Releases: dmcgowan/containerd
containerd 2.0.0-rc.4-test-attestations
Welcome to the v2.0.0-rc.4 release of containerd!
This is a pre-release of containerd
The first major release of containerd 2.x focuses on the continued stability of
containerd's core feature set with an easy upgrade from containerd 1.x. This
release includes the stabilization of new features added in the last 1.x release
as well as the removal of features which were deprecated in 1.x. The goal is to
support the vast community of containerd users well into the future along with
their ever increasing deployment footprints and variety of use cases.
Highlights
- Add Update API for sandbox controller (#9903)
- Preserve Unprivileged locked flags during remount of bind mounts (#10200)
- Add api Go module and move all protos under api (#10151)
- Configure otel from env instead of config.toml (#8970)
- Fix config import relative path glob (#9746)
- Enable NRI by default (#9744)
- Add PluginInfo to introspection API (#9442)
- Remove overlayfs volatile option on temp mounts (#9555)
- Move packages based on contributing guide (#9365)
- Expose usage of deprecated features (#9258)
- Use Intel ISA-L's igzip if available (#9200)
- Generalize plugin library (#9214)
- Introduce top level config migration (#9223)
- Add image delete target (#8989)
- Remove
LimitNOFILE
fromcontainerd.service
(#8924) - Use github.com/containerd/log (#9086)
- Add support for image expiration during garbage collection (#9022)
- Reduce the contention between ref lock and boltdb lock in content store (#8792)
- Remove "containerd.io/restart.logpath" label (#8264)
- Remove
aufs
snapshotter (#8263) - Fix deadlock during NRI plugin registration (containerd/nri#79)
- Fix deadlock when writing to pipe blocks (containerd/ttrpc#168)
Container Runtime Interface (CRI)
- Add support to set loopback to up (#10238)
- Add support for multiple subscribers to CRI container events (#9661)
- Enable CDI by default (#9621)
- Remove non-sandboxed CRI implementation (#9228)
- Add support for userns in stateless and stateful pods with idmap mounts (KEP-127, k8s >= 1.27) (#8287)
- Use sandboxed CRI by default (#8994)
- Implement RuntimeConfig CRI call (#8722)
- Add support for user namespaces (KEP-127) (#8803)
- Remove CRI v1alpha2 (#8276)
Image Distribution
- support to syncfs after pull by using diff plugin (#10284)
- Skip "unknown" in image platform listing (#10257)
- Update unpacker to fetch all provided content (#10202)
- Enable Transfer service API to support plain HTTP (#10024)
- Enable Transfer service to use registry configuration directory (#9908)
- Disable the support for Schema 1 images (#9765)
- Update Transfer service to add OCI descriptors to Progress structure (#9630)
- Update import and export to allow references to missing content (#9554)
- Add option to perform syncfs after pull (#9401)
- Add image verifier transfer service plugin system based on a binary directory (#8493)
Runtime
- Implement RuntimeStatus.features.supplemental_groups_policy from KEP-3619 (#10410)
- Add pprof to runc-shim (#10242)
- Provide runtime options in plugin info (#10251)
- Store bootstrap parameters in sandbox metadata (#9736)
- Update apparmor to allow confined runc to kill containers (#10123)
- Support vsock connection to task api (#9738)
- Update RuntimeDefault seccomp profile to disallow io_uring related syscalls (#9320)
- Switch runc shim to task service v3 and fix restore (#9233)
- Add sandboxer configuration and move sandbox controllers to plugins (#8268)
- Add annotations to CreateSandbox request (#8960)
- Add SandboxMetrics (#8680)
- Publish sandbox events (#8602)
- Remove the CriuPath field from runc's options (#8279)
- Remove support for config.toml
version = 1
(#8275) - Remove
io.containerd.runtime.v1.linux
andio.containerd.runc.v1
(#8262)
Security Advisories
- [medium] RAPL accessible to a container GHSA-7ww5-4wqc-m92c
Breaking
- Disable the support for Schema 1 images (#9765)
- Update RuntimeDefault seccomp profile to disallow io_uring related syscalls (#9320)
- Move client to subpackage (#9316)
- Remove
LimitNOFILE
fromcontainerd.service
(#8924) - Remove CRI v1alpha2 (#8276)
- Remove
io.containerd.runtime.v1.linux
andio.containerd.runc.v1
(#8262) - Remove "containerd.io/restart.logpath" label (#8264)
- Remove
aufs
snapshotter (#8263)
Deprecations
- Update warnings for deprecated CRI config fields (#10509)
- pkg/userns: deprecate and migrate to github.com/moby/sys/user/userns (#10473)
- Add type alias for event Envelope (#10279)
- Postpone removal of deprecated CRI config properties (#9966)
- Deprecate go-plugin configuration option (#9238)
- CNI conf_template in CRI is no longer deprecated (#8637)
Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.
