forked from containers/podman
-
Notifications
You must be signed in to change notification settings - Fork 0
/
changelog.txt
1595 lines (1555 loc) · 70.4 KB
/
changelog.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
- Changelog for v1.0.0 (2018-1-11)
* Update release notes for v1.0
* Remove clientintegration from Makefile
* Regenerate EasyJSON to fix JSON issues
* Update gitvalidation to avoid reverts w/o signoffs
* Cirrus: Post-Merge Testing for v1.0 Branch
* Move python code from contrib to it's own repo python-podman
* Use defaults if paths are not specified in storage.conf
* (Minor) Cirrus: Print timestamp at start
* fix up sigstore path
* Trivial readme updates
* podman: bump RLIMIT_NOFILE also without CAP_SYS_RESOURCE
* Fix handling of nil volumes
* sign: make all error messages lowercase
* sign: use filepath.Join instead of fmt.Sprintf
* createconfig: always cleanup a rootless container
* Fix 'image trust' from PR1899
* libpod/image: Use ParseNormalizedNamed in RepoDigests
* apparmor: apply default profile at container initialization
* Fix up image sign and trust
* List the long variant of each option before its shorter counterpart
* Use existing interface to request IP address during restore
* Added checkpoint/restore test for same IP
* Enable checkpoint test with established TCP connections
* .github/ISSUE_TEMPLATE: Suggest '/kind bug' and '/kind feature'
* pkg/hooks/exec: Include failed command in hook errors
* hooks/exec/runtimeconfigfilter: Log config changes
* hooks: Add pre-create hooks for runtime-config manipulation
* Add Validate completions
* Add a --workdir option to 'podman exec'
* Default --sig-proxy to true for 'podman start --attach'
* Test that 'podman start --sig-proxy' does not work without --attach
* [WIP]Support podman image sign
* vendor latest buildah
* Honor image environment variables with exec
* Minor: Remove redundant basename command in ooe.sh
* Rename libpod.Config back to ContainerConfig
* Add ability to build golang remote client
* vendor latest buildah
* Add the configuration file used to setup storage to podman info
* podman: set umask to 022
* podman-login: adhere to user input
* Vendor in latest containers/buildah code
* Readd Python testing
* Update vendor of runc
* [skip ci] Docs: Add Bot Interactions section
* container runlabel NAME implementation
* Bump time for build_each_commit step
* add container-init support
* If local storage file exists, then use it rather then defaults.
* vendor in new containers/storage
* Fix completions
* Touch up some troubleshooting nits
* Log container command before starting the container
* Use sprintf to generate port numbers while committing
* Add troubleshooting for sparse files
* Fix handling of symbolic links
* podman build is not using the default oci-runtime
* Re-enable checkpoint/restore CI tests on Fedora
* Fixes to handle /dev/shm correctly.
* rootless tests using stop is more reliable
* Allow alias for list, ls, ps to work
* Refactor: use idtools.ParseIDMap instead of bundling own version
* cirrus: Use updated images including new crui
* Switch all referencs to image.ContainerConfig to image.Config
* Allow users to specify a directory for additonal devices
* Change all 'can not' to 'cannot' for proper usage
* Invalid index for array
* Vendor in latest psgo code to fix race conditions
* test: add test for rootless export
* export: fix usage with rootless containers
* rootless: add function to join user and mount namespace
* libpod: always store the conmon pid file
* Use existing CRIU packages in CI setup
* skip test for blkio.weight when kernel does not support it
* Add Play
* Cirrus: Skip build all commits test on master
* prepare for move to validate on 1.11 only
* [skip ci] Gate: Update docs w/ safer local command
* Support podman image trust command
* Makefile: validate that each commit can at least build
* perf test a stress test to profile CPU load of podman
* all flakes must die
* Add information on --restart
* generate service object inline
* Cirrus: One IRC notice only
* docs/tutorials: add a basic network config
* display proper error when rmi -fa with infra containers
* add --get-login command to podman-login.
* Show image only once with images -q
* Add script to create CI VMs for debugging
* Cirrus: Migrate PAPR testing of F28 to Cirrus
* Skip checkpoint tests on Fedora <30
* Cirrus: Add text editors to cache-images
* Clean up some existing varlink endpoints
* mount: allow mount only when using vfs
- Changelog for v0.12.1.2 (2018-12-13)
* Add release notes for 0.12.1.2
* runlabel should sub podman for docker|/usr/bin/docker
* condition fixed for adding volume to boltdb.
