containerd

Author	SHA1	Message	Date
Swagat Bora	c0cdcb34f1	Add spans to CRI runtime service and related client methods This adds otel spans to CRI service mainly targeting mutating apis which includes: * Sandbox apis - RunPodSandbox, StopPodSandbox, RemovePodSandbox * Container apis - CreateContainer, StartContainer, StopContainer, RemoveContainer * Attach, Exec and Exec Sync * Containerd client methods: container.go, client.go, process.go and task.go Signed-off-by: Swagat Bora <sbora@amazon.com>	2024-08-05 02:34:20 +00:00
Fu Wei	45d8917089	Merge pull request #10284 from ningmingxiao/sync support to syncfs after pull by using diff plugin	2024-08-05 00:58:13 +00:00
ningmingxiao	0e4f2108b5	support to syncfs after pull by using diff plugin Signed-off-by: ningmingxiao <ning.mingxiao@zte.com.cn>	2024-08-02 11:47:42 +08:00
Phil Estes	7a804489fd	Merge pull request #10516 from etungsten/ensure-state-dir-perms Ensure /run/containerd gets created with correct perms	2024-07-31 14:22:04 +00:00
Akihiro Suda	babfebf0a4	Merge pull request #10472 from fuweid/migrate-sandboxes-bucket core/metadata: migrate sandboxes bucket into v1	2024-07-31 01:01:05 +00:00
Erikson Tung	551ac0600a	Ensure /run/containerd is created with correct perms There are a couple directories that get created under the default state directory ("/run/containerd") even when containerd is configured to use a different location for its state directory. Create the default state directory even if containerd is configured to use a different state directory location. This ensure pkg/shim and pkg/fifo won't create the default state directory with incorrect permissions when calling os.MkdirAll for their respective subdirectories. Signed-off-by: Erikson Tung <etung@netflix.com>	2024-07-30 17:55:01 -07:00
Maksym Pavlenko	fd2a7676a3	Merge pull request #10442 from Iceber/fix_ctr_delete_force client: fix tasks with PID 0 cannot be forced to delete	2024-07-30 20:14:08 +00:00
Maksym Pavlenko	fae1118afd	Merge pull request #10519 from containerd/dependabot/go_modules/github.com/urfave/cli/v2-2.27.3 build(deps): bump github.com/urfave/cli/v2 from 2.27.2 to 2.27.3	2024-07-30 20:13:14 +00:00
Maksym Pavlenko	fec24e209d	Merge pull request #10520 from saschagrunert/cri Make `StopPodSandbox` RPC idempotent	2024-07-30 20:12:50 +00:00
Maksym Pavlenko	7bcc78526d	Merge pull request #10521 from saschagrunert/idempotence-ctr Make `StopContainer` RPC idempotent	2024-07-30 20:12:26 +00:00
Wei Fu	4cfeb7b19e	core/metadata: migrate sandboxes bucket into v1 Signed-off-by: Wei Fu <fuweid89@gmail.com>	2024-07-30 21:37:35 +08:00
Sascha Grunert	a97b11898a	Make `StopContainer` RPC idempotent Similar to container removal, the stop of a container should be a noop if the container has not been found. Found during: https://github.com/kubernetes-sigs/cri-tools/pull/1536 Signed-off-by: Sascha Grunert <sgrunert@redhat.com>	2024-07-30 11:47:25 +02:00
Sascha Grunert	c6cea95d95	Make `StopPodSandbox` RPC idempotent Similar to sandbox removal, the stop of a sandbox should be a noop if the sandbox has not been found. Found during: https://github.com/kubernetes-sigs/cri-tools/pull/1535 Signed-off-by: Sascha Grunert <sgrunert@redhat.com>	2024-07-30 10:40:16 +02:00
Kazuyoshi Kato	ea3e1d9613	Merge pull request #10518 from containerd/dependabot/github_actions/ossf/scorecard-action-2.4.0 build(deps): bump ossf/scorecard-action from 2.3.3 to 2.4.0	2024-07-30 03:59:37 +00:00
