github/containerd
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 2 Wiki Activity
9,017 Commits 3 Branches 2 Tags 112 MiB
f8538b5e12
Commit Graph

9017 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Lantao Liu
8021850e91
Merge pull request #1233 from AkihiroSuda/allow-ca-without-client-certs 
allow non-mutual TLS
 2019-08-11 17:07:57 -07:00
Lantao Liu
a4b145adbb
Merge pull request #1234 from Random-Liu/update-containerd-to-fix-race 
Update containerd to fix panic caused by race condition.
 2019-08-11 16:51:56 -07:00
Lantao Liu
7f330dc4aa Update containerd to fix panic caused by race condition. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-08-10 10:40:43 -07:00
Lantao Liu
fd6c732cd7
Merge pull request #1232 from Random-Liu/avoid-schema1-roundtrip 
Remove extra roundtrip for checking schema1.
 2019-08-10 10:25:46 -07:00
Lantao Liu
f1fbdbfab7
Merge pull request #1231 from Random-Liu/consider-endpoint-path-for-default 
Consider endpoint path when checking default host.
 2019-08-10 10:23:49 -07:00
Akihiro Suda
28e492fce0 allow non-mutual TLS 
Previously, client keypair had needed to be specified even when unused.

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2019-08-10 21:48:03 +09:00
Lantao Liu
d64fa3b6b8 Remove extra roundtrip for checking schema1. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-08-09 18:47:40 -07:00
Lantao Liu
005f9f7378 Consider endpoint path when checking default host. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-08-09 18:22:08 -07:00
Lantao Liu
a7481289bb
Merge pull request #1227 from Random-Liu/new-registry-mirror 
New registry mirror
 2019-08-09 16:24:38 -07:00
Derek McGowan
c017e0efed
Use a child context for errgroup in dispatch 
Prevent an errgroup error from causing the acquire to
return a cancellation error. Previously any error
from the errgroup would cause the Dispatch to always
return the cancelled error.

Signed-off-by: Derek McGowan <derek@mcgstyle.net>
 2019-08-09 16:01:23 -07:00
Derek McGowan
75771c4634
Add usage function to client 
The usage function allows more configurable and accurate calculations
of the usage for an image.

Signed-off-by: Derek McGowan <derek@mcgstyle.net>
 2019-08-09 15:46:22 -07:00
Lantao Liu
2fd69f0b78 Move config validation into pkg/config and add unit test. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-08-09 14:39:30 -07:00
Lantao Liu
53e94c6753 Use containerd registry mirror library. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-08-09 14:39:30 -07:00
Sebastiaan van Stijn
b6fca48fed
bump go.etcd.io/bbolt v1.3.3 
this brings the dependency back to a released version:

- go.etcd.io/bbolt 2eb7227ade...v1.3.3
  - etcd-io/bbolt#153 fix rollback panic bug
    - fixes etcd-io/bbolt#152 Panic (index out of range) on writeable tx rollback with db.NoFreelistSync

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2019-08-09 22:56:54 +02:00
Michael Crosby
ea13c9fe99
Merge pull request #3518 from crosbymichael/processors 
Add docs for stream processors
 2019-08-09 15:07:15 -04:00
Michael Crosby
0dadef19cf Add docs for stream processors 
Signed-off-by: Michael Crosby <crosbymichael@gmail.com>
 2019-08-09 18:40:43 +00:00
Lantao Liu
27de1a5862 Update containerd to 5222236c1b. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-08-09 10:41:46 -07:00
Michael Crosby
d085d9b464 Remove encryption code from containerd core 
We are separating out the encryption code and have designed a few new
interfaces and APIs for processing content streams.  This keep the core
clean of encryption code but enables not only encryption but support of
multiple content types ( custom media types ).

Signed-off-by: Michael Crosby <crosbymichael@gmail.com>
 2019-08-09 15:01:16 +00:00
Michael Crosby
f06e605f1a
Merge pull request #3515 from fuweid/me-remove-comment-line 
remotes: remove useless line
 2019-08-09 09:21:36 -04:00
Phil Estes
ec4ad5332d
Merge pull request #3506 from darfux/copy_md_when_set_ttrpcheader 
namespace: Copy ttrpc metadata before setting header
 2019-08-09 08:22:17 -04:00
Phil Estes
c0cf9a5905
Merge pull request #3509 from dmcgowan/update-1.3-beta-notes 
Add release notes for stream processor
 2019-08-09 08:20:35 -04:00
Wei Fu
282b19efd2 remotes: remove useless line 
Signed-off-by: Wei Fu <fuweid89@gmail.com>
 2019-08-09 17:15:09 +08:00
Akihiro Suda
29d5eb69bc
Merge pull request #1228 from Random-Liu/improve-vendor 
Improve vendor.conf
 2019-08-09 15:08:27 +09:00
Li Yuxuan
a3a30635ef namespace: Copy ttrpc metadata before setting header 
If there are multiple goroutines calling `namespace.WithNamespace` on a
ctx that already had namespace, there will be a data race when
`withTTRPCNamespaceHeader` calling `MD.Set()`. So we have to copy the md
before using it.

Signed-off-by: Li Yuxuan <liyuxuan04@baidu.com>
 2019-08-09 13:16:29 +08:00
Wei Fu
a1c88e195a
Merge pull request #3484 from rancher/master 
Limit multiple platform manifests to one for size check
 2019-08-09 10:09:50 +08:00
Phil Estes
b4dce14ac0
Merge pull request #3510 from dmcgowan/remove-ppc64le 
Remove ppc64le from travis
 2019-08-08 21:07:49 -04:00
Derek McGowan
04b7f1b594
Remove ppc64le from travis 
The tests run too slow and flaky. Once the flakiness and
speed are addressed we can re-enable.