* e2e: add tests for systemd
* Add test for sharing resolv and hosts with netns
* Makefile tweaks to fix make shell
* failed containers with --rm should remove themselves
* Fix documentation links and flow
* Set Socket label for contianer
* Containers sharing a netns should share resolv/hosts
* Prevent a second lookup of user for image volumes
* fix typo in kubernetes
* No need to use `-i` in go build (with go 1.10 and above)
* rootless: fix restart when using fuse-overlayfs
* Cirrus: Update base-image build docs
* Add capabilities to generate kube
* disable F29 tests on PAPR
* Ensure storage options are properly initialized
* add more example usage to varlink endpoints
* Update for API change
* Vendor buildah after merging mtrmac/blob-info-caching-on-top-of-contents-caching
* Vendor c/image after merging c/image#536
* Bump gitvalidation epoch
* Bump to v0.12.2-dev
- Changelog for v0.12.1.1 (2018-12-07)
* Update release notes for v0.12.1.1
* Fix errors where OCI hooks directory does not exist
* add timeout to pod stop
* Remove manual handling of insecure registries in (podman search)
* Fix reporting the registries.conf path on error
* Remove manual handling of insecure registries in doPullImage
* Remove the forceSecure parameter on the pull call stack
* Remove manual handling of insecure registries in PushImageToReference
* Factor out the registries.conf location code in pkg/registries
* Remove the forceSecure parameter of Image.PushImageTo*
* Minimally update for the DockerInsecureSkipTLSVerify type change
* Bump gitvalidation epoch
* Bump to v0.12.2-dev
* Fix build on non-Linux
* Remove some unused data structures and code
* Vendor buildah after merging https://github.com/containers/buildah/pull/1214
* Update containers/image to 63a1cbdc5e6537056695cf0d627c0a33b334df53
* Cirrus: Document and codify base-image production
* Cirrus: Use Makefile for image-building
* Refactor BooleanAction to mimic golang interface
* generate kube
- Changelog for v0.12.1 (2018-12-06)
* Update release notes for 0.12.1
* bind mount /etc/resolv.conf|hosts in pods
* Remove --sync flag from `podman rm`
* Add locking to Sync() on containers
* Add --sync flag to podman ps
* Add --sync option to podman rm
* Tests for podman volume commands
* Add "podman volume" command
* tutorial: add ostree dependency
* Pick registry to login from full image name as well
* Add ability to prune containers and images
* Invert tlsverify default in API
* set .54 version for f28 due to memory error
* Vendor in latest containers/storage
* pkg/lookup: Return ID-only pointers on ErrNo*Entries
* test for rmi with children
* libpod/container_internal_linux: Allow gids that aren't in the group file
* Don't initialize CNI when running as rootless
* correct algorithm for deleting all images
* Use runtime lockDir in BoltDB state
* test: update runc again
* vendor: update containers/storage
* create pod on the fly
* libpod/container_internal: Deprecate implicit hook directories
* Revert changes to GetDefaultStoreOptions
* Fix libpod static dir selection when graphroot changed
* podman pod exists
* Adding more varlink endpoints
* Ensure directory where we will make database exists
* Fix typo
* rootless: raise error if newuidmap/newgidmap are not installed
* Add better descriptions for validation errors in DB
* Fix gofmt and lint
* Make locks dir in unit tests
* Do not initialize locks dir in BoltDB
* Move rootless storage config into libpod
* Set default paths from DB if not explicitly overridden
* Add a struct indicating if some Runtime fields were set
* Make DB config validation an explicit step
* Move DB configuration up in runtime setup
* Add ability to retrieve runtime configuration from DB
* Add short-option handling to logs
* tests: always install runc on Ubuntu
* cirrus: update ubuntu image
* cirrus: make apt noninteractive
* Dockerfile, .cirrus.yml: update runc commit
* rootless: propagate XDG_RUNTIME_DIR to the OCI runtime
* Update ubuntu VM image w/ newer runc
* add pod short option to ps
* Add create test with --mount flag
* Only include container SizeRootFs when requested
* /dev/shm should be mounted even in rootless mode.
* disable checkpoint tests on f29
* test, rootless: specify USER env variable
* Revert "downgrade runc due a rootless bug"
* Fix completions to work with podman run command
* hide kube command for now
* pypod create/run: ignore args for container command
* Add support for --all in pypodman ps command
* Fixes #1867
* tests: fix NOTIFY_SOCKET test
* Fix golang formatting issues
* oci: propagate NOTIFY_SOCKET on runtime start
* test: fix test for NOTIFY_SOCKET
* Add test to ensure stopping a stopped container works
* Stopping a stopped container is not an error for Podman
* Disable mount options when running --privileged
* Vendor in latest containers/storage
* util: use fsnotify to wait for file
* vendor: update selinux
* rootless: store only subset of storage.conf
* rootless: fix cleanup
* network: allow slirp4netns mode also for root containers
* Added more checkpoint/restore test cases
* Fix podman container restore -a
* Update bash completion for checkpoint/restore
* Add '--tcp-established' to checkpoint/restore man page
