containers
/
podman
mirror of https://github.com/containers/podman.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
23,360 Commits 51 Branches 248 Tags 259 MiB
Commit Graph

216 Commits

Author SHA1 Message Date
Paul Holzinger 8a52e638e6
vendor latest c/common 
Includes the default db backend changes.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2023-10-10 17:08:04 +02:00
renovate[bot] da6c86dfcb
Update module golang.org/x/sys to v0.13.0 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2023-10-05 21:21:40 +00:00
renovate[bot] 172369b54c
fix(deps): update github.com/containers/gvisor-tap-vsock digest to 97028a6 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2023-09-23 02:34:21 +00:00
Paul Holzinger 2c2299ad85
bump buildah to latest 
Also includes a small change to make us of
https://github.com/containers/buildah/pull/5039

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2023-09-14 11:20:48 +02:00
Daniel J Walsh 75b4679a73
vendor of containers/(common, storage, image) 
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2023-09-11 13:52:23 -04:00
renovate[bot] e5bf0f96d7
fix(deps): update module golang.org/x/net to v0.15.0 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2023-09-05 18:05:34 +00:00
OpenShift Merge Robot d58fe4e68e
Merge pull request #19837 from containers/renovate/golang.org-x-text-0.x 
fix(deps): update module golang.org/x/text to v0.13.0
 2023-09-03 15:36:10 +02:00
renovate[bot] 17037af48f
fix(deps): update module golang.org/x/text to v0.13.0 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2023-09-02 14:20:51 +00:00
renovate[bot] 1d51cd14a9
fix(deps): update module golang.org/x/sys to v0.12.0 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2023-09-02 13:48:35 +00:00
renovate[bot] 58a0b7ac82
Update golang.org/x/exp digest to d852ddb 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2023-09-01 02:19:27 +00:00
renovate[bot] 202cc433af
Update module github.com/onsi/ginkgo/v2 to v2.12.0 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2023-08-23 23:41:24 +00:00
Brent Baude 9e14e3ebe5 enabled hyperv image downloads 
now that we have public hypverv fcos artifacts, we can download them
instead of requiring a special build.

Signed-off-by: Brent Baude <bbaude@redhat.com>

[NO NEW TESTS NEEDED]
 2023-08-15 07:45:29 -05:00
renovate[bot] 0b7769fdae
Update module golang.org/x/net to v0.14.0 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2023-08-07 07:52:57 +00:00
renovate[bot] fab62f816d
Update module golang.org/x/sys to v0.11.0 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2023-08-04 17:15:05 +00:00
renovate[bot] 0489d3aa6b
Update module golang.org/x/net to v0.13.0 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2023-08-01 22:48:32 +00:00
Daniel J Walsh 13a9500166
Update vendor containers/(common, buildah, image, storage) 
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2023-07-14 07:19:56 -04:00
renovate[bot] 6fd4ae6d29 chore(deps): update module github.com/gin-gonic/gin to v1.9.1 [security] 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Signed-off-by: Valentin Rothberg <vrothberg@redhat.com>
 2023-07-12 10:30:34 +02:00
Brent Baude 4e96686e9d AppleHV enablement pass #2 
* Use vfkit command line assembly
* Inject ignition file into guest using http over vsock
* Ready notification through use of vsock

[NO NEW TESTS NEEDED]

Signed-off-by: Brent Baude <bbaude@redhat.com>
 2023-07-11 06:36:10 -05:00
renovate[bot] ab2fa45ad6
fix(deps): update module golang.org/x/net to v0.12.0 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2023-07-05 16:16:41 +00:00
renovate[bot] 459b1578c6
fix(deps): update module golang.org/x/term to v0.10.0 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2023-07-05 14:07:26 +00:00
renovate[bot] 94b321337f
fix(deps): update module golang.org/x/text to v0.11.0 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2023-07-04 18:57:53 +00:00
Paul Holzinger 67674b3a63
vendor: update c/common to latest 
To include new pasta package

