Daniel J Walsh
17105028e5
vendor in latest containers/(storage,common,image)
...
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-04-21 15:18:07 -04:00
OpenShift Merge Robot
cb09c26c65
Merge pull request #13505 from rst0git/checkpoint-image-1
...
Add support for checkpoint image
2022-04-21 11:58:56 -04:00
OpenShift Merge Robot
2576e16660
Merge pull request #13949 from containers/dependabot/go_modules/github.com/fsnotify/fsnotify-1.5.2
...
Bump github.com/fsnotify/fsnotify from 1.5.1 to 1.5.2
2022-04-21 11:19:15 -04:00
dependabot[bot]
fa239f2eca
Bump github.com/fsnotify/fsnotify from 1.5.1 to 1.5.2
...
Bumps [github.com/fsnotify/fsnotify](https://github.com/fsnotify/fsnotify ) from 1.5.1 to 1.5.2.
- [Release notes](https://github.com/fsnotify/fsnotify/releases )
- [Changelog](https://github.com/fsnotify/fsnotify/blob/main/CHANGELOG.md )
- [Commits](https://github.com/fsnotify/fsnotify/compare/v1.5.1...v1.5.2 )
---
updated-dependencies:
- dependency-name: github.com/fsnotify/fsnotify
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-04-21 12:10:08 +00:00
Valentin Rothberg
ff2e6291a5
vendor c/common
...
Update the recent events-log changes to fix the build error.
[NO NEW TESTS NEEDED] since there's no functional change.
Signed-off-by: Valentin Rothberg <vrothberg@redhat.com>
2022-04-21 13:43:58 +02:00
Radostin Stoyanov
fca3397dc9
Update github.com/checkpoint-restore/checkpointctl
...
The changes in this commit have been generated with the following
commands:
go get github.com/checkpoint-restore/checkpointctl
make vendor
Signed-off-by: Radostin Stoyanov <radostin@redhat.com>
2022-04-20 18:52:41 +01:00
Daniel J Walsh
d68e9faee2
Update vendor of storage,common
...
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-04-14 14:35:46 -04:00
Daniel J Walsh
2f4874eb07
Update containers/common to main branch
...
Want to add support for Machine.Volumes
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-04-13 17:05:34 -04:00
Evan Lezar
20384b0379
build(deps) bump CDI dependency from 0.3.0 to 0.3.2
...
bump github.com/container-orchestrated-devices/container-device-interface from 0.3.0 to 0.3.2
Signed-off-by: Evan Lezar <elezar@nvidia.com>
2022-04-13 13:06:33 +02:00
OpenShift Merge Robot
8586b4856f
Merge pull request #13841 from lsm5/main-cve-2022-27191
...
Bump golang.org/x/crypto to 7b82a4e
2022-04-12 15:39:43 -04:00
Lokesh Mandvekar
5e680d54e9
Bump golang.org/x/crypto to 7b82a4e
...
Resolves: GHSA-8c26-wmh5-6g9v - CVE-2022-27191
Podman doesn't seem to be directly affected as the logic in question
is not called.
golang.org/x/crypto@1baeb1ce contains the actual CVE fix. Using the
latest upstream commit to also include support for SHA-2.
Signed-off-by: Lokesh Mandvekar <lsm5@fedoraproject.org>
2022-04-12 10:24:32 -04:00
Daniel J Walsh
857b36ca87
Update vendor of storage,common,image
...
Preparing for release candidate.
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-04-12 06:40:02 -04:00
Daniel J Walsh
2508913a0f
If newuidmap or newgidmap fail, then check their permissions
...
Often distributions to not have newuidmap and netgidmap configured
to be setuid. If Podman fails to setup the user namespace, check to
see if these files doe not have the proper protection and tell the user.
[NO NEW TESTS NEEDED]
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-04-08 10:52:08 -04:00
Daniel J Walsh
dc17195bd9
Vendor in new opencontainers/selinux
...
