{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":655736407,"defaultBranch":"scarthgap","name":"meta-virtualization","ownerLogin":"distro-core-curated-mirrors","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2023-06-19T13:47:52.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/142102949?v=4","public":true,"private":false,"isOrgOwned":true},"refInfo":{"name":"","listCacheKey":"v0:1717382611.0","currentOid":""},"activityList":{"items":[{"before":"8138d9cc7e0c31171230110db0cfa881c46a821b","after":"0aa6e9fc7b9fe4a4b0da4bbd59500837445032e8","ref":"refs/heads/master","pushedAt":"2024-09-27T01:01:56.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"brainhoard-github","name":"Brainhoard Bot","path":"/brainhoard-github","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/142536845?s=80&v=4"},"commit":{"message":"u-boot-xlnx-scr.bbappend: Fix xen boot script comparison\n\nSome versions of python/bitbake appear to allow 'true' and 'false',\nbut this is incorrect, True and False are the correct boolean variables.\n\nFixes:\n ERROR: ExpansionError during parsing .../meta-xilinx/meta-xilinx-core/recipes-bsp/u-boot/u-boot-xlnx-scr.bb\n\nSigned-off-by: Mark Hatle \nSigned-off-by: Mark Hatle \nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"u-boot-xlnx-scr.bbappend: Fix xen boot script comparison"}},{"before":"66ee8d268db25a9f2848bda6858c284c745f549f","after":"9d42883b978cd896051f5553a35c06a3fcd277a2","ref":"refs/heads/scarthgap","pushedAt":"2024-09-27T01:01:56.000Z","pushType":"push","commitsCount":3,"pusher":{"login":"brainhoard-github","name":"Brainhoard Bot","path":"/brainhoard-github","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/142536845?s=80&v=4"},"commit":{"message":"python3-colorama: drop recipe\n\nWe no longer need our own pinned version of this recipe, and\nit causes us issues with meta-python.\n\nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"python3-colorama: drop recipe"}},{"before":"8f3b23d6b26e2a7b02c23461eac720082cb00178","after":"da47366af1df5526296bac2cb66f81808e92d829","ref":"refs/heads/master-next","pushedAt":"2024-09-27T01:01:56.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"brainhoard-github","name":"Brainhoard Bot","path":"/brainhoard-github","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/142536845?s=80&v=4"},"commit":{"message":"crun: update to 1.17\n\nBumping crun to version 1.17-5-g4b75c7c, which comprises the following commits:\n\n 4ea62f2 Disable criu support on riscv64\n 969fd2e Packit: Create missing path components in files_to_sync\n 000fa0d NEWS: tag 1.17\n e3b5a26 Packit: Reuse Fedora targets wherever possible\n 556b808 Packit: separate out ELN build jobs\n a5320ae Add debug logs for container creation\n 228ad7c container: remove manual dup operation\n 13ea475 libocispec: sync from upstream\n 3dbf152 error: do not write error twice to stderr\n 5e35dfe libcrun: vanity, color debug messages\n 2c4db99 linux: ignore EPIPE for hooks\n 7fcede6 RPM/Packit: Fix wasm conditionals, cleanup rpm spec, update packit config\n 0f556b7 build: force install symlinks\n 23d5e49 Fix warning around unused result on chdir(\"/\")\n 6bf9e7c Report executable not found errors after tty has been setup\n a295e70 Only log to stderr if `--log` is not provided\n fb593fc fix getpwuid_r error handling\n d29fdae tests: bump containerd version\n f36c216 tests: bump ubuntu version\n d065a5a Revert \"Add `--log-stderr` option\"\n dc31069 src/libcrun: fix handling of device paths with trailing slashes\n ab64a5c linux: fix recvfrom error handling\n a32d433 Fix `additional_gids_size` on `process_user_dup`\n b98e0dd Add `--log-stderr` option\n 544fe3f Allow passing an ID to journald log driver\n 6d92b28 Log only after crun context has been setup\n 29259e4 Add log options documentation\n f72483a Fix double-free in crun exec\n e4b4a21 src/libcrun: fix error handling in libcrun_kill_linux\n 83c1355 src/libcrun: improve error handling for the mnt namespace restoration\n 6fb1f08 src/libcrun: added custom error message for ESRCH case\n 9f06d3c Add autoPatchelfHook to static build\n 19b9893 Add `--log-level` option\n fd7f50a tests: fix wasmedge build\n 0380369 Remove libcrun_setup_terminal_ptmx\n 1edf6d0 src/libcrun: ensure DefaultDependencies respects CRI-O annotation\n 42b0b99 configure.ac: fix condition for wasm detection\n afa829c NEWS: tag 1.16.1\n c6ecb3b linux: attempt to make rootfs private too\n 109f1e9 container: fix comment\n f23aaa1 linux: fix error message\n 72b4eea Inherit user from original process on exec\n cf1ec33 cgroup-utils: check for open error\n a958fcd cgroup-systemd: fix comment\n 7112df4 cgroup: remove redundant check\n 3bcd26a Use write_file_at_with_flags in write_file_with_flags\n 2dc1598 NEWS: tag 1.16\n bfa0640 Add more O_PATH flags\n 0613ec5 cgroup-systemd: check for sd_bus_message_append error\n fcfac99 Fix sd-bus error handling for cpu quota and period props update.\n 6682432 linux: make_parent_mount_private uses fds\n 5943335 container: use relative path for rootfs if possible\n 27d7dd3 README: update podman demo\n f916acf Enable systemd in s390x builds\n e6eab76 wasmedge: access container environment variables for WasmEdge configuration\n\nBumping libocispec to latest, which comprises the following commits:\n\n 4b8feed common: make sizeof the last argument for calloc\n 2ba727a sources: silence compiler warning\n 3ec73ba generate: generate clone operations for deep-copy\n d371222 ocispec: fix style\n 2236d50 github: test with the embedded yajl library\n bed19ad configure.ac: --enable-embedded-yajl skips check for yajl\n b633f89 Makefile.am: distribute the src/yajl symlink\n\nBumping image-spec to version v1.1.0-35-gda92727, which comprises the following commits:\n\n 716f83b Implementations should support zstd\n 7327da4 Add deprecation notices to nondistributable layers\n 1d3daab Update linter and Go releases\n 16101e2 Remove misleading \"must\" in `ref.name` requirements\n 65dea7a Remove IRC link\n a977bd3 Remove validation warnings to stdout\n 4bbdd7f Switch jsonschema validation libraries\n 89fee07 MAINTAINERS: move jonboulle to EMERITUS\n\nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"crun: update to 1.17"}},{"before":"27c4dda1a5177ef5e21af2e7237abb3b1b140fa6","after":"8f3b23d6b26e2a7b02c23461eac720082cb00178","ref":"refs/heads/master-next","pushedAt":"2024-09-25T01:03:13.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"brainhoard-github","name":"Brainhoard Bot","path":"/brainhoard-github","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/142536845?s=80&v=4"},"commit":{"message":"kernel: simplify the kernel-cfg-fragments-native dependency\n\nThe routine calculating the -native depdenency for configuration\nfragments had issues with variations in kernel PV definitions.\n\nTo avoid making the routine even more complex, this commit switches\nto using the same variables that include the correct virtualization\ninclude file. This way, if bitbake has located and included the\nfile that adds the -native dependency, we know that the variables\nwill find the correct recipe.\n\nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"kernel: simplify the kernel-cfg-fragments-native dependency"}},{"before":"25a52a58a7e6e682e5c86707d77420f06535d859","after":"27c4dda1a5177ef5e21af2e7237abb3b1b140fa6","ref":"refs/heads/master-next","pushedAt":"2024-09-12T16:10:53.000Z","pushType":"push","commitsCount":6,"pusher":{"login":"brainhoard-github","name":"Brainhoard Bot","path":"/brainhoard-github","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/142536845?s=80&v=4"},"commit":{"message":"meta-virt-container.inc: Install shadow in read-only rootfs\n\nPodman requires /etc/sub[g]uid for rootless mode but the file is being deleted\nif shadow is in ROOTFS_RO_UNNEEDED (even if different package like the\npodman itself provides it) and rpm backend is used.\n\nSigned-off-by: Pavel Zhukov \nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"meta-virt-container.inc: Install shadow in read-only rootfs"}},{"before":"54b806b1985f3989722ee308e1073530fe3328c1","after":"66ee8d268db25a9f2848bda6858c284c745f549f","ref":"refs/heads/scarthgap","pushedAt":"2024-09-12T16:10:53.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"brainhoard-github","name":"Brainhoard Bot","path":"/brainhoard-github","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/142536845?s=80&v=4"},"commit":{"message":"u-boot-xlnx-scr.bbappend: Enable xen boot script using variable\n\nXen related boot script offset was override from\nmeta-virtualization for non xen builds.\n\nERROR: RD image overlaps OS image (OS=0xe00000..0x2610000)\n\nAdd to include xen boot script only if ENABLE_XEN_UBOOT_SCR variable\nset from the configuration file and xen enabled in DISTRO_FEATURES to\navoid override.\n\nSigned-off-by: John Vicky Vykuntapu \nSigned-off-by: Mark Hatle \nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"u-boot-xlnx-scr.bbappend: Enable xen boot script using variable"}},{"before":"30e5cb1ae837019abb23dbbbc82fb6813df1c805","after":"8138d9cc7e0c31171230110db0cfa881c46a821b","ref":"refs/heads/master","pushedAt":"2024-09-12T16:10:53.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"brainhoard-github","name":"Brainhoard Bot","path":"/brainhoard-github","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/142536845?s=80&v=4"},"commit":{"message":"libvirt: fix do_rootfs error\n\nWhen do_rootfs, the following error occured:\nWARNING: do_rootfs: Group kvm has been defined with id (47) but sysusers.d expects gid (36)\nWARNING: do_rootfs: Group qemu has been defined with id (975) but sysusers.d expects gid (107)\nERROR: do_rootfs: Error executing a python function in exec_func_python() autogenerated:\n\nCreate an empty file libvirt-qemu.conf to solve the issue of gid mismatch\n\nSigned-off-by: Wang Mingyu \nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"libvirt: fix do_rootfs error"}},{"before":"163731e0eeb5a0a2725b80ec368e19856a53bb48","after":"30e5cb1ae837019abb23dbbbc82fb6813df1c805","ref":"refs/heads/master","pushedAt":"2024-09-11T02:20:32.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"brainhoard-github","name":"Brainhoard Bot","path":"/brainhoard-github","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/142536845?s=80&v=4"},"commit":{"message":"python3-colorama: drop recipe\n\nWe no longer need our own pinned version of this recipe, and\nit causes us issues with meta-python.\n\nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"python3-colorama: drop recipe"}},{"before":"a940a0e873f9163d4585555b3f3d38e99400d237","after":"163731e0eeb5a0a2725b80ec368e19856a53bb48","ref":"refs/heads/master","pushedAt":"2024-09-07T02:18:01.000Z","pushType":"push","commitsCount":12,"pusher":{"login":"brainhoard-github","name":"Brainhoard Bot","path":"/brainhoard-github","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/142536845?s=80&v=4"},"commit":{"message":"libvirt: fix build on qemuarm\n\nOn qemuarm, time_t is 'long long int', so using '%lu' to print\nit out will give us the following error:\n\n error: format '%lu' expects argument of type 'long unsigned int',\n but argument 10 has type 'time_t' {aka 'long long int'} [-Werror=format=]\n\nSo use %llu to print it out.\n\nSigned-off-by: Chen Qi \nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"libvirt: fix build on qemuarm"}},{"before":"ef76369f844f8b5afea416372172824987ad4fec","after":"e0cd09e3b8367e2745a27db2e7ff1f8452c8cf41","ref":"refs/heads/kirkstone","pushedAt":"2024-09-07T02:18:01.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"brainhoard-github","name":"Brainhoard Bot","path":"/brainhoard-github","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/142536845?s=80&v=4"},"commit":{"message":"kubernetes: Security fix for CVE-2023-3676 and CVE-2023-3955\n\nUpstream-commit:\nhttps://github.com/kubernetes/kubernetes/commit/7da6d72c05dffb3b87e62e2bc8c3228ea12ba1b9\n& https://github.com/kubernetes/kubernetes/commit/a53faf5e17ed0b0771a605c6401ba4cbf297b59a\n\nReference:\nhttps://github.com/kubernetes/kubernetes/issues/119339\n\nSigned-off-by: Vijay Anusuri \nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"kubernetes: Security fix for CVE-2023-3676 and CVE-2023-3955"}},{"before":"e8b6a87d5b52693dbecbd70214b4fa4ef315b93e","after":"25a52a58a7e6e682e5c86707d77420f06535d859","ref":"refs/heads/master-next","pushedAt":"2024-09-03T02:18:40.000Z","pushType":"push","commitsCount":5,"pusher":{"login":"brainhoard-github","name":"Brainhoard Bot","path":"/brainhoard-github","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/142536845?s=80&v=4"},"commit":{"message":"libvirt: dont set polkit permissions manually\n\nAccording to this commit polkit rules should go to ${datadir} instead of ${sysconfdir}:\nhttps://git.openembedded.org/meta-openembedded/commit/?h=master-next&id=d5e90541f8e35916abc930b2da6de037b23d51a1\nTheres no need to adjust the permissions for ${datadir} anymore:\nhttps://git.openembedded.org/meta-openembedded/commit/?h=master-next&id=6da0fd21c900e32a0693a6b27d38182f19c8c76c\n\nThis commit fixes build after:\nhttps://git.yoctoproject.org/poky/commit/?id=ef9a927a3af1dd817fe298bbe45470b738d9ce2f\n\nSigned-off-by: Markus Volk \nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"libvirt: dont set polkit permissions manually"}},{"before":"3865be0a79b963e0123acb5ac8e756466561e18c","after":"a940a0e873f9163d4585555b3f3d38e99400d237","ref":"refs/heads/master","pushedAt":"2024-08-21T02:14:15.000Z","pushType":"push","commitsCount":4,"pusher":{"login":"brainhoard-github","name":"Brainhoard Bot","path":"/brainhoard-github","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/142536845?s=80&v=4"},"commit":{"message":"kernel/cfg: allow multiple kernel configuration options\n\nWhen more than one kernel is supported in oe-core, we may have\nsituations where the options from an older (or newer) kernel\nare not appropriate for the other version (i.e. options have\nbeen added, removed or renamed).\n\nTo support this we check the preferred version of the kernel\nand depend on a specific yocto-cfg recipe.\n\nThis is similar to how the virtualization .inc files are\nchosen.\n\nIf this technique proves to be correct, we can factor the\ncommon routines into a .inc and just set SRCREVs in the\nindividual .bb files.\n\nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"kernel/cfg: allow multiple kernel configuration options"}},{"before":"a940a0e873f9163d4585555b3f3d38e99400d237","after":"e8b6a87d5b52693dbecbd70214b4fa4ef315b93e","ref":"refs/heads/master-next","pushedAt":"2024-08-21T02:14:15.000Z","pushType":"push","commitsCount":6,"pusher":{"login":"brainhoard-github","name":"Brainhoard Bot","path":"/brainhoard-github","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/142536845?s=80&v=4"},"commit":{"message":"cri-o: update to v1.30.0-tip\n\nBumping cri-o to version v1.30.0-387-g20c06a19c, which comprises the following commits:\n\n 2562cea42 build(deps): bump the actions group with 2 updates\n 7472e56e9 Trigger `test` workflow after release branch fast forward\n 5aa911d5a Update shfmt to v3.9.0\n d1e6111e5 Fix space at EOL in actions\n a15d14d23 fixed token-permission and pinned-dependencies issue\n 99b02b97b Switch to go 1.23\n c36f2b5bd build(deps): bump the gomod group across 1 directory with 8 updates\n 8e48b06da Add `crun` integration tests\n 9f47c4738 Fix tab in Info to string, add tests\n 8e313e986 Vendor Kubernetes v1.31.0\n 0262d1980 Squash MetaHostPortManager into HostPortManager\n 6cdc457b6 Drop port-opening code from hostport manager\n aa6d034d6 Skip storage directory corruption recovery tests on Kata Containers\n ba0bd3e8b Add crio check sub-command used to check storage for errors\n 269137ede contrib: temporarily move to crun 1.15 to fix CI\n 0c7f36a16 Remove custom golang version for runc\n 211de0d70 build(deps): bump sigstore/cosign-installer in the actions group\n a79fa8ba4 Make internal repair the new default and disable internal wipe\n fc7a26bea Allow for storage directory removal to be forced\n 1a20443b2 Wipe storage only after giving storage.Repair() a chance\n 1348885f8 Remove orphaned mounts before removing storage directory\n 5cf0fc68a internal/oci: improve container termination process in killContainer\n 04143e0e0 build(deps): bump actions/upload-artifact in the actions group\n 9ee915794 Move config warning for NoSyncLog\n 6d76b7841 build(deps): bump the actions group with 2 updates\n 895c2cab8 Make the storage shutdown force unmount images on error\n 7b058f26b Move log message from HandleUncleanShutdown() function\n 8f5557429 Replace open-coded repair options with the RepairEverything() helper\n 46b167de3 Use custom set of checks over the CheckEverything() for storage checks\n ffcf8ecb3 Log how configuration gets loaded\n 46ef7a1c5 Update conmon-rs to v0.6.5\n af0d3e79d build(deps): bump google-github-actions/upload-cloud-storage\n f03eef4d8 Run critest in parallel\n 07addee6b Update nixpkgs\n c8ff7aec7 Add pause image to dependencies.yaml\n 3a7bfdfa0 build(deps): bump actions/upload-artifact in the actions group\n 136b3ed5e build(deps): bump crate-ci/typos in the actions group\n 32ad0fde5 build(deps): bump golangci/golangci-lint-action in the actions group\n d1c4129b1 Enable and fix `gomoddirectives`, `gomodguard`, `noctx` and `wastedassign` linters\n b98f56996 Make container and image removal/stop idempotent\n 0c0c7f6d2 Fix unshare index\n c60000697 build(deps): bump ossf/scorecard-action in the actions group\n a46e1d98a build(deps): bump the gomod group with 5 updates\n c20d16cfb Trim `crio version Version: …` prefix from `crio -v`\n a048e1530 Fix trailing whitespace in docs\n 3d778ed26 Rework no_sync_log to be a