summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAge
* Merge pull request #11659 from vrothberg/psgoOpenShift Merge Robot2021-09-22
|\ | | | | vendor c/psgo@v1.7.1
| * vendor c/psgo@v1.7.1Valentin Rothberg2021-09-22
| | | | | | | | | | | | | | | | | | | | psgo added support for listing supplementary groups via two new descriptors: * `groups` for supplementary groups inside the container * `hgroups` for the counterpart on the host Signed-off-by: Valentin Rothberg <rothberg@redhat.com>
* | Merge pull request #11681 from mheon/retry_event_lookupOpenShift Merge Robot2021-09-22
|\ \ | | | | | | Add a backoff and retries to retrieving exited event
| * | Add a backoff and retries to retrieving exited eventMatthew Heon2021-09-21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | There's a potential race around extremely short-running containers and events with journald. Events may not be written for some time (small, but appreciable) after they are received, and as such we can fail to retrieve it if there is a sufficiently short time between us writing the event and trying to read it. Work around this by just retrying, with a 0.25 second delay between retries, up to 4 times. [NO TESTS NEEDED] because I have no idea how to reproduce this race in CI. Fixes #11633 Signed-off-by: Matthew Heon <matthew.heon@pm.me>
* | | Merge pull request #11641 from TomSweeneyRedHat/dev/tsweeney/myaliasOpenShift Merge Robot2021-09-21
|\ \ \ | | | | | | | | [CI:DOCS] Add network alias note in man pages
| * | | [CI:DOCS] Add network alias note in man pagesTomSweeneyRedHat2021-09-21
|/ / / | | | | | | | | | | | | | | | | | | Adds a note about the limitation of network aliases to the man pages This should satisfy https://issues.redhat.com/browse/RUN-1189 Signed-off-by: TomSweeneyRedHat <tsweeney@redhat.com>
* | | Merge pull request #11579 from cevich/add_cross_releaseOpenShift Merge Robot2021-09-21
|\ \ \ | |/ / |/| | Cross-build linux releases w/ arch in filename
| * | Cross-build release-archives w/ arch in filenameChris Evich2021-09-21
|/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes #11417 Cross-building the podman-remote documentation requires a functional native architecture executable. However `make` only deals with files/timestamps, it doesn't understand if an existing binary will function on the system or not. This makes building cross-platform releases incredibly accident-prone and fragile. A practical way to deal with this, is via multiple conditional (nested) `make` calls along with careful manipulation of `$GOOS` and `$GOARCH`. Also, when cross-building releases be kind to humans and cleanup any non-native binaries left behind. Update the `Alt Arch. Cross` Cirrus-CI task to build release archives for all Linux architectures supported by golang and podman. Update the `OSX Cross` task to additionally build for the M1 (arm64) architecture. Finally, update the release process documentation to reflect the new locations (Cirrus-CI task names) for the release archives. Include a note about additional manual work being required to produce the signed `.dmg` file for MacOS. Signed-off-by: Chris Evich <cevich@redhat.com>
* | Merge pull request #11631 from cevich/replace_hack-get_release_infoOpenShift Merge Robot2021-09-21
|\ \ | | | | | | Fix Error, empty output for info: 'VERSION'
| * | Fix Error, empty output for info: 'VERSION'Chris Evich2021-09-21
|/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | When building releases, the definitive canonical version of podman (or podman-remote) is needed. Previously this was accomplished by scraping `version/version.go`. However, due to tooling differences across platforms, this has proven problematic, unreliable, and hard to maintain. Fix this by building and caching a small golang binary who's only purpose is to print the version number to stdout. This not only provides a quick and reliable way to determine the current version, it also acts as a check on the version API vs tooling that relies on it. Lastly, remove several `RELEASE_*` Makefile definitions which aren't actually used anywhere. These were originally added a very long time ago to serve as part of a long since retired release process. The remaining items, were updated to make use of the new `.podmanversion` binary on an as-required basis (i.e. not every time `make` is run). Signed-off-by: Chris Evich <cevich@redhat.com>
* | Merge pull request #11662 from baude/kubenodevOpenShift Merge Robot2021-09-21
|\ \ | | | | | | Remove references to kube being development
| * | Remove references to kube being developmentBrent Baude2021-09-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | At this point and even though we are always improving the play and generate kube functions, I would say it no longers needs to be denoted as under development. [NO TESTS NEEDED] Signed-off-by: Brent Baude <bbaude@redhat.com>
* | | Merge pull request #11676 from rhatdan/kubeOpenShift Merge Robot2021-09-21
|\ \ \ | | | | | | | | Generate kube shouldn't add podman default environment vars