Also update vendor of containers/common,buildah,storage,image
Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=2069586
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-04-08 09:02:52 -04:00
dependabot[bot]
bd4b9c3d57
build(deps): bump github.com/BurntSushi/toml from 1.0.0 to 1.1.0
...
Bumps [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml ) from 1.0.0 to 1.1.0.
- [Release notes](https://github.com/BurntSushi/toml/releases )
- [Commits](https://github.com/BurntSushi/toml/compare/v1.0.0...v1.1.0 )
---
updated-dependencies:
- dependency-name: github.com/BurntSushi/toml
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-04-05 12:08:35 +00:00
Valentin Rothberg
21502987b2
replace hpcloud/tail with nxadm/tail
...
The hpcloud is not maintained anymore. nxadm is already part of the
dependency chain, so it won't add work for downstream packages.
While testing upcoming changes to the events-file backend, I noticed
that nxadm is shipping required fixes.
[NO NEW TESTS NEEDED]
Signed-off-by: Valentin Rothberg <vrothberg@redhat.com>
2022-03-29 13:35:37 +02:00
OpenShift Merge Robot
aeae598049
Merge pull request #13592 from containers/dependabot/go_modules/google.golang.org/protobuf-1.28.0
...
build(deps): bump google.golang.org/protobuf from 1.27.1 to 1.28.0
2022-03-28 15:09:51 +02:00
OpenShift Merge Robot
0ebf0bc560
Merge pull request #13611 from rvandernoort/vendor_filters
...
Vendor c/common for filters
2022-03-28 00:49:28 +02:00
Daniel J Walsh
28504f5dd4
Merge pull request #13639 from containers/dependabot/go_modules/github.com/docker/docker-20.10.14incompatible
...
build(deps): bump github.com/docker/docker from 20.10.13+incompatible to 20.10.14+incompatible
2022-03-27 07:10:09 -04:00
rvandernoort
446c35efdf
Vendor common
...
Added patch provided by rhatdan to add support for shareable
[NO NEW TESTS NEEDED]
Signed-off-by: rvandernoort <s.r.vandernoort@student.tudelft.nl>
2022-03-27 13:01:52 +02:00
dependabot[bot]
76614c4613
build(deps): bump google.golang.org/protobuf from 1.27.1 to 1.28.0
...
Bumps [google.golang.org/protobuf](https://github.com/protocolbuffers/protobuf-go ) from 1.27.1 to 1.28.0.
- [Release notes](https://github.com/protocolbuffers/protobuf-go/releases )
- [Changelog](https://github.com/protocolbuffers/protobuf-go/blob/master/release.bash )
- [Commits](https://github.com/protocolbuffers/protobuf-go/compare/v1.27.1...v1.28.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-25 20:00:23 +00:00
dependabot[bot]
25345c0870
build(deps): bump github.com/rootless-containers/rootlesskit
...
Bumps [github.com/rootless-containers/rootlesskit](https://github.com/rootless-containers/rootlesskit ) from 0.14.6 to 1.0.0.
- [Release notes](https://github.com/rootless-containers/rootlesskit/releases )
- [Commits](https://github.com/rootless-containers/rootlesskit/compare/v0.14.6...v1.0.0 )
---
updated-dependencies:
- dependency-name: github.com/rootless-containers/rootlesskit
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-25 17:49:08 +00:00
Lokesh Mandvekar
61b2d8844f
Bump github.com/prometheus/client_golang to v1.11.1
...
Resolves: CVE-2022-21698
Signed-off-by: Lokesh Mandvekar <lsm5@fedoraproject.org>
2022-03-24 11:15:03 -04:00
dependabot[bot]
eb5b08f622
build(deps): bump github.com/docker/docker
...
Bumps [github.com/docker/docker](https://github.com/docker/docker ) from 20.10.13+incompatible to 20.10.14+incompatible.