dependabot[bot]	ad24ca9605	build(deps): bump github.com/urfave/cli/v2 from 2.27.2 to 2.27.3 Bumps [github.com/urfave/cli/v2](https://github.com/urfave/cli) from 2.27.2 to 2.27.3. - [Release notes](https://github.com/urfave/cli/releases) - [Changelog](https://github.com/urfave/cli/blob/main/docs/CHANGELOG.md) - [Commits](https://github.com/urfave/cli/compare/v2.27.2...v2.27.3) --- updated-dependencies: - dependency-name: github.com/urfave/cli/v2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2024-07-29 23:37:04 +00:00
dependabot[bot]	71b5b34de0	build(deps): bump ossf/scorecard-action from 2.3.3 to 2.4.0 Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.3.3 to 2.4.0. - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](`dc50aa9510...62b2cac7ed`) --- updated-dependencies: - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2024-07-29 23:04:31 +00:00
Kazuyoshi Kato	2ddd3db952	Merge pull request #9858 from w13915984028/fixdebug Add file name to device type check failure message	2024-07-26 21:20:38 +00:00
Akihiro Suda	7a1f6b2891	Merge pull request #10509 from samuelkarp/pr-9966-follow-up deprecation: update warnings for CRI config fields	2024-07-26 17:40:59 +00:00
Akihiro Suda	762df8b7d1	Merge pull request #10473 from thaJeztah/migrate_userns pkg/userns: deprecate and migrate to github.com/moby/sys/user/userns	2024-07-26 17:38:55 +00:00
Sebastiaan van Stijn	eddd90d7c1	remove deprecated pkg/userns Signed-off-by: Sebastiaan van Stijn <github@gone.nl>	2024-07-26 09:48:40 +02:00
Sebastiaan van Stijn	8437c567d8	pkg/userns: deprecate and migrate to github.com/moby/sys/user/userns The userns package in libcontainer was integrated into the moby/sys/user module at commit [3778ae603c706494fd1e2c2faf83b406e38d687d][1]. This patch deprecates the containerd fork of that package, and adds it as an alias for the moby/sys/user/userns package. [1]: `3778ae603c` Signed-off-by: Sebastiaan van Stijn <github@gone.nl>	2024-07-26 09:47:50 +02:00
Sebastiaan van Stijn	40a315b95c	vendor: github.com/moby/sys/user v0.2.0 full diff: https://github.com/moby/sys/compare/user/v0.1.0...user/v0.2.0 Signed-off-by: Sebastiaan van Stijn <github@gone.nl>	2024-07-26 09:47:12 +02:00
Samuel Karp	f9146c0516	deprecation: update warnings for CRI config fields Some CRI config properties had removal postponed until v2.1 in https://github.com/containerd/containerd/pull/9966. Update the associated deprecation warnings to match the new removal version. Signed-off-by: Samuel Karp <samuelkarp@google.com>	2024-07-25 14:25:39 -07:00
Kazuyoshi Kato	f9903084ae	Merge pull request #10503 from samuelkarp/issue-10491 introspection: regenerate UUID if state is empty	2024-07-25 21:14:50 +00:00
Samuel Karp	0dcc51aedf	introspection: regenerate UUID if state is empty The /var/lib/containerd/io.containerd.grpc.v1.introspection/uuid file stores a UUID to identify the particular containerd daemon responding to requests. The file should either exist with a UUID, or not exist. However, it has been observed that the file can be truncated with 0 bytes, which will then fail to be parsed as a valid UUID. As a defensive practice, detect a 0-length file and overwrite with a new UUID rather than failing. Fixes: https://github.com/containerd/containerd/issues/10491 Signed-off-by: Samuel Karp <samuelkarp@google.com>	2024-07-25 11:02:54 -07:00
Kazuyoshi Kato	c3bed76eeb	Merge pull request #10343 from ambarve/fix_ordering_comment Fix incorrect comment about ordering of parent layers	2024-07-23 18:19:35 +00:00
