summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAge
* Bump to v1.7.0-devMatthew Heon2019-12-11
| | | | Signed-off-by: Matthew Heon <mheon@redhat.com>
* Bump to v1.7.0-rc1v1.7.0-rc1Matthew Heon2019-12-11
| | | | Signed-off-by: Matthew Heon <mheon@redhat.com>
* Merge pull request #4667 from mheon/release_notes_1.6.4OpenShift Merge Robot2019-12-11
|\ | | | | Update release notes for 1.7.0
| * Update release notes for 1.7.0Matthew Heon2019-12-11
| | | | | | | | Signed-off-by: Matthew Heon <matthew.heon@pm.me>
* | Merge pull request #4664 from baude/movefiltersOpenShift Merge Robot2019-12-11
|\ \ | | | | | | move image filters under libpod/images
| * | move image filters under libpod/imagesbaude2019-12-10
| |/ | | | | | | | | | | | | | | to make things more effecient for the api work we are doing, we should process image filters internally (as opposed to in main). this allows for better api responses and more closely affiliated functions. Signed-off-by: baude <bbaude@redhat.com>
* | Merge pull request #4668 from ↵OpenShift Merge Robot2019-12-11
|\ \ | | | | | | | | | | | | containers/dependabot/go_modules/github.com/containers/psgo-1.4.0 build(deps): bump github.com/containers/psgo from 1.3.2 to 1.4.0
| * | docs: update podman-{pod-,}top man pagesValentin Rothberg2019-12-11
| | | | | | | | | | | | | | | | | | | | | c/psgo added a new `stime` descriptor. Mention that in the man page and refer to podman-top(1) in podman-pod-top(1) to avoid redundancy. Signed-off-by: Valentin Rothberg <rothberg@redhat.com>
| * | build(deps): bump github.com/containers/psgo from 1.3.2 to 1.4.0dependabot-preview[bot]2019-12-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | Bumps [github.com/containers/psgo](https://github.com/containers/psgo) from 1.3.2 to 1.4.0. - [Release notes](https://github.com/containers/psgo/releases) - [Commits](https://github.com/containers/psgo/compare/v1.3.2...v1.4.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Signed-off-by: Valentin Rothberg <rothberg@redhat.com>
* | | Merge pull request #4674 from mheon/readd_fedora_migrationOpenShift Merge Robot2019-12-11
|\ \ \ | |/ / |/| | Re-add Fedora 31 migration code.
| * | Re-add Fedora 31 migration code.Matthew Heon2019-12-10
| |/ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | In the process, make everything in the config omitempty in TOML. We're seeing issues (notably [1]) where, after rewriting libpod.conf, fields that were not previously populated are written - and, because they were not previously written, they are included as empty. This is unfortunately different from not included at all - it means that we need to assume the user explicitly unset the value, and we can't use defaults. Setting omitempty prevents us from writing things that should not be written as they were not set originally. [1] https://github.com/containers/libpod/issues/4210 Signed-off-by: Matthew Heon <matthew.heon@pm.me>
* | Merge pull request #4675 from mheon/update_cstorage_1153OpenShift Merge Robot2019-12-11
|\ \ | |/ |/| Update containers/storage to v1.15.3
| * Update containers/storage to v1.15.3Matthew Heon2019-12-10
|/ | | | Signed-off-by: Matthew Heon <mheon@redhat.com>
* Merge pull request #4517 from baude/macvlanOpenShift Merge Robot2019-12-09
|\ | | | | macvlan networks
| * macvlan networksbaude2019-12-09
| | | | | | | | | | | | add the ability to a macvlan network with podman network create. Signed-off-by: baude <bbaude@redhat.com>
* | Merge pull request #4657 from jdieter/fix-runtime-path-when-rootOpenShift Merge Robot2019-12-07
|\ \ | | | | | | Return empty runtime directory if we're not rootless
| * | Return empty runtime directory if we're not rootlessJonathan Dieter2019-12-07
|/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Currently, we return a runtime directory of the form `/run/user/<uid>`, even when running as root. Depending on configuration, that directory may be deleted when the user logs out, which is quite awkward when the container is started as a systemd service and then someone logs in and out as root. This patch fixes the problem by returning an empty runtime directory if the container is being started by root. The runtime should automatically use the default runtime directory (`/run/crun` when crun is used), which should be accessible to root. Tested in Fedora 31 by running containers under both root and a regular user. State for root containers is stored in `/run/crun`, while state for rootless containers is in `/run/user/<uid>/crun`. Signed-off-by: Jonathan Dieter <jdieter@gmail.com>
* | Merge pull request #4440 from edsantiago/batsOpenShift Merge Robot2019-12-06
|\ \ | | | | | | test for #3920 (improper caching of tarballs in build)
| * | test for #3920 (improper caching of tarballs in build)Ed Santiago2019-12-05
