containers
/
automation-tests
mirror of https://github.com/containers/automation-tests.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,271 Commits 16 Branches 474 Tags 227 MiB
Commit Graph

1621 Commits

Author SHA1 Message Date
dependabot[bot] b002791fde build(deps): bump golang.org/x/term from 0.3.0 to 0.4.0 
Bumps [golang.org/x/term](https://github.com/golang/term) from 0.3.0 to 0.4.0.
- [Release notes](https://github.com/golang/term/releases)
- [Commits](https://github.com/golang/term/compare/v0.3.0...v0.4.0)

---
updated-dependencies:
- dependency-name: golang.org/x/term
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-05 04:04:41 +00:00
dependabot[bot] d75090eb56 build(deps): bump github.com/containerd/containerd from 1.6.13 to 1.6.14 
Bumps [github.com/containerd/containerd](https://github.com/containerd/containerd) from 1.6.13 to 1.6.14.
- [Release notes](https://github.com/containerd/containerd/releases)
- [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md)
- [Commits](https://github.com/containerd/containerd/compare/v1.6.13...v1.6.14)

---
updated-dependencies:
- dependency-name: github.com/containerd/containerd
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-20 04:04:49 +00:00
dependabot[bot] a0e6eea574 build(deps): bump github.com/docker/docker 
Bumps [github.com/docker/docker](https://github.com/docker/docker) from 20.10.21+incompatible to 20.10.22+incompatible.
- [Release notes](https://github.com/docker/docker/releases)
- [Commits](https://github.com/docker/docker/compare/v20.10.21...v20.10.22)

---
updated-dependencies:
- dependency-name: github.com/docker/docker
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-19 04:05:06 +00:00
dependabot[bot] 1a0c510a98 build(deps): bump github.com/containerd/containerd from 1.6.12 to 1.6.13 
Bumps [github.com/containerd/containerd](https://github.com/containerd/containerd) from 1.6.12 to 1.6.13.
- [Release notes](https://github.com/containerd/containerd/releases)
- [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md)
- [Commits](https://github.com/containerd/containerd/compare/v1.6.12...v1.6.13)

---
updated-dependencies:
- dependency-name: github.com/containerd/containerd
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-16 04:03:29 +00:00
dependabot[bot] 0037ec6d2e build(deps): bump github.com/onsi/gomega from 1.24.1 to 1.24.2 
Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega) from 1.24.1 to 1.24.2.
- [Release notes](https://github.com/onsi/gomega/releases)
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/gomega/compare/v1.24.1...v1.24.2)

---
updated-dependencies:
- dependency-name: github.com/onsi/gomega
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-15 10:27:11 +00:00
dependabot[bot] 0a606c68e7 build(deps): bump github.com/onsi/ginkgo/v2 from 2.6.0 to 2.6.1 
Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.6.0 to 2.6.1.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.6.0...v2.6.1)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-15 04:02:43 +00:00
dependabot[bot] 1585243248 build(deps): bump github.com/onsi/ginkgo/v2 from 2.5.1 to 2.6.0 
Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.5.1 to 2.6.0.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.5.1...v2.6.0)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-12 08:27:34 +00:00
OpenShift Merge Robot eccc970e86 Merge pull request #1263 from rhatdan/VENDOR 
Update vendor or containers/(image, storage)
 2022-12-12 03:25:42 -05:00
OpenShift Merge Robot fa8a3090d3 Merge pull request #1265 from ashley-cui/machvol 
Add to default machine volumes for MacOS
 2022-12-12 03:20:30 -05:00
Ashley Cui c92b4705d1 Add to default machine volumes for MacOS 
On MacOS, mount /Users, /private/, /var/folders by default for better docker compat. The homedir on MacOS is /Users/<username>, so that will be mounted automatically anyway with this change.

Docker also mounts /Volumes and /tmp, /Volumes fails with a Too many levels of symbolic links, as Volumes on Mac is just a symlink to / which seems like a bad idea to mount anyway.
/tmp fails because the Podman machine uses the tmp directory inside the machine and writes content to it on boot, causing the mount to fail. However, on Mac, /tmp is symlinked to /private/tmp anyway, so those files are accessible from there.

