opensource/podman
1
0
Fork 0
mirror of https://github.com/containers/podman.git synced 2025-12-07 22:32:46 +08:00
Code Issues Packages Projects Releases Wiki Activity
25,882 Commits 60 Branches 257 Tags
2bed9a40bc446109b8ab197b2ce94bc8a984f34c
Commit Graph

25882 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
openshift-merge-bot[bot]
6b9a3066b6 Merge pull request #26631 from Luap99/autoupdate-error 
podman auto-update: include container in invalid policy message
 2025-07-14 17:34:37 +00:00
openshift-merge-bot[bot]
9ed9da3446 Merge pull request #26602 from containers/renovate/common-image-and-storage-deps 
Update common, image, and storage deps
 2025-07-14 16:47:20 +00:00
Craig Spencer
55296e1c44 Fix test that checks for podman exec leaks 
Updated helper function "find_exec_pid_files" and called it the "podman exec - leak check" test.

Fixes: #26616

Signed-off-by: Craig Spencer <craig.spencer812@gmail.com>
 2025-07-14 12:18:17 -04:00
openshift-merge-bot[bot]
b05b9d043d Merge pull request #26533 from ArthurWuTW/26506 
volume export: refuse to write to terminal (TTY)
 2025-07-14 15:58:56 +00:00
renovate[bot]
e899f49926 Update common, image, and storage deps 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-07-14 15:42:59 +00:00
Arthur Wu
b48eb6e2fb volume export: refuse to write to terminal (TTY) 
Prevent `podman volume export` from showing raw tar contents directly to the terminal (STDOUT). If not redirected and without output flag, error message is expected.

Fixes: #26506

Signed-off-by: Arthur Wu <lion811004@gmail.com>
 2025-07-14 10:20:22 -04:00
openshift-merge-bot[bot]
ffcd19735f Merge pull request #26630 from containers/renovate/go-github.com-go-viper-mapstructure-v2-vulnerability 
Update module github.com/go-viper/mapstructure/v2 to v2.3.0 [SECURITY]
 2025-07-14 13:38:44 +00:00
Paul Holzinger
e55270a51a podman auto-update: include container in invalid policy message 
I noticed recently when I made a typo that then auto-update errored but
it did not tell me which container was incorrect so I had to check all
containers myself. Include the container ID in the error to make it
clear which container has the issue.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2025-07-14 14:34:22 +02:00
renovate[bot]
4bc22a4b3c Update module github.com/go-viper/mapstructure/v2 to v2.3.0 [SECURITY] 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-07-14 12:31:17 +00:00
openshift-merge-bot[bot]
76b70b630c Merge pull request #26612 from Luap99/Maintainers 
Maintainers: add Lewis, Jan and Nicola as Reviewers
 2025-07-14 12:30:16 +00:00
openshift-merge-bot[bot]
7efa0b829a Merge pull request #26611 from containers/renovate/golang.org-x-net-0.x 
fix(deps): update module golang.org/x/net to v0.42.0
 2025-07-11 14:28:26 +00:00
openshift-merge-bot[bot]
de51ef1cd6 Merge pull request #26615 from containers/renovate/golangci-golangci-lint-2.x 
chore(deps): update dependency golangci/golangci-lint to v2.2.2
 2025-07-11 14:25:15 +00:00
openshift-merge-bot[bot]
c305a932cc Merge pull request #26609 from Luap99/bindings-fixes 
pkg/bindings/containers: some attach/logs handling fixes
 2025-07-11 14:16:31 +00:00
openshift-merge-bot[bot]
b059e47ff2 Merge pull request #26604 from l0rd/seccomp-winpath 
Fix seccomp profile path on Windows
 2025-07-11 14:13:35 +00:00
renovate[bot]
0c586807ea chore(deps): update dependency golangci/golangci-lint to v2.2.2 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-07-11 13:37:46 +00:00
openshift-merge-bot[bot]
e28445e9da Merge pull request #26575 from ypu/journalctl 
System tests: Update the journalctl function to ignore No entry message
 2025-07-11 13:36:54 +00:00
Paul Holzinger
215cecdbaa Maintainers: add Nicola Sella as Reviewer 
Nicola has done valuable contributions to the project over the past
months.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2025-07-11 12:31:16 +02:00
Paul Holzinger
78d4f63b93 Maintainers: add Jan Kaluza as Reviewer 
Jan has done valuable contributions to the project over the past months.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2025-07-11 12:31:16 +02:00
Paul Holzinger
5731557d54 Maintainers: add Lewis Roy as Reviewer 
Lewis has done valuable contributions to the project over the past
months.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2025-07-11 12:31:16 +02:00
renovate[bot]
b4ed23dc27 fix(deps): update module golang.org/x/net to v0.42.0 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-07-11 09:30:42 +00:00
openshift-merge-bot[bot]
ff1a3c5fa8 Merge pull request #26610 from containers/renovate/golang.org-x-crypto-0.x 
fix(deps): update module golang.org/x/crypto to v0.40.0
 2025-07-11 08:27:30 +00:00
openshift-merge-bot[bot]
d07dd054df Merge pull request #26607 from ygalblum/quadlet-image-pull-policy 
Quadlet - add support for the Policy key for .image files
 2025-07-11 08:13:38 +00:00
renovate[bot]
8987fd412a fix(deps): update module golang.org/x/crypto to v0.40.0 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-07-11 00:26:01 +00:00
Paul Holzinger
047d231008 test/e2e: podman update make env check stricter 
We don't need a tty here and then we are able to check for the
exact output.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2025-07-10 19:57:16 +02:00
Paul Holzinger
a360b29626 pkg/bindings/containers: do not ignore ErrUnexpectedEOF 
Do not ignore ErrUnexpectedEOF from DemuxHeader(), if we fail to parse
the header there must have been a clear protocal error between client
and server which should be reported and not silently ignored. I wonder
ig this might explain why we have missing remote exec/attach output
without any error, it is possible we are eating some internal errors due
this.