| | | | | | | | | | | | | | | | | | | | | | | | | | | See https://github.com/containers/buildah/pull/1955 I've confirmed that this test fails under podman-1.6.2-2.fc30 and passes under current master. Signed-off-by: Ed Santiago <santiago@redhat.com>
* | | Merge pull request #4563 from mheon/fix_change_parsingOpenShift Merge Robot2019-12-06
|\ \ \ | | | | | | | | Fix parsing for arrays of values in image changes
| * | | Add ONBUILD support to --changeMatthew Heon2019-12-05
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Return types had to change a bit for this, but since we can wrap the old v1.ImageConfig, changes are overall not particularly bad. At present, I believe this only works with commit, not import. This matches how things were before we changed to the new parsing so I think this is fine. Signed-off-by: Matthew Heon <matthew.heon@pm.me>
| * | | Move Commit() to new parsing for --changeMatthew Heon2019-12-05
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | It turns out we had two independent parsing impkementations for Dockerfile instructions out of --change. My previous commit fixed the one used in --change, but as I discovered to my dismay, commit used a different implementation. Remove that and use the new parsing implementation instead. While we're at it, fix some bugs in the current commit code. The addition of anonymous named volumes to Libpod recently means we can now include those in the image config when committing. Some changes (VOLUME, ENV, EXPOSE, LABEL) previously cleared the config of the former image when used; Docker does not do this, so I removed that behavior. Still needs fixing: the new implementation does not support ONBUILD, while the old one did. Signed-off-by: Matthew Heon <matthew.heon@pm.me>
| * | | Completely rework --change parsingMatthew Heon2019-12-04
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The way we were trying to parse was very broken. I originally attempted to use Buildah's Dockerfile parser here, but dealing with it (and convincing it to accept only a limited subset, and only one instruction at a time) was challenging, so I rewrote a subset of Dockerfile parsing. This should handle most common cases well, though there are definitely unhandled edge cases for ENV and LABEL. Signed-off-by: Matthew Heon <matthew.heon@pm.me>
* | | | Merge pull request #4651 from marcov/detach-configOpenShift Merge Robot2019-12-06
|\ \ \ \ | | | | | | | | | | Use terminal detach keys sequence specified in the config file
| * | | | Use terminal detach keys sequence specified in the config fileMarco Vedovati2019-12-06
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes: #4556 Signed-off-by: Marco Vedovati <mv@sba.lat>
* | | | | Merge pull request #4652 from ↵OpenShift Merge Robot2019-12-06
|\ \ \ \ \ | |/ / / / |/| | | | | | | | | | | | | | containers/dependabot/go_modules/github.com/containers/storage-1.15.2 build(deps): bump github.com/containers/storage from 1.15.0 to 1.15.2
| * | | | build(deps): bump github.com/containers/storage from 1.15.0 to 1.15.2dependabot-preview[bot]2019-12-06
|/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bumps [github.com/containers/storage](https://github.com/containers/storage) from 1.15.0 to 1.15.2. - [Release notes](https://github.com/containers/storage/releases) - [Changelog](https://github.com/containers/storage/blob/master/docs/containers-storage-changes.md) - [Commits](https://github.com/containers/storage/compare/v1.15.0...v1.15.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Signed-off-by: Valentin Rothberg <rothberg@redhat.com>
* | | | Merge pull request #4601 from ssbarnea/fix/test-build-rpm-changesOpenShift Merge Robot2019-12-05
|\ \ \ \ | | | | | | | | | | Enable multi-platform rpm building
| * | | | Enable multi-platform rpm buildingSorin Sbarnea2019-12-05
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - make: fix python detection for multiple interpreters - make: create generic `package` and `package-install` targets - build_rpm.sh: move package installation into package-install - build_rpm.sh: fix dnf/yum detection - build_rpm.sh: install md2man rpm only on platfroms where is available - build_rpm.sh: temporary skip packaging docs and debug on rhel-8 - docs: `make package-install` This change is validated by new CI jobs run by rdoproject. See link below for result. Depends-On: https://review.rdoproject.org/r/#/c/23943/ Signed-off-by: Sorin Sbarnea <ssbarnea@redhat.com>
* | | | | Merge pull request #4639 from giuseppe/fix-stats-podOpenShift Merge Robot2019-12-05
|\ \ \ \ \ | | | | | | | | | | | | libpod: fix stats for rootless pods
| * | | | | rootless: enable stats test on cgroup v2Giuseppe Scrivano2019-12-04
| | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