Signed-off-by: Ashley Cui <acui@redhat.com>
 2022-12-09 15:36:20 -05:00
Daniel J Walsh 420a5bd93b Update vendor or containers/(image, storage) 
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2022-12-09 11:13:25 -05:00
OpenShift Merge Robot df2212a903 Merge pull request #1258 from Luap99/netns 
pkg/netns: UnmountNS() accept netns path as string
 2022-12-09 03:56:36 -05:00
OpenShift Merge Robot a6d9913bc2 Merge pull request #1262 from containers/dependabot/go_modules/golang.org/x/crypto-0.4.0 
build(deps): bump golang.org/x/crypto from 0.3.0 to 0.4.0
 2022-12-09 03:54:00 -05:00
OpenShift Merge Robot 6a15b0489f Merge pull request #1260 from cblecker/godoc-headers 
Add godoc headers for report package
 2022-12-09 03:51:25 -05:00
dependabot[bot] b0befd4cec build(deps): bump golang.org/x/crypto from 0.3.0 to 0.4.0 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.3.0 to 0.4.0.
- [Release notes](https://github.com/golang/crypto/releases)
- [Commits](https://github.com/golang/crypto/compare/v0.3.0...v0.4.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-08 04:03:18 +00:00
dependabot[bot] fd058f410c build(deps): bump github.com/containerd/containerd from 1.6.10 to 1.6.12 
Bumps [github.com/containerd/containerd](https://github.com/containerd/containerd) from 1.6.10 to 1.6.12.
- [Release notes](https://github.com/containerd/containerd/releases)
- [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md)
- [Commits](https://github.com/containerd/containerd/compare/v1.6.10...v1.6.12)

---
updated-dependencies:
- dependency-name: github.com/containerd/containerd
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-07 23:39:30 +00:00
Christoph Blecker 101e8f6f99 Add godoc headers for report package 
Signed-off-by: Christoph Blecker <cblecker@redhat.com>
 2022-12-07 13:21:17 -08:00
Paul Holzinger 70d14082ea pkg/netns: UnmountNS() accept netns path as string 
I want to switch podman over to only using strings for the netns path.
So we no longer pass this interface around. Buildah doesn't use this so
we only need to fix it in Podman. I have a WIP PR[1] for that.

[1] https://github.com/containers/podman/pull/16756

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2022-12-07 14:53:47 +01:00
Aditya R a1673511b8 libnetwork: extend API to support NetworkUpdate 
New features in netavark/aardvark allows users to update network dns
servers and all the containers attached to those networks uses updated
resolvers.

Following PR adds support in `libnetwork` to support

* Add support for higher level `NetworkUpdate` API
* Add support for `Update` exec call which can invoke netavark with a
  new update option added here: https://github.com/containers/netavark/pull/503

Signed-off-by: Aditya R <arajan@redhat.com>
 2022-12-07 07:53:02 +05:30
OpenShift Merge Robot a4cd996652 Merge pull request #1252 from rhatdan/caps 
Rework default list of capabilities to minimal
 2022-12-06 09:17:16 -05:00
OpenShift Merge Robot b834776aa1 Merge pull request #1257 from containers/dependabot/go_modules/golang.org/x/term-0.3.0 
build(deps): bump golang.org/x/term from 0.2.0 to 0.3.0
 2022-12-06 07:49:53 -05:00
OpenShift Merge Robot fe43935658 Merge pull request #1250 from ygalblum/network_ignore 
Libnetwork: Add IgnoreIfExists flag to network create method
 2022-12-06 06:07:49 -05:00
OpenShift Merge Robot 6f6214464b Merge pull request #1256 from Luap99/cni-ipam-none 
libnetwork/cni: fix panic with ipam driver none
 2022-12-06 03:38:42 -05:00
dependabot[bot] e0883dd780 build(deps): bump golang.org/x/term from 0.2.0 to 0.3.0 
Bumps [golang.org/x/term](https://github.com/golang/term) from 0.2.0 to 0.3.0.
- [Release notes](https://github.com/golang/term/releases)
- [Commits](https://github.com/golang/term/compare/v0.2.0...v0.3.0)

---
updated-dependencies:
- dependency-name: golang.org/x/term
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-06 04:04:12 +00:00
Paul Holzinger 81fd874f80 libnetwork/cni: fix panic with ipam driver none 
When creating macvlan or ipvlan network configs with the none ipam
driver we would always cause a segfault because of a nil pointer
dereference.