- [Release notes](https://github.com/docker/docker/releases )
- [Changelog](https://github.com/moby/moby/blob/master/CHANGELOG.md )
- [Commits](https://github.com/docker/docker/compare/v20.10.13...v20.10.14 )
---
updated-dependencies:
- dependency-name: github.com/docker/docker
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-24 12:13:08 +00:00
dependabot[bot]
90f37e1a68
build(deps): bump github.com/containers/ocicrypt from 1.1.2 to 1.1.3
...
Bumps [github.com/containers/ocicrypt](https://github.com/containers/ocicrypt ) from 1.1.2 to 1.1.3.
- [Release notes](https://github.com/containers/ocicrypt/releases )
- [Commits](https://github.com/containers/ocicrypt/compare/v1.1.2...v1.1.3 )
---
updated-dependencies:
- dependency-name: github.com/containers/ocicrypt
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-22 11:11:50 +00:00
Dan Čermák
63bf3991ef
vendor containers/storage with https://github.com/containers/storage/pull/1165
...
Signed-off-by: Dan Čermák <dcermak@suse.com>
2022-03-21 13:21:25 +01:00
Valentin Rothberg
57cdc21b00
vendor c/common@0ededd18a1
...
Update the login tests to reflect the latest changes to allow http{s}
prefixes (again) to address bugzilla.redhat.com/show_bug.cgi?id=2062072.
Signed-off-by: Valentin Rothberg <vrothberg@redhat.com>
2022-03-18 15:18:30 +01:00
dependabot[bot]
c732adf2d0
build(deps): bump github.com/stretchr/testify from 1.7.0 to 1.7.1
...
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify ) from 1.7.0 to 1.7.1.
- [Release notes](https://github.com/stretchr/testify/releases )
- [Commits](https://github.com/stretchr/testify/compare/v1.7.0...v1.7.1 )
---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-16 12:08:28 +00:00
OpenShift Merge Robot
bbae81a291
Merge pull request #13489 from Luap99/k8s
...
move k8s deps into podman
2022-03-16 04:27:41 -04:00
OpenShift Merge Robot
4e2334c149
Merge pull request #13512 from containers/dependabot/go_modules/github.com/docker/docker-20.10.13incompatible
...
Bump github.com/docker/docker from 20.10.12+incompatible to 20.10.13+incompatible
2022-03-15 12:19:57 -04:00
Paul Holzinger
a0ad1f2ad4
remove unneeded k8s code
...
There is a lot of unneeded code, k8s is the by far the biggest
dependency in podman. We should remove as much as possible so that we
only have the stuff left that we use.
This is just a quick skim over the code which removes a lot of the
generated code and many packages that are now unused.
I know that this will be impossible to properly review. I will try to
make smaller changes in follow up work.
Right now this reduces about 8 MB in binary size!!!
[NO NEW TESTS NEEDED] Hopefully existing tests will catch any problems.
Signed-off-by: Paul Holzinger <pholzing@redhat.com>
2022-03-15 14:48:08 +01:00
Paul Holzinger
918fc88a98
move k8s deps into podman
...
We only need a small part of the k8s dependencies but they are the
biggest dependencies in podman by far. Moving them into podman allows us
to remove the unnecessary parts.
Signed-off-by: Paul Holzinger <pholzing@redhat.com>
2022-03-15 14:46:29 +01:00
dependabot[bot]
3d82d17f8c
Bump github.com/spf13/cobra from 1.3.0 to 1.4.0
...
Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra ) from 1.3.0 to 1.4.0.
- [Release notes](https://github.com/spf13/cobra/releases )
- [Changelog](https://github.com/spf13/cobra/blob/master/CHANGELOG.md )
- [Commits](https://github.com/spf13/cobra/compare/v1.3.0...v1.4.0 )
---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-15 12:09:17 +00:00
dependabot[bot]
439323cd2e
Bump github.com/docker/docker
...
Bumps [github.com/docker/docker](https://github.com/docker/docker ) from 20.10.12+incompatible to 20.10.13+incompatible.