* Added tcp-established to checkpoint/restore
* Remove unused CRIU_COMMIT variable
* Point CRIU_COMMIT to CRIU release 3.11
* Updated CRIO_COMMIT to pull in new conmon for CRIU
* Use also a struct to pass options to Restore()
* _split_token(): handle None
* Use host's resolv.conf if no network namespace enabled
* rootless: add new netmode "slirp4netns"
* tests: change return type for PodmanAsUser to PodmanTestIntegration
* test: cleanup CNI network used by the tests
* exec: don't wait for pidfile when the runtime exited
* Remove mount options relatime from podman run --mount with shared
* Update test case name to podman run with --mount flag
* Add some tests for --ip flag with run and create command
* Add history and namespaceoptions to image inspect
* add podman container|image exists
* set root propagation based on volume properties
* Actually set version for podman module / pypodman
* implement --format for version command
* podman_tutorial.md typos: arguement -> argument; missing 'a'
* Load NAT modules to fix tests involving CRIU
* Vendor in latest containers/buildah
* Update checkpoint/restore man pages
* Added option to keep containers running after checkpointing
* Use a struct to pass options to Checkpoint()
* exec: always make explicit the tty value
* Allow users to expose ports from the pod to the host
* Improve speed of containers.list()
* output libpod container to kubernetes yaml
* rootless: create empty mounts.conf if it doesn't exist
* registries: check user registries file only in rootless mode
* rootless: create storage.conf when it doesn't exist
* rootless: create libpod.conf when it doesn't exist
* Don't use $HOST and $USER variables for remote
* Implement pypodman start command
* runlabel: use shlex for splitting commands
* Add a rule to compile system test in Makefile
* Fix no-new-privileges test
* The system test write with ginkgo
* Separate common used test functions and structs to test/utils
* Add version command to pypodman
* Bump gitvalidation epoch
* Bump to v0.11.2-dev
* Cirrus: Add documentation for system-testing
* Cirrus: Simplify optional system-test script
* Cirrus: Reveal magic, parallel system-testing
* libpod should know if the network is disabled
* Lint: Silence few given goconst lint warnings
* Lint: Extract constant unknownPackage
* Lint: Tests: add missing assertions
* Lint: Do not ignore errors from docker run command when selinux enabled
* Lint: InspectImage varlink api should return errors that occurred
* Lint: Exclude autogenerated files from lint test
* Lint: Update metalinter dependency
* Set --force-rm for podman build to true by default
* Vendor in latest containers/storage
- Changelog for v0.11.1.1 (2018-11-15)
* Vendor in containers/storage
* Add release notes for 0.11.1.1
* Increase pidWaitTimeout to 60s
* Cirrus: Add master branch testing status badge
* rootless: call IsRootless just once
* Bump golang to v1.10 in install.md
* Standardized container image for gofmt and lint
* Make list of approvers same as reviewers
* vendor: update ostree-go
* vendor.conf: fix typo
* Cleanup podman spec to not show git checkout is dirty
* Add space between num & unit in images output
* Update troubleshooting guide to deal with rootless path
* troubleshooting.md: add a recipe for rootless ping
* remove $-prefix from (most) shell examples
* docs: Fix duplicated entry for pod-container-unmount
* Better document rootless containers
* info: add rootless field
* Accurately update state if prepare() partially fails
* Do not hide errors when creating container with UserNSRoot
* rm -f now removes a paused container
* correct assignment of networkStatus
* podman_tutorial: cni build path has changed
* Bump gitvalidation epoch
* Bump to v0.11.2-dev
* Cirrus: Ignore any error from the IRC messenger
* rootless: default to fuse-overlayfs when available
- Changelog for v0.11.1 (2018-11-08)
* Update release notes for 0.11.1
* update seccomp.json
* Touch up --log* options and daemons in man pages
* Fix run --hostname test that started failing post-merge
* move defer'd function declaration ahead of prepare error return
* Don't fail if /etc/passwd or /etc/group does not exists
* Print error status code if we fail to parse it
* Properly set Running state when starting containers
* Fix misspelling
* Retrieve container PID from conmon
* If a container ceases to exist in runc, set exit status
* EXPERIMENTAL: Do not call out to runc for sync
* Actually save changes from post-stop sync
* rootless: mount /sys/fs/cgroup/systemd from the host
* rootless: don't bind mount /sys/fs/cgroup/systemd in systemd mode
* Add hostname to /etc/hosts
* Temporarily fix the Python tests to fix some PRs
* Remove conmon cgroup before pod cgroup for cgroupfs
* Fix cleanup for "Pause a bunch of running containers"
* --interactive shall keep STDIN attached even when not explicitly called out
* Do never override podman with docker
* Make kill, pause, and unpause parallel.
* Fix long image name handling
* Make restart parallel and add --all
* Add ChangeAction to parse sub-options from --change
* replace quay.io/baude to quay.io/libpod
* Change humanize to use MB vs MiB.