| * | | Generate kube should'd add podman default environment varsDaniel J Walsh2021-09-21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Currently we add the default PATH, TERM and container from Podman to every kubernetes.yaml file. These values should not be recorded in the yaml files. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
* | | | Merge pull request #11650 from flouthoc/named-volume-overlayOpenShift Merge Robot2021-09-21
|\ \ \ \ | |/ / / |/| | | volume: Add support for overlay on named volumes
| * | | volume: Add support for overlay on named volumesAditya Rajan2021-09-21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Following PR allows containers to create and mount overlays on top of named volumes instead of mounting actual volumes via already documented `:O`. Signed-off-by: Aditya Rajan <arajan@redhat.com>
* | | | Merge pull request #11518 from cdoern/podDeviceOpenShift Merge Robot2021-09-21
|\ \ \ \ | |/ / / |/| | | Pod Devices support
| * | | Pod Device Supportcdoern2021-09-20
|/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | added support for pod devices. The device gets added to the infra container and recreated in all containers that join the pod. This required a new container config item to keep track of the original device passed in by the user before the path was parsed into the container device. Signed-off-by: cdoern <cdoern@redhat.com>
* | | Merge pull request #11639 from jwhonce/issues/2221OpenShift Merge Robot2021-09-20
|\ \ \ | | | | | | | | Support --format tables in ps output
| * | | Support --format tables in ps outputJhon Honce2021-09-20
|/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - Added tests to help ensure there is no future regressions - Added WaitWithTimeout(int) rather than calling WaitWithDefaultTimeout() multiple times - Exposed DefaultWaitTimeout to allow test to use a multiplier Fixes #2221 Signed-off-by: Jhon Honce <jhonce@redhat.com>
* | | Merge pull request #11660 from rhatdan/docsOpenShift Merge Robot2021-09-20
|\ \ \ | | | | | | | | Add podman image/container inspect man pages
| * | | Add podman image/container inspect man pagesDaniel J Walsh2021-09-20
| | |/ | |/| | | | | | | | | | | | | | | | | | | [NO TESTS NEEDED] since this is really a docs change. Concludes: https://github.com/containers/podman/pull/11620 Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
* | | Merge pull request #11630 from rhatdan/timeoutOpenShift Merge Robot2021-09-20
|\ \ \ | | | | | | | | Add support for retrieving system service --timeout
| * | | Add support for retrieving system service --timeoutDaniel J Walsh2021-09-20
| | | | | | | | | | | | | | | | Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
* | | | Merge pull request #11601 from cdoern/mapOptionsOpenShift Merge Robot2021-09-20
|\ \ \ \ | | | | | | | | | | Created MapOptions for PodCreate
| * | | | Created MapOptions for PodCreatecdoern2021-09-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | MapOptions take the pod and container create options, assigning matching values from infra back to the pod for the Libpod API. This function, unlike the previous one, does not require any manual additions when new options are added since it uses the structs JSON tags, this is a more modular approach. Signed-off-by: cdoern <cdoern@redhat.com>
* | | | | Merge pull request #11649 from Luap99/machine-dnsOpenShift Merge Robot2021-09-20
|\ \ \ \ \ | | | | | | | | | | | | podman machine: use gvproxy for host.containers.internal
| * | | | | podman machine: use gvproxy for host.containers.internalPaul Holzinger2021-09-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Let the gvproxy dns server handle the host.containers.internal entry. Support for this is already added to gvproxy. [1] To make sure the container uses the dns response from gvproxy we should not add host.containers.internal to /etc/hosts in this case. [NO TESTS NEEDED] podman machine has no tests :/ Fixes #11642 [1] https://github.com/containers/gvisor-tap-vsock/commit/1108ea45162281046d239047a6db9bc187e64b08 Signed-off-by: Paul Holzinger <pholzing@redhat.com>
* | | | | | Merge pull request #11644 from rhatdan/nowOpenShift Merge Robot2021-09-20
|\ \ \ \ \ \ | |_|_|_|_|/ |/| | | | | Add podman machine init --now option
| * | | | | Add podman machine init --now optionDaniel J Walsh2021-09-19
| |/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Once we have this option, the new documentation from users becomes a little simpler. brew install podman podman machine init --now podman run ... --now option is based off of `systemctl enable XYZ.service --now` [NO TESTS NEEDED] The infrastructure has not been setup yet to test podman machine init. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
* | | | | Merge pull request #11656 from Luap99/compat-idOpenShift Merge Robot2021-09-20
|\ \ \ \ \ | | | | | | | | | | | | compat API: /images/json prefix image id with sha256
| * | | | | compat API: /images/json prefix image id with sha256Paul Holzinger2021-09-20
| |/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Docker adds the `sha256:` prefix to the image ID, so our compat endpoint has to do this as well. Fixes #11623 Signed-off-by: Paul Holzinger <pholzing@redhat.com>