runtimes.runtime setting\n 988444bdd build(deps): bump crate-ci/typos in the actions group\n 877a4b0fa Fix lint timeout option\n de0d48a57 build(deps): bump the gomod group across 1 directory with 4 updates\n b9b7f089e Remove error log message if mountpoint cannot be found\n 8b4759730 build(deps): bump crate-ci/typos in the actions group\n 3a256325a Make ImageVolume garbage collection work\n cfa3f2979 Add documentation for setting up CRI-O with Flatcar\n b6ad92802 ci: Add timeout value on WaitEvent for TestContainerEvents\n 6ed96dcaf oci_volumes: require crictl that can request OCI volumes\n cca74fe23 Use cri-tools master for CI tests\n 2cd9ad326 Log version only for main CRI-O command\n 8bc0487a4 Disable network ping tests for actuated runners\n 6e98e4210 test: config tests should ignore default runtime environment variable\n c39e8014f Add OCI Volume Source support\n 04c768a26 test: re-enable hooks.bats in integration tests for kata\n 3f08208eb test: use kata 3.6.0 for testing\n 50046c72b test: kata test - set skip_mount_home in storage options\n 14e5af098 ci: kata-specific testing in integration tests\n e30e13907 ci: cleanup kata processes during teardown\n 7f9efe304 ci: enable debug log level for the kata container runtime\n 2e9d44dbf Use `.gitignore` in nix build excludes\n c2c0bae26 KEP-3619: implement RuntimeStatus.features.supplemental_groups_policy field\n f05dac5d5 KEP-3619: update cri-api version\n 5f66ac000 oci: separate out timer logic from the backoff manager\n 08180027b oci: move oci-specific code into their respective runtime\n 8693692a7 test: add test coverage for multiple stop calls\n c119e524e oci: remove redundant ShouldBeStopped check for stopping containers\n bf9b5a309 Remove duplicate `exclude_graphdriver_devicemapper` from static builds\n 0bc0e6c6f Dedup installation docs\n ff047539d updates pause image to 3.10\n b8d9714fe Fix \"data loss\" description of no_sync_log setting\n d1a7ee15f build(deps): bump the gomod group across 1 directory with 6 updates\n 031c6af6b build(deps): bump crate-ci/typos in the actions group\n e14676520 Remove go-setup from jobs not using golang\n 0f4ab88eb Remove config migration\n b3c7ebc43 build(deps): bump actions/setup-go in the actions group\n 481b25a72 Add table of contents to README.md\n b4c6af21a Cleanup install docs\n 8eed3d8e1 Update crio.conf manpage for no_sync_log\n 6e3685c81 Update manpage for --no-sync-log\n beae8bd53 server: propagate the pinned status of an image when queried via crictl\n 5a2e10ea2 Allow disabling fsync on log rotate and pod shutdown\n 33ceea55e Add automatic markdown table of contents generation\n 52707b8be Move hostport tests to use ginkgo\n 6d6149a0b build(deps): bump the actions group with 2 updates\n bc86390e0 Sanitize CRI-O version set in the User-Agent header\n fc1bd923a nri: pass around context and log failed pid for not spoofed containers\n\nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"cri-o: update to v1.30.0-tip"}},{"before":"f7bb126b3947abff3e44ebe0a23399a5fb52d8dc","after":"a940a0e873f9163d4585555b3f3d38e99400d237","ref":"refs/heads/master-next","pushedAt":"2024-08-13T02:19:11.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"brainhoard-github","name":"Brainhoard Bot","path":"/brainhoard-github","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/142536845?s=80&v=4"},"commit":{"message":"kernel/cfg: allow multiple kernel configuration options\n\nWhen more than one kernel is supported in oe-core, we may have\nsituations where the options from an older (or newer) kernel\nare not appropriate for the other version (i.e. options have\nbeen added, removed or renamed).\n\nTo support this we check the preferred version of the kernel\nand depend on a specific yocto-cfg recipe.\n\nThis is similar to how the virtualization .inc files are\nchosen.\n\nIf this technique proves to be correct, we can factor the\ncommon routines into a .inc and just set SRCREVs in the\nindividual .bb files.\n\nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"kernel/cfg: allow multiple kernel configuration options"}},{"before":"3b9ae7631db62f6b8cf334ea6ffe998fcd4f89ed","after":"f7bb126b3947abff3e44ebe0a23399a5fb52d8dc","ref":"refs/heads/master-next","pushedAt":"2024-08-08T16:05:59.000Z","pushType":"push","commitsCount":6,"pusher":{"login":"brainhoard-github","name":"Brainhoard Bot","path":"/brainhoard-github","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/142536845?s=80&v=4"},"commit":{"message":"conf/versions: set xen default to 4.19\n\nupdate our default xen version to 4.19\n\nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"conf/versions: set xen default to 4.19"}},{"before":"2534e6a07ccc0f30a7859b04c956ae3909c96643","after":"3865be0a79b963e0123acb5ac8e756466561e18c","ref":"refs/heads/master","pushedAt":"2024-08-05T18:58:58.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"brainhoard-github","name":"Brainhoard Bot","path":"/brainhoard-github","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/142536845?s=80&v=4"},"commit":{"message":"kernel: add 6.10 configuration\n\nkernel version 6.10 will be the next reference kernel, so we\nadd the .inc file to enable the configuration\n\nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"kernel: add 6.10 configuration"}},{"before":"daef2c973323d9bc6c3de790b002bd3791db1b37","after":"2534e6a07ccc0f30a7859b04c956ae3909c96643","ref":"refs/heads/master","pushedAt":"2024-08-03T23:21:31.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"brainhoard-github","name":"Brainhoard Bot","path":"/brainhoard-github","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/142536845?s=80&v=4"},"commit":{"message":"docker: use nobranch\n\nThe upstream repository has both removed tags and\nrenamed branches.\n\nTo prevent some of these failures in the future,\nlet's run with nobranch=1 for a bit.\n\nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"docker: use nobranch"}},{"before":"6a80f140e387621f62964209a2e07d3bcfb125ce","after":"54b806b1985f3989722ee308e1073530fe3328c1","ref":"refs/heads/scarthgap","pushedAt":"2024-08-01T16:05:43.000Z","pushType":"push","commitsCount":4,"pusher":{"login":"brainhoard-github","name":"Brainhoard Bot","path":"/brainhoard-github","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/142536845?s=80&v=4"},"commit":{"message":"xen-image-minimal: Add missing dependency causing intermittent failures\n\n\"bitbake xen-image-minimal -c do_image_wic\" fails with:\n\n| ERROR: _exec_cmd: install -m 0644 tmp/deploy/images/qemux86-64/xen-qemux86-64.gz tmp/work/qemux86_64-poky-linux/xen-image-minimal/1.0/tmp-wic/hdd/boot/xen.gz returned '1' instead of 0\n| output: install: cannot stat 'tmp/deploy/images/qemux86-64/xen-qemux86-64.gz': No such file or directory\n|\n| WARNING: exit code 1 from a shell command.\nERROR: Task (/media/build/poky/meta-virtualization/recipes-extended/images/xen-image-minimal.bb:do_image_wic) failed with exit code '1'\n\nAdd the missing dependency to avoid this.\n\nSigned-off-by: Richard Purdie \nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"xen-image-minimal: Add missing dependency causing intermittent failures"}},{"before":"c138943fed29e768df990061c30d6f071b98ffc3","after":"daef2c973323d9bc6c3de790b002bd3791db1b37","ref":"refs/heads/master","pushedAt":"2024-08-01T16:05:43.000Z","pushType":"push","commitsCount":46,"pusher":{"login":"brainhoard-github","name":"Brainhoard Bot","path":"/brainhoard-github","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/142536845?s=80&v=4"},"commit":{"message":"xen-image-minimal: Add missing dependency causing intermittent failures\n\n\"bitbake xen-image-minimal -c do_image_wic\" fails with:\n\n| ERROR: _exec_cmd: install -m 0644 tmp/deploy/images/qemux86-64/xen-qemux86-64.gz tmp/work/qemux86_64-poky-linux/xen-image-minimal/1.0/tmp-wic/hdd/boot/xen.gz returned '1' instead of 0\n| output: install: cannot stat 'tmp/deploy/images/qemux86-64/xen-qemux86-64.gz': No such file or directory\n|\n| WARNING: exit code 1 from a shell command.\nERROR: Task (/media/build/poky/meta-virtualization/recipes-extended/images/xen-image-minimal.bb:do_image_wic) failed with exit code '1'\n\nAdd the missing dependency to avoid this.\n\nSigned-off-by: Richard Purdie \nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"xen-image-minimal: Add missing dependency causing intermittent failures"}},{"before":"3569724c16388ea3e96d7c4c0a7b1733873791a1","after":"3b9ae7631db62f6b8cf334ea6ffe998fcd4f89ed","ref":"refs/heads/master-next","pushedAt":"2024-07-23T17:06:09.000Z","pushType":"push","commitsCount":10,"pusher":{"login":"mmitchel","name":"Michael Mitchell","path":"/mmitchel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/124963?s=80&v=4"},"commit":{"message":"upx: update to v4.2.4\n\nBumping upx to version v4.2.4-54-g03c41840, which comprises the following commits:\n\n 03c41840 all: misc cleanups\n 0a82280f cmake update\n a7fa2f87 cmake update\n 3a11a5a8 CI updates\n 08a38af5 Workaround bug in Alpine Linux\n 043a54cf all: minor cleanups\n 16c8f6d1 src: portability updates\n 285472bc submodules: update for new versions\n a77adcd4 src: new ACC version\n cebd4392 Fix checksum error de-compressing ELF with large .p_align and small blocksize\n 64a3de5a FIX PT_GNU_HASH when \"empty\"\n 261609f7 CI updates\n 17cf7300 CI updates\n ad566d79 CI updates\n b499ed3d CI updates\n de8de9c0 Option --unmap-all-pages completely avoids /proc/self/exe\n 3b36dce5 Mention PT_MIPS_ABIFLAGS forwarding\n dcd8dfd5 CI: add zigcc linux-mips soft-float targets\n 78f3b629 src/pefile.cpp: default to strict reloc checks\n a49fe3b0 CI: remove zigcc linux-mips workaround\n f23cc7da CI update: remove macos-11 runner\n cafd9d7a Sync stub checksums\n 1b6c1208 64-bit phdrx[], PT_NOTE, PT_GNU_STACK\n 99afc50e PT_MIPS_ABIFLAGS, PT_MIPS_REGINFO\n 3286f7c5 De-compression of PT_MIPS_ABIFLAGS\n 72ccca9f PT_MIPS_ABIFLAGS, compression side only, 32-bit only\n 3c294d97 all: minor cleanups\n 1aff5f5b all: misc cleanups\n 937ae4c5 Avoid crash on outrageous fuzzed input\n 056865f5 Detect bad placement of LINK segment\n c58246b4 Detect compressed length too short\n 3495d1af all: minor cleanups\n b0ce0723 src: fix compilation on older compilers; update tests\n 9f4d18ba src: yet more constexpr updates\n f65c8f8c src: more work on constexpr\n e0633b89 CI updates\n c3341ce4 src: add support for constexpr bele.h\n 43f9b90c cmake update\n 6ee45dcd CI updates\n 34424672 src: more upx::max cleanups\n 57763ca1 ELF stubs: go_lang different placement of DT_STRTAB, DT_SYMTAB\n 40b7e24f src: introduce upx::max and friends; updates for clang-19 git snapshot\n 9e0f16a6 submodules: update for new versions\n 33f4f3a5 all: minor clang-tidy cleanups\n 07a3b75b submodules: update for new versions\n bdea2539 cmake: use recommended CMAKE install variables\n ed3d7b0c all: minor cleanups\n cba44c45 src: introduce ptr_get_address()\n 07b533f9 submodules: update for new versions\n 7b0a79de all: update LZMA SDK license information\n befd01aa CI updates\n 1cc26362 submodules: update for new versions\n 4daa2c1c testsuite: update checksums caused by version bump\n 7081c575 all: post-release version bump\n 3757579f all: prepare for release\n 2962dc35 CI updates\n c04c6854 src: restrict upx::atomic_exchange to pointer-size for now\n 72c97699 src: avoid warnings when compiling with llvm-mingw-nightly\n 42759b94 all: more clang-tidy cleanups\n aa9e69f0 submodules: update for new versions\n 0f3939df src: pacify clang-tidy\n 62265a1b fix typos\n 76b2cec8 src: fix compilation with clang\n 3d82f0cf src: introduce upx::atomic_exchange; cleanups\n e5546bc8 32-bit ELF escape hatch when no fit on last executable page\n 6fc0a00a all: update for clang-tidy-18\n 3e5ba5c0 CI updates\n 4c32a8e3 Fix attempted recovery from corrupted b_info\n 2ea316d7 Detect sizeofcmds too small\n 548227a5 mb_dt_offsets.clear() prevents undef from corrupted input\n a831a209 unpackExtent detects corrupted compression method\n 811f66de Check gnu_shift during unpack\n 84d80632 CI updates\n 285d4c4c submodules: update for new versions\n 8506f5b1 testsuite: update checksums caused by version change\n a87fd56b all: update version\n f0cb30e2 all: minor cleanups\n 038743c6 CI updates\n 0e6cef99 Guard against empty PT_NOTE\n 92c925fe New i386/lzma-multi_d.S enables unpacking more than one block\n 4562d545 Some non-ELF --lzma stubs assumed only one block, and <= 0.5MiB\n 8393ded1 CI updates\n b0dc4831 CI updates\n 3c0ca813 CI updates\n 157a63a0 CI updates\n 80e22a7e Fix --preserve-build-id\n ddf2da3d cmake: run tests in parallel; misc/podman: add 30-rebuild-stubs.sh\n 0e6478a6 submodules: update for new versions\n aed2c085 misc: update mimic_ctest.sh\n a7592b2c all: enhance tests\n 265c1008 PowerPC64 nrv2d decompressor\n 84e8288f Propagate yesterday's fix to stub decoding on PowerPC\n c69b4561 src: initialize some fields to suppress harmless valgrind errors\n 6db0af8d PowerPC cannot branch on CArry; requires contortions\n 842d2cbb testsuite: update checksums\n 9fb64ded Syscall on powerpc linux wipes arg registers, unlike x86_64\n 9d26713b Add experimental (and undocumented) --help-verbose and --help-short options.\n eb3c55b5 all: add more tests\n 896596f6 cmake update\n e4de1461 CI updates\n 1d2b2764 all: improve tests\n 35c6a200 CI updates\n 90a7faa1 CI updates\n 91f5fe1c arm64 --nrv2d instruction confusion\n d48a7d30 Sync checksums for testsuite_1 (-release)\n bb816f0c arm64 --nrv2d preserve sign when decoding offset\n 93abe97e powerpc64le --nrv2d register conflict\n 97cf29ff all: enhance CMake tests; assorted updates\n ed35613d misc/podman/rebuild-stubs: upgrade to ubuntu-24.04\n f5ec8363 CI updates\n 87956de0 CI updates\n 0f931538 cmake: only enable UBSAN for clang versions >= 9\n 3538d796 CI updates\n 24f38245 CI updates and minor cleanups\n 70b20d7d CI updates\n 7b21a062 CI updates\n 3949af6d Unpacking detects and defends against malicious ELF\n d1f62e3a testsuite: update checksums caused by version bump\n 6e644fa4 all: post-release version bump\n 5bef9680 all: prepare for release\n 543cfe0a submodules: update for new versions\n 3ba91b80 cmake update\n a27a9e60 all: and yet more cleanups; NFCI\n 7e839e69 all: more cleanups; NFCI\n 809a1b3d submodules: update for new versions\n 9b80628f src/pefile.cpp: support relocs of large files\n a21a006f all: yet more minor cleanups\n 54d16a45 CI updates; cleanups\n cfc5f42e testsuite: update checksums caused by version change\n e3d24238 all: update version\n 56e7b369 src: new ACC version\n f2979147 all: yet more cleanups\n 52d9b53b all: minor cleanups\n 839a78f2 Better fix for previous commit to avoid out-of-bounds pointer.\n 680ce0a7 find_dt_ndx defends against overrun\n 06b0de9c CI: work-around zig cc mips bad codegen for hard-float\n 76b0b7b1 all: clang-format\n fabda4df R_PPC64_REL24 is reallly \"PC-rel. 26 bit, word aligned:\n fdcdaf59 all: pacify clang-tidy, CI and cmake updates\n be44cefb CI updates\n c1050e62 submodules: update for new versions\n ae6d3b9b all: more assorted cleanups\n 25aa0e2e un_asl_dynsym() should skip when !dynstr\n 8f7578ee CI: enable valgrind\n 29ce4807 all: minor updates\n 41f6945b Fix auxv_up() to avoid SIGSEGV under valgrind\n 718ec468 all: more assorted cleanups; NFCI\n d4298014 Avoid &file_image[file_size] because some Standards object\n 024091e6 src: fix previous bounds checking commit\n d849e9de src: add some bounds checking to MemBufferBase\n c0e40da2 more checking of Mach_header when unpacking for MachOS\n dff37665 Detect too-large bit-shift in elf_lookup of DT_GNUHASH\n 2767ec54 more checking of PackUnix::p_info at unpack\n ac72c027 check nbucket earlier in DT_HASH on ELF\n 69c51eee better checking of DT_STRSZ for ELF\n ff5a4eeb ELF versus --brute: addStubEntrySections() needs ph_forced_method()\n b48f8707 Detect circular DT_HASH and DT_GNUHASH lookup\n 10807ebd Unpack 8-byte b_info only if (ph.version <= 11): 2001 or earlier\n 5d649f83 all: assorted cleanups\n 65b25adc submodules: update for new versions\n d615985b elf_find_table_size() did not check for empty table\n b0194409 testsuite: update checksums caused by version year bump\n 38ed4b20 arm32, arm64 ABI for -static must preserve register 0\n 2ad0d512 PeFile::rebuildImports(): Allow strlen() up to the very end of a logical block\n e4a611bc PeFile ::readPeHeader should check ih.subsystem.\n f3728d99 Check ph.method in PackMachBase::unpack\n b87f60a9 Check Mach_fat_arch.align\n 28f26da6 Need more care in PackMachBase::canUnpack()\n d3e780d6 Unpacking ELF requires e_phnum at least 2\n d549c2b5 More care when recovering from slid b_info\n f310ce37 Beware fuzzer setting compressed size too small\n 553fc9b1 invert_pt_dynamic: Compilers differ, unsigned vs. signed\n 6dde9f7d find_overlay_offset() did not check carefully enough\n 3dca1175 invert_pt_dynamic() needs better checking for malformed input\n 09c5e383 arm64-linux.elf ABI owns x0 at execve()?\n fe6f1f0b arm64-linux.elf-fold.S typo (eyesight)\n 250c656b testsuite: update checksums caused by version bump\n 9a0b5b65 all: remove unused scripts\n 57b2fb4c all: post-release version bump\n 099c3d82 all: prepare for release.\n\nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"upx: update to v4.2.4"}},{"before":"be406f8ae4bc104f32ce593923bc3b9d2aa45244","after":"3569724c16388ea3e96d7c4c0a7b1733873791a1","ref":"refs/heads/master-next","pushedAt":"2024-07-16T23:58:02.000Z","pushType":"push","commitsCount":13,"pusher":{"login":"mmitchel","name":"Michael Mitchell","path":"/mmitchel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/124963?s=80&v=4"},"commit":{"message":"umoci: update to v0.4.7 -tip\n\nBumping umoci to version v0.4.7-224-gff684ba, which comprises the following commits:\n\n 3078d6b build(deps): bump github.com/vbatts/go-mtree from 0.5.3 to 0.5.4\n\nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"umoci: update to v0.4.7 -tip"}},{"before":"37c06acf58f9020bccfc61954eeefe160642d5f3","after":"6a80f140e387621f62964209a2e07d3bcfb125ce","ref":"refs/heads/scarthgap","pushedAt":"2024-07-12T17:18:37.