* allow ppc64le to pass libpod integration tests
* Cirrus-CI: Add option to run system-tests
* Cirrus: Skip rebuilding images unless instructed
* Cirrus: Disable image build job abort on push
* Cirrus: Add a readme
* Ubuntu VM image build: try update twice
* Cirrus: Enable updating F28 image
* rootless: do not add an additional /run to runroot
* rootless: avoid hang on failed slirp4netns
* Fix setting of version information
* runtime: do not allow runroot longer than 50 characters
* attach: fix attach when cuid is too long
* truncate command output in ps by default
* Update the runc commit used for testing
* make various changes to ps output
* Sync default config with libpod.conf
* Use two spaces to pad PS fields
* unmount: fix error logic
* get user and group information using securejoin and runc's user library
* CONTRIBUTING.md: add section about describing changes
* Change to exported name in ParseDevice
* Vendor in latest containers/storage
* fix bug in rm -fa parallel deletes
* Ensure test container in running state
* Add tests for selinux labels
* Add --max-workers and heuristics for parallel operations
* Increase security and performance when looking up groups
* run prepare in parallel
* downgrade runc due a rootless bug
* runlabel: run any command
* Eat our own dogfood
* vendor: update containers/storage
* Add support for /usr/local installation
* create: fix writing cidfile when using rootless
* Explain the device format in man pages
* read conmon output and convert to json in two steps
* Cirrus: Use images w/ buildah fix
* Add --all and --latest to checkpoint/restore
* Use the newly added getAllOrLatestContainers() function
* Use the new checkAllAndLatest() function
* Also factor out getAllOrLatestContainers() function
* Add checkAllAndLatest() function
* Downgrade code to support python3.4
* Allow containers/storage to handle on SELinux labeling
* Use more reliable check for rootless for firewall init
* Vendor in latest containers/storage opencontainers/selinux
* Make podman ps fast
* Support auth file environment variable in podman build
* fix environment variable parsing
* tests: use existing CRIU version check
* Use the CRIU version check in checkpoint/restore
* Add helper function to read out CRIU version
* vendor in go-criu and dependencies
* oci: cleanup process status
* Handle http/https in registry given to login/out
* re-enable f29 testing
* correct stats err with non-running containers
* Use restoreArtifacts to save time in integration tests
* Make rm faster
* Fix man page to show info on storage
* Move rootless directory handling to the libpod/pkg/util directory
* Fix podman port -l
* Fix trivial missing markup in manpage
* Cirrus: Install CRIU in test images
* Cirrus: Use different CNI_COMMIT for Fedora
* Fix Cirrus/Packer VM image building
* Revert "Cirrus: Enable debugging delay on non-zero exit"
* Cirrus: IRC message when cirrus testing successful
* cirrus: Add simple IRC messenger
* fix NOTIFY_SOCKET in e2e testfix NOTIFY_SOCKET in e2e tests
* Bump gitvalidation epoch
* Bump to v0.10.2-dev
- Changelog for v0.10.1.3 (2018-10-17)
* Update release notes for 0.10.1.3
* Vendor in new new buildah/ci
* Fix podman in podman
* Bump gitvalidation epoch
* Bump to v0.10.2-dev
- Changelog for v0.10.1.2 (2018-10-17)
* Update release notes for 0.10.1.2
* Fix CGroup paths used for systemd CGroup mount
* Bump gitvalidation epoch
* Bump to v0.10.2-dev
- Changelog for v0.10.1.1 (2018-10-16)
* Update release notes for 0.10.1.1
* Mount proper cgroup for systemd to manage inside of the container.
* Cirrus: Enable debugging delay on non-zero exit
* Touchup fileo typo
* volume: resolve symlinks in paths
* volume: write the correct ID of the container in error messages
* vendor: update containers/buildah
* papr: relabel GOPATH/github.com/containers/libpod
* tests: do not fail in the cleanup phase
* tests: do not make assumptions on the mount output
* papr_prepare: remove double process for starting up .papr.sh
* Add support for pod commands
* Support auth file environment variable & add change to man pages
* Generate a passwd file for users not in container
* Bump gitvalidation epoch
* Bump to v0.10.2-dev
- Changelog for v0.10.1 (2018-10-11)
* Swap from map to channels for podman stop workers
* Add release notes for 0.10.1
* Pass along syslog variable to podman cleanup processes
* Sort all command flags
* rootless: detect when user namespaces are not enabled
* Log an otherwise ignored error from joining a net ns
* Fix gofmt
* Add tests for --ip flag
* Update manpages for --ip flag
* Add --ip flag and plumbing into libpod
* Document --net as an alias of --network in podman run & create
* Update OCICNI vendor to 2d2983e4
* Temporary commit to swap branches
* rootless: report more error messages from the startup phase
* rootless: fix an hang on older versions of setresuid/setresgid
* Update OCICNI vendor to e617a611
* fix runlabel functions based on QA feedback
* Vendor latest containers/image
* Stop containers in parallel fashion
* wip
* remove hack/dind
* Vendor in latest github.com/containers/storage,image, buildah
* runlabel: execute /proc/self/exe and avoid recursion
* Re-add source-verify in cirrus-ci
* added links to buildah.io and podman.io to README.md
* Lower CPU/Memory usage by cirrus VMs
* skip userns tests on non-fedora distributions for now
* Remove Travis
* docker: Double quote array expansions to avoid re-splitting elements
* Ensure resolv.conf has the right label and path
* Remove no longer used libnetwork from vendor.conf
* Fix lint
* Drop libnetwork vendor and move the code into pkg/
* Update libnetwork vendor to current master to fix CI
* Switch to using libnetwork's resolvconf package
* Add configuration for Cirrus-CI
* disable gce building of images
* re-add BR for golang compiler to contrib/spec/podman.spec.in
* completions: add checkpoint/restore completions
* tests: add checkpoint/restore test
* tutorial: add checkpoint/restore to tutorial
* docs: add checkpoint and restore man pages
* Add support to checkpoint/restore containers
* oci: split the stdout and stderr pipes
* oci: always set XDG_RUNTIME_DIR
* Fix pod status reporting for new Exited state
* Add ability for ubuntu to be tested
* selinux: drop superflous relabel