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2023-06-15 13:37:04 +02:00
Daniel J Walsh d464e1d4f1
Vendor in latests containers/common 
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2023-06-13 22:07:26 -04:00
renovate[bot] d0e2428fb6
fix(deps): update module golang.org/x/term to v0.9.0 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2023-06-12 22:32:03 +00:00
renovate[bot] 444f19cb2a
Update common, image, and storage deps 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2023-06-12 10:31:58 +02:00
renovate[bot] 520979ba2e
fix(deps): update module github.com/onsi/ginkgo/v2 to v2.9.5 
Signed-off-by: Renovate Bot <bot@renovateapp.com>
 2023-05-15 16:26:32 +00:00
renovate[bot] 661a238a97
fix(deps): update module golang.org/x/net to v0.10.0 
Signed-off-by: Renovate Bot <bot@renovateapp.com>
 2023-05-08 19:13:17 +00:00
renovate[bot] 11d92ea376
fix(deps): update github.com/containers/common digest to 3e93a76 
Signed-off-by: Renovate Bot <bot@renovateapp.com>
 2023-05-06 11:14:08 +00:00
renovate[bot] 505e02e046
fix(deps): update github.com/containers/common digest to bc15b04 
Signed-off-by: Renovate Bot <bot@renovateapp.com>
 2023-05-05 08:15:08 +00:00
renovate[bot] 1b2b0d0315
fix(deps): update module github.com/onsi/ginkgo/v2 to v2.9.3 
Signed-off-by: Renovate Bot <bot@renovateapp.com>
 2023-05-03 05:35:43 +00:00
Paul Holzinger 445815036f
update to ginkgo v2 
Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2023-05-02 11:27:35 +02:00
Aditya R 260bc3ec4c
vendor: bump containers/(storage, common, buildah, image) 
Bump containers/(storage, common, buildah and image)

Changes since 2023-01-01:
 - skip mount-cache-selinux-long-name test under remote, with
   a FIXME requesting that someone see if it can be made to work.

 - skip six tests that fail under rootless-remote

 - add new --build-arg-file option:
 - update man page

Squash of:
* cf56eb1865
* 561f082772

Signed-off-by: Ed Santiago <santiago@redhat.com>
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
Signed-off-by: Aditya R <arajan@redhat.com>
 2023-04-10 17:30:14 +05:30
dependabot[bot] 34a5c7f157
build(deps): bump golang.org/x/sys from 0.6.0 to 0.7.0 
Bumps [golang.org/x/sys](https://github.com/golang/sys) from 0.6.0 to 0.7.0.
- [Release notes](https://github.com/golang/sys/releases)
- [Commits](https://github.com/golang/sys/compare/v0.6.0...v0.7.0)

---
updated-dependencies:
- dependency-name: golang.org/x/sys
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-04-05 12:58:38 +00:00
Daniel J Walsh e21cf2d8df
Vendor in latest containers/(storage, common, image) 
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2023-03-16 09:26:19 -04:00
dependabot[bot] af7a759e9d
build(deps): bump golang.org/x/net from 0.7.0 to 0.8.0 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.7.0 to 0.8.0.
- [Release notes](https://github.com/golang/net/releases)
- [Commits](https://github.com/golang/net/compare/v0.7.0...v0.8.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-07 01:34:11 +00:00
dependabot[bot] 5d039ce222
build(deps): bump golang.org/x/sys from 0.5.0 to 0.6.0 
Bumps [golang.org/x/sys](https://github.com/golang/sys) from 0.5.0 to 0.6.0.
- [Release notes](https://github.com/golang/sys/releases)
- [Commits](https://github.com/golang/sys/compare/v0.5.0...v0.6.0)

---
updated-dependencies:
- dependency-name: golang.org/x/sys
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-06 13:00:25 +00:00
Valentin Rothberg adacd3b127 vendor c/common@852ca05a1f 
Also force an update of c/image to prevent a downgrade.