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"mmitchel","name":"Michael Mitchell","path":"/mmitchel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/124963?s=80&v=4"},"commit":{"message":"podman-compose: Switch branch to main\n\nThe podman-compose repository has no stable branch anymore and\nrelease 1.0.6 is located on main now.\n\nSigned-off-by: Daniel Schultz \nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"podman-compose: Switch branch to main"}},{"before":"02ded11c0166bb81c29992998fb0a07668f7486d","after":"be406f8ae4bc104f32ce593923bc3b9d2aa45244","ref":"refs/heads/master-next","pushedAt":"2024-07-12T17:18:37.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"mmitchel","name":"Michael Mitchell","path":"/mmitchel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/124963?s=80&v=4"},"commit":{"message":"docker-distribution: update to v3.0.0-beta.1\n\nBumping docker-distribution to version v3.0.0-beta.1-2-gf22dd618, which comprises the following commits:\n\n 9ba73406 vendor: github.com/opencontainers/image-spec v1.1.0\n c72db410 Prep for v3-beta1 release\n d3cc664f Update docs: JWKS credentials and AZ identity\n 558ace13 feat: implement 'rewrite' storage middleware\n 6d591190 Update Redis configuration docs with TLS options\n d9050bb9 remove layer's link file by gc\n 43a64480 Update dockerhub.md\n f36b44ff docs: disable base element override\n 83a071e9 Bump alpine version\n 5316d3bd Bump Go and golang linter\n a008d360 Create type alias for redis.UniversalOptions\n f27799d1 Add custom TLS config to Redis\n b63cbb33 Replace custom Redis config struct with go-redis UniversalOptions\n 050e1a3e build(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azidentity\n 52d68216 feature: Bump go-jose and require signing algorithms in auth\n 975613d4 New path for distribution config\n c40c4b28 Enable configuration of index dependency validation\n 119c608f docs: update location of `filesystem.md`\n 062309c0 Stop proxy scheduler on system exit\n 421a359b Add a go.mod toolchain version\n f1875862 Set readStartAtFile context aware for purge uploads\n 16a305eb Add registry.Shutdown method for graceful shutdown of embedded registry\n a2afe23f add concurrency limits for tag lookup and untag\n a5882d66 vendor: update manifest dependencies\n 11215632 fix: ignore error of manifest tag path not found in gc\n 2fe34420 chore: fix some typos in comments\n e0a1ce14 chore: fix some typos in comments\n 601b37d9 Handle OCI image index and V2 manifest list during garbage collection\n 2db0a598 build(deps): bump golang.org/x/net from 0.20.0 to 0.23.0\n 8654a0ee Allow setting s3 forcepathstyle without regionendpoint\n 21c718d5 Add Go 1.22 support to CI\n 2446e110 chore: remove repetitive words in comments\n 167d7996 chore: bump distriution/reference dependency\n fdbb3a82 fix: upgrade scorecard version\n e8820b25 Don't try to parse error responses with no body\n 127fa7e0 proxy: Do not configure HTTP secret for proxy registry\n 1cb89e3e Update go versions\n cb2b51ca build(deps): bump google.golang.org/protobuf from 1.31.0 to 1.33.0\n de450c90 update: support redirects in gcs storage with default credentials\n 1c5fe22d build(deps): bump github.com/go-jose/go-jose/v3 from 3.0.1 to 3.0.3\n 6465b4cd fix: typo\n 63eb22d7 Fix: ‘autoRedirect’ hardcode ‘https’ scheme\n 71a069dc Standardize OTEL error logging format to match application logs\n f690b3eb Added Open Telemetry Tracing to Filesystem package\n a4918b67 fix: typo\n 2763ba1e Do not write manifests on HEAD requests\n 1c3d44ec Update notifications.md\n 6ca646ca Initialize proxy prometheus counters values to 0 to prevent gaps after registry restart\n 1e8ea031 Add support for `Basic Authentication` to `proxyingRegistry`\n 5bebd152 Add a trademarks and docs license link\n 04182455 Include headers when serving blob through proxy\n 939061d1 build(deps): bump codecov/codecov-action from 3 to 4\n e5f5ff7a build(deps): bump peter-evans/dockerhub-description from 3 to 4\n ee58e343 build(deps): bump actions/upload-artifact from 4.1.0 to 4.3.0\n 11f50c03 feat: Add HTTP2 for unencrypted HTTP\n 41161a6e refactor(storage/s3): remove redundant len check\n c78c1561 Update labeler.yml\n 65c6a6d3 Update .github/labeler.yml\n b1d1be8e chore: Migrate PR labeler config to v5\n a626871f chore: Sort entries\n d2c57396 chore: Remove `area/config` duplicate entry in `labeler.yml`\n 45cea887 chore: Remove duplicate `area/ci` entry in PR labeler\n ef1db8ac build(deps): bump actions/upload-artifact from 3.0.0 to 4.1.0\n 5e75227f docs: fix broken links and improve link resolution\n 6b14735d ci: disable provenance when generating docs\n f09bf31f ci: handle provenance for built artifacts\n f4a3149a build(deps): bump docker/bake-action from 2 to 4\n 50332793 remove deprecated ReadSeekCloser interfaces\n 5c585db7 build(deps): bump docker/metadata-action from 4 to 5\n 5c5d8d3d build(deps): bump docker/login-action from 2 to 3\n fc992dfe build(deps): bump actions/upload-pages-artifact from 2 to 3\n 87ae3eb8 build(deps): bump fossa-contrib/fossa-action from 2 to 3\n 053fd16a build(deps): bump ossf/scorecard-action from 2.0.6 to 2.3.1\n f2342966 build(deps): bump docker/setup-buildx-action from 2 to 3\n 78a6be85 build(deps): bump actions/setup-go from 3 to 5\n f0a66954 build(deps): bump actions/configure-pages from 3 to 4\n 38a2d53c build(deps): bump actions/checkout from 3 to 4\n ba702e1d build(deps): bump github/codeql-action from 1.0.26 to 3.22.12\n af2fa0ff build(deps): bump actions/deploy-pages from 2 to 4\n 587f9e28 chore: generate authors\n befbaa68 chore: update mailmap\n bdfa8324 vendor: github.com/mitchellh/mapstructure v1.5.0\n 5bd7f258 fix: load gcs credentials and client inside DriverConstructor\n 6908e0d5 fix: add missing skip in s3 driver test\n b2bd724b chore: sort and fix mailmap\n ea02d9c4 fix: add labeler action\n 7838a369 chore: dependabot to keep gha up to date\n 55e91b39 chore: use no-cache-filter for outdated stage\n 5bd45551 fix: update Dockerfile version output\n 4f9fe183 vendor: github.com/gorilla/handlers v1.5.2\n e96fce17 feat: add PR labeler\n 5f397b87 update to alpine 3.19\n e29a5c8e update: readme cleanup and fxes\n 0e0d74b0 docs: remove legacy kramdown options from link\n 59929031 fix: build status badge\n 535b6586 feat: add GH issue template\n a74cacff version: export getter functions\n ab27c9d5 version: use go list -m\n f23c675d release: prep for the v3 alpha-1 release\n d59a570c update: set User-Agent header in GCS storage driver\n dcee8e93 build(deps): bump golang.org/x/crypto from 0.15.0 to 0.17.0\n 7fb303e9 Update s3.md\n 2f98b771 fix: don't override storage driver useragent if it's set\n 290dba5d update: S3 driver docs\n 7ba91015 fix: remove disabling of multipart combine small parts\n def497a8 update: add tests for S3 driver client SkipVerify settings\n 4f84c086 Update the gotcha in the proxy guide\n 8fa7a81c fix: use http.DefaultTransport in S3 client\n 3f3e61e2 fix: update incorrect godoc comment for (writer).Writer()\n 4baddbc6 fix: update S3 storage driver writer\n 80cbd744 refactor: apply suggestions from code review\n ed5d4934 refactor: apply suggestions from code review\n bcbf0431 testing: replace legacy `gopkg.in/check.v1`\n 68ac02b5 Otel tracing MVP: fixed gofmt\n fb7cdf89 Otel tracing MVP\n 0e3018f2 Otel tracing MVP: vendor changes\n a1b262f0 Update nginx.md\n 1054d157 update: remove gcs storage driver build tags\n f3ba0acd update: bump Go runtime to 1.21.5 and the rest to latest 1.20\n 6f84e878 update: AWS Go SDK bump to the latest release\n 1f6afab6 vendor: github.com/spf13/cobra v1.8.0\n 79976446 vendor: github.com/klauspost/compress v1.17.4\n db187ae5 vendor: github.com/gorilla/mux v1.8.1\n d6dd652f vendor: github.com/sirupsen/logrus v1.9.3\n 2cf41640 update: missed the CI workflow\n f08898c2 update: bump Go version\n b3681c4c feat: add tparallel linter to improve handling parallel tests\n d8ff41a3 cleanup: move init funcs to the top of the source\n f2cbfe24 health: improve periodic polling of checks\n a1b49d3d health: plumb contexts into health checks\n 8b889c04 health: use request context when logging\n 35abc922 fix: if reference exceeds the threshold return 400 and detail\n d0b78f5e dockerfile: keep context mount as read only\n f33e5a69 fix: invalid conversion when using Content-Range in client\n b8b390f4 build(deps): bump github.com/go-jose/go-jose/v3 from 3.0.0 to 3.0.1\n c90b0b26 docs: fix typo in mirror.md\n 7ce129d6 feat(linter): enable errcheck linter in golangci-lint\n e001fad0 refactor: gcs storage driver\n bb156255 remove uuid package\n 7686bdc2 fix: fix broken build\n 186d522d docs: remove unused go.mod\n 74306515 cleanup: make blob sizes easier to understand\n bf933f54 Fix proxy statistics\n b4dc4f34 storage/driver: plumb contexts into middlewares\n b45b6d18 storage/driver: plumb contexts into factories\n f7e5eaae internal/dcontext: drop GetRequest() function\n f089932d storage/driver: replace URLFor method\n 868faeec registry: unexport auth-related context utilities\n bd80d759 reg/auth: remove contexts from Authorized method\n 49e22cbf registry/auth: pass request to AccessController\n 9157226e Extract request utilities into its own package\n d0f5aa67 Move context package internal\n 852de2c2 cleanup: make chunk sizes easier to understand and change writer append\n e8e46b21 cleanup: a small Azure driver cleanup\n e5f16bea docs: remove unused images\n 57a6fa46 docs: fix broken image references\n 9d12b47b docs: allow unsafe HTML\n 32316367 Bump google.golang.org/grpc from 1.53.0 to 1.56.3\n da92c34a ci: add cloud storage driver integration tests to CI\n ef8651ec Switch to github.com/google/uuid\n 3831c8cc feat: push distribution images to GHCR\n 8a86dc61 Make our UUID package internal\n 6999f230 Delete reference package\n cc23fdac Move registry client internal\n 2ce5c81f Address PR review feedback\n 9861a46d Add prometheus proxy related metrics\n fe21f439 feat: replace docker/libtrust with go-jose/go-jose\n cb0d083d feat: Add context to storagedriver.(Filewriter).Commit()\n 46d13ff7 update to go1.20.10, test go1.21.3\n 9cc6e5b2 update to go1.20.9, test go1.21.2\n c8c2bc27 reference: fix broken alias for DomainRegexp\n ea417229 refactor: Storage driver errors\n eac19987 Remove test for nested file delete on S3\n 647ec33c Bump minio version and test less storage classes\n 4dce8b86 Add annotation for descriptor\n 777ad032 Update docs GHA\n 4f506663 Update dockerhub-readme GH Action\n dc07c428 Move dockerhub-readme workflow to the correct path\n a66f6c37 ci: add github pages workflow for docs\n c3ae793f And other content...\n 83dd4ff0 Cleanup of naming in docs\n 31707d54 docs: add github link in header\n 1596da68 docs: add tests\n b911020c docs: fix markup and broken links\n fee6faef json encode storage driver enclosed error\n 758c0f9d Bump golang.org/x/net from 0.8.0 to 0.17.0\n e2ae76f1 docs: add hugo site\n 6183f230 docs: remove blank line\n f2a72d7f Update Docker Hub README and keep it in sync with this repository.\n 504a3baf Properly indent prometheus docs\n 3df7e28f registry: add loglevel support for aws s3 storage driver\n 993af6fe Add few more sentences for the debug endpoint\n 4fce3c00 Move completedParts type back to the original position\n 46a9da16 refactor redis cache\n dca71db9 fix comment typos\n 6c724a1a use manifestTagsPathSpec for listing all tags\n b888b14b Optimise push in S3 driver\n 0b72b0b8 docs: remove README.md that point to Docker's repo\n a5c04b36 Update Makefile\n cf956106 Update BUILDING.md\n 98ffc56a Only set COMPOSE if it doesnt have a value\n 14361b3a Update Makefile and docker-compose\n 8e630ae2 Update BUILDING.md readme file.\n ecf492ab Update tests/docker-compose-storage.yml\n dfb8514a Update Makefile\n 6f05474f Update tests/docker-compose-storage.yml\n 8af25245 Update tests/docker-compose-storage.yml\n 075d81d7 Update Makefile\n 6b0c3918 Update Makefile\n 71c532e6 driver testsuite: Add zero byte file checks\n 06acf2de remove go build directive for older go version\n a0d9279e add repositoriesRootPathSpec in pathFor documentation\n 797b1e39 Add make targets to allow starting local cloud storage environment.\n f4d5210b Do not close HTTP request body in HTTP handler\n 34654f6c remove not exist function name in comment\n ca1b8753 document resource class deprecation\n a9399e9e Improve socket-activation message\n 9721db95 Add info message regarding socket-activation\n 741f9bb5 Add documentation for socket activation\n 2435def4 Support systemd socket-activation\n 17952924 avoid redundant blob fetching\n 23115ff6 update to go1.20.8\n c8ba5d70 registry/client: combine SuccessStatus and HandleErrorResponse\n e4dd28b8 Bump github.com/cyphar/filepath-securejoin from 0.2.3 to 0.2.4\n 612a30a7 Remove libtrust from handler tests\n 6baa31a2 Remove duplicate code that instruments Redis OTLP\n 0104adf4 registry/api/errcode: split Register to internal / exported\n 292e30bc registry/api: move all errors to \"errcode\" package\n 823cd4a3 Add a comment why prealloc linter is disabled when configuring endpoints\n 10898006 Preallocate created slice in S3 tests\n a9d31ec7 Avoid unnecessary type assertion in mfs driver\n 59fd8656 Enable prealloc linter\n dcdd8bb7 Propagate storage driver context to S3 API calls\n 06341600 Remove outdated docs\n 8c7eea76 Add note on custom storage drivers\n acf804a2 go.mod: remove outdated comment\n 152af63e deprecate reference package, migrate to github.com/distribution/reference\n 2513dd1f fix typos in registry/storage/paths.go\n eda5fe2d remove duplicated code\n e22f7cbc Pass the last paging flag to storage drivers\n 0742b566 feat!: remove schema1 manifest\n a41613ba Don't make a new buffer for catalog listing\n b889cc2e Add username to create redis client\n 45b7b9ce Dont parse errors as JSON unless Content-Type is set to JSON\n c7bdabad add back getKeys + cleanup manifeststore test\n f9bc9220 feat(storage)!: remove schema1 except manifeststore_test\n d0c0b7bd Update Makefile\n 1a3e73cb Handle rand deprecations in go 1.20\n 0eb8fee8 Update to go 1.20\n fcbc25e7 Replace redigo with redis-go\n 506cb451 Small Makefie update\n be7f29b4 Fix: use new scorecard badge viewer\n a9a5b22b Update milosgajdos maintainer email\n 1284c487 fix typo in comment and log\n 5b3be398 s3: add interface assertion\n df2787c6 Update test asserts\n 3e4c4ead Remove bugsnag\n 11c341a3 Remove schema1 references from registry client\n 3dbfbc72 Enable bodyclose linter\n 10b8a247 fix: upgrade scorecard action to 2.0.6\n 77239356 chore: enable scorecard action and badge\n 37a213dc Revert \"optimize catalog last param\"\n 8fd504de Revert \"Rename catalog funcs and update their godocs.\"\n ad111050 Revert \"removed redundant check\"\n 8e4a8517 Revert \"fix: resolve most comments\"\n 6fea5489 remove contrib folder\n 77c33cd2 remove NewRelic\n 279fa01b Small update of API docs\n c0a15e64 Regroup direct and indirect dependencies\n 40c56bf1 Keep returning image for default arch to old clients fetching lists\n f48e0ecd Remove waynr from MAINTAINERS\n e51cfa66 Add James Hewitt as a reviewer\n 0f006548 update golang-lru to v2\n 9d862f09 fix(deps): update module github.com/aws/aws-sdk-go to v1.44.325\n f517191d Add small update to api tests\n 7e39a7c6 Remove references to schema1 pacakge from handlers\n 3f1859af Remove oss storage driver and alicdn storage driver middleware\n 46ff5f85 Fix Azure tests\n 7622d0a4 Don't return the from of a walk\n f7bdd912 Don't test the OUTPOSTS storage class\n 6ceb904c Don't check returned storage class if we use NONE\n 2d316a12 We don't use gocheck in these tests\n f78d81e7 Remove test as S3 does not support empty directories\n c6b9944a Remove SWIFT storage driver\n 24de708d Set Content-Type header in registry client ReadFrom\n c1147cc1 Add David van der Spek as a new reviewer\n 02a92efb Drop docker prefix from storage driver API user agent\n ae0001f5 Remove references to schema1 pacakge from proxy package\n 565dafa4 Remove references to schema1 pacakge from notifications package\n 6a5846b3 fix: resolve most comments\n 0f846853 removed redundant check\n 230cc72a Rename catalog funcs and update their godocs.\n 65f4ce4d optimize catalog last param\n 32a476b8 feat: added support for redis username configuration\n c19adfdf Cleanup storage cache metrics\n e7505464 Update Code of Conduct\n b3ca53df Update OCI conformance workflow check\n 0cf87b1f Fix the code and update tests that verify the new code works\n 916b94eb Added support for configuring array values with environment variables #3511\n 316e1c6b Get rid of unnecessary import alias\n a3eb9564 use path.Join() for building path\n a1cfd267 Make redirect middleware can use path\n e7b1bfb9 Centered logo in README.md\n dedc8fa7 docs: fix typo\n 36dd5b79 Update to golang 1.19.10\n 6b388b1b Enable Go build tags\n 87081252 registry/handlers/app: log healthcheck error before return\n 2b72c4d1 registry/storage/driver/azure: fix Move method\n db1d0cbf Add registry middleware access to storage drivers\n 4bbe0ba0 Added support for specifying ACME-server by using REGISTRY_HTTP_TLS_LETSENCRYPT_DIRECTORYURL\n 421a97ff registry/api/v2: fix ContentType in RouteNameBlobUpload\n 93010cae docs/specs/api: fix Content-Type typo\n 2338ee4f Add option to enable caller information in logger\n afe5a2a9 Support ztsd compression as Content-Encoding\n 9d1a8fc9 Remove duplicated platform field from oci index\n 9d1f71c8 docs: note restriction on URL format of mirrors\n 817dd286 vendor: update gcs driver dependencies files\n 69510289 go.mod: update gcs driver dependencies\n 0207adaa registry/storage/driver/gcs: fix code to use updated gcs driver\n d0bc83d8 registry/storage/driver: receive context on Cancel methods\n 0d20e7ae registry/storage/driver/testsuites: use 4MB for Azure append test\n 0c33bb10 registry/storage/driver/azure: consider CannotVerifyCopySource as 404\n d2e16fc7 registry/storage/driver/azure: fix driver parameters on tests\n 90ece48d registry/storage/driver: add test call to Stat on \"/\"\n 035a8ec5 Fix panic in the s3 backend walk logic\n 7caf058a bump azure sdk\n f3eb91cf Update testutil/manifests.go\n 61e576f3 Remove blobstore from manifest builder\n 6a429612 `vallye` typo again and `ignore` section table layout is broken\n 435c7b9a Dockerfile: fix filenames of artifacts\n 5d301a9b Update configuration.md\n 322eb4ee update to go1.19.9\n dec03ea3 update golangci-lint to v1.52\n ebe9d674 ignore SA1019: ac.