* rootless: always set XDG_RUNTIME_DIR
* Fix python tests
* Fix Wait() to allow Exited state as well as Stopped
* Fix cleanupRuntime to only save if container is valid
* Fix bug with exited state and container remove
* Address review comments and fix ps output
* Add ContainerStateExited and OCI delete() in cleanup()
* Need to allocate memory for hook struct
* Disable SELinux labeling if --privileged
* * Update documenation
* Implement pod varlink bindings
* Update docs to build a runc that works with systemd
* runtime: fix message which assumes the runtime is runc
* rootless: raise an error when trying to use cgroups
* Add --all flag to podman kill
* Add podman.io to README.md
* Vendor in the latest containers/storage, image and buildah
* Don't tmpcopyup on systemd cgroup
* Add container runlabel command
* run complex image names with short names
* Add buildah version and distribution to info
* Disable Fedora 29 and CentOS7 VM testing
* podman runs disabled containers and privileged containers as spc_t
* Update the OWNERS file so bot assigns sane reviewers
* rework CI tests to test on VMs
* Put openshift dockerfiles in test/install
* Bump gitvalidation epoch
* Bump to v0.9.4-dev
* contrib/python/*/Makefile: Fallback to unversioned 'python'
* Makefile: Drop PYTHON
* Makefile: Call contrib/python's clean regardless of HAS_PYTHON3
- Changelog for v0.9.3.1 (2018-09-25)
* Update release notes for 0.9.3.1
* Disable problematic SELinux code causing runc issues
* Bump gitvalidation epoch
* Bump to v0.9.4-dev
- Changelog for v0.9.3 (2018-09-21)
* Update release notes for 0.9.3
* Add --mount option for `create` & `run` command
* Refactor Wait() to not require a timeout
* Updates from reviews
* Implement new subcommands
* Don't mount /dev/shm if the user told you --ipc=none
* rootless: error out if there are not enough UIDs/GIDs available
* Vendor in latest containers/buildah
* rootless: fix create with images not in the storage
* rootless: skip usage of filepath.Join
* create, rootless: join the userns of ns:PATH
* create, rootless: join the userns of container:CONTAINER
* spec: refactor ns modes to a common interface
* Don't output inodes created to run a container
* Add rpmbuild to the openshift fedora test image
* Add new field to libpod to indicate whether or not to use labelling
* Bind Mounts should be mounted read-only when in read-only mode
* test, rootless: enforce cgroupfs manager
* report when rootless
* add the gopath environment variable to the openshift dockerfile
* Vendor in latest opencontainers/runtime-tools
* Add python-varlink to the Fedora openshift image
* Add Dockerfile for openshift lint, gofmt, and validate testing
* Vendor in latest containers/buildah
* Don't crash if an image has no names
* Replace all usages of "install -D" with "install -d"
* Increase pidWaitTimeout to 1000ms
* Small updates to OCI spec generation
* Add new tests for ipc namespace sharing
* Hooks supports two directories, process default and override
* Bump gitvalidation epoch
* Bump to v0.9.3-dev
- Changelog for v0.9.2.1 (2018-09-17)
* Update release notes for 0.9.2.1
* Vendor in latest projectatomic/buildah
* Vndr latest containers/image
* Bump gitvalidation epoch
* Bump to v0.9.3-dev
- Changelog for v0.9.2 (2018-09-14)
* Update release notes for 0.9.2
* change search test to look for fedora and not fedora-minimal
* Don't mount /dev/* if user mounted /dev
* add registry information to varlink info
* libpod/image/pull: Return image-pulling errors from doPullImage
* Update gitvalidation epoch to avoid a bad commit
* Update README to reflect current development efforts
* rootless: do not raise an error if the entrypoint is specified
* Add Buildah Podman relationship to README.md
* Swap default mount propagation from private to rprivate
* Add a way to disable port reservation
* Add notes to check version on problem
* Do not set rlimits if we are rootless
* Up default Podman rlimits to avoid max open files
* Search registries with an empty query
* Vendor in latest containers/image
* Remove duplicate code between create.go and run.go
* Add --interval flag to podman wait
* Add `podman rm --volumes` flag
* Vendor in latest containers/storage to eliminage deadlock
* do not build with devicemapper
* run different cgroup tests depending on conditions
* dont make python when running make
* Explicitly set default CNI network name in libpod.conf
* Pass on securityOpts from podInfraContainer to container added to pod.
* Bump gitvalidation epoch
* Bump to v0.9.2-dev
- Changelog for v0.9.1.1 (2018-09-10)
* Update release notes for 0.9.1.1
* Replace existing iptables handler with firewall code
* Vendor CNI plugins firewall code
* Fix displaying size on size calculation error
* Bump gitvalidation epoch
* Bump to v0.9.2-dev
- Changelog for v0.9.1 (2018-09-07)
* Update RELEASE_NOTES for 0.9.1 release
* Fix pod sharing for utsmode
* Respect user-added mounts over default spec mounts
* Ensure we do not overlap mounts in the spec
* Change references to cri-o to point at new repository
* fix docs for podman build
* use layer cache when building images
* Add first pass for baseline pod tests
* Change shm test to be less flaky.
* Update WaitForTimeOut to output OutputString to help with debugging.
* Fixups for baseline test script
* Fix nameing of Namespaces to be more consistent
* Start pod infra container when pod is created
* vendor containerd/cgroups
* Fix up libpod.conf man pages and referencese to it.
* Print errors from individual pull attempts
* Added GOPATH/bin to PATH install.md
* We should fail Podman with ExitCode 125 by default
* Add CRI logs parsing to podman logs
* rmi remove all not error when no images are present
* rootless: check uid with Geteuid() instead of Getuid()
* rootless, tests: add tests for the pod command
* rootless, create: support --pod
* rootless, run: support --pod
* rootless: create compatible pod infra container
* rootless: be in an userns to initialize the runtime
* commandNotFoundHandler: use stderr and exit code 1
* Bump gitvalidation epoch
* Bump to v0.9.1-dev
* Update release notes for 0.8.5
- Changelog for v0.8.5 (2018-08-31)
* Add proper support for systemd inside of podman
* We are mistakenly seeing repos as registries.