- [Release notes](https://github.com/docker/docker/releases )
- [Changelog](https://github.com/moby/moby/blob/master/CHANGELOG.md )
- [Commits](https://github.com/docker/docker/compare/v20.10.12...v20.10.13 )
---
updated-dependencies:
- dependency-name: github.com/docker/docker
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-15 12:09:10 +00:00
Aditya R
780d4b2d65
vendor: bump buildah, c/image and c/storage
...
Bumps
c/buildah to -> `v1.24.3-0.20220310160415-5ec70bf01ea5`
c/storage to -> `v1.38.3-0.20220308085612-93ce26691863`
c/image to -> `v5.20.1-0.20220310094651-0d8056ee346f`
Signed-off-by: Aditya R <arajan@redhat.com>
2022-03-14 12:26:12 +05:30
OpenShift Merge Robot
8934c5cfc3
Merge pull request #13483 from containers/dependabot/go_modules/github.com/spf13/cobra-1.4.0
...
Bump github.com/spf13/cobra from 1.3.0 to 1.4.0
2022-03-11 12:18:38 -05:00
dependabot[bot]
4ab24a0681
Bump github.com/docker/docker
...
Bumps [github.com/docker/docker](https://github.com/docker/docker ) from 20.10.12+incompatible to 20.10.13+incompatible.
- [Release notes](https://github.com/docker/docker/releases )
- [Changelog](https://github.com/moby/moby/blob/master/CHANGELOG.md )
- [Commits](https://github.com/docker/docker/compare/v20.10.12...v20.10.13 )
---
updated-dependencies:
- dependency-name: github.com/docker/docker
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-11 12:07:45 +00:00
dependabot[bot]
9314774614
Bump github.com/spf13/cobra from 1.3.0 to 1.4.0
...
Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra ) from 1.3.0 to 1.4.0.
- [Release notes](https://github.com/spf13/cobra/releases )
- [Changelog](https://github.com/spf13/cobra/blob/master/CHANGELOG.md )
- [Commits](https://github.com/spf13/cobra/compare/v1.3.0...v1.4.0 )
---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-11 12:07:32 +00:00
OpenShift Merge Robot
db08bc096e
Merge pull request #13477 from containers/dependabot/go_modules/github.com/containernetworking/plugins-1.1.1
...
Bump github.com/containernetworking/plugins from 1.1.0 to 1.1.1
2022-03-10 09:04:06 -05:00
dependabot[bot]
e6b64703fe
Bump github.com/containernetworking/plugins from 1.1.0 to 1.1.1
...
Bumps [github.com/containernetworking/plugins](https://github.com/containernetworking/plugins ) from 1.1.0 to 1.1.1.
- [Release notes](https://github.com/containernetworking/plugins/releases )
- [Commits](https://github.com/containernetworking/plugins/compare/v1.1.0...v1.1.1 )
---
updated-dependencies:
- dependency-name: github.com/containernetworking/plugins
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-10 12:10:53 +00:00
dependabot[bot]
a5353207c7
Bump github.com/vbauerster/mpb/v7 from 7.3.2 to 7.4.1
...
Bumps [github.com/vbauerster/mpb/v7](https://github.com/vbauerster/mpb ) from 7.3.2 to 7.4.1.
- [Release notes](https://github.com/vbauerster/mpb/releases )
- [Commits](https://github.com/vbauerster/mpb/compare/v7.3.2...v7.4.1 )
---
updated-dependencies:
- dependency-name: github.com/vbauerster/mpb/v7
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-10 12:10:45 +00:00
Paul Holzinger
30bf065c3f
Use github.com/vbauerster/mpb/v7 in pkg/machine
...
We already use v7 in c/image so podman should use the same version to
prevent duplication.
This saves 170 KB binary size.
[NO NEW TESTS NEEDED]
Signed-off-by: Paul Holzinger <pholzing@redhat.com>
2022-03-09 20:02:10 +01:00
dependabot[bot]
e56150264c
Bump github.com/docker/distribution
...