Kazuyoshi Kato	442daddb7f	Merge pull request #10495 from containerd/dependabot/go_modules/k8s-91e0c64a7e build(deps): bump the k8s group across 1 directory with 4 updates	2024-07-23 18:18:35 +00:00
Kazuyoshi Kato	87833dccdc	Merge pull request #10445 from containerd/dependabot/go_modules/otel-c1db8401eb build(deps): bump the otel group across 1 directory with 8 updates	2024-07-23 18:18:00 +00:00
Akihiro Suda	323ba43e91	Merge pull request #10494 from containerd/dependabot/go_modules/github.com/containernetworking/cni-1.2.3 build(deps): bump github.com/containernetworking/cni from 1.2.2 to 1.2.3	2024-07-23 04:16:41 +00:00
dependabot[bot]	abdb4fd774	build(deps): bump the k8s group across 1 directory with 4 updates Bumps the k8s group with 4 updates in the / directory: [k8s.io/apimachinery](https://github.com/kubernetes/apimachinery), [k8s.io/client-go](https://github.com/kubernetes/client-go), [k8s.io/component-base](https://github.com/kubernetes/component-base) and [k8s.io/kubelet](https://github.com/kubernetes/kubelet). Updates `k8s.io/apimachinery` from 0.30.2 to 0.30.3 - [Commits](https://github.com/kubernetes/apimachinery/compare/v0.30.2...v0.30.3) Updates `k8s.io/client-go` from 0.30.2 to 0.30.3 - [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md) - [Commits](https://github.com/kubernetes/client-go/compare/v0.30.2...v0.30.3) Updates `k8s.io/component-base` from 0.30.2 to 0.30.3 - [Commits](https://github.com/kubernetes/component-base/compare/v0.30.2...v0.30.3) Updates `k8s.io/kubelet` from 0.30.2 to 0.30.3 - [Commits](https://github.com/kubernetes/kubelet/compare/v0.30.2...v0.30.3) --- updated-dependencies: - dependency-name: k8s.io/apimachinery dependency-type: direct:production update-type: version-update:semver-patch dependency-group: k8s - dependency-name: k8s.io/client-go dependency-type: direct:production update-type: version-update:semver-patch dependency-group: k8s - dependency-name: k8s.io/component-base dependency-type: direct:production update-type: version-update:semver-patch dependency-group: k8s - dependency-name: k8s.io/kubelet dependency-type: direct:production update-type: version-update:semver-patch dependency-group: k8s ... Signed-off-by: dependabot[bot] <support@github.com>	2024-07-23 03:12:58 +00:00
dependabot[bot]	bc51d4b205	build(deps): bump the otel group across 1 directory with 8 updates Bumps the otel group with 5 updates in the / directory: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc](https://github.com/open-telemetry/opentelemetry-go-contrib) \| `0.51.0` \| `0.53.0` \| \| [go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp](https://github.com/open-telemetry/opentelemetry-go-contrib) \| `0.51.0` \| `0.53.0` \| \| [go.opentelemetry.io/otel/exporters/otlp/otlptrace](https://github.com/open-telemetry/opentelemetry-go) \| `1.26.0` \| `1.28.0` \| \| [go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc](https://github.com/open-telemetry/opentelemetry-go) \| `1.26.0` \| `1.28.0` \| \| [go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp](https://github.com/open-telemetry/opentelemetry-go) \| `1.26.0` \| `1.28.0` \| Updates `go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc` from 0.51.0 to 0.53.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go-contrib/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go-contrib/blob/main/CHANGELOG.md) - [Commits](https://github.com/open-telemetry/opentelemetry-go-contrib/compare/zpages/v0.51.0...zpages/v0.53.0) Updates `go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp` from 0.51.0 to 0.53.