| * | | | | libpod: fix stats for rootless podsGiuseppe Scrivano2019-12-04
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | honor the systemd parent directory when specified. Closes: https://github.com/containers/libpod/issues/4634 Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
* | | | | | Merge pull request #4638 from ssbarnea/fix/detachOpenShift Merge Robot2019-12-05
|\ \ \ \ \ \ | |_|_|_|/ / |/| | | | | Avoid git warnings by using detach on checkout
| * | | | | Avoid git warnings by using detach on checkoutSorin Sbarnea2019-12-04
| | |_|/ / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Git displays a huge and confusing warning when doing a checkout of a specific commit if the --detach option is not mentioned. This cleans up our build logs, making it easier to spot real problems. Signed-off-by: Sorin Sbarnea <ssbarnea@redhat.com>
* | | | | Merge pull request #4642 from TomSweeneyRedHat/dev/tsweeney/buildah1.11.5OpenShift Merge Robot2019-12-05
|\ \ \ \ \ | |_|_|/ / |/| | | | Bump Buildah to v1.11.6
| * | | | Bump Buildah to v1.11.6TomSweeneyRedHat2019-12-04
| | | | | | | | | | | | | | | | | | | | Signed-off-by: TomSweeneyRedHat <tsweeney@redhat.com>
* | | | | Merge pull request #4644 from ssbarnea/fix/hack-releaseOpenShift Merge Robot2019-12-05
|\ \ \ \ \ | |_|/ / / |/| | | | Improve hack/get_release_info.sh
| * | | | Improve hack/get_release_info.shSorin Sbarnea2019-12-04
| |/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | - Adopt bash strict mode - Avoid cd errors as seen on CI vendor jobs: hack/get_release_info.sh: line 9: cd: /go/src/github.com/containers/libpod: No such file or directory Signed-off-by: Sorin Sbarnea <ssbarnea@redhat.com>
* | | | Merge pull request #4640 from ssbarnea/fix/dnfOpenShift Merge Robot2019-12-04
|\ \ \ \ | |/ / / |/| | | Improve dnf tests inside build_rpm.sh
| * | | Improve dnf tests inside build_rpm.shSorin Sbarnea2019-12-04
| |/ / | | | | | | | | | | | | | | | | | | | | | - Fix bug failing to detect dnf in various locations - Add missing sudo to yum/dnf calls - Fix bug where pkg_manager may endup with a multi-line value Signed-off-by: Sorin Sbarnea <ssbarnea@redhat.com>
* | | Merge pull request #4637 from giuseppe/check-for-renameat2-runtimeOpenShift Merge Robot2019-12-04
|\ \ \ | |/ / |/| | rootless: add fallback for renameat2 at runtime
| * | rootless: add fallback for renameat2 at runtimeGiuseppe Scrivano2019-12-04
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | the renameat2 syscall might be defined in the C library but lacking support in the kernel. In such case, let it fallback to open(O_CREAT)+rename as it does on systems lacking the definition for renameat2. Closes: https://github.com/containers/libpod/issues/4570 Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
* | | Merge pull request #4635 from ssbarnea/fix/go-md2manOpenShift Merge Robot2019-12-03
|\ \ \ | | | | | | | | Attempt to install go-md2man only if missing
| * | | Attempt to install go-md2man only if missingSorin Sbarnea2019-12-03
|/ / / | | | | | | | | | | | | Fixes: #4632 Signed-off-by: Sorin Sbarnea <ssbarnea@redhat.com>
* | | Merge pull request #4630 from TomSweeneyRedHat/dev/tsweeney/rootlesstouchupOpenShift Merge Robot2019-12-03
|\ \ \ | |/ / |/| | Quick grammar touchup in rootless.md
| * | Quick grammar touchup in rootless.mdTomSweeneyRedHat2019-12-03
| | | | | | | | | | | | Signed-off-by: TomSweeneyRedHat <tsweeney@redhat.com>
* | | Merge pull request #4629 from mheon/fix_indirect_netnsctr_lookupOpenShift Merge Robot2019-12-03
|\ \ \ | | | | | | | | Allow chained network namespace containers
| * | | Allow chained network namespace containersMatthew Heon2019-12-03
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The code currently assumes that the container we delegate network namespace to will never further delegate to another container, so when looking up things like /etc/hosts and /etc/resolv.conf we won't pull the correct files from the chained dependency. The changes to resolve this are relatively simple - just need to keep looking until we find a container without NetNsCtr set. Fixes #4626 Signed-off-by: Matthew Heon <matthew.heon@pm.me>
* | | | Merge pull request #4614 from bfallik/patch-1OpenShift Merge Robot2019-12-03
|\ \ \ \ | |_|/ / |/| | | troubleshooting: warn about secure boot
| * | | troubleshooting: warn about secure bootBrian Fallik2019-12-02
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add an additional troubleshooting item to warn users that Secure Boot can prevent Podman from running containers. The error messages and initial debugging steps don't make it clear that this all stems from a BIOS setting. Hopefully adding this item to the troubleshooting doc will avoid future headaches. Signed-off-by: Brian Fallik <brian@clypd.com>