Bumps [github.com/docker/distribution](https://github.com/docker/distribution ) from 2.8.0+incompatible to 2.8.1+incompatible.
- [Release notes](https://github.com/docker/distribution/releases )
- [Commits](https://github.com/docker/distribution/compare/v2.8.0...v2.8.1 )
---
updated-dependencies:
- dependency-name: github.com/docker/distribution
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-09 12:07:43 +00:00
Aditya R
410d286608
vendor: bump c/image to main/9a9cd9
...
Bump c/image to upstream main/9a9cd9 so podman could use new race-free
code.
Signed-off-by: Aditya R <arajan@redhat.com>
2022-03-02 18:34:24 +05:30
Aditya R
08036e9af7
vendor: bump c/storage to main/d06b0f
...
Bump c/storage to main/d06b0f so we podman could use new `race-free`
`AddNames` and `RemoveNames` api
Signed-off-by: Aditya R <arajan@redhat.com>
2022-03-02 18:15:15 +05:30
Nick Guenther
572e6464f6
Use storage that better supports rootless overlayfs
...
overlayfs -- the kernel's version, not fuse-overlayfs -- recently learned
(as of linux 5.16.0, I believe) how to support rootless users. Previously,
rootless users had to use these storage.conf(5) settings:
* storage.driver=vfs (aka STORAGE_DRIVER=vfs), or
* storage.driver=overlay (aka STORAGE_DRIVER=overlay),
storage.options.overlay.mount_program=/usr/bin/fuse-overlayfs
(aka STORAGE_OPTS=/usr/bin/fuse-overlayfs)
Now that a third backend is available, setting only:
* storage.driver=overlay (aka STORAGE_DRIVER=overlay)
https://github.com/containers/podman/issues/13123 reported EXDEV errors
during the normal operation of their container. Tracing it out, the
problem turned out to be that their container was being mounted without
'userxattr'; I don't fully understand why, but mount(8) mentions this is
needed for rootless users:
> userxattr
>
> Use the "user.overlay." xattr namespace instead of "trusted.overlay.".
> This is useful for unprivileged mounting of overlayfs.
https://github.com/containers/storage/pull/1156 found and fixed the issue
in podman, and this just pulls in that via
go get github.com/containers/storage@ebc90ab
go mod vendor
make vendor
Closes https://github.com/containers/podman/issues/13123
Signed-off-by: Nick Guenther <nick.guenther@polymtl.ca>
2022-03-01 12:09:42 -05:00
Ashley Cui
569319d397
Vendor in containers/common@main
...
Signed-off-by: Ashley Cui <acui@redhat.com>
2022-02-28 16:23:26 -05:00
dependabot[bot]
f3e883fb4c
Bump github.com/containernetworking/plugins from 1.0.1 to 1.1.0
...
Bumps [github.com/containernetworking/plugins](https://github.com/containernetworking/plugins ) from 1.0.1 to 1.1.0.
- [Release notes](https://github.com/containernetworking/plugins/releases )
- [Commits](https://github.com/containernetworking/plugins/compare/v1.0.1...v1.1.0 )
---
updated-dependencies:
- dependency-name: github.com/containernetworking/plugins
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-02-24 12:13:02 +00:00
Evan Lezar
46b7c5bc63
Bump CDI go dependency to v0.3.0
...
This updates the CDI dependency to the v0.3.0 tagged version instead of
relying on a pseudo version. This also addresses the fact that cgroups
are not set correctly for devices using the previous dependency.
Signed-off-by: Evan Lezar <elezar@nvidia.com>
2022-02-23 08:02:47 +02:00
Daniel J Walsh
80c5962dba
Add containers-common spec and command to podman
...
Since containers-common package is tied to specific versions
of Podman, add tools to build the package into the contrib directory
This should help other distributions to figure out which commont
package to ship.
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
2022-02-22 14:38:57 -05:00