opensource/podman
1
0
Fork 0
mirror of https://github.com/containers/podman.git synced 2025-06-06 15:00:40 +08:00
Code Issues Packages Projects Releases Wiki Activity
5,748 Commits 58 Branches 247 Tags
Commit Graph

28 Commits

Author SHA1 Message Date
Daniel J Walsh
a6108f1c19 Add support for RunAsUser and RunAsGroup 
Currently podman generate kube does not generate the correct RunAsUser and RunAsGroup
options in the yaml file.  This patch fixes this.

This patch also make `podman play kube` use the RunAdUser and RunAsGroup options if
they are specified in the yaml file.

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2019-11-06 10:35:37 -05:00
Daniel J Walsh
65ed819932 Set SELinux labels based on the security context in the kube.yaml 
If the kube.yaml specifieds the SELinux type or Level, we need the container
to be launched with the correct label.

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2019-11-05 04:09:01 -05:00
Daniel J Walsh
66c126d6de Set default seccomp.json file for podman play kube 
Currently podman play kube is not using the system default seccomp.json file.
This PR will use the default or override location for podman play.

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2019-10-29 13:43:45 -04:00
Nalin Dahyabhai
a4a70b4506 bump containers/image to v5.0.0, buildah to v1.11.4 
Move to containers/image v5 and containers/buildah to v1.11.4.

Replace an equality check with a type assertion when checking for a
docker.ErrUnauthorizedForCredentials in `podman login`.

Signed-off-by: Nalin Dahyabhai <nalin@redhat.com>
 2019-10-29 13:35:18 -04:00
Miloslav Trmač
d3f59bedb3 Update c/image to v4.0.1 and buildah to 1.11.3 
This requires updating all import paths throughout, and a matching
buildah update to interoperate.

I can't figure out the reason for go.mod tracking
	github.com/containers/image v3.0.2+incompatible // indirect
((go mod graph) lists it as a direct dependency of libpod, but
(go list -json -m all) lists it as an indirect dependency),
but at least looking at the vendor subdirectory, it doesn't seem
to be actually used in the built binaries.

Signed-off-by: Miloslav Trmač <mitr@redhat.com>
 2019-10-04 20:18:23 +02:00
OpenShift Merge Robot
851e3775d5 Merge pull request #4117 from mheon/pod_no_name 
Add an error for pods without a name
 2019-09-26 19:58:32 +02:00
Matthew Heon
0cae686c7f Add an error for pods without a name 
Signed-off-by: Matthew Heon <mheon@redhat.com>
 2019-09-26 09:39:01 -04:00
Peter Hunt
e3a84b9487 play kube: Only support pod kind in k8s yaml 
Since we only really support playing pods, and no other kubernetes types

Signed-off-by: Peter Hunt <pehunt@redhat.com>
 2019-09-24 09:54:55 -04:00
Peter Hunt
9259693826 play kube: fix segfault 
when securityContext wasn't specified in yaml.
add a test as well

Signed-off-by: Peter Hunt <pehunt@redhat.com>
 2019-09-06 08:41:04 -04:00
OpenShift Merge Robot
98dee275d0 Merge pull request #3836 from chenzhiwei/hostname 
Allow customizing pod hostname
 2019-08-19 13:33:15 +02:00
Chen Zhiwei
7aefc1ac33 Allow customizing pod hostname 
* set hostname in pod yaml file
* set --hostname in pod create command

Signed-off-by: Chen Zhiwei <zhiweik@gmail.com>
 2019-08-18 03:48:40 +00:00
OpenShift Merge Robot
76f327f73f Merge pull request #3617 from QiWang19/create_pull 
add --pull flag for podman create&run
 2019-08-17 14:55:14 +02:00
Chen Zhiwei
fb9e1d7d9f Fix play kube command in pod yaml 
Signed-off-by: Chen Zhiwei <zhiweik@gmail.com>
 2019-08-14 09:22:29 -04:00
Qi Wang
decfea65be add --pull flag for podman create&run 
Requirement from https://github.com/containers/libpod/issues/3575#issuecomment-512238393

Added --pull for podman create and pull to match the newly added flag in docker CLI.
`missing`: default value, podman will pull the image if it does not exist in the local.
`always`: podman will always pull the image.
`never`: podman will never pull the image.

Signed-off-by: Qi Wang <qiwan@redhat.com>
 2019-08-09 15:21:34 -04:00
OpenShift Merge Robot
5370c53c9c Merge pull request #3692 from haircommander/play-caps 
Add Capability support to play kube
 2019-08-02 10:42:46 +02:00
Peter Hunt
834107c82e Add capability functionality to play kube 
Take capabilities written in a kube and add to a container
adapt test suite and write cap-add/drop tests

Signed-off-by: Peter Hunt <pehunt@redhat.com>
 2019-08-01 15:47:45 -04:00
Daniel J Walsh
e7aca5568a Use buildah/pkg/parse volume parsing rather then internal version 
We share this code with buildah, so we should eliminate the podman
version.

Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
 2019-08-01 03:48:16 -04:00
Giuseppe Scrivano
ba5741e398 pods: do not to join a userns if there is not any 
do not attempt to join the user namespace if the pod is running in the
host user namespace.

Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
 2019-07-25 23:04:54 +02:00
baude
db826d5d75 golangci-lint round #3 
this is the third round of preparing to use the golangci-lint on our
code base.

Signed-off-by: baude <bbaude@redhat.com>
 2019-07-21 14:22:39 -05:00
Peter Hunt
6f35a57423 Fix play kube command 
Before, play kube wasn't properly setting the command. Fix this
Also, begin a dedicated test suite for play kube to catch regressions like this in the future

Signed-off-by: Peter Hunt <pehunt@redhat.com>
 2019-07-17 12:59:50 -04:00
baude
a78c885397 golangci-lint pass number 2 
clean up and prepare to migrate to the golangci-linter

Signed-off-by: baude <bbaude@redhat.com>
 2019-07-11 09:13:06 -05:00
baude
8561b99644 libpod removal from main (phase 2) 
this is phase 2 for the removal of libpod from main.

Signed-off-by: baude <bbaude@redhat.com>
 2019-06-27 07:56:24 -05:00
Jhon Honce
69962682e9 Refactor of 'podman prune' to better support remote 
* Push iterations into the service not the client
* Add e2e tests
* Refactor to use new frameworks

Signed-off-by: Jhon Honce <jhonce@redhat.com>
 2019-04-18 15:13:56 -07:00
Peter Hunt
4319552cf8 Added remote pod prune 
Signed-off-by: Peter Hunt <pehunt@redhat.com>
 2019-04-16 11:23:18 -04:00
baude
788f818cc5 podman-remote pod top|stats 
this is the final enablement for the pod subcommand.  it includes the
ability to run podman-remote pod top and stats.

Signed-off-by: baude <bbaude@redhat.com>
 2019-03-06 11:01:25 -06:00
baude
0416b3afc4 podman-remote pod pause|unpause|restart 
enable the ability for the remote client to pause, unpause, and
restart pods.

Signed-off-by: baude <bbaude@redhat.com>
 2019-02-25 16:14:06 -06:00
baude
43a1686598 podman-remote create|ps 
enable the podman-remote client to be able to create and list
pods on a remote system.

Signed-off-by: baude <bbaude@redhat.com>
 2019-02-25 09:10:09 -06:00
baude
4bf973a9f6 Enable more podman-remote pod commands 
enable pod start, stop, and kill subcommands for the remote-client.

Signed-off-by: baude <bbaude@redhat.com>
 2019-02-22 17:00:24 -06:00