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go-contrib/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go-contrib/blob/main/CHANGELOG.md) - [Commits](https://github.com/open-telemetry/opentelemetry-go-contrib/compare/zpages/v0.51.0...zpages/v0.53.0) Updates `go.opentelemetry.io/otel` from 1.26.0 to 1.28.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.26.0...v1.28.0) Updates `go.opentelemetry.io/otel/exporters/otlp/otlptrace` from 1.26.0 to 1.28.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.26.0...v1.28.0) Updates `go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc` from 1.26.0 to 1.28.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.26.0...v1.28.0) Updates `go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp` from 1.26.0 to 1.28.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.26.0...v1.28.0) Updates `go.opentelemetry.io/otel/sdk` from 1.26.0 to 1.28.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.26.0...v1.28.0) Updates `go.opentelemetry.io/otel/trace` from 1.26.0 to 1.28.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.26.0...v1.28.0) --- updated-dependencies: - dependency-name: go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc dependency-type: direct:production update-type: version-update:semver-minor dependency-group: otel - dependency-name: go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp dependency-type: direct:production update-type: version-update:semver-minor dependency-group: otel - dependency-name: go.opentelemetry.io/otel dependency-type: direct:production update-type: version-update:semver-minor dependency-group: otel - dependency-name: go.opentelemetry.io/otel/exporters/otlp/otlptrace dependency-type: direct:production update-type: version-update:semver-minor dependency-group: otel - dependency-name: go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc dependency-type: direct:production update-type: version-update:semver-minor dependency-group: otel - dependency-name: go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp dependency-type: direct:production update-type: version-update:semver-minor dependency-group: otel - dependency-name: go.opentelemetry.io/otel/sdk dependency-type: direct:production update-type: version-update:semver-minor dependency-group: otel - dependency-name: go.opentelemetry.io/otel/trace dependency-type: direct:production update-type: version-update:semver-minor dependency-group: otel ... Signed-off-by: dependabot[bot] <support@github.com>	2024-07-23 03:12:49 +00:00
Phil Estes	0fe79b6eac	Merge pull request #10346 from mauri870/hotfix/gotip-test Fix TestNewBinaryIOCleanup failing with gotip	2024-07-23 02:31:47 +00:00
Akihiro Suda	6c6eac5324	Merge pull request #10410 from everpeace/kep-3619-runtimestatus-features-supplemental_groups_policy KEP-3619: Implement RuntimeStatus.features.supplemental_groups_policy in CRI	2024-07-23 01:14:32 +00:00
dependabot[bot]	025d1161e8	build(deps): bump github.com/containernetworking/cni from 1.2.2 to 1.2.3 Bumps [github.com/containernetworking/cni](https://github.com/containernetworking/cni) from 1.2.2 to 1.2.3. - [Release notes](https://github.com/containernetworking/cni/releases) - [Commits](https://github.com/containernetworking/cni/compare/v1.2.2...v1.2.3) --- updated-dependencies: - dependency-name: github.com/containernetworking/cni dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2024-07-22 23:40:32 +00:00
Shingo Omura	81ef465841	KEP-3619: update cri-api version Signed-off-by: Shingo Omura <everpeace@gmail.com>	2024-07-23 01:04:31 +09:00