* container: resolve rootfs symlinks
* Up time between checks for podman wait
* Turn on test debugging
* Add support for remote commands
* fixup A few language changes and subuid(5)
* Make the documentation of user namespace options in podman-run clearer
* pod create: restore help flag
* catch command-not-found errors
* don't print help message for usage errors
* Vendor in latest containers/storage and containers/image
* add conmon to copr spec
* docs: consistent format for example
* docs: consistent headings
* docs: make HISTORY consistent
* docs: fix headers
* varlink: fix --timeout usage
* run/create: reserve `-h` flag for hostname
* podman,varlink: inform user about --timeout 0
* rootless: show an error when stats is used
* rootless: show an error when pause/unpause are used
* rootless: unexport GetUserNSForPid
* rootless, exec: use the new function to join the userns
* rootless: fix top
* rootless: add new function to join existing namespace
* Vendor in latest projectatomic/buildah
* Set nproc in containers unless explicitly overridden
* Do not set max open files by default if we are rootless
* Set default max open files in spec
* Resolve /etc/resolv.conf before reading
* document `--rm` semantics
* allow specification of entrypoint in the form of a slice
* Test RPM build and install for regressions
* rootless, search: do not create a new userns
* rootless, login, logout: do not create a new userns
* rootless, kill: do not create a new userns
* rootless, stop: do not create a new userns
* Ensure return errors match API docs
* Fix manpage to note how multiple filters are combined
* Fix handling of multiple filters in podman ps
* Fix Mount Propagation
* docs: add containers-mounts.conf(5)
* docs: use "containers-" prefix for registries and storage
* rootless: fix --pid=host
* rootless: fix --ipc=host
* spec: bind mount /sys only when userNS are enabled
* rootless, tests: add test for --uts=host
* Dockerfile.Fedora: install slirp4netns
* rootless: don't use kill --all
* rootless: exec handle processes that create an user namespace
* rootless: fix exec
* Move whale-says test to end of baseline
* Bump gitvalidation epoch
* Bump to v0.8.5-dev
- Changelog for v0.8.4 (2018-08-24)
* Add release notes
* Regenerate easyjson after rebase
* Vendor easyjson code to fix build
* Swap from FFJSON to easyjson
* Make 'make clean' remove FFJSON generated code
* rootless: allow to override policy.json by the user
* add completion for --pod in run and create
* Fixed formatting and lowered verbosity of pod ps
* Do not try to enable AppArmor in rootless mode
* exposes tcp port only if no proto specified.
* rpm-spec: use skopeo-containers instead of containers-common
* Reveal information about container capabilities
* Vendor in latest projectatomic/buildah
* Refactor error checking in With*NSFromPod options
* Fixing network ns segfault
* Change pause container to infra container
* Support pause containers in varlink
* Added option to share kernel namespaces in libpod and podman
* Changed GetContainerStats to return ErrCtrStateInvalid
* Add GetPodStats to varlink
* rpm-spec: update distro-specific dependencies
* Add podman pod top
* Include pod stats and top in commands/completions
* Vendor changes to psgo
* Fix syntax description of --ulimit command
* Swap test image in exec test to fedora for useradd
* Add tests for exec --user
* Properly translate users into runc format for exec
* test: ad more tests for rootless containers
* rootless: fix --net host --privileged
* Fix a bug with hook ALWAYS matching with a process
* Fixed segfault in stats where container had netNS none or from container
* Enable pod stats with short ID and name
* Touch up cert-dir in man pages
* make dbuild fixed on ubuntu/debian
* vendor latest github.com/urfave/cli
* Add retry decorator for flakey tests
* Update error message from reviews
* Support Attach subcommand in pypodman
* Fix handling of devices
* tutorial: point to containers/skopeo
* point to containers/skopeo
* install.md: point to containers/libpod
* Bump gitvalidation epoch
* Bump to v0.8.4-dev
- Changelog for v0.8.3 (2018-08-17)
* Make failure to retrieve individual ctrs/pods nonfatal
* Mention that systemd is the default cgroup manager
* Add dependency for python3-psutil module
* Vendor in latest buildah and imagebuilder
* Don't fail on size.
* Fix handling of socket connection refusal.
* podman: fix --uts=host
* podman pod stats
* Added helper function for libpod pod api calls
* CreatePod args now PodCreate structure
* Added reason to PodContainerError
* Change batchcontainer to shared
* Add Pod API to varlink.
* Change pod varlink API.
* Moved getPodStatus to pod API to be used in varlink
* Vendor in latest containers/psgo code
* switch projectatomic to containers
* Revert "spec: bind mount /sys only for rootless containers"
* Suport format param for varlink Commit
* Fix segfault in top when -l and no args are passed
* Document STORAGE_DRIVER and STORAGE_OPTS environment variable
* podman.spec: recommend slirp4netns
* Do not 'make all' on Travis for Linux
* Fix build on non-Linux OSes
* Create pod CGroups when using the systemd cgroup driver
* Switch systemd default CGroup parent to machine.slice
* spec: bind mount /sys only for rootless containers
* build, rootless: specify IsolationOCIRootless
* vendor: update buildah version
* Fix handling of hostname in --net=host
* Updated pod_api to reflect function spec
* Add create and pull commands
* rootless: not require userns for help/version
* pkg/apparmor: use a pipe instead of a tmp file
* pkg/apparmor: move data under Linux/apparmor buildtags
* pkg/apparmor: move all linux-code into apparmor_linux*
* podman in rootless mode will only work with cgroupfs at this point.
