Vendor in the backports for psgo from the dedicated v1.4.0-rhel branch.
Note that c/storage is also vendored by a commit. We couldn't cut a
v1.19.2 for RHEL backports since Podman v1.19.1 is in Podman v1.9.3.
v1.19.2 has been cut after the Podman release with changes that have
not been approved for RHEL. Hence the dedicated release-1.19-podman-1.9-rhel
bran in c/storage.
Signed-off-by: Valentin Rothberg <vrothberg@redhat.com>
Disable the bindings tests in the CI. They primarilly targetted Podman
v2 development and pretty flaky and make backporting a bit harder.
So let's just silence them for the 1.9 branch.
Signed-off-by: Valentin Rothberg <rothberg@redhat.com>
In cases of trying to export an image, if the image was not found, we leaked an empty tarball or directory depending on the format.
Fixes: #6409
Signed-off-by: Brent Baude <bbaude@redhat.com>
For using the `registry:2.6` image. 2.7 and beyond dropped the
`htpasswd` binary from the rootfs which parts of our CI depends
on.
While this is not a sustainable solution (assuming `htpasswd` is gone
for ever), it unblocks the CI for now.
Signed-off-by: Valentin Rothberg <rothberg@redhat.com>
... primarily for https://github.com/containers/image/pull/912
Note that this drags in several other updates, notably c/storage.
See vendor/modules.txt for the full details.
> go get github.com/containers/image/v5@v5.4.4
> make vendor
Signed-off-by: Miloslav Trmač <mitr@redhat.com>
We previously enforced this for security reasons, but as Dan has
explained on several occasions, it's not very valuable there
(it's trivially easy to bypass) and it does seriously annoy folks
trying to use named volumes. Flip the default from 'on' to 'off'.
This is a backport from the master branch to v1.9 branch.
Signed-off-by: Matthew Heon <mheon@redhat.com>
FIPS Mode is failing, because we are attempting to mount the backend
directory from the wrong spot. The parameter is supposed to be
the container image mountpoint not the runtime directory.
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
To terminate a connection of varlink, say after sending a file, we need to send a message containing a delimiter of ':' so the client knows to hang up.
Fixes: #6237
Signed-off-by: Brent Baude <bbaude@redhat.com>
Add a system test to make sure that pidfile and cidfile are being
generated. Podman regressed in master and given 1.9 will be supported
for a while, let's make extra sure we're catching potential on these
flags early.
Signed-off-by: Valentin Rothberg <rothberg@redhat.com>
Currently we are setting the maximum limits for rootful podman containers,
no reason not to set them by default for rootless users as well
Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
