> will
work on tasks that result in the CREATED state with PID 0.

Signed-off-by: Gavin Inglis <giinglis@amazon.com>
 2022-12-08 22:04:24 +00:00
Hsing-Yu (David) Chen
d5010a12df docs: Authorizer.Authorize could return ErrUnexpectedStatus 
Signed-off-by: Hsing-Yu (David) Chen <davidhsingyuchen@gmail.com>
 2022-12-08 13:24:48 -08:00
Maksym Pavlenko
e1abaeb386
Merge pull request #7764 from mxpv/config 
Pass TOML configuration options for runtimes CRI is not aware of
 2022-12-08 12:59:13 -08:00
mathis-m
2eabcf7026
fix: check for tmpfs when evaluating if userxattr should be used 
Signed-off-by: mathis-m <mathis.michel@outlook.de>
 2022-12-08 20:55:15 +01:00
ruiwen-zhao
a6929f9f6b Add Evented PLEG support to sandbox server 
Signed-off-by: ruiwen-zhao <ruiwen@google.com>
 2022-12-08 19:31:36 +00:00
ruiwen-zhao
a338abc902 Add container event support to containerd 
Signed-off-by: ruiwen-zhao <ruiwen@google.com>
 2022-12-08 19:30:39 +00:00
Maksym Pavlenko
34513f9c11
Merge pull request #7776 from mxpv/build 
Cleanup build constraints
 2022-12-08 10:28:07 -08:00
Maksym Pavlenko
e14753fc54 Respect no_cri constraint 
Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>
 2022-12-08 09:36:23 -08:00
Maksym Pavlenko
3bc8fc4d30 Cleanup build constraints 
Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>
 2022-12-08 09:36:20 -08:00
Maksym Pavlenko
d39ee7b1b7
Merge pull request #7775 from mxpv/defaults 
There is no way to disable debug endpoint on Darwin
 2022-12-08 09:31:34 -08:00
Maksym Pavlenko
c040f83825 Fix default config for Darwin 
Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>
 2022-12-08 07:49:14 -08:00
Qasim Sarfraz
69975b92bb cri: make swapping disabled with memory limit 
OCI runtime spec defines memory.swap as 'limit of memory+Swap usage'
so setting them to equal should disable the swap. Also, this change
should make containerd behaviour same as other runtimes e.g
'cri-dockerd/dockershim' and won't be impacted when user turn on
'NodeSwap' (https://github.com/kubernetes/enhancements/issues/2400) feature.

Signed-off-by: Qasim Sarfraz <qasimsarfraz@microsoft.com>
 2022-12-08 13:54:55 +01:00
Akihiro Suda
cde9490779
digest: use github.com/minio/sha256-simd 
Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2022-12-08 18:50:00 +09:00
Akihiro Suda
8b42517786
Merge pull request #7777 from AkihiroSuda/vagrant-rocky-version 
CI: Vagrant: pin rockylinux/8 to v5.0.0
 2022-12-08 17:21:27 +09:00
Akihiro Suda
0b349428e9
CI: Vagrant: pin rockylinux/8 to v5.0.0 
Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2022-12-08 11:37:36 +09:00
Akihiro Suda
50da24c5ec
Merge pull request #7774 from thaJeztah/bump_golang_net 
vendor: golang.org/x/net v0.4.0
 2022-12-08 09:46:50 +09:00
Maksym Pavlenko
d10dbd2d2d
Merge pull request #7773 from mxpv/ctx 
Fix context when waiting sandbox
 2022-12-07 13:53:37 -08:00
Derek McGowan
241563be06
Merge pull request from GHSA-2qjp-425j-52j9 
CRI stream server: Fix goroutine leak in Exec
 2022-12-07 13:50:26 -08:00
Sebastiaan van Stijn
662d8a085e
vendor: golang.org/x/net v0.4.0 
golang.org/x/net contains a fix for CVE-2022-41717, which was addressed
in stdlib in go1.19.4 and go1.18.9;

> net/http: limit canonical header cache by bytes, not entries
>
> An attacker can cause excessive memory growth in a Go server accepting
> HTTP/2 requests.
>
> HTTP/2 server connections contain a cache of HTTP header keys sent by
> the client. While the total number of entries in this cache is capped,
> an attacker sending very large keys can cause the server to allocate
> approximately 64 MiB per open connection.
>
> This issue is also fixed in golang.org/x/net/http2 v0.4.0,
> for users manually configuring HTTP/2.

full diff: https://github.com/golang/net/compare/c63010009c80...v0.4.0

other dependency updates (due to (circular) dependencies between them):

- golang.org/x/sys v0.3.0: https://github.com/golang/sys/compare/v0.2.0...v0.3.0
- golang.org/x/term v0.3.0: https://github.com/golang/term/compare/v0.1.0...v0.3.0
- golang.org/x/text v0.5.0: https://github.com/golang/text/compare/v0.4.0...v0.5.0

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2022-12-07 22:20:44 +01:00
Maksym Pavlenko
f9295aa49f Fix context when waiting sandbox 
Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>
 2022-12-07 12:52:04 -08:00
Maksym Pavlenko
8ab1d44967 Pass runtime configuration as TOML blob 
Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>
 2022-12-07 10:55:06 -08:00