* when searching, survive errors for multiple registries
* Remove unused function in runtime.go
* Fix papr tests by forcing cgroupfs in CI
* Bump gitvalidation epoch
* Bump to v0.8.3-dev
- Changelog for v0.8.2.1 (2018-08-11)
* Ensure pod inspect is locked and validity-checked
* Further fix tests
* Bump gitvalidation epoch
* Bump to v0.8.3-dev
* Fix python tests again
* Fix python tests to use cgroupfs
* Fix typo breaking tests
* Force cgroupfs for python tests
* Swap default CGroup manager to systemd
* Only use cgroupfs for containerized tests
* Temporarily force all tests to use cgroupfs driver
- Changelog for v0.8.2 (2018-08-10)
* We need to sort mounts so that one mount does not over mount another.
* search name should include registry
* Split pod.go into 3 files
* Make errors during refresh nonfatal
* Add batch check to container stats lock
* removeContainer: fix deadlock
* Add FFJSON to build container
* Don't require .gopathok for individual FFJSON targets
* Add FFJSON generation to makefile
* Re-add FFJSON for container and pod structs
* Fixed a bug setting dependencies on the wrong container
* Always connect to the stdout and stderr of stream
* apparmor: respect "unconfined" setting
* oci.go: syslog: fix debug formatting
* add podman pod inspect
* Fix ambiguity in adding localhost to podman save
* Fix CGroupFS cgroup manager cgroup creation for pods
* Update Conmon commit for testing
* Pass newly-added --log-level flag to Conmon
* Cleanup man pages
* Improve ps handling of container start/stop time
* rootless: fix user lookup if USER= is not set
* enabled copr epel builds again
* Handle yum and dnf
* Test regressions against the RPM spec file
* Pass DESTDIR down to python Makefile
* Add dpkg support for returning oci/conmon versions
* Have info print conmon/oci runtime information
* Better pull error for fully-qualified images
* Stub varlink pod methods.
* Remove inotify work around
* Rename varlink socket and interface
* Change tarball filename in copr prepare and match short-commit length
* Add Runc and Conmon versions to Podman Version
* update copr spec, lets get it building again
* Add missing dependencies to build system
* Port to MacOS
* Make one runtime for the varlink service
* Bump gitvalidation epoch
* Bump to v0.8.2-dev
- Changelog for v0.8.1 (2018-08-03)
* Vendor in latest github.com/projectatomic/buildah
* Update gitvalidation epoch
* Check for missing arguments in /proc/self/cmdline
* Added ps --pod option
* clarify pull error message
* rootless: do not set setgroups to deny when using newuidmap
* Man page fixes found by https://pagure.io/ManualPageScan
* Inline pullGoalNamesFromPossiblyUnqualifiedName into Runtime.pullGoalFromPossibly...
* Replace getPullRefName by Runtime.getPullRefPair
* Inline pullGoalNamesFromImageReference back into Runtime.pullGoalFromImageReference
* Introduce getSinglePullRefNameGoal
* Test Runtime.pullGoalFromPossiblyUnqualifiedName instead of pullGoalNameFrom...
* Test Runtime.pullGoalFromImageReference instead of pullGoalNamesFromImageReference
* Use REGISTRIES_CONFIG_PATH for all tests
* rootless: do not segfault if the parent already died
* RFC: Rename runtime.pullImage to runtime.pullImageFromHeuristicSource
* Introduce Runtime.pullImageFromReference, call it in Runtime.FromImageReference
* RFC: Remove unused transport name constants from libpod
* Replace Runtime.LoadFromArchive with Runtime.LoadFromArchiveReference
* Rename the "image" variable to "imageName"
* Fix the heuristic for docker-archive: sources in (podman pull)
* Split doPullImage from pullImage
* Remove the forceCompress parameter from getCopyOptions and DRO.GetSystemContext
* Remove the authFile parameter from getCopyOptions and DRO.GetSystemContext
* Remove the signaturePolicyPath parameter from getCopyOptions and DRO.GetSystemContext
* Add a *types.SystemContext parameter to getCopyOptions and DRO.GetSystemContext
* Move pullImage from Image to Runtime
* Do not re-parse the list of search registries just for an error message
* Eliminate duplicate determination whether to use search registries
* Eliminate the "DockerArchive means pull all refPairs" special case
* Introduce struct pullGoalNames
* Introduce struct pullGoal
* Use []pullRefPair instead of []*pullRefPair
* Use []pullRefName instead of []*pullRefName
* Introduce singlePullRefNameGoal
* Use an early return from refNamesFromPossiblyUnqualifiedName
* RFC: Rename Image.PushImage to Image.PushImageToHeuristicDestination
* Remove an unnecessary use of alltransports.ParseImageName
* RFC? Hard-code "format" string values instead of using libpod.* transport names
* Use PushImageToReference for (podman save)
* Call imageNameForSaveDestination while creating the references
* Exit early in the simple case in imageNameForSaveDestination
* Rename parameters of imageNameForSaveDestination
* Split imageNameForSaveDestination from saveCmd
* Split a single if statement into two.