(*accessController).rootCerts.Subjects has been deprecated\n 84a85a40 Ignore SA1019: SplitHostname is deprecated.\n 999527f9 Ignore SA1019: \"schema1 is deprecated\" linting errors\n 3c144f22 registry/auth/token: fix the surrounding loop is unconditionally terminate\n 4052d269 reference, registry: fix loop variable captured by func literal (govet)\n f03d966e cloudfront: use consistent names for test-tables, t.Parallel()\n 5301ae14 cloudfront: rename vars that collided with type\n 85028a80 registry/handlers: use consistent names for test-tables\n f4acd988 registry/api/v2: checkTestRouter(): use sub-tests, t.Parallel()\n 2444c328 registry/api/v2: use consistent names for test-tables\n 9266220c registry/auth/token: TestAudienceList_Unmarshal: t.Parallel()\n 5e67a40e registry/auth/token: use consistent names for test-tables\n f884a079 registry/api/errorcode: TestErrorCodes: use sub-tests\n 57f9f31a notifications: don't use un-keyed structs\n e9ac1728 notifications: use consistent names for test tables\n f4be328b context: TestWithTrace(): inline checkContextForValues, use sub-tests\n 2829f7b7 context: use consistent names for test-tables\n f238f7dc reference: TestMatch(): use sub-tests\n 2819bca9 reference: TestNormalizedSplitHostname(): use sub-tests\n fa1d14c5 reference: TestParseAnyReference(): use sub-tests\n fcbddfc6 reference: use consistent names for test-tables\n 8c4d2b9d Dockerfile: update xx to v1.2.1\n 99a8ad00 fix: rename log to logrus\n f0fdaff0 Fix the issue that the debug server with port 5001 run twice\n e2a43ec8 Fuzzing: Move over two fuzzers from cncf-fuzzing\n 9fb201e2 Remove registry storage testdriver\n 434cc087 Bump to 2.8.x as the current version\n d141b657 We already had instructions for this, use them.\n 7e51e717 Add information about security\n 49e2de28 reference: add BenchmarkParse\n b50c049f reference: TestParseRepositoryInfo: use subtests\n af36dd69 reference: TestParseDockerRef: capture test in loop\n 3fa6d5a3 remove dot-imports for gopkg.in/check.v1\n 5f1df021 registry/errors: Parse http forbidden as denied\n ba4a6bbe Update Azure SDK and support additional authentication schemes\n 973bfbb6 Fix Go Idioms\n 8fe4ca40 Option to configure proxy cache TTL\n c624b9ed Use docker-compose spec v3 in nginx receipt\n 88646f54 Support annotations in the OCI Image Index\n 4c1561e9 Fix runaway allocation on /v2/_catalog\n e72294d0 Split OCI Image Index from Docker Manifest List\n 5fa926a6 Enable pushing empty blobs\n 2074688b Fix S3 multipart upload pagination loop condition\n 9594fbcf build(deps): bump golang.org/x/net from 0.4.0 to 0.7.0\n 3117e2eb Use default http.Transport for AWS S3 session\n 2179a5f6 add double newlines in ADOPTERS.md\n 165fd5f9 Update fossa-contrib/fossa-action action to v2\n a811c1bb Log username on successful requests\n d1c18681 Fix separator regex\n 345be954 vendor: golang.org/x/net v0.4.0\n 59f13577 remove script directory and fuzz left-overs\n 19233195 Align code to match order of fields\n 86cd830f Descriptor: align field order with OCI image specification\n 0b4311d5 manifest: improve test output and use const\n f2db7faa registry/storage: rename variables that collided with imports\n 030489ca testutil: rename variables that collided with imports\n 0e3efe74 manifest: rename variables that collided with imports\n b91c9a22 ci: add concurrency check\n 2400718d ci: update github actions\n ff2bce27 manifest/schema1: mark docker manifest v2, schema 1 deprecated\n 89384541 Fix json formatting in registry api docs\n 02e88c0f reference: move exported regexes to separate block\n a4cec8ca reference: introduce const for \"localhost\"\n bbd41f40 reference: introduce remoteName variable\n 71a06663 reference: optional repeated == any number of times\n 919bd8ab reference: add const for (optional) port, and rename \"domain\" variable\n f0c7c97e reference: remove remaining uses of \"expression()\"\n 04d6592d reference: remove \"literal()\" utility\n c786a2bd reference: inline \"group()\"\n 1d4917d4 reference: expression(): use strings.Join()\n a7e7ff93 reference: align docs and variables with grammar\n 32a4d8e3 reference: fix docs for NameRegexp\n 226b21be reference: make some regexp vars a const, remove intermediate vars\n 10eace9a reference: document consts for normalizing and legacy domain\n 53757ea3 reference: ParseDockerRef: slight refactor, and update docs\n 2bf5e187 reference: remove left-over occurrences of \"short-identifier\"\n 8163e20c reference: splitDockerDomain: remove incorrect \"TODO\"\n b6a040fa reference: run tests with t.Parallel()\n 5703bcf1 reference: use subtests for regex tests\n f481f877 reference: use subtests for reference tests\n 9337b8df Fuzzing: Rewrite existing fuzzers to native go fuzzers\n 35cae109 Realloc slice exponentially in mfs\n 1d8cd5e4 registry/client: use struct literals\n d71ad5b3 transport.NewHTTPReadSeeker: return concrete type, deprecate ReadSeekCloser\n 019ead86 deprecate ReadSeekCloser in favor of io.ReadSeekCloser\n 842d4c04 cloudfront: use strings.Equalfold()\n 3b391d32 replace strings.Split(N) for strings.Cut() or alternatives\n 2cd52d5c simplify mocks\n 552b1526 reference: check for prefix instead of splitting, and use consts\n 7b651a96 digestset: deprecate package in favor of go-digest/digestset\n 1052518d reference: implement Sort()\n bf725364 Remove uses of deprecated go-digest.NewDigestFromHex, go-digest.Digest.Hex\n 30f5f41d Use GitHub https url\n 3c71f493 referene: fix formatting of \"deprecated\" comment.\n 79d19015 replace deprecated function\n 6d4f62d7 reference: remove support for deprecated \"shortid\" refs\n b73c0380 registry: configureLogging() simplify logic a bit\n f1dff3e4 registry: use consts for some defaults\n f8b3af78 replace deprecated io/ioutil\n e0281dc6 format code with gofumpt\n 6dbb55ad Update doc to reflect that logs go to stderr\n f9ccd2c6 use http consts for request methods\n b1285c33 go.mod: github.com/spf13/cobra v1.6.1\n ebc4234f Delete S3 keys incrementally in batches\n bad5dcb6 fit get status issue\n d6ea77ae refactor: rename WeakStringList to AudienceList\n 9c04d0b3 Revert \"registry/client: set Accept: identity header when getting layers\"\n 8cc5b4f5 Add Go 1.19 to GHA\n 3472f7a8 feat: accept lists in the token audience claim\n 97fa1183 feat: add WeakStringList type to support lists in aud claim\n 10975dea build: harden codeql-analysis.yml permissions\n e09a9f2d build: harden e2e.yml permissions\n c26fe145 build: harden conformance.yml permissions\n 1ca9af01 build: harden fossa.yml permissions\n feaa75c5 build: harden validate.yml permissions\n 1667a668 build: harden build.yml permissions\n e36cb0a5 registry/storage/cache/memory: Use LRU cache to bound cache size\n f9dee9dc vendor: golang.org/x/net v0.0.0-20220906165146-f3363e06e74c\n e24be4e8 fix all json syntax error\n 567158c3 configuration: use \"fake\" values for tests\n fbdfd1ac Use http.NewRequestWithContext for outgoing HTTP requests\n 0e17e540 dockerfiles: formatting\n b066451b dockerfiles: set ALPINE_VERSION\n 7e546784 ci: move test step to build workflow and remove ci workflow\n 1a905ab9 ci: git validation target\n 8b2c54bf ci: remove dco check (dco bot already does this)\n 52a88c59 Update to xx 1.1.1\n c3074d09 Change GET in example request to POST\n 57ea90fe Update the BUILDING.md to a world with modules\n 3801e37d Fix grammar mistake\n 87d9edf7 Add build tags to BUILDING.md\n 853e2e92 Do not recreate mux router for each incoming request\n d5b2f94c Say when a config error is caused by an env var\n c895369b Review contributing for Docker references\n 9e74396f Fix API doc parameter placeholder: last\n bbeffe6a Fix comment for manifest list\n 53a6f7d7 registry: support ipv6 addresses\n 8628eab4 fix json syntax error in error api spec\n ba29eb8a Update maintainers mailing list\n 3bd75427 go.mod: remove outdated comment\n 9f2bc25b Fix CVE-2022-28391 by bumping alpine from 3.15 to 3.16\n ec47096e vendor: github.com/prometheus/client_golang v1.12.1\n 6e8dd268 update to go 1.18 (continue testing against 1.17)\n 18b4da91 Update golang-ci-lint to v1.45.x\n 7548c315 cleanup old check behavior\n 26a586cf lint target and workflow job\n 87f93ede Dockerfile: switch to xx\n b2b3f860 Remove workaround from 2.1.1 for faulty 2.1.0 manifest links\n de240721 cleanup old vendor validation behavior\n c0526595 mod-outdated target to check for outdated dependencies\n ffa3019c validate and update vendor target\n 15de9e21 Add forcepathstyle parameter for s3\n d64056af Explain important caveat in htpasswd tutorial\n 48f3d9ad Fix typo\n 8eab5d1b Update s3 ListObjects to V2 API\n 18b2b9f4 Added some secure compilation options PIE\n 80952c9e Rename s3accelerate parameter to accelerate\n ea27621d Fix review\n 51c0c814 Add new parameter s3accelerate to S3 storage driver.\n 966fae54 Add tests for all supported storage classes\n 69b1e011 Added some secure compilation options, especially PIE and RELRO.\n fb937dea Support all S3 instant retrieval storage classes\n 1a75c719 Fix panic in inmemory driver\n 25bd1f70 Incorrect variable in test output\n decc64eb go.mod: github.com/aws/aws-sdk-go v1.43.16\n fabf9cd4 ci: use proper git ref for versioning\n 4f1c1e42 go.mod: github.com/Azure/go-autorest/autorest v0.11.24\n ebd3f441 Update golangci-lint version and fix reports\n 676691ce Fix: Avoid a false type assertion in the inmemory driver\n 79ead619 go.mod: spf13/cobra v1.0.0\n f9c1b86f go.mod: add replace rule to prevent unwanted updateds of grpc and jwt-go\n 4363fb1e disable insecure cipher suites\n ea65fe2e update build workflow\n 3b83bce7 docs: update some URLs and remove some of the Docker branding\n ae248991 Remove code related to building docs with Hugo\n ff0c463f Remove docs.docker.com \"include\" directives\n 706f2170 fix image cache incompletely\n 342aff71 Revert \"Remove old documentation source, add README on migration\"\n 89622d99 Replace references to `re` with `regexp.MustCompile`\n 1c89ce5f Improve how reference regexps are built\n 846be378 Update note on Docker official images\n 936d7eda ci: upload conformance test results\n 6332e963 ci: fix conformance and e2e workflows\n 4941d83c ci: build workflow to release artifacts and multi-platform image\n 117757a5 feat: add option to disable combining the pending part\n e2caaf9c Add dualstack option to S3 storage driver\n 81a2d171 Update aws-sdk to 1.42.27\n f13d1e02 dockerfile: native cross-compilation\n 99c408aa Add cncf-distribution-maintainers@cncf.io to maintainers file\n 6f3cc81b Add CNCF Security email account\n 90d24a63 Fix email address for milos\n d0ca0c33 Fuzzing: Add 3 fuzzers\n 4f173262 patch-1 - adding more info to the error message\n 579107cf Improve error message in case invalid env var found\n 6fbba6a9 go.mod: github.com/opencontainers/image-spec v1.0.2\n f637481c fix go check issues\n b59a6f82 manifest: validate document type before unmarshal\n f2f9b296 Update insecure.md\n f619db73 Fixed typo in error message\n 3f4c558d bump up golang v1.17\n 7736319f fix: paginate through s3 multipart uploads\n f6a54b0d Update most links to use https by default\n f5709b28 updatefrequency should not be saved into duration\n dea56fae (docs) Fix rendering of markdown links in OAuth docs HTML\n 7b77a24b Revert \"Remove info on service accounts\"\n 715959c1 Remove info on service accounts\n 3e68d47d chore: update azure go-autorest dependencies\n b07018ff docs: update release-tool link\n 1660df4b Change should to must in v2 spec\n cf81f67a storagedriver/s3: Optimized Walk implementation + bugfix\n 072bad48 Add missing code-hints, and minor markdown edits\n 9b971331 Desktop: move \"docker-for-windows\" to \"desktop/windows\"\n 31c9a9d7 Desktop: move \"docker-for-mac\" to \"desktop/mac\"\n 576f4fc0 fix broken link for setting up local registry with auth\n 9e873f31 storagedriver/s3: Adding back missing import.\n e625bc71 storagedriver/s3: Removed temporary S3 test\n dc5b7710 storagedriver/s3: Cleaning up tests\n 6da7217b storagedriver/s3: Optimize s3 Delete test cleanup.\n 03f9eb3a storagedriver/s3: Fixed a Delete noop edgecase\n 05a258e7 storagedriver/s3: Added Delete tests to s3_test\n a07b54eb Update to go 1.16, and run CI on 1.15.x and 1.16.x\n ee8c75cb registry: use \"console\" for shell examples\n 0f50e038 use memory as the cache in test\n 351b2607 Fix OCI conformance workflow report and README badge\n 21ffbdbe Change GH workflows job names\n 9c7967a3 Update PUT and PATCH APIs\n 3f09e31e Fixing http status for PUT/PATCH APIs\n 1003ce30 Update deploying.md\n 4ff7f21b Update pull limits for service accounts\n d3cd41aa Propose Sargun as a maintainer\n 7244cd3b typo: a client implementation\n 6d9a3aba fix the /v2/_catalog n parameter description\n 8f211541 Update link to logo\n 9b8feef0 Update distribution logo\n 56413091 Update API spec\n 033683d6 apply feedback\n 3d717101 Updated service account links (#12953)\n aaca79bf add oci conformance test gitaction\n 1777a5ba Updating registry help (#12948)\n 1fa75f31 Indent webhook notifications Authorization header\n 81f081f9 Group case values\n 1398d3b5 Remove unrelated spec update\n 22053f57 Fix listener tests\n 6ae6df7d Add tag delete API\n 933ee1fd fix the /v2/_catalog n parameter description\n 8ef268df Add tests for tags list pagination\n df39a779 FOSSA scan enabled\n d7a2b144 add content range handling in patch blob\n 09334b5e fix typo\n 8e8d5099 add documentation how to access pull-through proxy stats\n fefc0e2b Fix html not rendering markdown link properly\n 835651e5 Release ticker resources\n 9cf39997 added pagination error to api docs\n 4da2712b added pagination to `v2//tags/list` endpoint\n febc8733 added error codes for pagination\n 226ad1e6 go.mod: update logrus to v1.8.1\n 06c8d441 go.mod: gopkg.in/yaml.v2 v2.4.0\n a49afdbd Adding in points to clarify usage of official images (#12713)\n 0a7648ed Fixes docker/distribution-library-image/issues/107\n 9e618c90 registry: verify digest and check blob presence when put manifest\n 62fc5c8a Remove autobuild\n a0aad572 Make workflow name shorter.\n 334a7e7f close the io.ReadCloser from storage drive\n 23b57027 Add docker image release workflow\n 68ce1586 fix CI dependency error\n b2ac3a28 TASK: Add codeblocks to code examples\n 1a059fe7 Populate the platform information when calling the References() method of manifest list\n 32ccbf19 Add configuration option for Redis TLS\n 43e50259 log: Include configured fields in all logs\n 8ad73297 Remove duplicate code of conduct\n 1e625d00 Added flag for user configurable cipher suites\n c432849e docs/spec/manifest-v2-2.md: fix ARM variant\n 49f7426d Bump Golang to `1.15` and Alpine to `3.12`.\n 9c43ba9d fix: disable DisableHTMLEscape on logrus json logging\n 907e7be5 Bump Logstash hook for logrus to `v1.0.0`.\n c95293bb Add Codecov badge\n 1d338749 go.mod: change imports to github.com/distribution/distribution/v3\n e7dc768a Self-signed certificate with Kubernetes fix\n 639de6a0 Fix typo for digest regexp\n 4d34a317 Correct spelling: decription -> description\n 084c0bd1 Fix typo in docu of NewURLBuilderFromString()\n f0c93f65 Fix typo in NewSimpleManager() documentation\n 5a3f698f Change Build Status badge URL\n 0517a1c7 Propose two maintainers from Mirantis\n fa289406 get rid of apache2-utils\n 6e4e8298 Update README badges\n bddb8d42 Removing travis\n edf4afcb Revert \"Merge branch 'main' of https://github.com/distribution/distribution into main\"\n 98868008 Add a basic e2e test for CI\n 402d3c94 Fixing push workflow\n b659eb06 Update ci.yml\n da9a88bc Fixing push workflow\n 64874d17 First draft of actions based ci\n b431b34f update slack channel to CNCF slack\n a63bd4d3 Add CodeQL Security Scanning\n 977c98e0 Fix broken links\n 239c368f Per distribution call, adding Steve Lasker as a maintainer to help with OCI and Notary collaboration.\n c30c5b31 Replace Arko with Milos as a maintainer\n 67c504de Update roadmap, add code of conduct file\n 78242c79 Update insecure.md for Docker Desktop (#11964)\n 07b948ea Dummy workflow to enable GitHub Actions\n 2d16db2a Add Adopters\n 911eaf03 Update README a bit\n d11c4f9a Add new maintainers\n 87cbd09f Ignore self reference object on empty prefix\n 03aaf6ab Bump Gorilla Handlers to `v1.5.1`.\n c8d90f90 Remove empty Content-Type header\n 430bf259 update http://dockr.ly links to use TLS\n 82f04d03 Remove references to obsolete engine versions\n c26fa61e Update repo normalize error message to include the name of the repo.\n 2059160c Remove Docker Toolbox docs\n e02cd812 Use https:// for links and examples\n 3ec5e7e0 Add rel=\"noopener\" to external links\n a19e1847 Fix bug in parsing domain from repository reference\n 34f13226 Fix hardcoded credential provides.