Signed-off-by: Valentin Rothberg <vrothberg@redhat.com>
 2023-02-21 14:06:42 +01:00
dependabot[bot] 9f84b9b52a
build(deps): bump golang.org/x/net from 0.6.0 to 0.7.0 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.6.0 to 0.7.0.
- [Release notes](https://github.com/golang/net/releases)
- [Commits](https://github.com/golang/net/compare/v0.6.0...v0.7.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-02-15 03:13:27 +00:00
Miloslav Trmač 86a4c6b65e Vendor c/image after https://github.com/containers/image/pull/1847 
... for Podman to immediately benefit from the updated heuristic.

Signed-off-by: Miloslav Trmač <mitr@redhat.com>
 2023-02-14 18:52:18 +01:00
Miloslav Trmač e308ba0215 Vendor c/image after https://github.com/containers/image/pull/1816 
Also includes unreleased https://github.com/openshift/imagebuilder/pull/246 to work
with the updated docker/docker dependency.

And updates some references to newly deprecated docker/docker symbols.

[NO NEW TESTS NEEDED]

Signed-off-by: Miloslav Trmač <mitr@redhat.com>
 2023-02-08 22:37:38 +01:00
dependabot[bot] 47df0ca254
build(deps): bump golang.org/x/term from 0.4.0 to 0.5.0 
Bumps [golang.org/x/term](https://github.com/golang/term) from 0.4.0 to 0.5.0.
- [Release notes](https://github.com/golang/term/releases)
- [Commits](https://github.com/golang/term/compare/v0.4.0...v0.5.0)

---
updated-dependencies:
- dependency-name: golang.org/x/term
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-02-08 12:04:35 +00:00
Miloslav Trmač 069edc3adf Add (podman {image,manifest} push --sign-by-sigstore=param-file.yaml) 
(podman push) and (podman manifest push) now support --sign-by-sigstore=param-file,
using the containers-sigstore-signing-params.yaml(5) file format.

That notably adds support for Fulcio and Rekor signing.

Signed-off-by: Miloslav Trmač <mitr@redhat.com>
 2023-01-27 16:47:32 +01:00
Daniel J Walsh eea78ec7b3
Vendor in latest containers/(common, image, storage) 
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2023-01-05 10:40:36 -05:00
Daniel J Walsh 3718ac8e96
Vendor in latest containers/common with default capabilities 
Also update vendor of containers/storage and image

Cleanup display of added/dropped capabilties as well

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2022-12-15 14:28:30 -05:00
dependabot[bot] 364ed81b46 build(deps): bump golang.org/x/net from 0.2.0 to 0.4.0 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.2.0 to 0.4.0.
- [Release notes](https://github.com/golang/net/releases)
- [Commits](https://github.com/golang/net/compare/v0.2.0...v0.4.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Valentin Rothberg <vrothberg@redhat.com>
 2022-12-12 13:53:49 +01:00
Ygal Blum 7d16c2b69e Update containers common package 
The new version adds NetworkCreateOptions. For now pass nil

[NO NEW TESTS NEEDED]

Signed-off-by: Ygal Blum <ygal.blum@gmail.com>
 2022-12-06 13:52:28 +02:00
Paul Holzinger c7827957a4
ginkgo: restructure install work flow 
- move the ginkgo deps into test/tools which is more consitent with the
  other tools there, listing in dependencies always causes errors with
  linters
- do not install it globally on the system, instead we use it in a
  subdir of this project

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2022-11-25 14:41:43 +01:00
Daniel J Walsh fb429dbe3c
Update vendor of containers/(buildah, common, storage, image) 
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2022-11-22 08:53:59 -05:00
shuai.yang 0d270ae380 support podman-remote to connect tcpURL with proxy 
1. proxy value from env `CONTAINER_PROXY`
2. proxy socks5 && socks5h is supported
3. the proxy dial timeout is 3s

Signed-off-by: shuai.yang <shuai.yang@mihoyo.com>
 2022-11-17 18:12:52 +08:00
Daniel J Walsh 5df00c6f79
Vendor in latest containers/(common,image,storage) 
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2022-11-11 14:40:03 -05:00
Paul Holzinger 3e08f85353
fix --format {{json .}} output to match docker 
`--format json` should not be the same as `--format {{json .}}`, the
later should actually run through the go template and thus create one
json object per entry instead of an json array.