Add a test for both to prevent a regression.

Fixes containers/podman#16620

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2022-12-05 17:55:03 +01:00
Daniel J Walsh ad04f58f7a Vendor in latest containers/(storage, image) 
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2022-12-05 10:04:10 -05:00
Ygal Blum f7978269e7 Libnetwork: Add NetworkCreateOptions to the NetworkCreate method 
For now, only add IgnoreIfExists flag.
Having this flag is very useful when using scripts or systemd unit files

Signed-off-by: Ygal Blum <ygal.blum@gmail.com>
 2022-12-05 15:57:15 +02:00
OpenShift Merge Robot 2ecf4da04b Merge pull request #1251 from rhatdan/readonly 
Add ReadOnly flag to run containers in readonly mode
 2022-12-05 08:07:57 -05:00
OpenShift Merge Robot 63003fd896 Merge pull request #1254 from giuseppe/cgroup-no-autostartup 
cgroups: use SessionBusPrivateNoAutoStartup
 2022-12-05 07:05:23 -05:00
Daniel J Walsh e2fb8c5133 Add ReadOnly flag to run containers in readonly mode 
This is needed for Automotive.

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2022-12-05 06:05:56 -05:00
Giuseppe Scrivano 10d63bf089 cgroups: use SessionBusPrivateNoAutoStartup 
do not start up a dbus daemon if it is not already running.

[NO NEW TESTS NEEDED] the fix is in a dependency.

Closes: https://github.com/containers/podman/issues/16718

Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
 2022-12-05 09:54:03 +01:00
dependabot[bot] c87a5cee76 build(deps): bump golang.org/x/sys from 0.2.0 to 0.3.0 
Bumps [golang.org/x/sys](https://github.com/golang/sys) from 0.2.0 to 0.3.0.
- [Release notes](https://github.com/golang/sys/releases)
- [Commits](https://github.com/golang/sys/compare/v0.2.0...v0.3.0)

---
updated-dependencies:
- dependency-name: golang.org/x/sys
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-05 04:05:22 +00:00
Daniel J Walsh c552ab433d Revert "Revert "Rework default list of capabilities to minimal"" 
This reverts commit 91ba27095f.

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2022-12-04 16:12:04 -05:00
OpenShift Merge Robot 23636dda9a Merge pull request #1243 from vrothberg/RUN-1702 
containers.conf: add events_container_create_inspect_data
 2022-11-28 07:44:29 -05:00
Valentin Rothberg 821a0657ca containers.conf: add events_container_create_inspect_data 
Add an option to create a more verbose container-create event which
includes a JSON payload with detailed information about the container.

Jira: https://issues.redhat.com/browse/RUN-1702
Signed-off-by: Valentin Rothberg <vrothberg@redhat.com>
 2022-11-28 13:01:46 +01:00
Aditya R 1e9863c4b0 docs,containerfile: RUN --mount mention rw option 
Mention `readwrite, rw` option for `RUN --mount` instruction and mention
correct default for `ro, readonly`.

[NO NEW TESTS NEEDED]
[NO TESTS NEEDED]

Closes: https://github.com/containers/common/issues/1246

Signed-off-by: Aditya R <arajan@redhat.com>
 2022-11-28 15:40:53 +05:30
Daniel J Walsh f8045ec731 Remove conmon probe 
This is taking time on every podman call, and provide limited
protection. Versioning should be handled in the packaging system
and this is an unlikely to happen.

Every exec done by container tools hurts us as we try to get container
startup team to absolute minimal amounts.

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2022-11-27 07:16:29 -05:00
Valentin Rothberg 91ba27095f Revert "Rework default list of capabilities to minimal" 
This reverts commit 962dbc3281.
As shown in containers/podman/pull/16610 the changes require a number of
changes in Podman's CI.  While many issues have been fixed in that PR,
there are some potentially controversial changes such as dropping
NET_RAW.

