containers
/
podman
mirror of https://github.com/containers/podman.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
321 Commits 51 Branches 248 Tags 259 MiB
Commit Graph

28 Commits

Author SHA1 Message Date
Daniel J Walsh 0d69ca6637 Fix seccomp support 
If user does not specify seccomp file or seccomp file does not exist,
then use the default seccomp settings.

Still need to not hard code /etc/crio/seccomp.json, should move this to
/usr/share/seccomp/seccomp.json

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>

Closes: #233
Approved by: baude
 2018-01-18 12:26:43 +00:00
Matthew Heon aa20a25ca0 Address review comments 
Signed-off-by: Matthew Heon <matthew.heon@gmail.com>

Closes: #229
Approved by: rhatdan
 2018-01-17 15:26:43 +00:00
Matthew Heon b814a94c34 Wire in logic for selecting backing state impl 
Signed-off-by: Matthew Heon <matthew.heon@gmail.com>

Closes: #229
Approved by: rhatdan
 2018-01-17 15:26:43 +00:00
Matthew Heon 9c5a42eb1f Remove unused fields from runtime config 
Signed-off-by: Matthew Heon <matthew.heon@gmail.com>

Closes: #212
Approved by: rhatdan
 2018-01-12 17:01:36 +00:00
Matthew Heon 240e5789d4 Update CNI plugin directories to search default location as well 
Signed-off-by: Matthew Heon <matthew.heon@gmail.com>
 2018-01-11 10:10:46 -05:00
Matthew Heon 2188167909 Remove vendored files unnecessary after Kube hostport removal 
Signed-off-by: Matthew Heon <matthew.heon@gmail.com>

Closes: #189
Approved by: mheon
 2018-01-08 20:48:31 +00:00
Matthew Heon 5c5c024e80 Remove Kubernetes hostport support 
This can now be handled by CNI plugins, so let them manage ports
instead.

Signed-off-by: Matthew Heon <matthew.heon@gmail.com>

Closes: #189
Approved by: mheon
 2018-01-08 20:48:31 +00:00
baude 1a48c426c9 Extend search path for conmon 
Adding /usr/libexec/crio/conmon to the list of places to
look for conmon.

Signed-off-by: baude <bbaude@redhat.com>

Closes: #172
Approved by: rhatdan
 2018-01-02 16:03:02 +00:00
Daniel J Walsh 1f49f555af Plumb through the --stop-timeout signal handling 
podman run/create have the ability to set the stop timeout flag.
We need to stop it in the database.

Also Allowing negative time for stop timeout makes no sense, so switching
to timeout of uint, allows user to specify huge timeout values.

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>

Closes: #158
Approved by: TomSweeneyRedHat
 2017-12-20 18:10:43 +00:00
Matthew Heon 7981b7636b Change default directory for CNI plugins 
Signed-off-by: Matthew Heon <matthew.heon@gmail.com>

Closes: #109
Approved by: mheon
 2017-12-14 23:59:22 +00:00
Matthew Heon 840eb04e03 Add iptables integration to network code 
Signed-off-by: Matthew Heon <matthew.heon@gmail.com>

Closes: #109
Approved by: mheon
 2017-12-14 23:59:21 +00:00
Matthew Heon 2bc20dd4d2 Wire in net plugin into libpod 
Signed-off-by: Matthew Heon <matthew.heon@gmail.com>

Closes: #109
Approved by: mheon
 2017-12-14 23:59:21 +00:00
Matthew Heon bf0d359047 Remove lock existence checks when creating pods/containers 
Given that we don't have a good way of cleaning up locks, these
could potential cause issues if we ever reuse a container or pod
ID

Also changes locks dir to use tmpfs, as we can't directly clean
up locks

Signed-off-by: Matthew Heon <matthew.heon@gmail.com>

Closes: #138
Approved by: rhatdan
 2017-12-14 18:18:16 +00:00
umohnani8 5330d3da7c Update kpod info to use new libpod api 
Signed-off-by: umohnani8 <umohnani@redhat.com>

Closes: #124
Approved by: mheon
 2017-12-14 00:54:21 +00:00
Daniel J Walsh 12682aa475
Merge pull request #72 from mheon/file_locking 
Move containers to file locks from c/storage
 2017-12-11 10:48:29 -06:00
Matthew Heon b71cde19c8 Add ability to refresh state in DB 
Also, ensure we always recreate runtime spec so our net namespace
paths will be correct

Signed-off-by: Matthew Heon <matthew.heon@gmail.com>
 2017-12-07 13:15:34 -05:00
Matthew Heon 92bc448624 Fix potential race condition in initializing libpod 
Signed-off-by: Matthew Heon <matthew.heon@gmail.com>
 2017-12-04 14:45:49 -05:00
Matthew Heon ae5aac50aa Add handling for system restart in libpod 
Signed-off-by: Matthew Heon <matthew.heon@gmail.com>
 2017-12-04 14:29:59 -05:00
Matthew Heon e9298a533a Remove SQL state locking and rely on sqlite locking 
Also renames some parameters from locksDir -> lockDir for
consistency.

Signed-off-by: Matthew Heon <matthew.heon@gmail.com>
 2017-12-04 13:40:27 -05:00
Matthew Heon abfd18b0db Move containers to file locks from c/storage 
Signed-off-by: Matthew Heon <matthew.heon@gmail.com>
 2017-12-04 13:39:44 -05:00
Daniel J Walsh 55c8b69d8f When shutting down the runtime we should always close the database 
Even if the storage fails to shutdown. This patch fixes on TODO.

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>

Closes: #97
Approved by: mheon
 2017-12-04 17:17:06 +00:00
Daniel J Walsh cefa782e50 Move libpod under containers/storage 
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>

Closes: #65
Approved by: mheon
 2017-11-29 20:40:50 +00:00
Matthew Heon bbef986214 Fix comment on container.Stop() 
Signed-off-by: Matthew Heon <matthew.heon@gmail.com>

Closes: #68
Approved by: rhatdan
 2017-11-29 12:15:15 +00:00
Matthew Heon 4f8fe2b810 Shut down containers when force stopping the runtime 
Signed-off-by: Matthew Heon <matthew.heon@gmail.com>

Closes: #68
Approved by: rhatdan
 2017-11-29 12:15:15 +00:00
TomSweeneyRedHat d43f786728 Add docker transport to push image before final failure 
Signed-off-by: TomSweeneyRedHat <tsweeney@redhat.com>

Closes: #42
Approved by: rhatdan
 2017-11-28 12:53:25 +00:00
Matthew Heon 57300be94d Fix segfault cleaning up in after failing to create a Runtime 
Signed-off-by: Matthew Heon <matthew.heon@gmail.com>
 2017-11-18 12:58:48 -05:00
Matthew Heon 763e372649 Wire SQL backed state into rest of libpod 
Signed-off-by: Matthew Heon <matthew.heon@gmail.com>
 2017-11-18 12:58:48 -05:00
Matthew Heon a031b83a09 Initial checkin from CRI-O repo 
Signed-off-by: Matthew Heon <matthew.heon@gmail.com>
 2017-11-01 11:24:59 -04:00