Shingo Omura	ee2c0d9e74	KEP-3619: implement features.supplemental_groups_policy in RuntimeStatus Signed-off-by: Shingo Omura <everpeace@gmail.com>	2024-07-23 01:01:36 +09:00
Phil Estes	bfb2a355b0	Merge pull request #10408 from containerd/dependabot/go_modules/github.com/containerd/imgcrypt-1.2.0-rc1 build(deps): bump github.com/containerd/imgcrypt from 1.1.12-0.20240528203804-3ca09a2db5cd to 1.2.0-rc1	2024-07-22 14:37:34 +00:00
dependabot[bot]	2d97134e5d	build(deps): bump github.com/containerd/imgcrypt Bumps [github.com/containerd/imgcrypt](https://github.com/containerd/imgcrypt) from 1.1.12-0.20240528203804-3ca09a2db5cd to 1.2.0-rc1. - [Release notes](https://github.com/containerd/imgcrypt/releases) - [Changelog](https://github.com/containerd/imgcrypt/blob/main/CHANGES) - [Commits](https://github.com/containerd/imgcrypt/commits/v1.2.0-rc1) --- updated-dependencies: - dependency-name: github.com/containerd/imgcrypt dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2024-07-22 06:24:29 +00:00
Samuel Karp	1e3c35bd0d	Merge pull request #10488 from dcantah/avoid-realloc Avoid potential reallocs by pre-sizing some slices	2024-07-22 05:39:19 +00:00
Maksym Pavlenko	01a2b6fd86	Merge pull request #10250 from mxpv/grpc Bump GRPC to 1.64	2024-07-22 05:15:36 +00:00
Derek McGowan	eb56f15b1a	Merge pull request #10487 from thaJeztah/bump_moby_sys vendor: update moby/sys dependencies	2024-07-22 04:18:27 +00:00
Mauri de Souza Meneguzzo	f0aecaa2e2	Fix TestNewBinaryIOCleanup failing with gotip This PR ignores a new pidfd file descriptor that is introduced in gotip (future 1.23) and should not be considered when detecting fd leaks. Fixes #10345 Signed-off-by: Mauri de Souza Meneguzzo <mauri870@gmail.com>	2024-07-19 18:49:40 -03:00
Danny Canter	b41bb6df73	Avoid potential reallocs by pre-sizing some slices There's a couple spots where we know exactly how large the destination buffer should be, so pre-size these to avoid any reallocs to a higher capacity. Signed-off-by: Danny Canter <danny@dcantah.dev>	2024-07-19 13:05:49 -07:00
Sebastiaan van Stijn	a779449c48	vendor: github.com/moby/sys/sequential v0.6.0 full diff: https://github.com/moby/sys/compare/sequential/v0.5.0...sequential/v0.6.0 Signed-off-by: Sebastiaan van Stijn <github@gone.nl>	2024-07-19 21:35:28 +02:00
Sebastiaan van Stijn	1bfa7c8fed	vendor: github.com/moby/sys/symlink v0.3.0 full diff: https://github.com/moby/sys/compare/symlink/v0.2.0...symlink/v0.3.0 Signed-off-by: Sebastiaan van Stijn <github@gone.nl>	2024-07-19 21:34:55 +02:00
Sebastiaan van Stijn	95b429c015	vendor: github.com/moby/sys/signal v0.7.1 full diff: https://github.com/moby/sys/compare/signal/v0.7.0...signal/v0.7.1 Signed-off-by: Sebastiaan van Stijn <github@gone.nl>	2024-07-19 21:34:08 +02:00
Sebastiaan van Stijn	08d6c9323f	vendor: github.com/moby/sys/mountinfo v0.7.2 full diff: https://github.com/moby/sys/compare/mountinfo/v0.7.1...mountinfo/v0.7.2 Signed-off-by: Sebastiaan van Stijn <github@gone.nl>	2024-07-19 21:32:58 +02:00
Maksym Pavlenko	fb674f8b48	Add resolver workaround for error: name resolver error: produced zero addresses Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>	2024-07-18 15:26:02 -07:00
Maksym Pavlenko	63b4688175	Use grpc.NewClient instead of deprecated ones Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>	2024-07-18 15:26:02 -07:00
Maksym Pavlenko	a5be629936	Vendor GRPC 1.64 Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>	2024-07-18 15:25:57 -07:00

1 2 3 4 5 ...

14146 Commits