23415 Commits

Author SHA1 Message Date
f48f999b86 Merge pull request #23810 from ygalblum/quadlet-build-multi-tag
Quadlet - Support multiple image tags in .build files
2024-08-30 13:29:04 +00:00
ece759a69a Merge pull request #23694 from edsantiago/safename-500
CI: parallel-safe network system test
2024-08-30 13:09:47 +00:00
0f4dd7f369 Merge pull request #23657 from containers/renovate/github.com-vbauerster-mpb-v8-8.x
fix(deps): update module github.com/vbauerster/mpb/v8 to v8.8.3
2024-08-30 09:16:02 +00:00
abea5ad4ac CI: parallel-safe network system test
- replace random_string with safename in container/network names
- add ci:parallel tags where possible.
  - where not possible, add explanations
- fix a userns leak

Signed-off-by: Ed Santiago <santiago@redhat.com>
2024-08-29 13:08:57 -06:00
2b14db2af3 Quadlet - Support multiple image tags in .build files
Signed-off-by: Ygal Blum <ygal.blum@gmail.com>
2024-08-29 15:07:49 -04:00
f3db6b19d7 Merge pull request #23805 from Luap99/cirrus-timeouts
CI: some cirrus setup improvements/speedups
2024-08-29 18:30:35 +00:00
3bdddea8fa fix(deps): update module github.com/vbauerster/mpb/v8 to v8.8.3
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-29 17:20:01 +00:00
6a0ab6f7bc cirrus: remove _bail_if_test_can_be_skipped
Since commit 55ad0d6e0e we do the conditions in the cirrus.yml directly
so there is no longer any need for this.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
2024-08-29 18:59:47 +02:00
d5c5261e6f cirrus: move renovate check into validate
The renovate config is used for the renovate bot, validating this in the
prior fedora prebuild setp is just confusing and hidden.

The problem is this image is very big so it is slow to download/extract.
To speed things up given it is only a single file we check the diff if
we even changed it.

Now one could argue this should be part of the validate Makefile target
but I given the size I do not want this run by default and I am not sure
if we should do the diff check in the Makefile.

Lastly remove -it, these is meant for interactive use and throws a
warning here because we have no actual tty attached.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
2024-08-29 18:59:47 +02:00
ac18b1a0af cirrus: remove 3rd party connectivity check
This doesn't help us at all, first the list is outdated. AFAICT we no
longer connect to docker.io, registry.fedoraproject.org or
podman.cachix.org (seems to be a cache site for nix.dev?) anywhere in
our tests.

Second a simple port check is not helpful, in the most cases the
CDN's and or load balancer accept connections but return internal server
errors when the registy goes down.

This is very similar to commit 5b6de98ee8.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
2024-08-29 18:59:46 +02:00
34a7d8dd10 cirrus: remove cross jobs for aarch64 and x86_64
We do build and test aarch64 and x86_64 natively so the cross job
doesn't seem to add value.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
2024-08-29 18:59:46 +02:00
186f50ad7d cirrus: do not upload alt arch cross artifacts
They do not add much value to users, first of it compiles podman with
cgo disabled which means the included the podman binary is unusable
either way. The only goal of the build job is to ensure we can compile
on all arches, i.e. go build tags adn types work correctly. The upload
if these artifacts alone take over 90s so let's get rid of them to speed
up the total CI time.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
2024-08-29 18:59:46 +02:00
94431c29b4 cirrus: remove ginkgo-e2e.json artifact
It is not used by anybody so we do not have to store these and can safe
some time by not having to generate it even if it is just ~500ms.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
2024-08-29 18:59:46 +02:00
78be80f2cd cirrus: fix default timeouts
Two weeks ago we had a weird hang in the macos build job on the
persitent worker. The task just hang for an hour wasting time.
Most tests are fast so we do not need/want such high timeouts.