Includes a vendor of c/common@main since it requires a fix from there as
well.

This matches docker compat.
Fixes #16436

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2022-11-09 17:59:05 +01:00
Daniel J Walsh 571833d562
Update vendor of containers/(image, storage, common) 
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2022-11-04 08:58:12 -04:00
Daniel J Walsh 6fe64591d6
Update vendor containers/(common,storage,buildah,image) 
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2022-10-28 06:16:22 -04:00
dependabot[bot] e16800e8bf
build(deps): bump golang.org/x/text from 0.3.8 to 0.4.0 
Bumps [golang.org/x/text](https://github.com/golang/text) from 0.3.8 to 0.4.0.
- [Release notes](https://github.com/golang/text/releases)
- [Commits](https://github.com/golang/text/compare/v0.3.8...v0.4.0)

---
updated-dependencies:
- dependency-name: golang.org/x/text
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-10-19 19:40:40 +00:00
dependabot[bot] 7ff8c8f796
build(deps): bump golang.org/x/text from 0.3.7 to 0.3.8 
Bumps [golang.org/x/text](https://github.com/golang/text) from 0.3.7 to 0.3.8.
- [Release notes](https://github.com/golang/text/releases)
- [Commits](https://github.com/golang/text/compare/v0.3.7...v0.3.8)

---
updated-dependencies:
- dependency-name: golang.org/x/text
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-10-12 12:10:32 +00:00
Daniel J Walsh fe3c91d581
Update vendor containers/(common,image) 
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2022-09-30 06:45:24 -04:00
Daniel J Walsh 54653ceebe
Update vendor or containers/buildah 
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2022-09-23 14:12:37 -04:00
dependabot[bot] 9457549fff build(deps): bump github.com/vbauerster/mpb/v7 from 7.5.2 to 7.5.3 
Bumps [github.com/vbauerster/mpb/v7](https://github.com/vbauerster/mpb) from 7.5.2 to 7.5.3.
- [Release notes](https://github.com/vbauerster/mpb/releases)
- [Commits](https://github.com/vbauerster/mpb/compare/v7.5.2...v7.5.3)

---
updated-dependencies:
- dependency-name: github.com/vbauerster/mpb/v7
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Also bump the go module to 1.17 to be able to compile the new code.
Given containers/common and others already require go 1.17+ we're
safe to go.

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Valentin Rothberg <vrothberg@redhat.com>
 2022-09-13 08:58:22 +02:00
Paul Holzinger eb28a1c084
update buildah and c/common to latest 
also includes bumps for c/storage and c/image

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2022-09-09 11:58:20 +02:00
Jason T. Greene ecb9f99b88 Add new windows installer and build 
Signed-off-by: Jason T. Greene <jason.greene@redhat.com>
 2022-09-06 16:12:09 -05:00
Valentin Rothberg 88e4e4c82e vendor containers/psgo@v1.7.3 
Add three new capabilities that would otherwise be reported as unknown.

Also add an e2e test making sure that `podman top` knows all
capabilities of the current kernel.  I refrained from adding a system
test since this may blow up in gating tests.

Signed-off-by: Valentin Rothberg <vrothberg@redhat.com>
 2022-08-24 17:13:58 +02:00
dependabot[bot] bfae6bca92
build(deps): bump github.com/mattn/go-isatty from 0.0.14 to 0.0.16 
Bumps [github.com/mattn/go-isatty](https://github.com/mattn/go-isatty) from 0.0.14 to 0.0.16.
- [Release notes](https://github.com/mattn/go-isatty/releases)
- [Commits](https://github.com/mattn/go-isatty/compare/v0.0.14...v0.0.16)

---
updated-dependencies:
- dependency-name: github.com/mattn/go-isatty
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-15 12:10:32 +00:00
Charlie Doern 280f5d8cb0 podman ssh work, using new c/common interface 
implement new ssh interface into podman

this completely redesigns the entire functionality of podman image scp,
podman system connection add, and podman --remote. All references to golang.org/x/crypto/ssh
have been moved to common as have native ssh/scp execs and the new usage of the sftp package.

this PR adds a global flag, --ssh to podman which has two valid inputs `golang` and `native` where golang is the default.
Users should not notice any difference in their everyday workflows if they continue using the golang option. UNLESS they have been using an improperly verified ssh key, this will now fail. This is because podman was incorrectly using the
ssh callback method to IGNORE the ssh known hosts file which is very insecure and golang tells you not yo use this in production.

