github/containerd
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 2 Wiki Activity
14,139 Commits 3 Branches 2 Tags 112 MiB
fd2a7676a3
Commit Graph

14139 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Akihiro Suda
1529259077
Merge pull request #10275 from dmcgowan/imgcrypt-revendor 
Re-enable imgcrypt
 2024-05-29 16:54:47 +00:00
Fu Wei
5d2c988a5a
Merge pull request #10201 from abel-von/retry-remote-sandbox-wait 
sandbox: do retry for wait to remote sandbox controller
 2024-05-29 00:00:29 +00:00
Derek McGowan
da1d9672f6
Enable imgcrypt in cri pull 
Signed-off-by: Derek McGowan <derek@mcg.dev>
 2024-05-28 13:50:06 -07:00
Derek McGowan
9857afda44
Add vendor for github.com/containerd/imgcrypt 
Updates to version using containerd v2.0.0-rc

Signed-off-by: Derek McGowan <derek@mcg.dev>
 2024-05-28 13:49:34 -07:00
Derek McGowan
359d84351d
Update api minimum go version to 1.21 
A higher go build version is not required for the API

Signed-off-by: Derek McGowan <derek@mcg.dev>
 2024-05-28 13:05:03 -07:00
Maksym Pavlenko
6383a1ce76
Merge pull request #10258 from bzsuni/bz/update/pause 
update pause image to 3.10
 2024-05-28 18:01:23 +00:00
Samuel Karp
e32090e044
Merge pull request #10273 from thaJeztah/remove_use_of_platform_alias 
remove uses of platforms.Platform alias
 2024-05-28 17:29:40 +00:00
Sebastiaan van Stijn
446e63579c
remove uses of platforms.Platform alias 
Commit 3c8469a782 removed uses of the api
types.Platform type from public interfaces, instead using the type from
the OCI image spec.

For convenience, it also introduced an alias in the platforms package.
While this alias allows packages that already import containerd's
platforms package (now a separate module), it may also cause confusion
(it's not clear that it's an alias for the OCI type), and for packages
that do not depend on containerd's platforms package / module may now
be resulting in an extra dependency.

Let's remove the use of this alias, and instead use the OCI type directly.

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2024-05-28 14:56:30 +02:00
Austin Vazquez
2d73340c2c
Explicitly set release latest to false 
This change explicitly sets mainline releases as not latest.

Signed-off-by: Austin Vazquez <macedonv@amazon.com>
 2024-05-25 15:27:48 +00:00
bzsuni
22f2af40c0 update pause image to 3.10 
Signed-off-by: bzsuni <bingzhe.sun@daocloud.io>
 2024-05-25 08:17:46 +08:00
Derek McGowan
45e30913bc
Merge pull request #10257 from akhilerm/fix-unknown-platform 
core/image: fix usage of "unknown" platform
 2024-05-23 21:23:18 +00:00
Akhil Mohan
65024e6fd1
core/image: fix usage of "unknown" platform 
"unknown" should not be returned as a valid platform
supported by the image

Signed-off-by: Akhil Mohan <akhilerm@gmail.com>
 2024-05-23 16:35:44 +05:30
Derek McGowan
ca59fb0b41
Cleanup shim manager configuration 
Keep platforms configuration on task manager and add environment config
for shims.

