github/containerd
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 2 Wiki Activity
8,778 Commits 3 Branches 2 Tags 112 MiB
498eebe860
Commit Graph

8778 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Phil Estes
8e9ba8376e
Merge pull request #4271 from cpuguy83/actions_add_windows_integration 
Move windows CI to actions
 2020-05-28 11:40:29 -04:00
Akihiro Suda
27f1e0d9ed
Merge pull request #4283 from hs0210/work 
Add unit test for func in remotes/docker/handler.go
 2020-05-29 00:25:41 +09:00
Phil Estes
137abe4ef9
Merge pull request #4282 from estesp/add-release-action 
Add release GH Action triggered by signed tag
 2020-05-28 11:12:08 -04:00
Michael Crosby
77bc753024
Merge pull request #4289 from dmcgowan/next-1.4-beta 
Update release notes for 1.4.0-beta.1
 2020-05-28 10:49:40 -04:00
Mike Brown
c7f25cb3ae
Merge pull request #1490 from mikebrow/document-gcr-json-key-auth 
add a registry auth tutorial
 2020-05-28 08:49:52 -05:00
Mike Brown
83b115af16
Merge pull request #1497 from mikebrow/add-commit-sha-to-log 
would like to have the commit sha in the log file names
 2020-05-28 08:48:53 -05:00
Hu Shuai
230cf6deda Add unit test for func in remotes/docker/handler.go 
Signed-off-by: Hu Shuai <hus.fnst@cn.fujitsu.com>
 2020-05-28 16:54:33 +08:00
Mike Brown
e8148bb49b would like to have the commit sha in the logs 
Signed-off-by: Mike Brown <brownwm@us.ibm.com>
 2020-05-27 17:47:43 -05:00
Maksym Pavlenko
f8380958c1
Merge pull request #1496 from mikebrow/variable-cri-tools-version 
add support for setting CRITOOL_VERSION
 2020-05-27 15:16:34 -07:00
Phil Estes
bb2b2825b6
Add release GH Action triggered by signed tag 
This will check that the tag is signed and then checkout the tag, build
official binaries, sha256sum the tarball, and upload those assets to the
release, officially generating a release in GitHub from the signed tag.

Signed-off-by: Phil Estes <estesp@linux.vnet.ibm.com>
 2020-05-27 16:56:13 -04:00
Derek McGowan
8f1ddb1428
Update release for 1.4.0-beta.1 
Signed-off-by: Derek McGowan <derek@mcg.dev>
 2020-05-27 13:42:02 -07:00
Maksym Pavlenko
26f7df1466
Merge pull request #4288 from crosbymichael/cri-bump 
Update CRI to 52c2c6b5df
 2020-05-27 11:33:12 -07:00
Brian Goff
c376f4f763 Move Windows testing to GH Actions 
This eliminates the need for appveyor.

Signed-off-by: Brian Goff <cpuguy83@gmail.com>
 2020-05-27 10:45:22 -07:00
Brian Goff
3226283470 Fix client tests to work on Windows. 
- Powershell is no longer available in nanoserver, so change commands to
  run accordingly.
- Set platform specific commands for short and long running containers
- Skips 2 tests which do not run on Windows.

Signed-off-by: Brian Goff <cpuguy83@gmail.com>
 2020-05-27 10:42:23 -07:00
Michael Crosby
c744b66a3b
Merge pull request #1495 from crosbymichael/cni-bump 
Use go-cni tag
 2020-05-27 12:28:38 -04:00
Mike Brown
b97a2f33b0 add support for setting CRITOOL_VERSION 
Signed-off-by: Mike Brown <brownwm@us.ibm.com>
 2020-05-27 11:16:23 -05:00
Phil Estes
f0f49c6cab
Merge pull request #4284 from jmillikin-stripe/cli-tls-flags 
Add `ctr` flags for configuring default TLS credentials for registry
 2020-05-27 09:59:58 -04:00
John Millikin
b8ccdcb07d
Add ctr flags for configuring default TLS credentials. 
Signed-off-by: John Millikin <jmillikin@stripe.com>
 2020-05-27 21:59:33 +09:00
Derek McGowan
52c2c6b5df
Merge pull request #1494 from MHBauer/docs-moved 
docs moved
 2020-05-26 18:48:07 -07:00
Michael Crosby
c5273930bd Update CRI to 52c2c6b5df 
This bump contains updates for CRI with selinux support.