Therefore drop the default timeout to 20 minutes. The integration task
also should take under 20m so we can remove the longer timeout there as
well. Some system tests need a bit over 30m currently, timeout is set to
35m. For machine tests we use 30m on linux, 45m on windows and 35m on
macos to have some extra room there as machine tests have a much higher
run to run variance.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
2024-08-29 18:59:46 +02:00
2b3052eac3 Merge pull request #23758 from edsantiago/podman-troubleshooting
Create a podman-troubleshooting man page
2024-08-29 16:54:00 +00:00
03a413f6e5 Merge pull request #23779 from wbrefvem/wsl-volume-docs
Clarify podman machine volume mounting behavior under WSL
2024-08-28 18:25:39 +00:00
10363e1e81 Merge pull request #23766 from Luap99/http-attach
fix races in the HTTP attach API
2024-08-28 18:11:50 +00:00
63545126c2 Clarify podman machine volume mounting behavior under WSL
Signed-off-by: Will Refvem <wbrefvem@gmail.com>
2024-08-28 13:57:03 -04:00
da90ad1960 Merge pull request #23772 from mheon/fix_volume_get_sqlite
Fix an improperly ignored error in SQLite
2024-08-28 16:43:50 +00:00
5d211add11 Merge pull request #23401 from l0rd/fix-machine-e2e-basic-test-volume-ops-on-hyperv
Stop skipping machine volume test on Hyper-V
2024-08-28 16:41:06 +00:00
f013ebe447 Merge pull request #23777 from edsantiago/socat-workaround
CI: flake workaround: ignore socat waitpid warnings
2024-08-28 14:23:37 +00:00
0e5eba6053 Merge pull request #23768 from Luap99/cirrus-rhel-machine
cirrus: skip windows/macos machine task on RHEL branches
2024-08-28 12:52:49 +00:00
5389eee737 Create a podman-troubleshooting man page
Generated at build time from troubleshooting.md. Purpose is
to ship an actual man page to end users.

Much more complicated than initial guess, because there was
a bug in my Makefile man page filtering, the sed expression
that cleans up markdown that does not translate to roff.
All I've done here is reorder some of the expressions,
stripping off https links *before* we process
podman man page links.

Signed-off-by: Ed Santiago <santiago@redhat.com>
2024-08-28 05:49:45 -06:00
a19f42ead6 Merge pull request #23787 from containers/renovate/setuptools-74.x
chore(deps): update dependency setuptools to v74
2024-08-28 11:08:19 +00:00
33b96e78c8 chore(deps): update dependency setuptools to v74
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-28 10:41:59 +00:00
d45b153a99 Merge pull request #23656 from containers/renovate/github.com-rootless-containers-rootlesskit-v2-2.x
fix(deps): update module github.com/rootless-containers/rootlesskit/v2 to v2.3.1
2024-08-28 10:40:49 +00:00
48825d7be9 Merge pull request #23778 from containers/renovate/github.com-docker-docker-27.x
fix(deps): update module github.com/docker/docker to v27.2.0+incompatible
2024-08-28 09:54:05 +00:00
565ad236a5 fix(deps): update module github.com/docker/docker to v27.2.0+incompatible
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-27 21:19:26 +00:00
6e027c0e37 Fix an improperly ignored error in SQLite
This looks like a case of boilerplate error handling making it
too easy to miss a legitimately ignored error, which is annoying.
In a more featureful language most of the SQL code here could be
macros (at the very least, Rust would have forced us to handle
all error cases, not just the one seen here).

Found while looking through the Libpod DB code, no actual bug I
can think of associated with this.

Signed-off-by: Matt Heon <mheon@redhat.com>
2024-08-27 13:38:40 -04:00
678323efd8 CI: flake workaround: ignore socat waitpid warnings
Workaround (NOT A FIX) for pasta issue #23482, wherein
podman logs includes a waitpid: ESRCH warning. Consensus
seems to be that this is a bug in socat.

Signed-off-by: Ed Santiago <santiago@redhat.com>
2024-08-27 11:25:08 -06:00
00027bc251 fix(deps): update module github.com/rootless-containers/rootlesskit/v2 to v2.3.1
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-27 16:49:47 +00:00
e6621d61e4 Merge pull request #23765 from containers/renovate/github.com-containers-gvisor-tap-vsock-0.x
Update module github.com/containers/gvisor-tap-vsock to v0.7.5
2024-08-27 16:44:32 +00:00
4f4ebdce5b Stop skipping machine volume test on Hyper-V
Signed-off-by: Mario Loriedo <mario.loriedo@gmail.com>
2024-08-27 15:31:38 +02:00
f0f148ead4 Merge pull request #23767 from Luap99/image-rm
podman run: ignore image rm error
2024-08-27 13:23:44 +00:00
a89fef6e2a cleanup: add new --stopped-only option
The podman container cleanup process runs asynchronous and by the time
it gets the lock it is possible another podman process already did the
cleanup and then did a new init() to start it again. If the cleanup
process gets the lock there it will cause very weird things.