\n 264e26fd Bump Redigo to `v1.8.2`.\n 545596ae Bump Gorilla Mux to `v1.8.0`.\n 1cee02e7 scripts: remove unused md2man from dev-tools\n 8a8d9152 vendor: opencontainers/go-digest v1.0.0\n 9466dd4e Update logrus to v1.6.0\n e1464fd3 Bump AWS SDK\n 95f1eea5 manifests: Return UNSUPPORTED when deleting manifests by tag\n a784441b catalog: List repositories with no unique layers\n eaeb3160 Add azure config container example (#11152)\n f361d443 clean up code because err is always nil\n 32c77af6 Clarify repo name regex intention\n 2672c0eb Relax filesystem driver folder permissions to 0777 (cont)\n 7728c5e4 docs: add redirect for old URL\n dc7801c5 Add note on Docker Hub\n 989101c8 Remove some references to enterprise products\n 9690d843 Support ECS TaskRole in S3 storage driver\n 81ba770e Fix CI failures, upgrade to Go 1.14+\n 40f4476d Remove not really implemented s3accelerate option (#10993)\n a2ed1b5e Added dist: bionic, updated go version to 1.14.x and set GO111MODULE=on\n b338d2f6 Get Docker: fix broken links and wrap markdown to 80 char (#10691)\n aee0eeb3 registry: use relative markdown links\n 55f88c35 Adding s390x support.\n 267e231d Fix various links that were generating URLs with `.md` (#10548)\n 78c2ab66 Fix gosimple checks\n cdb4ba94 Fix err shadowing in gcs driver\n bf56f348 Update oci library\n be29c05a Remove deprecated cache metrics code\n 495a4af7 Fix goimports\n 74d442a0 Consider redis.ErrNil as distribution.ErrBlobUnknown for Stat HGET\n 79589266 redis metrics\n ce101280 fix redis caching issue\n 4c7c63b5 Add cache unit test\n 800cb958 Use go-events package\n 1e25ecef Update governance and maintainers\n db3c418a Update reporting issues guidelines\n 98dcc519 vendor: update docker/go-metrics v0.0.1\n cb2a09fa Update tables from html to markdown format (#10360)\n 15f7bd29 Remove {get,head}WithContext()\n 282351e9 Use http.NewRequestWithContext()\n 58331abf Honor contexts passed to registry client methods\n 5e3911c2 update registry s3 storage driver docs to add skipverify flag\n e65b3f13 Fix CI for test updates\n efdba4f2 Increase Unit Test Code Coverage\n 1f77c9a5 Update Golang 1.13.8\n 9b6a0190 prevent dev-tools from updating go.mod\n 7e290869 vendor: update golang.org/x/crypto v0.0.0-20200128174031-69ecbb4d6d5d (CVE-2020-7919)\n 01654953 Dockerfile: use alpine 3.11\n 974375f6 re-vendor with go 1.13\n 4ae059c7 Update Golang 1.13.7 (CVE-2020-0601, CVE-2020-7919)\n 66809646 Migrate to golangci-lint\n 23f6bdd7 Use same env var in Dockerfile and Makefile\n fdb1abd3 Added Nginx Recipe Redirect\n 6ca7b9e9 Fix TestRegistryAsCacheMutationAPIs\n f5e84a49 Update readme and contributing docs\n 0f5e2753 Fix typo cloudfront updatefrenquency\n c9c33243 Add unit tests for BlobEnumerator\n 5538da49 fixes to make layersPathSpec work\n fa7d9494 allow Repository.BlobStore to enumerate over blobs\n cf771137 add pathspec for repo _layers directory\n b4694b0d Fixing broken table\n 070cc010 bump golang to 1.13.4\n f580993c fix typo\n cc97b94f use travis, not circle, build badge\n 07a50201 Adding deprecated schema instructions\n 1c481d34 registry: Fix typo in RepositoryRemover warning\n a994bb83 use latest version of alpine when building the Docker container\n d6167089 removing section for Chinese mirror\n c486db2d make it possible to wrap the client transport in another one\n dfcc7bcc [sec] nginx/compose: Drop aforementioned loophole\n 92d213d2 allow for VERSION and REVISION to be passed in during docker builds\n dd3bdee2 implement Repository Blobs upload resuming\n 898b1f2a test httpBlobUpload.Write method\n c5d5f938 fast-stop ServeBlob if we're doing a HEAD request\n 3800c47f Implement Repository ServeBlob\n a45e5cb1 handle create blob if the uuid couldn't be retrieved from headers or URL\n 8b31a894 deduce blob UUID from location if it wasn't provided in the headers\n 94097512 extract blob upload resume into its own method\n b23dd1ef swift: correct segment path generation\n afe29bb6 update the golang compiler version and the versions of several dependencies\n 45b2d049 use latest version of alpine when building the Docker container\n 5223c274 migrate to go modules from vndr\n 8f9c8094 replace rsc.io/letsencrypt in favour of golang.org/x/crypto\n 414cebd4 Update link to DTR\n 0e2d080a append the written bytes to the blob writer's size\n 5afbf324 fix no error returned in fetchTokenWithOAuth\n 74f429a5 Fix typo: offest -> offset\n 51bb5cee import alicdn package\n fd77cf43 change package name & format document\n c18c6c33 S3 Driver: added comment for missing KeyCount workaround\n f8777265 Fix s3 driver for supporting ceph radosgw\n 3390f32a fix Context issue\n ae91d1f4 fix ci issue\n 6e10631d fix default cdn auth duration\n e1e72e95 Fix cloudfront documentation formatting\n f9a05061 Bugfix: Make ipfilteredby not required\n a683c7c2 Fixes #2835 Process Accept header MIME types in case-insensitive way\n bbc9885a fix func name\n 92a64367 rename the metrics label\n 3be1cdec Update help.md\n d5a615b8 update the event number\n 09a63caa run go fmt and goimports\n 228bafca run go fmt\n 76da6290 add label to the metrics\n 8b706168 Add notification metrics\n ec6566c0 Log authorized username\n 3aa2a282 support alicdn middleware\n 297ba124 Use consistent formatting for notes\n 48818fde Remove err nil check\n da8db466 Fix gometalint errors\n 43b914b6 Update nginx.md\n b98fb58a Document registry s3 transfer acceleration option.\n 560471b5 Update deploying.md\n 582d8e62 Revert \"Fix error (small change, only 1 line)\"\n 06205627 Fix error\n bda79219 Add code to handle pagination of parts. Fixes max layer size of 10GB bug\n 15b02047 registry: fix binary JSON content-type\n cdb62b2b Registry - make minimum TLS version user configurable\n c7386154 Update insecure.md\n 7df881dc change default Dockerfile to install ssl utils\n f9d531c4 404 registry API\n 0ac367fd Add reference.ParseDockerRef utility function\n eb1a2cd9 default autoredirect to false\n f89f0867 Update nginx.md\n b7839211 Update doc for BYOK support in OSS storage driver\n 90bed671 Support BYOK for OSS storage driver\n 01ceef9f Restoring open source registry garbage collection page\n 1251e51a better name and updated tests\n 9ebf151a API to retrive tag's digests\n e92760a3 Spelling revision\n 2fda032d Delete tag-pruning.md\n b0bb8437 Delete garbage-collection.md\n 50dacc55 Initial draft of product manual for tag-pruning\n 71d02b10 Add online garbage collection feature and known limitation as described on DTR Workshop doc\n f04f6208 Revert \"Revert \"Merge branch 'master' of github.com:docker/docs-private into test-branch-2\"\"\n 88038ffd Revert \"Merge branch 'master' of github.com:docker/docs-private into test-branch-2\"\n b9c4182e Revert \"Revert \"Merge branch 'master' of github.com:docker/docs-private into test-branch-2\"\"\n 2df45044 Revert \"Merge branch 'master' of github.com:docker/docs-private into test-branch-2\"\n 7eac5fad Revert absolute path change\n bfd7156f Grammatical and spelling updates\n 955f7ef6 fix: configuration reference link\n 8112d01b nginx.md: Add note about potential security isues\n ff786644 Update deploying.md\n f497e79c Update part2.md (#6475)\n 1b6e19d6 Update link to Docker Trusted Registry (#6479)\n 9042088f Fix \"Run the registry as a service\" link (#6289)\n f0fe5c38 registry/filesystem: mention umask (#6276)\n e80e5f2e Update swift.md (#6054)\n 4a9ec817 Update azure.md (#6053)\n c594eb1f Mention that rootdirectory prefix has to be pre-existcreated\n 198ebadc Fix links not rendering properly (#6049)\n 35cca3f0 Update compatibility.md (#6043)\n db6444ac Update mirror.md\n 947af10c Update insecure.md\n 1edd9dcc Update notifications.md\n a92ed35a Fix port requirement for SSL of docker registry (#5973)\n 09d8e4bd Favor docker format of commands (#5914)\n f1fb0683 Various copyedits to reduce future tense, wordiness, and use of 'please' (#5788)\n b5bbca9e Improve Cloudfront notes regarding private buckets (#5225)\n a6edcada Correct parameter names for --publish long syntax (#5457)\n a8dac1ad Navigation under \"Reference\" and \"Manuals,\" Registry warning, \"Latest\" UCP/DTR (#5469)\n 82530e5a Add alt text to images which are missing it (#5047)\n 93600752 Update docs for new publish syntax (#5323)\n 3d5f8b03 Add link to forums in registry docs (#5308)\n e6983745 Add tests for configuration parser\n c9eba1a5 Fix the pointer initialization\n d549a5cc Prefer daemon.json over command-line flag\n e25f858b Remove deprecated '-d' option to start daemon\n b5975461 Update deploying.md\n e95522ec Update notifications.md (#5045)\n e61eb68b Deploying Registry: Fixed ports on HTTPS (#4965)\n c8d82bbd Docker service registry not running correctly (Replicas 0/1) (#4641)\n 1f640d19 contraint instead of label to create Registry on node1 (#4644)\n 8b93c509 Update b.o. Error while creating Registry Service (#4465)\n 675ffdbd Fix Typo (#4575)\n fd9fc031 Use nginx image which supports bcrypt (#4489)\n f01d83d6 Update mirror.md (#4506)\n 5096a16d Update garbage-collection.md (#4317)\n e4f126c1 nginx does not support bcrypt when using auth_basic (#4332)\n 90a402d9 fix registry template plist location for launchctl (#4333)\n aa6e6971 Update compatibility.md (#4321)\n c1950e12 Update index.md (#4323)\n aa2955a7 Update index.md (#4322)\n 3ae7d9ca Update insecure.md (#4318)\n e98a162c Update osx-setup-guide.md (#4316)\n d18e3a63 Update filesystem.md (#4324)\n a2500623 Add China registry mirror section (#84)\n a9549228 Fix borked link (#4097)\n a1088938 Remove sentence about super old Docker (#4099)\n 2aa6e2ae Documentation typo fix (#4087)\n c2bbc7ea fix default secrets path in container (#4011)\n 3c1aeebc Fix links to subtopics in index.md files by include full path (#4054)\n 23c116b7 Fix link to requirements (#3970)\n a59d321e Fix link to requirements in Nginx recipe (#3969)\n c6f6c44e Remove v2-registry-auth image (#3965)\n cb3f2ace Update mirror.md\n cf36ad3c Improve tip on log messages (#3888)\n 82998e10 Add tip about error message in registry cache (#3874)\n b19b19cc Fixed spelling of 'exammple' (#3769)\n 31619aed Reorganize registry deployment guide (#3485)\n 8ac75794 Point to newer registry topic (#3719)\n 55aec8a4 htpasswd passwords should use bcrypt hashing (#3401)\n c60e7107 Add use case for China registry mirror (#3682)\n 6508f123 Reword sentence\n bbbafb0e Update notifications.md (#3399)\n efa76b98 Update oss.md (#3448)\n 4da4fc02 Update compatibility.md (#3445)\n 528d2279 Update insecure.md (#3444)\n 78d25013 Update garbage-collection.md (#3443)\n a6fc3fa7 Update osx-setup-guide.md (#3442)\n 2c19d1ca Update apache.md (#3441)\n 119a48eb docs/spec: provide a valid manifest-v2-s1 example\n 3244e471 docs/spec: provide a valid manifest-list-v2-s2 example\n b9220191 Fix typo in markdown (#3371)\n 864905cf \"as mall as possible\"=>\"as small as possible\" (#3372)\n a5b2b63b Update deploying.md (#3373)\n aed6cb22 Reverted (#3393)\n 1b6da36a Add section on China registry mirror (#3379)\n 7c5b1e60 Remove registry/architecture.md from docs repo (#3365)\n 9161e93e Update introduction.md (#3353)\n 4f582ad9 Add instructions to remove also proxy_set_header Host (#3156) (#3342)\n ed56794d Use daemon.json everywhere possible (#3252)\n eb2763d8 Update index.md (#3102)\n f1899170 Self-signed certificates setup on Windows (Part 1) (#2909)\n b5889701 add warning class and a linebreake to the warning blogquote (#2937)\n 7cf8dc7c Spelling mistakes (#2970)\n 547233ee replaced docker/docker with moby/moby (#2879)\n b2635632 Updated the registry documentation to include an example for the config.yml file\n 13022287 init\n 39a8fcd8 Fix table formatting and endpoint template examples (#2726)\n 5cf92032 Updating table to remove extra closing table row (#2725)\n fde52284 Fix some links (#2584)\n 00d1f820 Fix spelling errors (#2409)\n eb77e2f7 Docker 17.03 release (#2050)\n 6f785666 Add info about fetching credentials from IAM role\n d12fce88 Change erroneous push to pull (#1555)\n ee6aa7d3 Update links to DTR\n 042cf0f5 Updates broken links for #1068\n 8edea601 Correct wrong default value\n 943860f0 Update gcs.md\n 09fdbf47 Lossless Image optimization (#959)\n 5a2e1bf6 improve formatting on insecure registry openssl command (#873)\n 5e614987 Do not add second Api-Version header\n 81498934 Disable parameters substitution in heredoc\n cc72cef9 Transform html into markdown\n c7bc40bc registry/azure.md: fix broken syntax/links\n ea84d17e Improve section about AWS policy\n c7dab7f3 fix typo in spec/api.md\n 82eb4bc3 Pull distribution reference docs from upstream\n cc71beda fix type of keywords entry in frontmatter (in /registry/) (#517)\n bc1e1621 Change instances of alias: to redirect_from:\n 908a1f14 Converges titles to imperative-form, front-matter based, and sentence-case (#438)\n 8c922b0c Revert \"Merge pull request #437 from gdevillele/fix_keywords_format\"\n 3d147416 fix more frontmatter keywords values (#439)\n 2ecf05a7 absolute links to docs.docker.com are now relative links\n 81b038a8 removed menu.md files\n e63f5950 Formatting fixes\n 8e8290bd Formatting fix\n bd9f8c7f Update mirror.md\n 70c7657c Update branding for macOS\n b206e8b2 Add note about configuring a registry cache with delete enabled\n 50bd0cce Delete api.md.tmpl\n 677eaaa3 Change 'draft: true' to 'published: false' for Jekyll\n 9204a649 Rendering fixes, part 2\n 856dacad Content rendering fixes\n b3b099f0 Removing merge detritus\n 9e3c43c6 Removing empty front-matter\n 2d32aa43 Fixed typos\n 0fb207c8 Convert TOML to YAML, tweaks to work with Jekyll\n dd414106 Moved registry docs to registry subdirectory\n b2da4f33 Moved imported orca docs into ucp directory\n a56d36fd Initial commit -f https://github.com/docker/orca\n be487836 Moved docker-trusted-registry imported docs to apidocs and docker-trusted-registry subdirectories\n d4f01b81 Initial import of https://github.com/docker/dhe-engine\n e9de6f2a Moved cs-engine docs to the cs-engine subdirectory\n 734f334d Initial import of https://github.com/docker/cs-docker\n f0a62ccf Initial repo commit\n 1f3cc591 Document TOOMANYREQUESTS error code\n 8d287d43 Improve flag help consistency, and update docs\n 93f029e8 Allow v1 search to use v2 auth with identity token\n c8aba9b4 registry: avoid formatting errors with %#v\n 9e211edc Changes the client Tags All() method to follow links\n 1c5cb127 fixed s3 Delete bug due to read-after-delete inconsistency\n 6eadd3f4 fix typos\n d2e5d5c2 If resumable digest support is disabled, detct this when closing the blobwriter and allow the close to continue. Also update the name of the function.\n 7b97265d Expose EndpointType parameter in swift storage driver\n 9a27ea73 Add support for Let's Encrypt\n a58c7430 Fix logrus formatting\n 5de53e34 Update \"Accept\" header parsing for list values\n f3ae941c Add option to get content digest from manifest get\n ec7c5913 Clarify API documentation around catalog fetch behavior\n 4e09e1b6 registry: use const for status code 429\n 08426ad1 Add `--limit` option to `docker search`\n 6d0db0e2 fix typos\n d265da73 fix typos\n d3b61b61 Remove signature store from registry. Return a generated signature for manifest pull.\n f1b815ed Pass in `app` as context to apply{N}Middleware\n 04476ff5 Add Unit test to daemon.SearchRegistryForImages…\n dd66aabe Add support for layers from foreign sources\n 50e6eef0 Add support for blobAccessController middleware\n bb841197 Add 'us-gov-west-1' to the valid region list.\n e57fd4fa StorageDriver: GCS: allow Cancel on a closed FileWriter\n af00617b Blobwriter: call BlobWriter.Size after BlobWriter.Close\n ddec5464 StorageDriver: Test case for #1698\n 1e05d81a Don't wrap thead limits when using a negative int\n db274d3c registry: do not use http.StatusTooManyRequests\n 8762c800 registry: type too many requests error\n cbae4dd7 Implement regulator in filesystem driver\n 28be207b Pass through known errors\n 2a2577d7 When a blob upload is committed prevent writing out hashstate in the subsequent close.\n 63d28d3b Add a test with a missing _manifests directory\n 3a034b47 Move garbage collect code into storage package\n 898fdb48 Ensure GC continues marking if _manifests is nonexistent\n 8775da93 Fix wording for dry-run flag in useage message for garbage collector.\n a88088a5 Regulate filesystem driver to max of 100 calls\n 54edbdfe separate the go/non-go imports and reorder\n c4778ea1 Respect ALL_PROXY during registry operations\n 3336cc13 modify redirect test to include port\n fba2e3a2 scheme and host mandatory in baseurl\n cec7248b separate the go/non-go imports and reorder\n d11a9795 Sorting completed parts by part number for a better accordance with the S3 spec\n 56480ce8 Add default `serveraddress` value in remote API `/auth`\n 6615b77a Add blobWrtiter.Close() call into blobWriter.Commit()\n a691d82a add middleware storage driver for redirect\n fdb0fb77 add cn-north-1 to valid check\n ea5abc99 wait for DLO segments to show up when Close()ing the writer\n 346bfed9 docs + fix test Signed-off-by: Nikita Tarasov \n 007af250 fix test Signed-off-by: Nikita Tarasov \n b55719da test\n 63fe2d14 Update swift.go\n 84aa48b5 detect outdated container listings during Stat() and getAllSegments()\n c6552412 Only check validity of S3 region if not using custom endpoint\n 86ca50df Ensure we log io.Copy errors and bytes copied/total in uploads\n 53a8806b 1.change validateNoSchema into validateNoScheme 2.change schema into scheme in docs and some annotations.\n 3d4b652b Update the gc documentation.\n 31ece3d3 Fix signature handling with GC.\n 15e3ffb3 Add a --dry-run flag. If enabled this will print the mark and sweep process with removing any files.