* | | | | Merge pull request #11661 from umohnani8/docsOpenShift Merge Robot2021-09-20
|\ \ \ \ \ | |_|_|/ / |/| | | | [CI:DOCS] Add link to skopeo delete in podman rmi
| * | | | [CI:DOCS] Add link to skopeo delete in podman rmiUrvashi Mohnani2021-09-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add a note pointing to skopeo delete for when users want to delete an image in a remote registry. Signed-off-by: Urvashi Mohnani <umohnani@redhat.com>
* | | | | Merge pull request #11652 from vrothberg/vendor-commonOpenShift Merge Robot2021-09-20
|\ \ \ \ \ | |/ / / / |/| | | | vendor c/common@main
| * | | | vendor c/common@mainValentin Rothberg2021-09-20
| | |_|/ | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Finalizes the linked BZ to fix passing down custom authfiles during auto updates. Also fixes the if-newer pull policy. [NO TESTS NEEDED] for now validated manually. There's a TODO to add a new system test that I did not find time for before PTO. BZ: bugzilla.redhat.com/show_bug.cgi?id=2000943 Signed-off-by: Valentin Rothberg <rothberg@redhat.com>
* | | | Merge pull request #11651 from vrothberg/fix-11557OpenShift Merge Robot2021-09-20
|\ \ \ \ | |/ / / |/| | | remote untag: support digests
| * | | remote untag: support digestsValentin Rothberg2021-09-20
|/ / / | | | | | | | | | | | | | | | | | | | | | | | | Fix a bug when remotely untagging an image via tag@digest. The digest has been lost in the remote client and hence led to a wrong behaviour on the server. Fixes: #11557 Signed-off-by: Valentin Rothberg <rothberg@redhat.com>
* | | Merge pull request #11648 from ↵OpenShift Merge Robot2021-09-20
|\ \ \ | |/ / |/| | | | | | | | giuseppe/raise-move-process-to-scope-only-with-cgroupv2 utils: raise warning only on cgroupv2
| * | utils: return error message from StartTransientUnitGiuseppe Scrivano2021-09-20
| | | | | | | | | | | | Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
| * | utils: raise warning only on cgroupv2Giuseppe Scrivano2021-09-20
|/ / | | | | | | | | | | | | | | | | | | | | if it is not running on cgroup v2, print only a debug message since rootless users cannot create the cgroup. commit 9c1e27fdd536f6026efe3da4360755a3e9135ca8 introduced the regression. [NO TESTS NEEDED] Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
* | Merge pull request #11638 from edsantiago/batsOpenShift Merge Robot2021-09-18
|\ \ | | | | | | System tests: cleanup, and remove obsolete skips
| * | System tests: cleanup, and remove obsolete skipsEd Santiago2021-09-17
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 070-build: - remove workaround for #9567, which is closed. - add many more cases to the ignorefile test, to test complicated special cases of Buildah PR 3486. * 160-volumes: - remove a skip_if_remote, volumes now work on remote - use a random name for tarball, and clean up when done using it. This fixes a gating-test failure (test runs as root, then rootless, and rootless can't clobber root's file). Signed-off-by: Ed Santiago <santiago@redhat.com>
* | | Merge pull request #11628 from Luap99/remove-unsued-codeOpenShift Merge Robot2021-09-18
|\ \ \ | | | | | | | | Remove unused code from libpod
| * | | Remove unused code from libpodPaul Holzinger2021-09-17
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The libpod package should only compile on linux. The remote client should never try to import this package. Since these files do not add any value we should remove them, this prevents people from accidentally importing this package because it would fail to compile on windows/macos. [NO TESTS NEEDED] Signed-off-by: Paul Holzinger <pholzing@redhat.com>
* | | | Merge pull request #11617 from ashley-cui/sshOpenShift Merge Robot2021-09-18
|\ \ \ \ | |_|/ / |/| | | [NO TESTS NEEDED] Add username flag for machine ssh
| * | | Add username flag for machine sshAshley Cui2021-09-17
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | allow users to specify what username to use when ssh-ing into the vm. If the username flag is set, the username will be the flag value. If the flag is not set and the the vm name is specified, the default user of the vm will be used. if the flag is not set, and the vm name is not specified, then the username of the default connection will be used. Signed-off-by: Ashley Cui <acui@redhat.com>
* | | | Merge pull request #11607 from Luap99/ipvlanOpenShift Merge Robot2021-09-17
|\ \ \ \ | |_|/ / |/| | | CNI: add ipvlan driver support and macvlan modes
| * | | CNI: add ipvlan driverPaul Holzinger2021-09-16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add support for the ipvlan cni plugin. This allows us to create, inspect and list ipvlan networks correctly. Fixes #10478 Signed-off-by: Paul Holzinger <pholzing@redhat.com>
| * | | CNI: network create support macvlan modesPaul Holzinger2021-09-16
| |/ / | | | | | | | | | | | | | | | | | | | | | Support setting the macvlan mode with `podman network create -d macvlan --opt mode=bridge`. This will correctly set the specified macvlan mode in the cni conflist file. Signed-off-by: Paul Holzinger <pholzing@redhat.com>