summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAge
* Cirrus: Minor, fix env. var. intentionChris Evich2019-09-27
| | | | Signed-off-by: Chris Evich <cevich@redhat.com>
* Merge pull request #4127 from nalind/reexec-useOpenShift Merge Robot2019-09-27
|\ | | | | Correct use of reexec.Init()
| * Correct use of reexec.Init()Nalin Dahyabhai2019-09-26
| | | | | | | | | | | | | | A true result from reexec.Init() isn't an error, but it indicates that main() should exit with a success exit status. Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
* | Merge pull request #4124 from mheon/set_log_level_earlyOpenShift Merge Robot2019-09-27
|\ \ | | | | | | Set log-level immediately, before rootless setup
| * | Set log-level immediately, before rootless setupMatthew Heon2019-09-26
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | If we don't do this, we print WARN level messages that we should not be printing by default. Up one WARN message to ERROR so it still shows up by default. Fixes: #4115 Fixes: #4012 Signed-off-by: Matthew Heon <matthew.heon@pm.me>
* | | Merge pull request #4116 from TomSweeneyRedHat/dev/tsweeney/fixtutreadmeOpenShift Merge Robot2019-09-27
|\ \ \ | | | | | | | | Make links relative in Tutorial README
| * | | Make links relative in Tutorial READMETomSweeneyRedHat2019-09-26
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Remove the longer html link in favor or relative links which are shorter and less error prone. Signed-off-by: TomSweeneyRedHat <tsweeney@redhat.com>
* | | | Merge pull request #4120 from mheon/secresponseOpenShift Merge Robot2019-09-27
|\ \ \ \ | | | | | | | | | | Add README note about security reporting process.
| * | | | Add README note about security reporting process.Matthew Heon2019-09-26
| |/ / / | | | | | | | | | | | | Signed-off-by: Matthew Heon <mheon@redhat.com>
* | | | Merge pull request #3879 from cevich/zip_to_msiOpenShift Merge Robot2019-09-27
|\ \ \ \ | |_|_|/ |/| | | Automate production of MSI release files
| * | | Cirrus: Upload windows MSI release fileChris Evich2019-09-24
| | | | | | | | | | | | | | | | Signed-off-by: Chris Evich <cevich@redhat.com>
* | | | Merge pull request #4117 from mheon/pod_no_nameOpenShift Merge Robot2019-09-26
|\ \ \ \ | |_|/ / |/| | | Add an error for pods without a name
| * | | Add an error for pods without a nameMatthew Heon2019-09-26
| | | | | | | | | | | | | | | | Signed-off-by: Matthew Heon <mheon@redhat.com>
* | | | Merge pull request #4109 from cgwalters/doc-custom-projectOpenShift Merge Robot2019-09-26
|\ \ \ \ | | | | | | | | | | docs/podman-derivative-api.md: New file
| * | | | docs/podman-derivative-api.md: New fileColin Walters2019-09-26
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | https://github.com/debarshiray/toolbox/ was planning to vendor libpod which I disagreed with. Let's document the advantages/disadvantages as they exist today. Signed-off-by: Colin Walters <walters@verbum.org>
* | | | | Merge pull request #4101 from QiWang19/nonexistdirOpenShift Merge Robot2019-09-25
|\ \ \ \ \ | |_|_|_|/ |/| | | | fix cp none exists dest path ends with '/'
| * | | | fix cp none exists dest path ends with '/'Qi Wang2019-09-25
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | close #3894 This patch let podman cp return 'no such file or directory' error if DEST_PATH does not exist and ends with / when copying file. Signed-off-by: Qi Wang <qiwan@redhat.com>
* | | | | Merge pull request #4104 from mheon/bump-1.6.0-rc2OpenShift Merge Robot2019-09-25
|\ \ \ \ \ | |_|/ / / |/| | | | Bump to 1.6.0-rc2
| * | | | Bump gitvalidation epochMatthew Heon2019-09-24
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Matthew Heon <matthew.heon@pm.me>
| * | | | Bump to v1.6.0-devMatthew Heon2019-09-24
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Matthew Heon <matthew.heon@pm.me>
| * | | | Bump to v1.6.0-rc2v1.6.0-rc2Matthew Heon2019-09-24
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Matthew Heon <matthew.heon@pm.me>