The native paths allows for immense flexibility, with a new containers.conf field `SSH_CONFIG` that specifies a specific ssh config file to be used in all operations. Else the users ~/.ssh/config file will be used.
podman --remote currently only uses the golang path, given its deep interconnection with dialing multiple clients and urls.

My goal after this PR is to go back and abstract the idea of podman --remote from golang's dialed clients, as it should not be so intrinsically connected. Overall, this is a v1 of a long process of offering native ssh, and one that covers some good ground with podman system connection add and podman image scp.

Signed-off-by: Charlie Doern <cdoern@redhat.com>
 2022-08-09 14:00:58 -04:00
Valentin Rothberg c1f04a024a podman-remote pull: fix duplicate progress outputs 
By vendoring the fixes from containers/image.  Also add a test (thanks
@edsantiago) to make sure we won't regress in the future again.

Signed-off-by: Valentin Rothberg <vrothberg@redhat.com>
 2022-07-21 10:04:45 +02:00
Daniel J Walsh f67ab1eb20
Vendor in containers/(storage,image, common, buildah) 
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2022-07-18 10:42:04 -04:00
Valentin Rothberg 46c8da7d9a vendor buildah@main 
Note that the bud-logfile-with-split-logfile-by-platform test is skipped
on the remote client (see #14544).

Signed-off-by: Valentin Rothberg <vrothberg@redhat.com>
 2022-06-10 09:42:19 +02:00
dependabot[bot] f98a7d1405
build(deps): bump github.com/vbauerster/mpb/v7 from 7.4.1 to 7.4.2 
Bumps [github.com/vbauerster/mpb/v7](https://github.com/vbauerster/mpb) from 7.4.1 to 7.4.2.
- [Release notes](https://github.com/vbauerster/mpb/releases)
- [Commits](https://github.com/vbauerster/mpb/compare/v7.4.1...v7.4.2)

---
updated-dependencies:
- dependency-name: github.com/vbauerster/mpb/v7
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-24 12:11:43 +00:00
Daniel J Walsh e247f02a4f
Vendor in containers/(common, storage, image) 
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2022-05-02 17:16:10 -04:00
Valentin Rothberg 77d872ea38 vendor c/common@main 
Required for using the newly added pod exit policies.

Signed-off-by: Valentin Rothberg <vrothberg@redhat.com>
 2022-05-02 11:16:14 +02:00
dependabot[bot] 6529211199
Bump github.com/fsnotify/fsnotify from 1.5.3 to 1.5.4 
Bumps [github.com/fsnotify/fsnotify](https://github.com/fsnotify/fsnotify) from 1.5.3 to 1.5.4.
- [Release notes](https://github.com/fsnotify/fsnotify/releases)
- [Changelog](https://github.com/fsnotify/fsnotify/blob/main/CHANGELOG.md)
- [Commits](https://github.com/fsnotify/fsnotify/compare/v1.5.3...v1.5.4)

---
updated-dependencies:
- dependency-name: github.com/fsnotify/fsnotify
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-04-27 12:10:46 +00:00
Paul Holzinger 56d6ee0808
move golang.org/x/crypto/ssh/terminal to golang.org/x/term 
golang.org/x/crypto/ssh/terminal is deprecated. The package was moved to
golang.org/x/term. golang.org/x/crypto/ssh/terminal was already just
calling golang.org/x/term itslef so there are no functional changes.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2022-04-22 12:40:52 +02:00
Lokesh Mandvekar 5e680d54e9
Bump golang.org/x/crypto to 7b82a4e 
Resolves: GHSA-8c26-wmh5-6g9v - CVE-2022-27191

Podman doesn't seem to be directly affected as the logic in question
is not called.

golang.org/x/crypto@1baeb1ce contains the actual CVE fix. Using the
latest upstream commit to also include support for SHA-2.