\n 59ef6d2d garbagecollect: Clean up errors\n b015bf06 don't swallow errors in Swift driver's GetContent()\n 091ad891 Remove the example\n 0f09bcd1 Add documentation for how to register new StorageDrivers\n 0f4b8d34 Correct login debug log message\n d52cbf92 utulize config log format within gc\n 3dd506d8 Enable URLs returned from the registry to be configured as relative.\n f93d1660 Propogate tag as a functional argument into the notification system to attach tags to manifest push and pull event notifications.\n 5f38f0b1 fix manifest revision search, closes #1535\n e6b317f9 registry: client: auth: type errors\n 20bba402 registry: client: repository: close response body\n 7f7cb821 *: fix response body leaks\n b4d9ae60 registry: endpoint_v1: fix outdated comment\n d5160a02 daemon: update: check len inside public function\n 9638c764 Include status code in UnexpectedHTTPResponseError\n 98140ca0 Update missing blob error checking with latest Azure API\n c94c2a47 Don't return empty errcode.Errors slices\n 789c90ac registry/storage/driver/s3-aws kms support\n 2f170573 Remove Windows-specific default registry definitions\n eea043dc Removes ceph rados driver in favor of Swift API gateway support\n 7caf33d6 Move registry service options to the daemon configuration.\n 3e2da426 fix some typos.\n 19cfa36e Added support to specifiy custom endpoint\n cbd95acb Add support for identity token with token handler\n 259ef42c Add client ID to token fetch to GET endpoint\n 490a2f5a Updates Swift driver to support new storagedriver.FileWriter interface\n 5b48c815 Support FileWriter interface for OSS storage driver\n 9432b18e Storagedriver: GCS: add chunksize parameter\n 115a6e58 Storagedriver: GCS: implement resumable uploads\n 34891eb7 StorageDriver: Testsuite: call Close before getting Size\n c69c8a32 Adds new storagedriver.FileWriter interface\n 5ca3b616 Fix two misspellings in source code comments\n e09891e2 URL parse auth endpoints to normalize hostname to lowercase.\n 2494c28e [driver/s3aws] Update s3aws driver parameter parsing to match s3goamz\n c536ae90 Fix oauth cross repository push\n e0420f40 Add offline token option\n d6a17782 Add post token implementation\n 6a6c22e2 Add options struct to initialize handler\n f49bf187 Fetch token by credentials and refresh token\n 396a73de StorageDriver: GCS: remove support for directory Moves\n 065ddf01 Login update and endpoint refactor\n e123ca92 Remove email address field from login\n b7d34241 Implements garbage collection subcommand\n d16f3046 Fix some typos in comments and strings\n ecc560f4 Commit blob with known size\n 29e0411f Enable proxying registries to downgrade fetched manifests to Schema 1.\n 776e01f8 Defined ErrAccessDenied error\n c58aa8a5 compare error output in tagstore unit test\n 9a2cef38 Change APIEndpoint to contain the URL in a parsed format\n 18fd1c07 Extend authChallenger interface to remove type cast.\n 2e824482 Fix description of StorageDriver.WriteStream\n 20bc910c Cleanup: remove unused log\n c6871737 [driver/s3aws] Fix TestStorageClass\n 7d16fee7 To avoid any network use unless necessary, delay establishing authorization challenges with the upstream until any proxied data is found not to be local.\n c21f4eb5 Add credential authenticator interface\n 7ca24a7f fix gofmt\n ad6a0735 closes #1461, enhance log message of oss driver\n d5a38e4c Adds new s3 driver using aws-sdk-go instead of goamz\n 4bb475cd Push/pull errors improvement and cleanup\n cffb4bbb Export \"no basic auth credentials\" as an error value\n f77c82eb Typo fixes in comments\n 956ece5c Add option to disable signatures\n ae595179 Fix schema1 manifest etag and docker content digest header\n 4bb5f808 Improves flexibility of configuration handling for S3 driver\n c89f5b37 Add information about manifest content types to API spec\n 9894643c Correct type for repo reference Signed-off-by: Richard Scothern \n 6158eb54 Rename Name method of Repository to Named\n 95b9c728 read the actual number of bytes according to the initial size.\n bbf983c0 On redirect, only copy headers when they don't already exist in the redirected request\n 091c12f8 Print the correct token expiration time Signed-off-by: Richard Scothern \n 95a50c72 Correct ErrAuthenticationFailure message\n a2ade36e Adds test for S3 storage class configuration option\n 8e791082 Adds \"storageclass\" configuration parameter for S3 driver.\n f41a408e Adds custom registry User-Agent header to s3 HTTP requests\n badd8c49 Update auth context keys to use constant\n 8e571dff Add a CheckRedirect function to the HTTP client\n a58b7625 Support range requests in the client's httpReadSeeker\n 377f5564 Respond with 401 when there is an unauthorized error from the registry.\n 3e570e59 Invalidate the blob store descriptor caches when content is removed from from the proxy. Also, switch to reference in the scheduler API.\n a7740f5d Correct test digest lengths and enable all unit tests\n f757372d Add manifest put by digest to the registry client Signed-off-by: Richard Scothern \n 1eed0ddd Update token header struct to use json.RawMessage pointer\n 7dee3d19 Storage: remove bufferedFileWriter (dead code)\n 586b3d47 Storage: blobwriter.Write/Seek test case\n 6149a8c6 Change URLBuilder methods to use references for tags and digests\n e9692b80 Use reference package internally\n e9bcc96a If the media type for a manifest is unrecognized, default to schema1\n 59254013 Handle nonstandard token endpoint errors\n 0e06c1ca Clarify error message when a .cert file is missing a corresponding key\n 59a96077 StorageDriver: GCS: retry all api calls\n ffc95277 StorageDriver: Test suite: improve cleanup\n f9a3f028 Fix content type for schema1 signed manifests\n 3da0ee00 Do not require \"charset=utf-8\" for a schema1 with content type application/json\n 6e85a8d9 Remove the use of dockerversion from the registry package\n 985c0d60 StorageDriver GCS: try google.DefaultTokenSource first\n d3d9282a In testsuites.go, enlarge the size of randomBytes to 128M to fix the crash of running TestConcurrentStreamReads\n 67aef89b Splits up blob create options definitions to be package-specific\n e0d4a45c Fixes cross-repo blob mounting in the BlobUploadHandler\n 5d35fa34 Change the parameters to the GCS drivers to allow CircleCI testing.\n 36023174 Adds functional options arguments to the Blobs Create method\n 93b65847 Fix manifest API unit tests Signed-off-by: Richard Scothern \n 44d95e58 Allows token authentication handler to request additional scopes\n 41e30f62 Adds cross-repository blob mounting behavior\n bbabb55c Move MediaType into manifest.Versioned\n fce65b72 Recognize clients that don't support manifest lists\n 7ef71988 Add support for manifest list (\"fat manifest\")\n 66a33baa Add API unit testing for schema2 manifest\n f14c6a48 Recognize clients that don't support schema2, and convert manifests to schema1 on the fly\n 9c13a829 Factor out schema-specific portions of manifestStore\n 981a573e Modify import paths to point to the new engine-api package.\n 5c6fdc71 GCS Storagedriver: fix test failure caused by #1187\n bf1e41a9 GCS driver: fix retry function\n fea0a7ed Remove tags referencing deleted manifests.\n 72432a70 Show the legacy registry flag only in the daemon arguments\n 4f4b3d52 Remove usage of pkg sockets and tlsconfig.\n b89c4e8c Print error for failed HTTP auth request.\n 5dc714b3 Replace 404 to http.StatusNotFound\n 165507a6 Relaxes filesystem driver permissions to 0777 (dirs) and 0666 (files)\n cf4fdc1b Serve blobs when a storage driver supports redirects but are disabled\n 9c7dc47d use the scheme and host from x-forward-proto and x-forward-host if they exits and correct the scheme for Location header during image upload\n dc6944d9 In HEAD request for missing resource, only 404 NOT FOUND is returned\n 693eb14e Allow v1 protocol fallback when pulling all tags from a repository unknown to v2 registry\n 71ddfd40 When a manifest is not found, allow fallback to v1\n 8efb9ca3 Implementation of the Manifest Service API refactor.\n 5717c824 Do not fall back to the V1 protocol when we know we are talking to a V2 registry\n 46683f61 Update Named reference with validation of conversions\n 9b8f1a08 Add own reference package wrapper\n a077202f Remove tarsum support for digest package\n 14d27ab7 Move the TestEncodeAuth test to the correct package.\n 0a56a1cb Move registry.SearchResult types to api/types/registry.\n 58232e50 Simplify digest.FromBytes calling convention\n 55fad57a Remove timeout shared function.\n aead731d Move IndexInfo and ServiceConfig types to api/types/registry/registry.go\n 6fc54d04 Move AuthConfig to api/types\n 11e8c03c Fix typos found across repository\n f7bb65ca Refactor ResolveAuthConfig to remove the builder dependency on cli code.\n 4ebaacfc Remove unnecessary stat from blob Get method\n cfd2f039 Support large layer for OSS driver\n 00cca12e Improved push and pull with upload manager and download manager\n d68acc86 storage/driver/s3: adjust s3 driver to return unmunged path\n d38e02c5 Print error for failed HTTP auth request.\n 533c912d Fix the issue for listing root directory\n 3a5c6446 Fix for stevvooe:check-storage-drivers-list-path-not-found in OSS driver\n aa08ced9 driver/swift: treat empty object list as a PathNotFoundError\n c39158d4 driver/rados: treat OMAP EIO as a PathNotFoundError\n 10f7b7bf storage/driver/s3: correct response on list of missing directory\n dc5b71af storage/driver/base: use correct error format style\n c46d32bf driver/filesystem: address filesystem driver on behavior of List\n 4829e968 registry/storage/driver: checking that non-existent path returns PathNotFoundError\n 03778bd1 Add missing bounds in ContinueOnError\n be2985a3 storage/driver: decrease memory allocation done during testsuite\n ecb84029 Make the catalog more efficient\n fb214214 Add clearer messaging around missing content-length headers. Signed-off-by: Richard Scothern \n d6cc3296 Fix comment for PathRegexp\n b596464d Use bulk delete to remove segments in Swift driver\n 1f5f9bad Validate digest length on parsing\n bf2cc0a9 Avoid stat round-trips when fetching a blob\n b7d246ef rename req to resp\n 6693e966 storage: add further tests for Walk implementation\n 93f92498 storage: enforce sorted traversal during Walk\n 7bf8f846 storage: correctly handle error during Walk\n e1cf7c41 Map error type to error code\n beeff299 Use well-known error type\n 82999376 Verify manifest name format\n 6fb61830 Verify manifest name length\n a9a1b579 Remove name verification\n 8257e8c4 Use case of type name\n 73a20910 Check if CertsDir is not empty\n 6bb27bcf move defer statement for readability\n 7efcb749 Update daemon and docker core to use new content addressable storage\n dde006ba registry/registry.go: simplify logical expression\n 3eeebe7b Make NormalizeLocalName to not reach the network to normalize names.\n 18207042 Fix for #17168 misleading pull error\n accfa46f Fix empty delete requests with Swift fs driver\n 9516a01c dockerversion placeholder for library import\n f01a70c8 De-obfuscate error message\n 78b6d648 Before allowing a schema1 manifest to be stored in the registry, ensure that it contains equal length History and FSLayer arrays.\n e79324ed Add a generic error type to capture non-typed errors\n 7840a5bc Fix for issue 664: https://github.com/docker/distribution/issues/6…","shortMessageHtmlLink":"docker-distribution: update to v3.0.0-beta.1"}},{"before":"e96da98e4038f5388596b4294ac3d8425b2dacb2","after":"c138943fed29e768df990061c30d6f071b98ffc3","ref":"refs/heads/master","pushedAt":"2024-07-12T17:18:37.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"mmitchel","name":"Michael Mitchell","path":"/mmitchel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/124963?s=80&v=4"},"commit":{"message":"podman-compose: switch to main branch\n\nThe upstream project has made the \"interesting\" decision to\ndelete the stable branch and move to \"main\" for recent\nreleases. So rather than being able to simply switch for our\nupdates, we have to switch to main on all releases that had\npodman-compose recipes using the stable branch.\n\nLuckily, the commit hashes haven't changed, so we only have\nto modify the branch in the SRC_URI.\n\nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"podman-compose: switch to main branch"}},{"before":"8b356b91ed0d4bcab72350a2ddcef880f4fa5c26","after":"ef76369f844f8b5afea416372172824987ad4fec","ref":"refs/heads/kirkstone","pushedAt":"2024-07-12T17:18:37.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"mmitchel","name":"Michael Mitchell","path":"/mmitchel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/124963?s=80&v=4"},"commit":{"message":"podman-compose: switch to main branch\n\nThe upstream project has made the \"interesting\" decision to\ndelete the stable branch and move to \"main\" for recent\nreleases. So rather than being able to simply switch for our\nupdates, we have to switch to main on all releases that had\npodman-compose recipes using the stable branch.\n\nLuckily, the commit hashes haven't changed, so we only have\nto modify the branch in the SRC_URI.\n\nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"podman-compose: switch to main branch"}},{"before":"d9f8c941752c238eef5bd54a4b5e1b5c0a9ef4db","after":"02ded11c0166bb81c29992998fb0a07668f7486d","ref":"refs/heads/master-next","pushedAt":"2024-06-25T23:49:44.000Z","pushType":"push","commitsCount":3,"pusher":{"login":"mmitchel","name":"Michael Mitchell","path":"/mmitchel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/124963?s=80&v=4"},"commit":{"message":"netavark: Improve the ptest output\n\n* The previous ptest result show as ✓ or ✗ , improve the result to\nPASS or FAIL.\n\n* Skip some cases related to sit0 device(sit kernel module) and\nfirewalld.\n\n* Add nftables to RDEPENDS for netavark-ptest as 250-bridge-nftables.bats\nneeds it.\n\nSigned-off-by: Mingli Yu \nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"netavark: Improve the ptest output"}},{"before":"e96da98e4038f5388596b4294ac3d8425b2dacb2","after":"d9f8c941752c238eef5bd54a4b5e1b5c0a9ef4db","ref":"refs/heads/master-next","pushedAt":"2024-06-24T12:04:18.000Z","pushType":"push","commitsCount":4,"pusher":{"login":"mmitchel","name":"Michael Mitchell","path":"/mmitchel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/124963?s=80&v=4"},"commit":{"message":"moby: update to v26.1.4\n\nBumping moby to version v26.1.4-4-gf5334644ec, which comprises the following commits:\n\n c1d4587d76 builder/mobyexporter: Add missing nil check\n daba2462f5 docs: api: image inspect: remove Container and ContainerConfig\n 17315a20ee vendor: github.com/containerd/containerd v1.7.18\n cbd94183ab update containerd binary to v1.7.18\n 3115daaa91 update to go1.21.11\n 12072173df Update containerd to v1.7.17\n 92f00d41ba vendor: github.com/Microsoft/go-winio v0.6.2\n a046857fbf vendor: golang.org/x/tools v0.16.0\n 476d9314d0 vendor: golang.org/x/mod v0.17.0\n 4021fa775e update docker-py to 7.1.0\n 0fd5efe64a docs/api: add Scope, ConfigOnly, ConfigFrom, Peers (v1.41 - v1.45)\n 1017246d24 api: swagger: Network: add Peers\n fbfa1bcc96 api: swagger: POST /networks/create: document Scope, ConfigOnly, ConfigFrom\n e12db89eef api: swagger: Network: inline examples, and add ConfigOnly, ConfigFrom\n 5838467405 docs/api: POST /networks/create: inline examples per-field (v1.41 - v1.45)\n 1033f561af api: swagger: POST /networks/create: inline examples per-field\n 0fa6816991 api/types: NetworkCreate: add GoDoc\n eaad6f503d don't depend on containerd platform.Parse to return a typed error\n fda7b48363 Fix issue where node promotion could fail\n dbec963cee integration/TestDiskUsage: Make 4096 also a 'empty' value\n e35c6f5625 Dockerfile: update containerd binary to v1.7.17 (static binaries and CI only)\n 06e19ec444 Explicity write http headers on streaming endpoints\n c21fe3efa3 Forward DNS requests into --internal networks\n 9326cda7bf Do not forward DNS requests to self.\n 76fcf9a8e0 apparmor: Allow confined runc to kill containers\n 10739af81a update to go1.21.10\n 2f5bbbe16b Option to avoid deleting the kernel_ll address from bridges.\n 40618081f1 Allow for a read-only \"/proc/sys/net\".\n 2c91196921 Update containerd to v1.7.16\n c9689eccf5 vendor: update buildkit to v0.13.2\n 7d95fe8db5 c8d/list: Ignore unexpected image target\n 6667e96dad Include more details in errnotManifestOrIndex\n ab570ab3d6 nil dereference fix on image history Created value\n 7532420f3b container/SetupWorkingDirectory: Don't mutate config\n a4d5b6b4d0 builder/normalizeWorkdir: Always return cleaned path\n 6c68be24a2 Windows DNS resolver forwarding\n 745e2356ab Update tags.cncf.io/container-device-interface to v0.7.1\n 0d6a1a212b vendor: github.com/opencontainers/runtime-spec v1.2.0\n f5209d23a8 daemon: add nolint-comments for deprecated kernel-memory options, hooks\n f07644e17e Add netiputil.AddrPortFromNet()\n d3c051318f daemon/cluster/executor: Add volume `Subpath`\n 5368c3a04f vendor: github.com/moby/swarmkit/v2 master (f3ffc0881d0e)\n f51e18f58e Fix typo\n 57dd56726a Disable IPv6 for endpoints in '--ipv6=false' networks.\n 9954d7c6bd Run ipvlan tests even if 'modprobe ipvlan' fails\n cd7240f6d9 Stop macvlan with no parent from using ext-dns\n 17b8631545 Enable DNS proxying for ipvlan-l3\n 5ae5969739 vendor: github.com/containerd/containerd v1.7.15\n 3485cfbb1e update containerd binary to v1.7.15\n fb92caf2aa ci/validate-pr: Use `::error::` command to print errors\n 61269e718f github/ci: Check if backport is opened against the expected branch\n d8b768149b Move dummy DNS server to integration/internal/network\n 329d403e20 update to go1.21.9\n d66589496e vendor: golang.org/x/net v0.23.0\n e1ca74361b vendor: golang.org/x/net v0.22.0, golang.org/x/crypto v0.21.0\n cf933115b6 Minor fix for illumos support\n 9160b9fda6 save: Remove platform from config descriptor\n 0a48d26fbc Fix cases where we are wrapping a nil error\n c4689034fd daemon: don't call NetworkMode.IsDefault()\n 4eed3dcdfe api: normalize the default NetworkMode\n c187f95fe1 CONTRIBUTING.md: update Slack link\n aff003139c ci: update workflow artifacts retention\n 1014f481de Restore the SetKey prestart hook.