* | | | | Merge pull request #4106 from vrothberg/fedoraOpenShift Merge Robot2019-09-25
|\ \ \ \ \ | |_|/ / / |/| | | | Dockerfile.fedora: install packages to build catatonit
| * | | | Dockerfile.fedora: install packages to build catatonitValentin Rothberg2019-09-25
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Needed to update the CI images for #4090. Signed-off-by: Valentin Rothberg <rothberg@redhat.com>
* | | | | Merge pull request #4036 from vrothberg/update-readmeOpenShift Merge Robot2019-09-25
|\ \ \ \ \ | | | | | | | | | | | | Update readme
| * | | | | README: add Communications sectionValentin Rothberg2019-09-25
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add a `Communications` section to the README to make it more approachable for new users who want to reach the community and maintainers. Signed-off-by: Valentin Rothberg <rothberg@redhat.com>
| * | | | | drop OWNERS link for CONTRIBUTING.mdValentin Rothberg2019-09-25
| |/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | It was pointing to K8s docs and didn't really fit into the communications context. Signed-off-by: Valentin Rothberg <rothberg@redhat.com>
* | | | | Merge pull request #4091 from dylanpinn/patch-1OpenShift Merge Robot2019-09-25
|\ \ \ \ \ | |/ / / / |/| | | | Update mac_client link in podman tutorial
| * | | | Update mac_client linkDylan Pinn2019-09-24
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | I fixed the mac_client tutorial link as it was returning a 404 error. Signed-off-by: Dylan Pinn <me@dylanpinn.com>
* | | | | Merge pull request #4102 from baude/remotestdinOpenShift Merge Robot2019-09-25
|\ \ \ \ \ | | | | | | | | | | | | conditionally send stdin on remote run
| * | | | | conditionally send stdin on remote runbaude2019-09-24
| | |_|/ / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | when running a container remotely, we should only be sending stdin when running with --interactive; otherwise use nil. Fixes: #4095 Signed-off-by: baude <bbaude@redhat.com>
* | | | | Merge pull request #4073 from cevich/move_ci_unit_testOpenShift Merge Robot2019-09-25
|\ \ \ \ \ | | | | | | | | | | | | Cirrus: Fail early on CI script unit test
| * | | | | Cirrus: Fail early on CI script unit testChris Evich2019-09-23
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Instead of running this basic checks for almost all tasks, just do them once at the beginning. Signed-off-by: Chris Evich <cevich@redhat.com>
* | | | | | Merge pull request #4088 from baude/varlinkbuildoutputOpenShift Merge Robot2019-09-25
|\ \ \ \ \ \ | | | | | | | | | | | | | | Document the required varlink build args
| * | | | | | Document the required varlink build argsbaude2019-09-24
| | |_|/ / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The API document incorrectly documented the wrong varlink build arguments. The output attribute is required. Fixes: #3204 Signed-off-by: baude <bbaude@redhat.com>
* | | | | | Merge pull request #4086 from mheon/cni_del_on_refreshOpenShift Merge Robot2019-09-25
|\ \ \ \ \ \ | | | | | | | | | | | | | | Force a CNI Delete on refreshing containers
| * | | | | | Force a CNI Delete on refreshing containersMatthew Heon2019-09-24
| | |/ / / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | CNI expects that a DELETE be run before re-creating container networks. If a reboot occurs quickly enough that containers can't stop and clean up, that DELETE never happens, and Podman currently wipes the old network info and thinks the state has been entirely cleared. Unfortunately, that may not be the case on the CNI side. Some things - like IP address reservations - may not have been cleared. To solve this, manually re-run CNI Delete on refresh. If the container has already been deleted this seems harmless. If not, it should clear lingering state. Fixes: #3759 Signed-off-by: Matthew Heon <matthew.heon@pm.me>
* | | | | | Merge pull request #4103 from mheon/handle_volume_conflictOpenShift Merge Robot2019-09-25
|\ \ \ \ \ \ | |_|_|_|/ / |/| | | | | Handle conflict between volumes and --read-only-tmpfs