Signed-off-by: Derek McGowan <derek@mcg.dev>
 2024-05-22 11:06:53 -07:00
Akihiro Suda
ccc41e6705
Merge pull request #10251 from mxpv/runtime 
Provide runtime options in plugin info
 2024-05-21 20:34:34 +00:00
Maksym Pavlenko
8b30607170 Provide runtime options in plugin info 
Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>
 2024-05-21 11:15:23 -07:00
Mike Brown
87bab6cdc7
Merge pull request #10238 from MikeZappa87/feature/provideinternalloup 
Add support to set loopback to up
 2024-05-20 14:19:43 +00:00
Michael Zappa
332caf1a15 Provide ability to set lo up without CNI 
Signed-off-by: Michael Zappa <michael.zappa@gmail.com>
 2024-05-17 14:34:55 -06:00
Derek McGowan
28b77e33ad
Merge pull request #10240 from dmcgowan/prepare-v2.0.0-rc.2 
Prepare release notes for v2.0.0-rc.2
 2024-05-17 18:31:30 +00:00
Kazuyoshi Kato
24c2ae8115
Merge pull request #10026 from ningmingxiao/info_exited_event 
internal/cri: log ctr's exit event on info level
 2024-05-17 01:28:43 +00:00
Kazuyoshi Kato
ff66ec7a73
Merge pull request #10105 from fidencio/topic/fix-typos-in-image_pull_test.go 
images: tests: Fix typos in the tests
 2024-05-17 01:27:46 +00:00
Derek McGowan
288f0592e5
Prepare release notes for v2.0.0-rc.2 
Signed-off-by: Derek McGowan <derek@mcg.dev>
 2024-05-16 17:41:52 -07:00
Maksym Pavlenko
90a8667310
Merge pull request #10190 from abel-von/fix-streaming-io-path 
fix: modify streaming io url and add docs of sandboxer and io_type
 2024-05-16 19:57:27 +00:00
Maksym Pavlenko
4fa8ce9d30
Merge pull request #10075 from ZhangShuaiyi/fix/docs 
docs: update registry config guide
 2024-05-16 19:42:21 +00:00
Justin Chadwell
9831a62d72 auth: add span to FetchToken helpers 
Before this, during a call to the docker resolver, we would generate
span wrappers for each HTTPRequest correctly, however, as the docker
resolver reaches out to the docker authorizer, it could create HTTP
requests (for fetching tokens) that would not be wrapped in any span.

This can result in rather confusing traces, e.g. something like:

	remotes.docker.resolver.HTTPRequest
		HTTP HEAD (fetch index, fails with 401)
	HTTP GET (fetch token)
	remotes.docker.resolver.HTTPRequest
		HTTP HEAD (fetch index)
	remotes.docker.resolver.HTTPRequest
		HTTP GET (fetch manifest)

By adding a span into the FetchToken, this trace becomes a little easier
to consume:

	remotes.docker.resolver.HTTPRequest
		HTTP HEAD (fetch index, fails with 401)
	remotes.docker.resolver.FetchToken
		HTTP GET (fetch token)
	remotes.docker.resolver.HTTPRequest
		HTTP HEAD (fetch index)
	remotes.docker.resolver.HTTPRequest
		HTTP GET (fetch manifest)

Signed-off-by: Justin Chadwell <me@jedevc.com>
 2024-05-15 15:54:37 +01:00
Maksym Pavlenko
a673c3452a
Merge pull request #10222 from containerd/dependabot/github_actions/ossf/scorecard-action-2.3.3 
build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3
 2024-05-14 16:13:17 +00:00
Maksym Pavlenko
112ba8396d
Merge pull request #10224 from containerd/dependabot/go_modules/github.com/prometheus/client_golang-1.19.1 
build(deps): bump github.com/prometheus/client_golang from 1.19.0 to 1.19.1
 2024-05-14 16:12:53 +00:00
Phil Estes
c518783b3d
Merge pull request #10223 from containerd/dependabot/github_actions/golangci/golangci-lint-action-6 
build(deps): bump golangci/golangci-lint-action from 5 to 6
 2024-05-14 14:55:15 +00:00
Phil Estes
bef778aff3
Merge pull request #10220 from kiashok/update-ttrpc-tag 
Update ttrpc tag to 1.2.4
 2024-05-14 13:51:54 +00:00
dependabot[bot]
f24a951854
build(deps): bump github.com/prometheus/client_golang 
Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.19.0 to 1.19.1.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.19.0...v1.19.1)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-14 00:03:06 +00:00
dependabot[bot]
8b2a69c19a
build(deps): bump golangci/golangci-lint-action from 5 to 6 
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 5 to 6.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](https://github.com/golangci/golangci-lint-action/compare/v5...v6)