\n fde80fe2e7 Restore the SetKey prestart hook.\n 14a8fac092 chore: fix mismatched function names in godoc\n 61e2199b78 AUTHORS,.mailmap: update with recent contributors\n ea72f9f72c Dockerfile: update docker CLI to v26.0.0\n 22726fb63b api: document changed behavior of the `Aliases` field in v1.45\n 3312b82515 c8d/list: Add a test case for images sharing a top layer\n ad8a5a5732 c8d/list: Fix diffIDs being outputted instead of chainIDs\n 0c2d83b5fb c8d/list: Handle unpacked layers when calculating shared size\n f696e0d2a7 Dockerfile: avoid hardcoding arch combinations for delve\n 3d2a56e7cf docs/api: add documentation for API v1.45\n 731a64069f c8d/list: Generate image summary concurrently\n dade279565 c8d/list: Add `Images` benchmark\n e7c60a30e6 vendor: github.com/moby/buildkit v0.13.1\n 2e4ebf032a c8d/list: Pass ctx to setupLabelFilter\n 153de36b3f c8d/list: Add empty index test case\n 4ff655f4b8 resolvconf: add //go:build directives to prevent downgrading to go1.16 language\n 1c03312378 integration: Remove Parallel from TestDiskUsage\n f512dba037 c8d/list: Fix premature `Images` return\n 89dc2860ba c8d/list: Handle missing configs in label filter\n 6f3892dc99 c8d/list: Don't setup label filter if it's not specified\n fe8fb9b9a1 Dockerfile: update mvdan/shfmt to v3.8.0\n 4bd30829d1 Dockerfile: update docker compose to v2.25.0\n 971562b005 Dockerfile: update docker CLI to v26.0.0-rc2\n d742659877 rootless: fix `open /etc/docker/plugins: permission denied`\n 4f46c44725 Dockerfile: update xx to v1.4.0\n 25c9e6e8df Makefile: generate-files: fix check for empty TMP_OUT\n 762ec4b60c plugin: fix mounting /etc/hosts when running in UserNS\n 7b414f5703 daemon: move getUnprivilegedMountFlags to internal package\n 790c3039d0 libnet: Don't forward to upstream resolvers on internal nw\n 10bdc7136c builder-next: Add env-var to override runc used by buildkit\n 1ca89d7eae vendor: google.golang.org/protobuf v1.33.0, github.com/golang/protobuf v1.5.4\n f40bdf5f63 Dockerfile: update compose to v2.24.7\n 3f73d23ea0 Dockerfile: update buildx to v0.13.1\n 388ecf65bc c8d: Send push metrics to prom\n bb3ab1edb7 c8d: Send pull metrics to prom\n da245cab15 c8d: Send history metrics to prometheus\n 1cfd763214 c8d: Send image delete metrics to prometheus\n 0ce714a085 images: Export the image actions prometheus counter\n bcb4794eea Be more explicit about non-TLS TCP access deprecation\n 0d5ef431a1 docker-py: Temporarily skip `test_commit` and `test_commit_with_changes`\n 03cddc62f4 api/image-inspect: Remove Container and ContainerConfig\n ec19fd6fed vendor: github.com/containerd/containerd v1.7.14\n d19f6d4b6d vendor: github.com/containerd/ttrpc v1.2.3\n a6a445d86b set-up-git.md: clarify URL in git clone command\n 294fc9762e volume: Don't decrement refcount below 0\n eef352b565 devcontainer: Use a separate devcontainer target\n 5a009cdd5b inte/networking: add isIPv6 flag\n 2f1a32e3e5 c8d/list: Skip images with non matching platform\n 72f1f82f28 c8d/list: Remove outdated TODO\n 52a80b40e2 c8d/list: Extract imageSummary function\n 288a14e264 c8d/list: Simplify \"best\" image selection\n b37ced2551 c8d/list: Count containers by their manifest\n a535a65c4b c8d/list: Combine size\n 582de4bc3c c8d/list: Add TestImageList\n a6e7e67d3a specialimage: Return optional ocispec.Index\n 1b108bdfeb daemon/c8d: Cache SnapshotService\n 74e2f23e1a daemon/c8d: Use i.images and i.content\n e8496b1ee4 imageService: Extract common code from `MakeImageCache`\n d66177591e c8d/cache: Use the same cache logic as graphdrivers\n bf30fee58a image/cache: Refactor backend specific code\n f5a5e3f203 golangci-lint: enable dupword linter\n 4adc40ac40 fix duplicate words (dupwords)\n 8921897e3b Ignore bad ndots in host resolv.conf\n 37545cc644 builder-next: fix missing lock in ensurelayer\n ef5295cda4 Don't configure IPv6 addr/gw when IPv6 disabled.\n 49b77753cb builder-next/export: Use leaseutil for descref lease\n c4fc6c3371 builder-next/executor: Replace removed network.Sample\n 0f30791a0d vendor: github.com/moby/buildkit v0.13.0\n 4e8d9a4522 Add IPv6 nameserver to the internal DNS's upstreams.\n 06628e383a remove repetitive words\n 21835a5696 inte/networking: rename linkLocal flag into isLinkLocal\n b32cfc3b3a dockerd-rootless-setuptool.sh: check RootlessKit functionality\n 49fd8df9b9 Dockerfile: update RootlessKit to v2.0.2\n 72ec187dfe go.mod: github.com/rootless-containers/rootlesskit/v2 v2.0.2\n 83cda67f73 go.mod: golang.org/x/sys v0.18.0\n 57b7ffa7f6 update to go1.21.8\n cadb124ab6 daemon: overlay2: remove world writable permission from the lower file\n b2921509e5 api/search: Reset `is_automated` field to `false`\n f04f69e366 Accumulate resolv.conf options\n 7f69142aa0 resolv.conf comments have '#' or ';' in the first column\n 91d9307738 Replace uses of slices.Clone()\n 12dea3fa9e devcontainer: Add Golang extension automatically\n 9f4e824a6e vendor: github.com/miekg/dns v1.1.57\n ef681124ca fix typo in error message\n 7ebd88d2d9 hack: block imports of vendored testify packages\n 4f30a930ad libn/cnmallocator: migrate tests to gotest.tools/v3\n a580544d82 Don't create endpoint config for MAC addr config migration\n ebf3f8c7fe distribution/xfer: fix pull progress message\n 2af2496c8c Dockerfile: Update dev cli to v26.0.0-rc1\n fc0e5401f2 ci: Update `teststat` to v0.1.25\n 7b0ab1011c Vendor dependency cycle-free swarmkit\n 62b33a2604 disable pulling legacy image formats by default\n 5fe96e234d integration: Reset `OTEL_EXPORTER_OTLP_ENDPOINT` for sub-daemons\n 84eecc4a30 Revert \"integration/TestDaemonProxy: Remove OTEL span\"\n 261dccc98a builder-next: Add `Info` to `emptyProvider`\n 2c9c5e1c03 vendor: github.com/moby/buildkit v0.13.0-rc3\n b649e272bb Allow to enable host loopback and use 10.0.2.2 to connect to the host (OPTIONALLY)\n e4de4dea5c ci: Make `find` for test reports more specific\n 9be820d8ca vendor: go.etcd.io/bbolt v1.3.9\n da643c0b8a libcontainerd: change the digest used when restoring\n 9083c2f10d Test DNS on Windows 'nat' networks\n 44167988c3 c8d/windows: Temporarily skip two failing tests\n 2d31532a00 otel: Default metrics protocol to http/protobuf\n 60358bfcab ci(buildkit): dedicated step to build test image\n f5722da5e0 mobyexporter: Store temporary config descriptor\n 951e42cd60 builder-next: Replace ResolveImageConfig with ResolveSourceMetadata\n e01a1c5d09 builder/mobyexporter: Set `image.name` response key\n fa467caf4d builder-next/mobyexporter: Use OptKeyName const\n 59ad1690f7 builder-next: Adjust to source changes\n b04a2dad6b builder/controller: Adjust NewWorkerOpt call\n bc6d88c09a cmd/dockerd: Fix overriding OTEL resource\n a79bb1e832 builder-next/exporter: Sync with new signature\n e68f71259a integration/build: Use fsutil.NewFS\n dd6992617e integration/build: Use new buildkit progressui\n 31545c3b67 vendor: github.com/moby/buildkit v0.13.0-rc2\n f90b03ee5d go.mod: bump to go 1.21 and use local toolchain when vendoring\n 16aa7dd67f c8d/pull: Output truncated id for `Pulling fs layer`\n 881260148f api: omit missing Created field from ImageInspect response\n 432390320e api/pre-1.44: Default `ReadOnlyNonRecursive` to true\n 6aea26b431 client: fix connection-errors being shadowed by API version mismatch errors\n 913478b428 client: doRequest: make sure we return a connection-error\n 901b90593d client: NegotiateAPIVersion: do not ignore (connection) errors from Ping\n 349abc64ed client: fix TestPingWithError\n 05b883bdc8 mounts/validate: Don't check source exists with CreateMountpoint\n c516804d6f vendor: OTEL v0.46.1 / v1.21.0\n 83c02f7a11 libnet/ds: remove extra space in error msg\n 14df52b709 c8d/pull: Don't emit `Downloading` with 0 progress\n ff5f780f2b c8d/pull: Emit `Pulling fs layer`\n 5689dabfb3 pkg/streamformatter: Make `progressOutput` concurrency safe\n 1d473549e8 ci: Require changelog description\n b2aaf5c2b0 vendor: github.com/containerd/continuity v0.4.3\n cbd45e83cf libnet: Replace DeleteAtomic in retry loops with DeleteIdempotent\n d9e082ff54 libnetwork: resolve: use structured logs for DNS error\n 8761bffcaf Makefile: Pass PAGER/GIT_PAGER variable\n 56aeb548b2 integration/TestDaemonProxy: Remove OTEL span\n 38827ba290 ci: set codecov token\n bddd892e91 c8d: Adjust \"image list\" to return only a single item for each image store entry\n 2aa13e950d awslogs: Replace depreacted WithEndpointResolver usage\n 70a4a9c969 vendor: bump github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs to v1.32.0\n 9faf4855d5 Simplify macvlan/ipvlan integration test structure\n 4eb95d01bc Run the macvlan/ipvlan integration tests\n 7c2975d2df update to go1.21.7\n 903412d0fc api/history: Mention empty `Created`\n 443f56efb0 Set up DNS names for Windows default network\n b4fbe226e8 Set `Created` to `0001-01-01T00:00:00Z` on older API versions\n 5bcd2f6860 builder/dockerfile: ADD with best-effort xattrs\n 999f90ac1c vendor: bump github.com/aws/aws-sdk-go-v2 to v1.24.1\n ef7766304c vendor: github.com/containerd/nydus-snapshotter v0.13.7\n 6932939326 vendor: google.golang.org/genproto/googleapis/rpc 49dd2c1f3d0b\n 10a72f2504 vendor: cloud.google.com/go/logging v1.8.1\n a60fef0c41 vendor: golang.org/x/exp v0.0.0-20231006140011-7918f672742d\n 03a17a2887 migrate image spec to github.com/moby/docker-image-spec\n a26c953b94 Add comment explaining network-create flow for Swarm\n 571af915d5 Don't enforce new validation rules for existing networks\n b71c2792d2 image/spec: remove link to docs.docker.com \"registry\" specification\n 4ab11a1148 vendor: github.com/containerd/containerd v1.7.13\n 419f5a6372 Make 'internal' bridge networks accessible from host\n 475019d70a vendor: github.com/prometheus/procfs v0.12.0\n 63c354aae2 vendor: github.com/prometheus/client_golang v1.17.0\n beb97f7fdf Refactor 'resolv.conf' generation.\n 14503ccebd api/server/middleware: NewVersionMiddleware: add validation\n e1897cbde4 api/server/middleware:use API-consts in tests\n 0fef6e1c99 api/server/middleware: VersionMiddleware: improve docs\n 6b01719ffb api: add MinSupportedAPIVersion const\n 19a04efa2f api: remove API < v1.24\n 8758d08bb4 api: remove handling of HostConfig on POST /containers/{id}/start (api < v1.24)\n ffd877f948 api: remove plain-text error-responses (api < v1.24)\n b3a0ff9944 api: remove POST /containers/{id}/copy endpoint (api < v1.23)\n 83f790cccc api: POST /exec/{id}/start: remove support for API < v1.21\n d1974aa492 api: remove code for container stats on api < v1.21\n ed93110e11 api: update test to reflect reality on Windows\n 570d5a9645 api: remove code for ContainerInspect on api v1.20\n f0dd554e3c api: remove code for ContainerInspect on api < v1.20\n dfdf2adf0c api: POST /containers/{id}/kill: remove handling for api < 1.20\n 2970b320aa api: remove code for adjusting CPU shares (api < v1.19)\n ef25f0aa52 api: POST /build: remove version-gate for \"pull\" (api < v1.16)\n 7fa116830b api: POST /build: remove version-gate for \"rm\", \"force-rm\" (api < v1.16)\n 1b1147e46b api: POST /commit: remove version-gate for \"pause\" (api < v1.16)\n d26bdfe226 runconfig: remove fixtures for api < v1.19\n f1e6958295 c8d: Use the same logic to get the present images\n 2c01d53d96 image/cache: Use Platform from ocispec\n d69729e053 seccomp: add futex_wake syscall (kernel v6.7, libseccomp v2.5.5)\n 10d344d176 seccomp: add futex_wait syscall (kernel v6.7, libseccomp v2.5.5)\n df57a080b6 seccomp: add futex_requeue syscall (kernel v6.7, libseccomp v2.5.5)\n 8826f402f9 seccomp: add map_shadow_stack syscall (kernel v6.6, libseccomp v2.5.5)\n 6f242f1a28 seccomp: add fchmodat2 syscall (kernel v6.6, libseccomp v2.5.5)\n 4d0d5ee10d seccomp: add cachestat syscall (kernel v6.5, libseccomp v2.5.5)\n 1251982cf7 seccomp: add set_mempolicy_home_node syscall (kernel v5.17, libseccomp v2.5.4)\n 7f1b700227 Dockerfile: update RootlessKit to v2.0.1\n f1730a6512 go.mod: github.com/rootless-containers/rootlesskit/v2 v2.0.1\n f7192bb0b4 vendor.mod: github.com/google/uuid v1.6.0\n 91ea04089b image/cache: Ignore Build and Revision on Windows\n 2ef0b53e51 integration/save: Add tests checking OCI archive output\n 74d51e8553 plugins: fix panic installing from repo w/ digest\n e910a79e2b Remove 'VERSION' from the text\n 9fcea5b933 Fix broken links in project/README.md\n 10d6f5213a Dockerfile: update docker compose to v2.24.5\n 9c92c07acf Dockerfile: update dev-shell version of the cli to v25.0.2\n 89470a7114 libnet: bridge: ignore EINVAL when configuring bridge MTU\n e37172c613 api/t/network: ValidateIPAM: ignore v6 subnet when IPv6 is disabled\n c59e93a67b Revert \"daemon: automatically set network EnableIPv6 if needed\"\n 83af50aee3 libnet: boltdb: inline getDBhandle()\n 4d7c11c208 libnet: boltdb: remove PersistConnection\n 8070a9aa66 libnet: drop TestMultipleControllersWithSameStore\n 82dda18898 tests: add plugin install test w/ digest\n dd20bf4862 libcontainerd/supervisor: fix data race\n 0c3b8ccda7 api: Document `version` in `/build`\n 2cc627932a Add internal n/w bridge to firewalld docker zone\n 8c64b85fb9 No inspect 'Config.MacAddress' unless configured.\n dae33031e0 Only restore a configured MAC addr on restart.\n a2026ee442 ci: update to docker/bake-action@v4\n 5a3c463a37 ci: update to codecov/codecov-action@v4\n 9babc02283 ci: update to actions/download-artifact@v4 and actions/upload-artifact@v4\n a83557d747 ci: update to actions/cache@v3\n 2200c0137f libnetwork/datastore: don't parse file path\n d21d0884ae libnetwork: share a single datastore with drivers\n 835cdcac95 update containerd binary to v1.7.13\n f4a93b6993 vendor: github.com/moby/buildkit v0.12.5\n b20dccba5e vendor: github.com/opencontainers/runc v1.1.12\n 44bf407d4d update runc binary to v1.1.12\n ecb217cf69 hack/make.ps1: Fix go list pattern\n 3a8191225a gha: update to crazy-max/ghaction-github-runtime@v3\n 08251978a8 gha: update to docker/login-action@v3\n 5d396e0533 gha: update to docker/setup-qemu-action@v3\n 4a1839ef1d gha: update to docker/bake-action@v4\n b7fd571b0a gha: update to docker/setup-buildx-action@v3\n 00a2626b56 gha: update to docker/metadata-action@v5\n e27a785f43 gha: update to actions/setup-go@v5\n fb53ee6ba3 gha: update to actions/github-script@v7\n 0ffddc6bb8 gha: update to actions/checkout@v4\n 987fe37ed1 d/logger/journald: quit waiting when logger closes\n d53b7d7e46 d/logger/journald: sync logger on close in tests\n 39c5c16521 d/logger/loggertest: improve TestConcurrent\n 5792bf7ab3 d/logger/journald: log journal-remote cmd output\n 982e777d49 d/logger/journald: fix data race in test harness\n ca40ac030c vendor: google.golang.org/grpc v1.59.0\n 0818a476e5 vendor: github.com/go-logr/logr v1.3.0\n a0b53f6fd2 vendor: golang.org/x/net v0.18.0\n 2ddec74d59 Remove unused params from etchosts.Build()\n 5e13f54f57 c8d/save: Handle digested reference same as ID\n d131f00fff image/save: Fix untagged images not present in index.json\n 21136865ac libnet: remove arg `options` from (*Endpoint).Leave()\n a8e8a4cdad libn/d/overlay: drop miss flags from peerAddOp\n 6ee58c2d29 libnetwork/d/overlay: drop miss flags from peerAdd\n 905477c8ae logger/journald: drop errDrainDone sentinel\n d70fe8803c logger/journald: wait no longer than the deadline\n e94ec8068d logger/journald: use deadline for drain timeout\n 71bfffdad1 l/journald: make tests compatible with systemd 255\n 931568032a daemon/logger/loggertest: expand log-follow tests\n 388ba9a69c Dockerfile: update docker compose to v2.24.3\n 3eb1527fdb Dockerfile: update dev-shell version of the cli to v25.0.1\n 7f94acb6ab docs: remove dead links from api verison history\n 5c2eda6f71 vendor swarmkit v2.0.0-20240125134710-dcda100a8261\n 96d461d27e builder/windows: Don't set ArgsEscaped for RUN cache probe\n 877ebbe038 image/cache: Check image platform\n 96ac22768a image/cache: Restrict cache candidates to locally built images\n c6156dc51b daemon/imageStore: Mark images built locally\n 537348763f image/cache: Compare all config fields\n bd4ff31775 add more //go:build directives to prevent downgrading to go1.16 language\n e245fb76de internal/sliceutil: add utilities to map values\n 3147a013fb libnet/ds: remove unused param `key` from List\n f7ef0e9fc7 libnet/ds: remove unused param `key` from GetObject\n 3a617e5463 c8d: Use a specific containerd namespace when userns are remapped\n f7e2357745 image: remove deprecated IDFromDigest\n 13f46948dd api/types: remove deprecated container-types\n 4b09bc2145 api/types: remove deprecated service-types\n 49637d0206 api/types: remove deprecated image-types\n eccb1a3eb8 api/types: remove deprecated checkpoint-types\n 0b1921649f api/types: remove deprecated system info types and functions\n 6f44138269 libnetwork: fix tiny grammar mistake on design.md\n 9a41cc58d9 libnetwork: fix typo in iptables.go\n ac2a028dcc api/types: move image options to api/types/image\n 80c44b4b2e daemon: rename: don't reload endpoint from datastore\n 250886741b volume/local: Fix cifs url containing spaces\n f4beb130b0 volume/local: Add tests for parsing nfs/cifs mounts\n df43311f3d volume/local: Break early if `addr` was specified\n 9f37672ca8 daemon: only add short cid to aliases for custom networks\n c25773ecbf cmd/dockerd: newRouterOptions: pass cluster as argument, and slight cleanup\n 00c9785e2e fix \"host-gateway-ip\" label not set for builder workers\n 0d51cf9db8 volume/local: Make host resolution backwards compatible\n 05d952b246 Dockerfile: update docker compose to v2.24.2\n 20bd690844 integration-cli: simplify test-file creation\n 34668a5945 pkg/archive: fixe some unclosed file-handles in tests\n 1090aaaedd libnetwork: fix some unclosed file-handles in tests\n c482383458 fix some leaking mounts in tests\n 43bf65c174 pkg/system: return even richer xattr errors\n a3a42c459e api/types/image: move GetImageOpts to api/types/backend\n cd53b7380c Remove generated MAC addresses on restart.