| * | | | | Handle conflict between volumes and --read-only-tmpfsMatthew Heon2019-09-24
|/ / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | When a named volume is mounted on any of the tmpfs filesystems created by read-only tmpfs, it caused a conflict that was not resolved prior to this. Fixes BZ1755119 Signed-off-by: Matthew Heon <matthew.heon@pm.me>
* | | | | Merge pull request #4098 from mheon/release_notes_1.6.0_rc2OpenShift Merge Robot2019-09-24
|\ \ \ \ \ | |_|_|_|/ |/| | | | Add release notes for new-in-RC2 changes
| * | | | Add release notes for new-in-RC2 changesMatthew Heon2019-09-24
| | |_|/ | |/| | | | | | | | | | Signed-off-by: Matthew Heon <matthew.heon@pm.me>
* | | | Merge pull request #4094 from haircommander/play-only-podOpenShift Merge Robot2019-09-24
|\ \ \ \ | | | | | | | | | | play kube: Only support pod kind in k8s yaml
| * | | | play kube: Only support pod kind in k8s yamlPeter Hunt2019-09-24
| |/ / / | | | | | | | | | | | | | | | | | | | | Since we only really support playing pods, and no other kubernetes types Signed-off-by: Peter Hunt <pehunt@redhat.com>
* | | | Merge pull request #3756 from gabibeyer/rootlessOrderingOpenShift Merge Robot2019-09-24
|\ \ \ \ | | | | | | | | | | rootless: Rearrange setup of rootless containers
| * | | | add list mount testsgabi beyer2019-09-24
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add two unit tests to determine whether mounts are being listed correctly. One tests that a created container is not listed until mounted. The second checks that running containers are mounted, and then no longer listed as mounted when they stop running. The final test creates three containers, mounts two, and checks that mount correctly only lists the two mounted. Signed-off-by: gabi beyer <gabrielle.n.beyer@intel.com>
| * | | | Make netns bind mount sharedgabi beyer2019-09-24
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | To 'avoid unknown FS magic on "/run/user/1000/netns/...": 1021994' make the network namespace bind-mount recursively shared, so the mount is back-propogated to the host. Signed-off-by: gabi beyer <gabrielle.n.beyer@intel.com>
| * | | | Add Kata Containers supportgabi beyer2019-09-24
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Update documentation to show Kata Containers support is no longer a limitation with merging of commit 486a5b9 Signed-off-by: gabi beyer <gabrielle.n.beyer@intel.com>
| * | | | rootless: Rearrange setup of rootless containersGabi Beyer2019-09-24
| | |_|/ | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | In order to run Podman with VM-based runtimes unprivileged, the network must be set up prior to the container creation. Therefore this commit modifies Podman to run rootless containers by: 1. create a network namespace 2. pass the netns persistent mount path to the slirp4netns to create the tap inferface 3. pass the netns path to the OCI spec, so the runtime can enter the netns Closes #2897 Signed-off-by: Gabi Beyer <gabrielle.n.beyer@intel.com>
* | | | Merge pull request #4097 from edsantiago/batsOpenShift Merge Robot2019-09-24
|\ \ \ \ | |_|/ / |/| | | system tests: run test: reenable and fix
| * | | system tests: run test: reenable and fixEd Santiago2019-09-24
|/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Test had incorrectly been disabled for all podman; it should've been disabled only for podman-remote. Fixed that, and fixed the problem that was causing failures: podman-remote is gobbling up stdin (#4095), so no tests were actually being run at all, or only one. Fixed by redirecting input on the run_podman invocation. Added, as backup, a confirmation mechanism to ensure that all expected tests are being run. Note that test is reenabled, but the output check is disabled for podman-remote due to #4096; this at least lets us check exit status. Signed-off-by: Ed Santiago <santiago@redhat.com>
* | | Merge pull request #4089 from vrothberg/fix-4005OpenShift Merge Robot2019-09-24
|\ \ \ | |/ / |/| | runtime: fix logic to disable SDNotify