Signed-off-by: Lokesh Mandvekar <lsm5@fedoraproject.org>
 2022-04-12 10:24:32 -04:00
dependabot[bot] 25345c0870
build(deps): bump github.com/rootless-containers/rootlesskit 
Bumps [github.com/rootless-containers/rootlesskit](https://github.com/rootless-containers/rootlesskit) from 0.14.6 to 1.0.0.
- [Release notes](https://github.com/rootless-containers/rootlesskit/releases)
- [Commits](https://github.com/rootless-containers/rootlesskit/compare/v0.14.6...v1.0.0)

---
updated-dependencies:
- dependency-name: github.com/rootless-containers/rootlesskit
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-03-25 17:49:08 +00:00
Aditya R 780d4b2d65
vendor: bump buildah, c/image and c/storage 
Bumps

c/buildah to -> `v1.24.3-0.20220310160415-5ec70bf01ea5`
c/storage to -> `v1.38.3-0.20220308085612-93ce26691863`
c/image to -> `v5.20.1-0.20220310094651-0d8056ee346f`

Signed-off-by: Aditya R <arajan@redhat.com>
 2022-03-14 12:26:12 +05:30
dependabot[bot] a5353207c7
Bump github.com/vbauerster/mpb/v7 from 7.3.2 to 7.4.1 
Bumps [github.com/vbauerster/mpb/v7](https://github.com/vbauerster/mpb) from 7.3.2 to 7.4.1.
- [Release notes](https://github.com/vbauerster/mpb/releases)
- [Commits](https://github.com/vbauerster/mpb/compare/v7.3.2...v7.4.1)

---
updated-dependencies:
- dependency-name: github.com/vbauerster/mpb/v7
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-03-10 12:10:45 +00:00
Ashley Cui 569319d397 Vendor in containers/common@main 
Signed-off-by: Ashley Cui <acui@redhat.com>
 2022-02-28 16:23:26 -05:00
Daniel J Walsh 1d1b2b1509
Update containers/buildah v1.24.1 
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2022-02-03 18:33:22 -05:00
Paul Holzinger 774271c38a
upgrade all dependencies 
The dependabot does not update dependencies when they do not use a tag.
This patch upgrades all untagged depenencies if possible.

You can upgrade all dependencies with `go get -u ./... && make vendor`
in theory however this failed since the k8s changes do not compile on
go v1.16 so I only updated the other dependencies.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2022-01-18 16:27:00 +01:00
Paul Holzinger 0151e10b62
update buildah to latest and use new network stack 
Make sure buildah uses the new network stack.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2022-01-12 17:40:12 +01:00
Valentin Rothberg b7380a7c36 vendor c/common 
Also update the e2e pull test to account for the changes when pulling
from the dir transport.  Images pulled via the dir transport are not
tagged anymore; the path is not a reliable source.

Signed-off-by: Valentin Rothberg <rothberg@redhat.com>
 2022-01-10 16:25:37 +01:00
Jason T. Greene 3ac5999f85 Switch to a new installer approach using a path manipulation helper 
Fixes #11089 - cleanup PATH on MSI uninstall
Additionally fixes scenarios where the path can be overwritten by setx
Also removes the console flash, since the helper is built as a silent gui
Helper executable can be rerun by user to repair PATHs broken by other tools
Utilizes executable location instead of passed parameters to remove delicate escaping requirements

[NO NEW TESTS NEEDED]

Signed-off-by: Jason T. Greene <jason.greene@redhat.com>
 2021-12-23 00:29:10 -06:00
Paul Holzinger 03a3fc37fe
bump cobra to 1.3.0 
This contains some fixes for the shell completion files.

[NO NEW TESTS NEEDED]

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2021-12-16 15:28:39 +01:00
Valentin Rothberg d87a9b788b vendor c/image/v5@main 
Mainly to pull in fixes for #11636 which handles credential helpers
correctly.