Signed-off-by: Derek McGowan <derek@mcgstyle.net>
 2019-08-08 16:11:17 -07:00
Derek McGowan
2fac3ee27d
Add release notes for stream processor 
Signed-off-by: Derek McGowan <derek@mcgstyle.net>
 2019-08-08 14:43:34 -07:00
Darren Shepherd
1161409779 Limit multiple platform manifests to one for size check 
client.Pull will only pull one matching platform by default.
When checking the size of image we match that behavior so that
we don't look for multiple platforms that might not exist on disk.

Signed-off-by: Darren Shepherd <darren@rancher.com>
 2019-08-08 14:16:27 -07:00
Lantao Liu
f994f43aec Update vendors. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-08-08 10:39:50 -07:00
Lantao Liu
7d56fdcc83 Split dependencies and update sort-vendor correspondingly 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-08-08 10:39:50 -07:00
Michael Crosby
23faecfb66
Merge pull request #3505 from crosbymichael/remoteopts-unpack 
Add UnpackOpts to RemoteContext
 2019-08-08 13:20:34 -04:00
Michael Crosby
fe3638e887 Add UnpackOpts to RemoteContext 
Signed-off-by: Michael Crosby <crosbymichael@gmail.com>
 2019-08-08 15:42:51 +00:00
Michael Crosby
1eb13fc2f0
Merge pull request #3501 from wanghuaiqing2010/master 
cast Rdev of Stat_t to uint64 for mips
 2019-08-08 10:27:52 -04:00
Lantao Liu
aaf15b6777
Merge pull request #1225 from awprice/privileged_without_host_devices_flag 
Add flag to overload default privileged host device behaviour
 2019-08-08 00:13:02 -07:00
wanghuaiqing
d8322e38c7 cast Rdev of Stat_t to uint64 for mips 
Signed-off-by: wanghuaiqing <wanghuaiqing@loongson.cn>
 2019-08-08 14:24:50 +08:00
Alex Price
3353ab76d9 Add flag to overload default privileged host device behaviour 
This commit adds a flag to the runtime config that allows overloading of the default
privileged behaviour. When the flag is enabled on a runtime, host devices won't
be appended to the runtime spec if the container is run as privileged.

By default the flag is false to maintain the current behaviour of privileged.

Fixes #1213

Signed-off-by: Alex Price <aprice@atlassian.com>
 2019-08-08 12:16:42 +10:00
Lantao Liu
95bd02d28f
Merge pull request #1200 from jterry75/image_user 
Assign ImageSpec User if SecurityContext is not set
 2019-08-07 13:50:08 -07:00
Lantao Liu
8ea0cc90aa
Merge pull request #1221 from jterry75/log_g 
Switch to containerd/log package
 2019-08-07 13:49:33 -07:00
Michael Crosby
5222236c1b
Merge pull request #3502 from estesp/clarify-ctr 
Clarify text on `ctr` support/inclusion
 2019-08-07 16:27:41 -04:00
Phil Estes
4e6e61c44e
Merge pull request #3482 from crosbymichael/apply-remote 
Add StreamProcessors for handling media types of content streams
 2019-08-07 16:21:02 -04:00
Michael Crosby
930da7cfa7
Merge pull request #3503 from Random-Liu/default-ns 
Save default namespace in the client.
 2019-08-07 15:54:04 -04:00
Justin Terry (VM)
bc2cff625b Assign ImageSpec User if SecurityContext is not set 
By default the SecurityContext for Container activation can contain a Username
UID, GID. The order of precedences is username, UID, GID. If none of these
options are specified as a last resort attempt to set the ImageSpec username.

Signed-off-by: Justin Terry (VM) <juterry@microsoft.com>
 2019-08-07 12:20:52 -07:00
Justin Terry (VM)
193918b702 Switch to containerd/log package 
Moves to the containerd/log package over logrus directly. This benefits the
traces because if using any log context such as OpenCensus on the entry gRPC
API all traces for that gRPC method will now contain the appropriate TraceID,
SpanID for easy correlation.

Signed-off-by: Justin Terry (VM) <juterry@microsoft.com>
 2019-08-07 12:18:18 -07:00
Lantao Liu
af7b7cdb02 Save default namespace in the client. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-08-07 12:03:22 -07:00
Michael Crosby
552a0b1be5 Handle stderr in stream processors 
Signed-off-by: Michael Crosby <crosbymichael@gmail.com>
 2019-08-07 18:36:52 +00:00
Michael Crosby
3fded74bc7 Add unpack opts 
Signed-off-by: Michael Crosby <crosbymichael@gmail.com>
 2019-08-07 18:35:55 +00:00
Michael Crosby
26b90619e2 Pass apply opts through rootfs/* code 
Signed-off-by: Michael Crosby <crosbymichael@gmail.com>
 2019-08-07 18:35:55 +00:00
Michael Crosby
e1489f93c3 Use named pipes for windows processors 
Signed-off-by: Michael Crosby <crosbymichael@gmail.com>
 2019-08-07 18:35:55 +00:00
Michael Crosby
134d3c8159 Add windows apply code 
Signed-off-by: Michael Crosby <crosbymichael@gmail.com>
 2019-08-07 18:35:55 +00:00