* Move source handling before destination parsing
* Split Image.PushImageToReference from Image.PushImage
* Don't format to string and re-parse a DockerReference()
* Remove the :// end from DockerTransport
* Remove the TransportNames arrays
* Document the properties of DefaultTransport a bit better.
* Eliminate the "dest" variable.
* Use an early exit if a docker-archive: image has no repo tags
* Reorganize the tag loading in DockerArchive case
* Return early in refNamesFromImageReference instead of appending to pullNames
* Use srcRef.StringWithinTransport() instead of parsing imgName again
* Use a switch instead of if/if else/.../else
* Remove the error return value from getPullRefName
* Rename getPullListFromRef to refPairsFromImageReference
* Split refNamesFromImageReference from Runtime.getPullListFromRef
* Replace getPullRefPair with getPullRefName
* Include the rejected reference when parsing it fails in pullRefPairsFromRefNames
* Add --force to podman umount to force the unmounting of the rootfs
* Integration Test Improvements #3
* Ensure container and pod refresh picks up a State
* Fix build on non-linux platforms
* Rework state testing to allow State structs to be empty
* Add additional comments on accessing state in API
* Do not fetch pod and ctr State on retrieval in Bolt
* network: add support for rootless network with slirp4netns
* varlink ImageRemove should always return image ID
* Add documentations on how to setup /etc/subuid and /etc/subgid
* Integration Test Improvements #2
* avoid spewing fds do to restore of cached images
* Add load test for xz compressed images
* Speed up test results
* Show duration for each ginkgo test and test speed improvements
* vendor: update containers/storage
* Clean up pylint warnings and errors for podman
* podman rmi shouldn't delete named referenced images
* Bump gitvalidation epoch
* Bump to v0.8.1-dev
- Changelog for v0.7.4 (2018-07-27)
* Add pod pause/unpause
* Fix up docker compatibility messages
* Update vendored version of runc,buildah,containers/image
* Refactored method of getting pods
* Fix godoc comment in pkg/netns
* Fix handling of Linux network namespaces
* Update containernetworking/plugins to current master
* Cleanup descriptions and help information
* Skip seccomp-dependent tests on non-Linux
* Use the Linux version BoltState.getContainerFromDB on all platforms.
* Split parseNetNSBoltData from BoltState.getContainerFromDB
* Use testify/require in a few places to avoid panics in tests
* Skip unit tests which require storage when not running as root
* Don't pollute the build output with failures to build checkseccomp
* Remove cmd/podman/user.go
* double papr timeout for all ci tests
* vendor latest containers/psgo
* Vendor latest container/storage to fix overlay mountopt
* Add pod kill
* Added pod restart
* Added pod.Restart() functionality to libpod.
* Add a mutex to BoltDB state to prevent lock issues
* Clear variables used to store options after parsing for every volume
* Clean up pylint warnings and errors
* podman: allow to specify the IPC namespace to join
* podman: allow to specify the UTS namespace to join
* podman: allow to specify the PID namespace to join
* podman: allow to specify the userns to join
* network: support ns: prefix to join existing namespace
* spec: allow container:NAME network mode
* Update comments in BoltDB and In-Memory states
* Add an E2E test to verify basic namespace functionality
* Add libpod namespace to config
* Add missing runtime.go lines to set namespace
* Address first round of review comments
* Set namespace for new pods/containers based on runtime
* Add --namespace flag to Podman
* Update documentation for the State interface
* Ensure pods are part of the set namespace when added
* Enforce namespace checks on container add
* Add tests for state namespacing
* Add namespaces to in memory state
* Untested implementation of namespaced BoltDB access
* Add constraint that dependencies must be in the same ns
* Add namespaces and initial constraints to database
* Add container and pod namespaces to configs
* Fix varlink API usage of psgo
* Update issue template to point build bugs at buildah
* We don't currently support --mac-address
* Vendor in latest containers/psgo code
* Update container Mounted() and Mountpoint() functions
* [WIP] Refactor and simplify python builds
* AppArmor: runtime check if it's enabled on the host
* Add format descriptors infor to podman top
* Fix error handling in pod start/stop.
* docs/podman-top: fix typo and whitespace
* Use the result of reference.Parse when checking for digests.
* Make refNamesFromPossiblyUnqualifiedName independent from Image
* Make Image.HasShaInInputName to an independent local function
* Split createNamesToPull into ref{Names,Pairs}FromPossiblyUnqualifiedName
* Rename local variables in Runtime.pullRefPairsFromRefNames
* Split Runtime.pullRefPairsFromRefNames from Image.createNamesToPull
* Rename nameToPull to pullRefName
* Rename pullStruct to pullRefPair
* Replace optional nameToPull.shaPullName with mandatory dstName
* Introduce nameToPull, move shaPullName in there
* Split normalizeTag from Image.TagImage
* Remove Image.isShortName
* Inline getTags into its only user
* Add unit tests for imageParts
* Add OnBuild and usernamespace test to baseline
* Bump gitvalidation epoch
* Bump to v0.7.4-dev