Fixes: #11636
Signed-off-by: Valentin Rothberg <rothberg@redhat.com>
 2021-12-07 17:20:47 +01:00
dependabot[bot] 73e95d1c3e
Bump github.com/containers/image/v5 from 5.16.1 to 5.17.0 
Bumps [github.com/containers/image/v5](https://github.com/containers/image) from 5.16.1 to 5.17.0.
- [Release notes](https://github.com/containers/image/releases)
- [Commits](https://github.com/containers/image/compare/v5.16.1...v5.17.0)

---
updated-dependencies:
- dependency-name: github.com/containers/image/v5
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-11-22 17:01:27 +00:00
Daniel J Walsh 44b2404702
Bump github.com/rootless-containers/rootlesskit from 0.14.5 to 0.14.6 
Bumps [github.com/rootless-containers/rootlesskit](https://github.com/rootless-containers/rootlesskit) from 0.14.5 to 0.14.6.
- [Release notes](https://github.com/rootless-containers/rootlesskit/releases)
- [Commits](rootless-containers/rootlesskit@v0.14.5...v0.14.6)

---
updated-dependencies:
- dependency-name: github.com/rootless-containers/rootlesskit
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-11-19 14:26:03 -05:00
Daniel J Walsh 087f8fc73b
Allow API to specify size and inode quota 
Fixes: https://github.com/containers/podman/issues/11016

[NO NEW TESTS NEEDED] We have no easy way to tests this in
CI/CD systems.  Requires quota to be setup on directories to work.

Fixes: https://github.com/containers/podman/issues/11016

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2021-10-18 14:44:10 -04:00
dependabot[bot] 675d2d0c1a
Bump github.com/containers/image/v5 from 5.16.0 to 5.16.1 
Bumps [github.com/containers/image/v5](https://github.com/containers/image) from 5.16.0 to 5.16.1.
- [Release notes](https://github.com/containers/image/releases)
- [Commits](https://github.com/containers/image/compare/v5.16.0...v5.16.1)

---
updated-dependencies:
- dependency-name: github.com/containers/image/v5
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-10-06 12:24:29 +00:00
flouthoc a55e2a00fc rootfs: Add support for rootfs-overlay and bump to buildah v1.22.1-0.202108 
Allows users to specify a readonly rootfs with :O, in exchange podman will create a writable overlay.

bump builah to v1.22.1-0.20210823173221-da2b428c56ce

[NO TESTS NEEDED]

Signed-off-by: flouthoc <flouthoc.git@gmail.com>
 2021-09-14 13:31:39 +05:30
dependabot[bot] eec59cea2c
Bump github.com/containers/storage from 1.35.0 to 1.36.0 
Bumps [github.com/containers/storage](https://github.com/containers/storage) from 1.35.0 to 1.36.0.
- [Release notes](https://github.com/containers/storage/releases)
- [Changelog](https://github.com/containers/storage/blob/main/docs/containers-storage-changes.md)
- [Commits](https://github.com/containers/storage/compare/v1.35.0...v1.36.0)

---
updated-dependencies:
- dependency-name: github.com/containers/storage
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-09-13 12:29:39 +00:00
Valentin Rothberg 78c5a47fc9 vendor mpb@v7.1.4 
Fixes a race condition leading to a deadlock.

Thanks to @mtrmac and @vbauerster for fixing the issue!

Signed-off-by: Valentin Rothberg <rothberg@redhat.com>
 2021-09-09 14:19:21 +02:00
dependabot[bot] f5ce02b227
Bump github.com/containers/image/v5 from 5.15.2 to 5.16.0 
Bumps [github.com/containers/image/v5](https://github.com/containers/image) from 5.15.2 to 5.16.0.
- [Release notes](https://github.com/containers/image/releases)
- [Commits](https://github.com/containers/image/compare/v5.15.2...v5.16.0)