\n fb19f1fc20 c8d/snapshot: Create any platform if not specified\n 6100190e5c daemon/cluster/executer: Add missing `StartInterval`\n 17fd6562bf image/save: Fix layers order in OCI manifest\n 4979605212 image/save: Change layers type to DiffID\n fcc651972e daemon: return an InvalidParameter error when ep settings are wrong\n a0466ca8e1 integration-cli: TestInspectAPIMultipleNetworks: use current version\n 13a384a6fa integration-cli: TestInspectAPIBridgeNetworkSettings121: use current version\n 52e3fff828 integration-cli: TestPutContainerArchiveErrSymlinkInVolumeToReadOnlyRootfs: use current API\n 521123944a docs/api: remove version matrices from swagger files\n d54be2ee6d docs: remove documentation for deprecated API versions < v1.23\n 64a6cc3afd integration/build: improve some asserts, and add asserts for unhandled errs\n a88cd68d3e integration/images: improve some asserts, and add asserts for unhandled errs\n a404017a86 vendor: golang.org/x/tools v0.14.0\n 41a2aa2ee2 vendor: golang.org/x/oauth2 v0.11.0\n 2799417da1 vendor: golang.org/x/mod v0.13.0, golang.org/x/tools v0.13.0\n 407ad89ff0 vendor: golang.org/x/sync v0.5.0\n 94b4765363 pkg/platforms: internalize in daemon/containerd\n 0a9bc3b507 libnetwork: Sandbox.ResolveName: refactor ordering of endpoints\n 058b30023f libnetwork: loosen container IPAM validation\n 844ca49743 pkg/containerfs: remove deprecated ResolveScopedPath\n 2767d9ba05 pkg/homedir: remove deprecated Key() and GetShortcutString()\n f16a2179a6 pkg/system: remove deprecated ErrNotSupportedOperatingSystem, IsOSSupported\n e2086b941f remove deprecated pkg/loopback (utility package for devicemapper)\n f07c45e4f2 daemon: remove --oom-score-adjust flag\n 307fe9c716 Dockerfile: update docker compose to v2.24.1\n dfced4b557 Dockerfile: update dev-shell version of the cli to v25.0.0\n c655b7dc78 Assert temp output directory is not an empty string\n a8f7c5ee48 Detect IPv6 support in containers.\n 0046b16d87 daemon: set libnetwork sandbox key w/o OCI hook\n 5bbcc41c20 volumes/subpath: Plumb context\n cb1af229f2 daemon/populateVolumes: Support volume subpath\n 349a52b279 container: Change comment into debug log\n 42afac91d7 internal/safepath: Add windows implementation\n 5841ed4e5e internal/safepath: Adapt k8s openat2 fallback\n 56bb143a4d internal/safepath: Import k8s safeopen function\n 3784316d46 internal/safepath: Handle EINTR in unix syscalls\n 9a0cde66ba internal/safepath: Add linux implementation\n bfb810445c volumes: Implement subpath mount\n f2e1105056 Introduce a helper that collects cleanup functions\n f07387466a daemon/oci: Extract side effects from withMounts\n 9c8752505f volume/mounts: Rename errors in defer block\n 5bcbedb7ee API: bump version to 1.45\n 35789fce99 daemon.images: ImageService.getImage: use named fields in struct literals\n 7c1914411f daemon/images: ImageService.manifestMatchesPlatform: optimize logger\n 5581efe7cd rename \"ociimage\" var to be proper camelCase\n 66cf6e3a7a rename \"image\" vars to prevent conflicts with imports\n c72e458a72 Fix libnetwork/osl test TestAddRemoveInterface\n 768146b1b0 Fix isGitURL regular expression\n 585d74bad1 pkg/ioutils: Make subsequent Close attempts noop\n fbdc02534a De-flake TestSwarmClusterRotateUnlockKey... again... maybe?\n\nBumping docker-cli to version v26.1.4-2-g6eb67bf57, which comprises the following commits:\n\n 5bab750c2 cli/command: more go1.19 (\"predeclared any\")\n e8bc27d4c vendor: github.com/docker/docker de5c9cf0b96e (v26.1.4-dev)\n 2acb9c2e8 vendor: github.com/containerd/containerd v1.7.18\n 230d4d0ba vendor: github.com/containerd/containerd v1.7.17\n 6d47c06b0 vendor: tags.cncf.io/container-device-interface v0.7.2\n a6d757c0e vendor: github.com/Microsoft/hcsshim v0.11.5\n c463d968f vendor: github.com/opencontainers/image-spec v1.1.0\n 0576b3dad update to go1.21.11\n 60b13f1f8 Dockerfile: update ALPINE_VERSION to 3.20\n b600054c5 migrate to new github.com/containerd/platforms package\n dafe63b08 gha: update to actions/upload-artifact@v4\n 079107e1b [26.1] vendor: github.com/docker/docker v26.1.3\n 14d7485d9 vendor: github.com/Microsoft/go-winio v0.6.2\n 50bb59277 docs: tidy up CDI docs\n c4767b314 docs: fix json syntax error\n 258e27438 context list: temporarily add ContextType to JSON output\n 29cd8591e cli/command/context: list: add test for JSON output\n e23a63eb4 cli/command/context: test inspecting context with custom metadata\n 1e52a86d4 cli/command/context: add test-utility to create multiple contexts\n e382a5f22 plugins/hooks: Don't show empty hooks\n 26e9ff49c vendor: github.com/docker/docker v26.1.3-dev (8e96db1c328d)\n 326c7138b OTel: implement missing MeterProvider `ForceFlush`\n ee359a394 OTel: add `command.time` metric to plugin commands\n 669108501 Use funcs on DockerCli to return Meter/TracerProviders, not initialize them. Initialize them during DockerCli struct init\n 81b482ea5 docs: clarify that --data-path-addr doesn't restrict access\n e64914c89 vendor: github.com/docker/docker v26.1.2-dev (ef1912d8b6ae)\n c1d70d1fb update to go1.21.10\n 4add46d68 Add e2e tests for run w/ bad entrypoint\n ccea7d8a3 Fix hang when container fails to start\n 1c6a8ecf2 cli-plugins: PluginRunCommand: use cmd.Environ instead of os.Environ\n 6d1c387af vendor: github.com/docker/docker ac2de55998d4 (v26.1.1)\n 840016ea0 waitExitOrRemoved: Handle context cancellation\n aec1d364b vendor: github.com/docker/docker v26.1.0-dev (c8af8ebe4a89)\n 43cb06e1a hooks: pass command execution error to plugins\n 9d8320de9 hooks: include full configured command\n 6ad512068 vendor: github.com/docker/docker v26.1.0-dev (ee8b788538ea)\n c3243a8cc ci/validate-pr: Use `::error::` command to print errors\n f92fcdef1 github/ci: Check if backport is opened against the expected branch\n 745704d7b ci: Require changelog description\n 762a85a10 Warn about deprecation of windows-dns-proxy flag\n 501175905 hooks: set expected environment when executing\n d6796c002 Fix OTLP env var overriding\n c449c1a49 plugins/hooks: run hooks when exit code != 0\n 287f482e3 Feature option 'windows-dns-proxy'\n 867061b00 plugins/templates: break on newlines when printing hooks\n 718203d50 cli-bin/windows: Add .exe extension\n 5515b8651 vendor: github.com/docker/docker v26.0.1-0.20240410103514-f9dfd139ec0d+incompatible (master)\n c1053bf9d vendor: github.com/moby/swarmkit/v2 v2.0.0-20240227173239-911c97650f2e\n 8a3a7b945 vendor: github.com/containerd/containerd v1.7.15\n 458580984 docs: add systempaths=unconfined security-opt\n 5fcbbde4b vendor: golang.org/x/net v0.23.0\n 4745b957d vendor: golang.org/x/net v0.22.0, golang.org/x/crypto v0.21.0\n c7a50ebb9 vendor: golang.org/x/term v0.18.0\n 9a2133f2d vendor: golang.org/x/sys v0.18.0\n 0a5bd6c75 update to go1.21.9\n cefcba987 otel: capture exit code as int64\n ee1b2836a otel: capture whether process was invoked from a terminal\n 8f45f1495 command: include default otel error handler for the cli\n 910d5d024 chore: remove backticks and resolve linting issues\n 2a3b6c03f cli: add go:build tag to the docker telemetry\n efd82e1e3 Initial otel impl using our utils\n b6e2eca4b Enable overriding of the otel exporter otlp endpoint via env var for testing purposes\n 160f65d9d Added some telemetry utils\n 9a1b0f8bb CONTRIBUTING.md: update Slack link\n 7c722c08d feat: standardize error for prompt\n 7ea10d5ce refactor: prompt tests\n 89db01ef9 cli: add otel sdk tracing and metric providers to the core cli\n c5016c6d5 cli-plugins: Introduce support for hooks\n 509123f93 plugin: drop explicit unlink\n fdb48a066 vendor: github.com/docker/docker v26.0.0\n 542e82cae plugin: update/improve process lifecycle documentation\n d68cc0e8d plugin: closer-based plugin notification socket\n d2ea5adfe fix: flaky prompt termination on reader close test\n ccfd0b2cc test/ Improve test coverage in volume.go\n 69575f617 vendor: github.com/docker/docker 8b79278316b5 (master)\n b70a26dea vendor: github.com/docker/docker 330d777c53fb (v26.0.0-rc3-dev)\n f96d8e78c docs/deprecated: update status of short cid alias deprecation\n b120b96ac ci: set DISABLE_WARN_OUTSIDE_CONTAINER=1 for CodeQL action\n 24186d800 ci: fix CodeQL 2.16.4 autobuild\n 48b5efee0 Dockerfile: update mvdan/gofumpt to v0.6.0\n 38c3ff67a vendor: github.com/docker/docker 70e46f2c7c2d (v26.0.0-rc3-dev)\n f8fc5b6bc scripts/vendor: remove -compat=1.19\n a4a79d75c vendor: google.golang.org/protobuf v1.33.0, github.com/golang/protobuf v1.5.4\n 115c8d56e vendor: github.com/containerd/containerd v1.7.14\n 939283181 builder: correct the command path for docker build\n dc4163fb1 docs/deprecated: Deprecate Container fields in image inspect\n 3da26a5e7 docs: add description and link for --userns flag\n 4bb2abaa5 docs: typo fixes and other corrections\n 90c33dbfd deprecate legacy image formats\n 800a51d6c Set CGO_ENABLED=1 on riscv64\n 9349f58b8 docs: clarify what the --privileged flag does\n adb018084 Dockerfile: update to xx 1.4.0\n 46afd26c4 cli/command: deprecate EventHandler and InitEventHandler\n 5c54f75f2 cli/command/container: use ping-result for OS-version\n 617377c04 Describe an 'internal' network.\n 860b4f3a7 'docker daemon' flags refer to the default bridge\n 645b97352 vendor: github.com/docker/docker v26.0.0-rc2\n 3cf2fe0ff docs: deprecate TCP connection without TLS\n a8379092a vendor: github.com/docker/docker f4c696eef17d62a42\n ab9d56057 bake: Add `windows/arm64` target to bin-image-cross\n 3b7747794 update to go1.21.8\n 10bf91a02 fix: cli prompt termination exit code\n 238d659ff Add support for --detach/-d flag in stack rm\n b086d7276 Add support for --detach flag in stack deploy\n 5e8023239 vendor: github.com/docker/docker v26.0.0-rc1\n d51ba4179 docs: prefer -it over -ti\n a5b82e9f8 docs: fix typo in tty example\n abe78b79d chore: `docker help` should not show plugin vendor and version\n 5786f2068 plugins: fix encoding for OTEL env var passed to plugin\n 85dcacd78 plugins: set OTEL_RESOURCE_ATTRIBUTES when invoking a plugin\n acc675014 vendor: github.com/docker/docker c70d7905fbd9 (v26.0.0-dev)\n 79541b7e2 vendor: google.golang.org/grpc v1.59.0\n 096ced089 vendor: OTEL v0.46.1 / v1.21.0\n f3c77df31 vendor: github.com/prometheus/client_golang v1.17.0\n 1b42d04d6 vendor: github.com/go-logr/logr v1.3.0\n f5a29ff8e vendor: github.com/containerd/containerd v1.7.13\n 2663c1057 ci: set codecov token\n 48a670f26 docs: fix invalid daemon.json examples\n f2e98f9a9 docs: regenerate markdown\n caf72655f docs: update url scheme for reference docs\n e24404494 deps: update cli-docs-tool version (v0.7.0)\n 20b9d489e update to go1.21.7\n c514003e6 Fixed typo in bash completion functions\n ff5b0d18f man/docker-build.1: typo in parameter variable: CID => IID\n 3b5e81424 cli-plugins/socket: remove use of deprecated distribution uuid package\n 69ed6588a Cleanup of dockerfiles, compose files and env vars\n 6b67b9549 Update gha runners and engines used in e2e tests\n edc09e603 mount: Add `volume-subpath` option\n 9831fea4d testenv: Add DaemonAPIVersion helper\n 8bae66271 cli/connhelper/commandconn: inline variables\n df6220d43 vendor: github.com/docker/docker 86b86412a1b7 (v26.0-dev)\n 30dd7c131 Minor test fixes necessary for eventually upgrading ci runners and engine version\n 2c214241f Avoid keeping @docker_cli_[UUID] files\n c986d09bc docker stack: allow '=' separator in extra_hosts\n 324309b08 vendor: github.com/docker/docker 9e075f3808a5 (master, v26.0.0-dev)\n 93ad9fbdf vendor: github.com/moby/swarmkit/v2 v2.0.0-20240125134710-dcda100a8261\n 69e0f53a0 Uniform volume prune output msg with other prune commands\n 809eb8cde images: print hint when invoking \"docker images\" with ambiguous argument\n b158181a1 cli/command/images: runImages: use proper camel-case for dockerCLI\n 1328bb338 cli/command/images: runImages: inline intermediate var\n b123ce652 build(deps): Bump codecov/codecov-action from 3 to 4\n 1587b70ee Remove dummy circleci config\n cfa9fef77 tests: add plugin-socket-compatibility tests\n dfdff11a2 cli/command: don't use pflags.XXXVarP for flags without shorthand\n 690f63e6d cli/command/container: minor cleanup in attach\n 53e2e54c2 Dockerfile: update docker compose to v2.24.3\n 1c4d6d85d scripts: don't hardcode architecture in e2e script\n 4fa2fe9b9 Replace deprecated types.Image* usage\n 68dac842a vendor: github.com/docker/docker 43ffb1ee9d5a (v26.0.0-dev)\n 4b1ed1f44 vendor: github.com/docker/docker v25.0.1\n d9294f06b info: remove printSecurityOptionsWarnings, printServerWarnings\n ec0a62436 docs: update host-gateway-ip to use daemon.json instead of cli flag\n 469bfc05e tests: add tests for `cli-plugins/socket`\n 091af560c Dockerfile: update docker compose to v2.24.2\n 2402dac81 cli/command/container: remove deprecated NewStartOptions\n b43377a38 cli/command: remove deprecated DockerCliOption, InitializeOpt\n a71d39bca info: remove printServerWarningsLegacy\n 8cd3b0042 socket: return from loop after EOF\n 337dd82d8 vendor: github.com/docker/docker v25.0.0\n d633890f9 docs: move base command to docker.md\n aff4649cb docs: fix broken links to alias pages\n 852d198bb docs: add documentation for CDI\n 1f9573bb0 Add Linode docker volume plugin\n\nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"moby: update to v26.1.4"}},{"before":"179ed822514b7f6afdd8a24bc84a2754e2c7d77c","after":"e96da98e4038f5388596b4294ac3d8425b2dacb2","ref":"refs/heads/master-next","pushedAt":"2024-06-05T16:41:26.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"mmitchel","name":"Michael Mitchell","path":"/mmitchel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/124963?s=80&v=4"},"commit":{"message":"rootlesskit: introduce linux-native fakeroo using user namespaces\n\nsee: https://github.com/rootless-containers/rootlesskit\n\n---------\nRootlessKit: Linux-native fakeroot using user namespaces\n\nRootlessKit is a Linux-native implementation of 'fake root' using user_namespaces(7).\nThe purpose of RootlessKit is to run Docker and Kubernetes as an unprivileged user\n(known as 'Rootless mode'), so as to protect the real root on the host from potential\ncontainer-breakout attacks.\n---------\n\nThis is a building block for cross installation of containers and\nrootless on-target execution.\n\nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"rootlesskit: introduce linux-native fakeroo using user namespaces"}},{"before":"89e2b594dcfd0643b84830dce5e7a5e2cbb046cd","after":"e96da98e4038f5388596b4294ac3d8425b2dacb2","ref":"refs/heads/master","pushedAt":"2024-06-05T16:41:26.000Z","pushType":"push","commitsCount":52,"pusher":{"login":"mmitchel","name":"Michael Mitchell","path":"/mmitchel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/124963?s=80&v=4"},"commit":{"message":"rootlesskit: introduce linux-native fakeroo using user namespaces\n\nsee: https://github.com/rootless-containers/rootlesskit\n\n---------\nRootlessKit: Linux-native fakeroot using user namespaces\n\nRootlessKit is a Linux-native implementation of 'fake root' using user_namespaces(7).\nThe purpose of RootlessKit is to run Docker and Kubernetes as an unprivileged user\n(known as 'Rootless mode'), so as to protect the real root on the host from potential\ncontainer-breakout attacks.\n---------\n\nThis is a building block for cross installation of containers and\nrootless on-target execution.\n\nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"rootlesskit: introduce linux-native fakeroo using user namespaces"}},{"before":"e8214becb94e7bc786bcde59b00a5ee7c4de389e","after":"179ed822514b7f6afdd8a24bc84a2754e2c7d77c","ref":"refs/heads/master-next","pushedAt":"2024-06-04T13:51:09.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"mmitchel","name":"Michael Mitchell","path":"/mmitchel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/124963?s=80&v=4"},"commit":{"message":"networking: introduce passt / pasta\n\nIntroducing the pasta package as an alternative for non-priviledged\ncontainer networking:\n\nhttps://passt.top/passt/about/\n\n passt: Plug A Simple Socket Transport\n passt implements a translation layer between a Layer-2 network interface and native\n Layer-4 sockets (TCP, UDP, ICMP/ICMPv6 echo) on a host. It doesn't require any\n capabilities or privileges, and it can be used as a simple replacement for Slirp.\n\n pasta: Pack A Subtle Tap Abstraction\n pasta (same binary as passt, different command) offers equivalent functionality,\n for network namespaces: traffic is forwarded using a tap interface inside the\n namespace, without the need to create further interfaces on the host, hence not\n requiring any capabilities or privileges.\n\n It also implements a tap bypass path for local connections: packets with a local\n destination address are moved directly between Layer-4 sockets, avoiding Layer-2\n translations, using the splice(2) and recvmmsg(2)/sendmmsg(2) system calls for\n TCP and UDP, respectively.\n\nSigned-off-by: Bruce Ashfield ","shortMessageHtmlLink":"networking: introduce passt / pasta"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"startCursor":"Y3Vyc29yOnYyOpK7MjAyNC0wOS0yN1QwMTowMTo1Ni4wMDAwMDBazwAAAATCFivZ","endCursor":"Y3Vyc29yOnYyOpK7MjAyNC0wNi0wNFQxMzo1MTowOS4wMDAwMDBazwAAAARcFrlf"}},"title":"Activity · distro-core-curated-mirrors/meta-virtualization"}