This can be observed in the remote start API as CI flakes.

Fixes #23754

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
2024-08-27 15:01:23 +02:00
bf74797c69 fix races in the HTTP attach API
This is very similar to commit 3280da0500, we cannot check the state
then unlock to then lock again and do the action. Everything must
happen under one lock. To fix this move the code into the HTTPAttach
function in libpod. The locking here is a bit weird because attach
blocks for the lifetime of attach which can be very long so we must
unlock before performing the attach.

Fixes #23757

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
2024-08-27 15:00:08 +02:00
dbd2adc798 cirrus: skip windows/macos machine task on RHEL branches
We already exclude the build jobs this is causing the machine tasks to
fail as noticed in #23764. Given we do not need windows/macos testing
for RHEL we have to skip them there.

While we try to only use only_if the problem here is that we would need
to duplicate the big only_if_machine_test string and work the rhel
condition into it which doesn't work with the current logic either so we
would need to change the logic flow there which then doesn't work with
our cirrus_yaml_test.py selftest. Therefore I think using skip here is
easier.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
2024-08-27 13:56:11 +02:00
a508d7631f Update module github.com/containers/gvisor-tap-vsock to v0.7.5
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-27 10:57:25 +00:00
dc724e5e80 run: fix detach passthrough and --rmi
When we use passthrough logging and the --rmi option should not try to
delete the image right away. Simply speak passthough only means do not
print the cotnainer id but we should never try to delete the image here
as this will be done in the cleanup process.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
2024-08-27 12:11:32 +02:00
8e78028e2c podman run: ignore image rm error
Since commit 458ba5a8af the cleanup process now removes the image as
well, thus the removal is racy and it will cause an error here.

The code tried to ignore the error with errors.Is() but this never works
across the remote API. However the API already has a ignore option so
juts use that and fix the error message so that we can easily find the
root cause and I do not have to guess where the log was written.

Fixes #23719

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
2024-08-27 12:06:03 +02:00
9ad3e84cb3 Merge pull request #23749 from Luap99/netlink
update github.com/vishvananda/netlink to v1.3.0
2024-08-27 09:46:29 +00:00
39f9d4ecae Merge pull request #23667 from rhatdan/man
[ci:docs] Fix description of :Z to talk about pods
2024-08-27 09:43:43 +00:00
9892feedd9 Merge pull request #23713 from jerome59/main
Quadlet add support for --add-host --ip and --ip6
2024-08-27 09:21:45 +00:00
4178d7011f Merge pull request #23751 from containers/renovate/golangci-golangci-lint-1.x
[CI:DOCS] Update dependency golangci/golangci-lint to v1.60.3
2024-08-26 14:53:25 +00:00
d04f0d2802 Merge pull request #23748 from cfergeau/gvproxy075
build: Update gvisor-tap-vsock to 0.7.5
2024-08-26 14:50:40 +00:00
365a7b8ecc Merge pull request #23728 from edsantiago/makeremotesystem-cleanup
Makefile: remotesystem: use real podman server, no --url
2024-08-26 14:47:56 +00:00
7c5d8bec0d Add support for AddHost in quadlet .pod and .container
Signed-off-by: Jerome degroote <jeromedu59230@gmx.fr>
2024-08-26 14:32:08 +02:00
07c9fe82a8 [CI:DOCS] Update dependency golangci/golangci-lint to v1.60.3
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-26 12:26:17 +00:00
b765ab96ae Merge pull request #23674 from feloy/fix-23277/quote-default-env
Quote systemd DefaultEnvironment Proxy values
2024-08-26 12:24:56 +00:00
df3c9efb03 update github.com/vishvananda/netlink to v1.3.0
There seems to be one change[1] which breaks our tests, the route Dst field
is no longer nil for a default route but rather the empty ipnet, i.e.
0.0.0.0/0 and ::/0 so fix that up in our code.

[1] https://github.com/vishvananda/netlink/pull/852

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
2024-08-26 13:33:39 +02:00