---
updated-dependencies:
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-13 23:54:52 +00:00
dependabot[bot]
96ff18d37c
build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3 
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.3.1 to 2.3.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](0864cf1902...dc50aa9510)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-13 23:54:50 +00:00
Kirtana Ashok
1cae3dc9b7 update ttrpc to 1.2.4 
Signed-off-by: Kirtana Ashok <kiashok@microsoft.com>
 2024-05-13 16:13:26 -07:00
Maksym Pavlenko
536608ef22
Merge pull request #10218 from kiashok/update-platform-pkg 
Update platforms package to v0.2.0
 2024-05-13 23:09:49 +00:00
Derek McGowan
1bed3e90f2
Merge pull request #10219 from estesp/update-fuzz-instrument 
Update instrumentation fuzzer with new flag
 2024-05-13 16:09:07 -07:00
Phil Estes
e2251f9487
Update instrumentation fuzzer with new flag 
Signed-off-by: Phil Estes <estesp@gmail.com>
 2024-05-13 16:56:24 -04:00
Kirtana Ashok
ef76a90e95 Update platforms package to v0.2.0 
Signed-off-by: Kirtana Ashok <kiashok@microsoft.com>
 2024-05-13 10:27:42 -07:00
Abel Feng
0b113d78d4 doc: add the description of sandboxer and io_type 
Signed-off-by: Abel Feng <fshb1988@gmail.com>
 2024-05-13 17:42:58 +08:00
Abel Feng
7cead88004 cri: restart created container with correct io type 
Signed-off-by: Abel Feng <fshb1988@gmail.com>
 2024-05-13 17:42:58 +08:00
Abel Feng
42f778fc14 modify streaming io url form 
sandbox address should be in the form of
<ttrpc|grpc>+<unix|vsock|hvsock>://<uds-path|vsock-cid:vsock-port|uds-path:hvsock-port>
for example: ttrpc+hvsock:///run/test.hvsock:1024
or: grpc+vsock://1111111:1024
and the Stdin/Stdout/Stderr will add a `streaming_id` as a parameter of the url
result form is:
<ttrpc|grpc>+<unix|vsock|hvsock>://<uds-path|vsock-cid:vsock-port|uds-path:hvsock-port>?streaming_id=<stream-id>
for example ttrpc+hvsock:///run/test.hvsock:1024?streaming_id=111111
or grpc+vsock://1111111:1024?streaming_id=222222

Signed-off-by: Abel Feng <fshb1988@gmail.com>
 2024-05-13 17:42:51 +08:00
Maksym Pavlenko
29a6ab8261
Merge pull request #10202 from dmcgowan/unpack-fetch-all 
Unpack fetch all
 2024-05-11 20:17:27 +00:00
Akihiro Suda
76895c4a31
Merge pull request #10200 from swagatbora90/preserve-unprivileged-flags 
Preserve Unprivileged locked flags during remount of bind mounts
 2024-05-10 21:21:31 +00:00
Derek McGowan
2a54da04cd
Merge pull request #10206 from austinvazquez/update-golang-toolchain-to-1.22.3 
Update tooling to Go 1.22.3 for net/http bug fixes
 2024-05-10 18:54:26 +00:00
Austin Vazquez
25c2f690a8
Update toolchain to Go 1.22.3 
Go 1.22.3 release includes bug fixes for the core net/http package.

Full release notes: https://go.dev/doc/devel/release#go1.22.minor

Signed-off-by: Austin Vazquez <macedonv@amazon.com>
 2024-05-10 15:49:18 +00:00
Derek McGowan
681a083fab
Update unpacker to always fetch all 
When a set of layers are provided to the unpacker, then the unpacker
should still fetch them regardless of whether they will be used for
unpack. The image handler filters are responsible for removing content
which is not intended to be fetched. Currently there is no way to use an
unpacker and also fetch all platforms.

Signed-off-by: Derek McGowan <derek@mcg.dev>
 2024-05-09 21:59:42 -07:00
Derek McGowan
2788604e49
Update ctr image pull all platforms 
Allows supporting fetching of all platforms while unpacking for a subset
of platforms.

Signed-off-by: Derek McGowan <derek@mcg.dev>
 2024-05-09 20:48:38 -07:00
Abel Feng
58be881890 sandbox: do retry for wait to remote sandbox controller 
remote sandbox controller may restart, the Wait call should be retried
if it is an grpc disconnetion error.

Signed-off-by: Abel Feng <fshb1988@gmail.com>
 2024-05-10 10:18:42 +08:00
Swagat Bora
0597317759 Preserve CL_UNPRIVILEGED locked flags during remount of bind mounts 
Signed-off-by: Swagat Bora <sbora@amazon.com>
 2024-05-10 00:31:21 +00:00
Maksym Pavlenko
b168147ca8
Merge pull request #10193 from henry118/shim-sock 
fix: delete sockets on shim exit
 2024-05-09 05:06:41 +00:00
Akihiro Suda
cb6fb0b2f9
Merge pull request #10194 from mxpv/queue 
Don't require vagrant tests in merge queues
 2024-05-09 01:02:05 +00:00
Maksym Pavlenko
9a9a8c46a6 Don't require vagrant tests in merge queues 
Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com>
 2024-05-08 15:41:41 -07:00