Commit ba8eba83ef added the ErrUnexpectedEOF check but without any
explanation why that would be needed. The tests from that commit pass
without it locally but not in CI. With some debugging best I found the
issue is actually a test bug. The channel is not consumed until it is
closed which means the main test exists before the log reading goroutine
is done. And if the main test exists the first step it does is to kill
the podman service which then can trigger the ErrUnexpectedEOF server on
the still open http connection and thus the test case failed there.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2025-07-10 19:57:16 +02:00
Paul Holzinger
ffec133766 pkg/bindings/containers: do not create sub slice 
DemuxFrame() already returns a byte slice with the correct length so
this makes it simpler and the caller does not need to check this at all.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2025-07-10 19:57:16 +02:00
Paul Holzinger
f42453457c pkg/bindings/containers: don't check for short read 
io.ReadFull() already returns ErrUnexpectedEOF if there was a short read
so this check is redundant and can be dropped.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2025-07-10 19:57:16 +02:00
openshift-merge-bot[bot]
9f264850d6 Merge pull request #26586 from Craig-Spencer-12/kube-secret-error 
Clarifiy error message when using an improperly formatted secret with kube
 2025-07-10 17:38:18 +00:00
Ygal Blum
439448c287 Quadlet - add support for the Policy key for .image files 
Resolves: #26446

Signed-off-by: Ygal Blum <ygal.blum@gmail.com>
 2025-07-10 13:06:38 -04:00
Craig Spencer
5e44c17309 Clarifies error message when using an improperly formatted secret with kube 
Fixes: #26586

Signed-off-by: Craig Spencer <craig.spencer812@gmail.com>
 2025-07-10 12:19:28 -04:00
openshift-merge-bot[bot]
cc84e29ddd Merge pull request #26599 from giuseppe/fix-one-time-example 
docs: replace fuse-overlayfs example with additionalimagestore
 2025-07-10 13:09:09 +00:00
Mario Loriedo
3e8b2d7d96 Fix seccomp profile path on Windows 
Call specgen.ConvertWinMountPath() on seccomp profile paths provided via
security-opt parameter.

Fixes https://github.com/containers/podman/issues/26558

Signed-off-by: Mario Loriedo <mario.loriedo@gmail.com>
 2025-07-10 15:02:54 +02:00
openshift-merge-bot[bot]
86dafb60bc Merge pull request #26603 from containers/renovate/golang.org-x-term-0.x 
fix(deps): update module golang.org/x/term to v0.33.0
 2025-07-10 09:54:19 +00:00
renovate[bot]
c01eaa87dd fix(deps): update module golang.org/x/term to v0.33.0 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-07-10 08:47:54 +00:00
Giuseppe Scrivano
1c943f0ad8 docs: replace fuse-overlayfs example with additionalimagestore 
The fuse-overlayfs example was misleading as setting fuse-overlayfs
will cause a persistent storage configuration change rather than a
one-time option.