Let's revert the commit to unblock ongoing work.  For the next
iteration, Podman CI must be green before merging.

Signed-off-by: Valentin Rothberg <vrothberg@redhat.com>
 2022-11-25 09:37:41 +01:00
OpenShift Merge Robot 32d0d9fc59 Merge pull request #1239 from giuseppe/validate-cdi-devices 
validate: ignore validation of CDI devices
 2022-11-23 04:55:47 -05:00
OpenShift Merge Robot 5034979776 Merge pull request #1240 from rhatdan/caps 
Rework default list of capabilities to minimal
 2022-11-23 03:39:04 -05:00
OpenShift Merge Robot 60b781b90e Merge pull request #1238 from rhatdan/userns 
Deprecate UserNSSize, since we don't use it
 2022-11-22 12:57:55 -05:00
Daniel J Walsh 962dbc3281 Rework default list of capabilities to minimal 
For a couple of years now we have been shipping containers.conf settings
to use only 10 capabities. Docker uses 14, with the difference being
CAP_AUDIT_ALLOW, CAP_NET_RAW, CAP_MKNOD, CAP_CHROOT.

This allows us to run with a tighter security then Docker.

This PR makes the change to default config, so that if no
containers.conf overrides are present, we will run with the tighter
security. Currently most distros that ship the containers.conf already
run with this setting, but this makes it formal, and changes the man
page to match the defaults.

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2022-11-22 12:55:25 -05:00
Giuseppe Scrivano 76d4399a75 validate: ignore validation of CDI devices 
Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
 2022-11-21 22:40:48 +01:00
Giuseppe Scrivano 984240a8ee vendor: add github.com/container-orchestrated-devices 
Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
 2022-11-21 22:40:48 +01:00
OpenShift Merge Robot eadaea507a Merge pull request #1237 from flouthoc/network-scoped-dns-common 
libnetwork, Network: add field `NetworkDNSServers` for network scoped dns
 2022-11-21 15:31:07 -05:00
Daniel J Walsh 3a429400c3 Deprecate UserNSSize, since we don't use it 
Podman and Buildah do not use this field, and I
know of no users of it, remove it from docs and
the default conf file, so users will not expect
it to do anything.

Leaving implementation in the slight chance someone
has used it in a non containers project.

Fixes: https://github.com/containers/podman/issues/16562

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2022-11-21 13:06:10 -05:00
Aditya R f1cb293c6e libnetwork, Network: add field NetworkDNSServers for network scoped dns 
libnetwork must allow to pass network_dns_servers so aardvark and
netavark can consume it and enabled network scoped dns.

Feature implemented at netavark and aardvark end
* Netavark: https://github.com/containers/netavark/pull/497

Signed-off-by: Aditya R <arajan@redhat.com>
 2022-11-21 21:29:14 +05:30
dependabot[bot] b4d83a541e build(deps): bump github.com/onsi/ginkgo/v2 from 2.5.0 to 2.5.1 
Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.5.0 to 2.5.1.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.5.0...v2.5.1)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-11-21 04:09:15 +00:00
dependabot[bot] 65fb7f014e build(deps): bump golang.org/x/crypto from 0.2.0 to 0.3.0 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.2.0 to 0.3.0.
- [Release notes](https://github.com/golang/crypto/releases)
- [Commits](https://github.com/golang/crypto/compare/v0.2.0...v0.3.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-11-18 04:03:04 +00:00
dependabot[bot] 098edfc164 build(deps): bump github.com/containerd/containerd from 1.6.9 to 1.6.10 
Bumps [github.com/containerd/containerd](https://github.com/containerd/containerd) from 1.6.9 to 1.6.10.
- [Release notes](https://github.com/containerd/containerd/releases)
- [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md)
- [Commits](https://github.com/containerd/containerd/compare/v1.6.9...v1.6.10)

---
updated-dependencies:
- dependency-name: github.com/containerd/containerd
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-11-15 04:03:58 +00:00