Signed-off-by: Michael Crosby <michael@thepasture.io>
 2020-05-26 21:06:18 -04:00
Morgan Bauer
5877716621
docs moved 
- to sig-node
 - to sig-testing

Signed-off-by: Morgan Bauer <mbauer@us.ibm.com>
 2020-05-26 16:46:09 -07:00
Michael Crosby
477b31ce04 Use go-cni tag 
Signed-off-by: Michael Crosby <michael@thepasture.io>
 2020-05-26 19:32:03 -04:00
Derek McGowan
129bdd7a3d
Merge pull request #1487 from crosbymichael/selinux 
Add SELinux Support for CRI
 2020-05-26 15:53:18 -07:00
Phil Estes
dea6229923
Merge pull request #1491 from thaJeztah/bump_selinux 
vendor: opencontainers/selinux v1.5.2
 2020-05-26 16:49:28 -04:00
Michael Crosby
72edf3016d Use new SELinux APIs 
This moves most of the API calls off of the `labels` package onto the root
selinux package.  This is the newer API for most selinux operations.

Signed-off-by: Michael Crosby <michael@thepasture.io>
 2020-05-26 15:18:46 -04:00
Sebastiaan van Stijn
0b3c7e1479
vendor: opencontainers/selinux v1.5.2 
full diff: https://github.com/opencontainers/selinux/compare/v1.5.1...v1.5.2

- Implement FormatMountLabel unconditionally
  Implementing FormatMountLabel on situations built without selinux
  should be possible; the context will be ignored if no SELinux is available.
- Remote potential race condition, where mcs label is freed
  Theorectially if you do not change the MCS Label then we free it and two
  commands later reserve it. If some other process was grabbing MCS Labels
  at the same time, the other process could get the same label.

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2020-05-26 16:30:35 +02:00
Mike Brown
a7ad3bc01f add a registry auth tutorial 
Signed-off-by: Mike Brown <brownwm@us.ibm.com>
 2020-05-22 15:39:30 -05:00
Maksym Pavlenko
4cbf59db82
Merge pull request #4279 from AkihiroSuda/ci-cgroup2 
cgroup2 CI
 2020-05-21 13:35:49 -07:00
Akihiro Suda
af131d7258 cgroup2 CI 
Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2020-05-22 01:15:12 +09:00
Derek McGowan
1c58c5d440
Merge pull request #4277 from lucaskanashiro/fix-build-on-riscv64 
riscv64 arch does not support -buildmode=pie
 2020-05-20 12:46:50 -07:00
Lucas Kanashiro
e34bf08e58 riscv64 arch does not support -buildmode=pie 
Signed-off-by: Lucas Kanashiro <lucas.kanashiro@canonical.com>
 2020-05-20 16:28:10 -03:00
Darren Shepherd
24209b91bf Add MCS label support 
Carry of #1246

Signed-off-by: Darren Shepherd <darren@rancher.com>
Signed-off-by: Michael Crosby <michael@thepasture.io>
 2020-05-20 13:59:51 -05:00
Mike Brown
e10e07b50e
Merge pull request #1489 from mikebrow/ltag-scan-symlink-fixed 
no longer need to skip /test header scan due to symlink
 2020-05-20 10:44:09 -05:00
Derek McGowan
7ef3c0f47d
Merge pull request #4275 from estesp/fix-image-usage 
Fix image usage calculation error
 2020-05-20 08:35:05 -07:00
Phil Estes
0c9b05fa60
Fix image usage calculation error 
Including snapshotter usage in total calculation should be gated by the
option `snapshotter` boolean.