Closes: https://github.com/containers/podman/issues/26590

Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
 2025-07-09 23:13:41 +02:00
openshift-merge-bot[bot]
faf975c737 Merge pull request #26593 from Luap99/ebpf 
hack/podman_cleanup_tracer.bt: fixes to make it work on newer versions
 2025-07-09 19:32:59 +00:00
Paul Holzinger
b59648a2d6 hack/podman_cleanup_tracer.bt: check map before deleting keys 
It seems the new bpftrace version since 0.22 logs a warning if we try to
delete a key that does not exist.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2025-07-09 14:02:11 +02:00
Paul Holzinger
1f8bc9d736 hack/podman_cleanup_tracer.bt: clamp str size for strcontains() 
On bpftrace 0.22 this fails to compile and load so the script currently
does not show us anything in CI there.

We need to clamp the string size a bit 128 chars seems more than enough
for the podman/conmon binary path length.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2025-07-09 14:02:10 +02:00
Paul Holzinger
5e5bfadf93 hack/podman_cleanup_tracer.bt: use new max str lenth 
The default has been set to 1024 which should bee good enough and better
than having to unroll this loop like that.
This is supported since bpftrace 0.22 which is in fedora 42.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2025-07-09 14:02:10 +02:00
openshift-merge-bot[bot]
a479783d4b Merge pull request #26583 from flouthoc/libpod_build 
[docs] libpod/build: add headers
 2025-07-08 16:44:51 +00:00
flouthoc
152849ebd2 libpod/build: add headers 
Add `headers` for `/libpod/build`

Closes: https://github.com/containers/podman/issues/26440

Signed-off-by: flouthoc <flouthoc.git@gmail.com>
 2025-07-08 06:51:32 -07:00
openshift-merge-bot[bot]
0737c19689 Merge pull request #26524 from mheon/libartifact_locking 
Add basic locking to Libartifact
 2025-07-08 13:01:25 +00:00
Yiqiao Pu
c735f8e237 Update the journalctl function to ignore No entry message 
For currently version of journalctl, --user option only works when
the persistent storage is enabled. So we need to check this option
before we use it. Otherwise a set of tests will failed with can
not find expected output from journalctl with rootless user.

Signed-off-by: Yiqiao Pu <ypu@redhat.com>
 2025-07-08 20:29:32 +08:00
openshift-merge-bot[bot]
aab1029b4f Merge pull request #26584 from ninja-quokka/tidy_artifact_types 
[Artifacts] Tidy artifact types
 2025-07-08 10:16:01 +00:00
openshift-merge-bot[bot]
6100b04ce9 Merge pull request #26574 from containers/renovate/common-image-and-storage-deps 
fix(deps): update common, image, and storage deps
 2025-07-08 10:02:15 +00:00
renovate[bot]
0e106c24e0 fix(deps): update common, image, and storage deps 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-07-08 09:13:21 +00:00
openshift-merge-bot[bot]
b047cfc7e9 Merge pull request #26563 from ygalblum/quadlet-warn-exec-parse-fail 
Quadlet - print warning when fail to parse
 2025-07-08 08:42:16 +00:00
Lewis Roy
0f61e48ac5 [Artifacts] Remove erroneous ArtifactListOptions var ImagePushOptions 
This var has so far been unuesd so easy to remove

Signed-off-by: Lewis Roy <lewis@redhat.com>
 2025-07-08 06:53:41 +10:00
Lewis Roy
53b5cb5581 [Artifacts] Add note about ArtifactInspectOptions Remote var 
Signed-off-by: Lewis Roy <lewis@redhat.com>
 2025-07-08 06:53:05 +10:00
Ygal Blum
cd807f8ff6 Quadlet - print warning when fail to parse 
Fixes: #26542

Signed-off-by: Ygal Blum <ygal.blum@gmail.com>
 2025-07-07 14:49:32 -04:00