---
updated-dependencies:
- dependency-name: github.com/containers/image/v5
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-08-26 13:21:26 +00:00
dependabot[bot] c6e12a2e44
Bump github.com/fsnotify/fsnotify from 1.4.9 to 1.5.1 
Bumps [github.com/fsnotify/fsnotify](https://github.com/fsnotify/fsnotify) from 1.4.9 to 1.5.1.
- [Release notes](https://github.com/fsnotify/fsnotify/releases)
- [Changelog](https://github.com/fsnotify/fsnotify/blob/master/CHANGELOG.md)
- [Commits](https://github.com/fsnotify/fsnotify/compare/v1.4.9...v1.5.1)

---
updated-dependencies:
- dependency-name: github.com/fsnotify/fsnotify
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-08-25 12:28:54 +00:00
dependabot[bot] eb2e99101a
Bump k8s.io/apimachinery from 0.21.3 to 0.22.0 
Bumps [k8s.io/apimachinery](https://github.com/kubernetes/apimachinery) from 0.21.3 to 0.22.0.
- [Release notes](https://github.com/kubernetes/apimachinery/releases)
- [Commits](https://github.com/kubernetes/apimachinery/compare/v0.21.3...v0.22.0)

---
updated-dependencies:
- dependency-name: k8s.io/apimachinery
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-08-05 12:20:04 +00:00
openshift-ci[bot] bdbc21095a
Merge pull request #10828 from cdoern/scp 
Created image scp feature
 2021-08-02 17:15:54 +00:00
cdoern 1d10ca739f Created scp.go image_scp_test.go and podman-image-scp.1.md 
added functionality for image secure copying from local to remote.
Also moved system connection add code around a bit so functions within that file
can be used by scp.

Signed-off-by: cdoern <cdoern@redhat.com>
 2021-07-30 17:19:24 -04:00
dependabot[bot] 23a938fa26
Bump github.com/containers/image/v5 from 5.13.2 to 5.14.0 
Bumps [github.com/containers/image/v5](https://github.com/containers/image) from 5.13.2 to 5.14.0.
- [Release notes](https://github.com/containers/image/releases)
- [Commits](https://github.com/containers/image/compare/v5.13.2...v5.14.0)

---
updated-dependencies:
- dependency-name: github.com/containers/image/v5
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-07-25 04:54:29 -04:00
Daniel J Walsh b6662eed3f
Vendor in containers/common v0.40.0 
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2021-06-17 14:59:42 -04:00
dependabot[bot] 6b187e4458
Bump github.com/vbauerster/mpb/v6 from 6.0.3 to 6.0.4 
Bumps [github.com/vbauerster/mpb/v6](https://github.com/vbauerster/mpb) from 6.0.3 to 6.0.4.
- [Release notes](https://github.com/vbauerster/mpb/releases)
- [Commits](https://github.com/vbauerster/mpb/compare/v6.0.3...v6.0.4)

Signed-off-by: dependabot[bot] <support@github.com>
 2021-05-19 06:50:18 +00:00
dependabot[bot] d71672c57b
Bump github.com/opencontainers/runc from 1.0.0-rc93 to 1.0.0-rc94 
Bumps [github.com/opencontainers/runc](https://github.com/opencontainers/runc) from 1.0.0-rc93 to 1.0.0-rc94.
- [Release notes](https://github.com/opencontainers/runc/releases)
- [Commits](https://github.com/opencontainers/runc/compare/v1.0.0-rc93...v1.0.0-rc94)

Signed-off-by: dependabot[bot] <support@github.com>
 2021-05-11 06:19:24 +00:00
dependabot[bot] a3fb15dffb
Bump github.com/docker/docker 
Bumps [github.com/docker/docker](https://github.com/docker/docker) from 20.10.3-0.20210216175712-646072ed6524+incompatible to 20.10.6+incompatible.
- [Release notes](https://github.com/docker/docker/releases)
- [Changelog](https://github.com/moby/moby/blob/master/CHANGELOG.md)
- [Commits](https://github.com/docker/docker/commits/v20.10.6)

Signed-off-by: dependabot[bot] <support@github.com>
 2021-05-07 08:04:42 +00:00