Signed-off-by: Phil Estes <estesp@linux.vnet.ibm.com>
 2020-05-20 08:44:05 -04:00
Mike Brown
cc54a9dca4 no longer need to skip /test due to symlink 
Signed-off-by: Mike Brown <brownwm@us.ibm.com>
 2020-05-20 07:38:12 -05:00
Derek McGowan
84619ee998
Fix configurations with no server provided 
When a server is specified at the top level, there is a bug
that prevents the keys from being checked properly.
When no server is provided, the server attempts to parse
with an empty host, leaving partial values and a defaulted
skip verify configuration.

Signed-off-by: Derek McGowan <derek@mcg.dev>
 2020-05-19 19:16:50 -07:00
Derek McGowan
06b0cd45ba
Fix nil pointer errors 
Signed-off-by: Derek McGowan <derek@mcg.dev>
 2020-05-19 19:16:39 -07:00
Phil Estes
4e08c2de67
Merge pull request #4269 from KentaTada/remove-unused-syscall 
seccomp: remove the unused query_module(2)
 2020-05-19 11:14:31 -04:00
Kenta Tada
03755821d2 seccomp: remove the unused query_module(2) 
query_module(2) is only in kernels before Linux 2.6.

Signed-off-by: Kenta Tada <Kenta.Tada@sony.com>
 2020-05-19 10:36:55 +09:00
Mike Brown
40071878d7
Merge pull request #1486 from thaJeztah/bump_golang_1.13.11 
Bump Golang 1.13.11
 2020-05-18 09:34:37 -05:00
Wei Fu
48ee0b348c
Merge pull request #1485 from thaJeztah/vendor_back_to_tags 
vendor.conf: back to using tags
 2020-05-18 22:31:59 +08:00
Sebastiaan van Stijn
8f02fe04d8
Bump Golang 1.13.11 
full diff: https://github.com/golang/go/compare/go1.13.10...go1.13.11

go1.13.11 (released 2020/05/14) includes fixes to the compiler. See the Go 1.13.11
milestone on the issue tracker for details:

https://github.com/golang/go/issues?q=milestone%3AGo1.13.11+label%3ACherryPickApproved

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2020-05-18 15:54:17 +02:00
Sebastiaan van Stijn
6096c0ebbb
vendor.conf: back to using tags 
When I changed the vendor.conf format to use tags, many of the
dependencies didn't use tagged versions, and the column format
made the file slightly more consistent / easier to read.

With many dependencies moving to go modules, we see more deps
tagging releases, and we're now more actively trying to use
tagged releases for our dependencies.

With containerd/containerd changing the format to use tags as
default, it makes sense to do the same here as well (to allow
for easier comparing the vendor.conf files between repositories)

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2020-05-18 15:44:42 +02:00
Phil Estes
d7c4bda3b1
Merge pull request #4264 from thaJeztah/seccomp_allow_clock_adjtime 
seccomp: Whitelist `clock_adjtime`
 2020-05-18 09:36:08 -04:00
Phil Estes
0f2b15b7af
Merge pull request #4261 from gaurav1086/fix_docker_data_race 
docker: fix data race on err
 2020-05-18 09:34:04 -04:00
Phil Estes
0814750023
Merge pull request #4262 from gaurav1086/fix_data_race_in_unpacker 
unpacker: Fix data race and possible data corruption
 2020-05-18 09:32:24 -04:00
Phil Estes
49db7dfcfb
Merge pull request #4260 from thaJeztah/bump_golang_1.13.11 
Bump Golang 1.13.11
 2020-05-18 09:24:14 -04:00
Mike Brown
dc81240a6d
Merge pull request #1484 from thaJeztah/bump_containerd 
vendor: containerd/containerd v1.4.0-beta.0
 2020-05-18 08:11:36 -05:00
Mike Brown
36ba7766fb
Merge pull request #1483 from thaJeztah/bump_cni 
vendor: containerd/go-cni 0553354f0046ccd41a02e724826040491a3d8998
 2020-05-18 08:04:16 -05:00