Contributors
- Derek McGowan
- Akihiro Suda
- Maksym Pavlenko
- Wei Fu
- Phil Estes
- Sebastiaan van Stijn
- Samuel Karp
- Stefan Berger
- Kazuyoshi Kato
- Rodrigo Campos
- Danny Canter
- Abel Feng
- Akhil Mohan
- Kirtana Ashok
- Gabriel Adrian Samfira
- Austin Vazquez
- Iceber Gu
- Kohei Tokunaga
- Mike Brown
- Krisztian Litkey
- Jin Dong
- Bjorn Neergaard
- Justin Chadwell
- rongfu.leng
- James Sturtevant
- Paul "TBBle" Hampson
- Davanum Srinivas
- Enrico Weigelt
- Henry Wang
- Brian Goff
- Paweł Gronowski
- Shingo Omura
- Hsing-Yu (David) Chen
- Ilya Hanov
- Laura Brehm
- Marat Radchenko
- Cardy.Tang
- Swagat Bora
- Aditi Sharma
- Amit Barve
- Bryant Biggs
- Evan Lezar
- James Jenkins
- Jordan Liggitt
- Kay Yan
- Markus Lehtonen
- Nashwan Azhari
- Shuaiyi Zhang
- Vinayak Goyal
- helen
- Alexandru Matei
- Anthony Nandaa
- Avi Deitcher
- Charity Kathure
- Ed Bartosh
- Etienne Champetier
- Kevin Parsons
- Michael Zappa
- Milas Bowman
- ningmingxiao
- yanggang
- Aditya Ramani
- Adrian Reber
- Amir M. Ghazanfari
- Artem Khramov
- Brad Davidson
- Chen Yiyang
- Christian Muehlhaeuser
- Cory Snider
- Djordje Lukic
- Edgar Lee
- Eric Lin
- Ethan Lowman
- Jiang Liu
- June Rhodes
- Kern Walster
- Lucas Rattz
- Mahamed Ali
- Maksim An
- Michael Crosby
- Peteris Rudzusiks
- Sam Edwards
- Samruddhi K...
containerd 1.7.20
Welcome to the v1.7.20 release of containerd!
The twentieth patch release for containerd 1.7 contains various fixes
and updates.
Highlights
- Support for dropping inheritable capabilities (#10469)
Container Runtime Interface (CRI)
- Make PodSandboxStatus friendlier to shim crashes (#10461)
- Handle empty DNSConfig differently than unspecified (#10462)
- Fix for
[cri] ttrpc: closed
during ListPodSandboxStats (#10423)
Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.
Contributors
- Derek McGowan
- Akihiro Suda
- Phil Estes
- Akhil Mohan
- Bryant Biggs
- Danny Canter
- Davanum Srinivas
- Mike Brown
- Samuel Karp
- Tim Hockin
Changes
16 commits
- Prepare release notes for v1.7.20 (#10481)
7f2d4cd97
Prepare release notes for v1.7.20
- deps: Update otelgrpc (#10413)
3a02c523d
deps: Update otelgrpc
- Make PodSandboxStatus friendlier to shim crashes (#10461)
df86bdd5d
CRI Sbserver: Make PodSandboxStatus friendlier to shim crashes
- Handle empty DNSConfig differently than unspecified (#10462)
209ee4f10
CRI: An empty DNSConfig != unspecified
- Support for dropping inheritable capabilities (#10469)
ce65228af
Support for dropping inheritable capabilities
- Fix for
[cri] ttrpc: closed
during ListPodSandboxStats (#10423)610498df7
Fix for[cri] ttrpc: closed
during ListPodSandboxStats
- update to go1.21.12 / go1.22.5 (#10426)
e61c7932e
update to go1.21.12 / go1.22.5
- errdefs: denote deprecation as a godoc comment (#10424)
c7d5e430a
errdefs: denote deprecation as a godoc comment
Dependency Changes
- github.com/go-logr/logr v1.2.4 -> v1.3.0
- github.com/google/go-cmp v0.5.9 -> v0.6.0
- github.com/google/uuid v1.3.1 -> v1.4.0
- go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.45.0 -> v0.46.1
- go.opentelemetry.io/otel v1.19.0 -> v1.21.0
- go.opentelemetry.io/otel/metric v1.19.0 -> v1.21.0
- go.opentelemetry.io/otel/sdk v1.19.0 -> v1.21.0
- go.opentelemetry.io/otel/trace v1.19.0 -> v1.21.0
- google.golang.org/genproto e6e6cdab5c13 -> 989df2bf70f3
- google.golang.org/genproto/googleapis/api 007df8e322eb -> 83a465c0220f
- google.golang.org/genproto/googleapis/rpc d307bd883b97 -> 995d672761c0
Previous release can be found at v1.7.19
containerd 1.6.34
Welcome to the v1.6.34 release of containerd!
The thirty-fourth patch release for containerd 1.6 contains various fixes
and updates.
Highlights
Container Runtime Interface (CRI)
- Handle empty DNSConfig differently than unspecified (#10463)
- Fix HPC working directory in pkg/cri/server code (#10361)
Runtime
Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.
Contributors
- Derek McGowan
- Akihiro Suda
- Sebastiaan van Stijn
- Wei Fu
- Akhil Mohan
- Maksim An
- Maksym Pavlenko
- Mike Brown
- Phil Estes
- Samuel Karp
- Tim Hockin
- Yuanyuan Lei
- krglosse
Changes
26 commits
- Prepare release notes for v1.6.34 (#10480)
b2863e9e7
Prepare release notes for v1.6.34
- Handle empty DNSConfig differently than unspecified (#10463)
b7d06a619
CRI: An empty DNSConfig != unspecified
- Support for dropping inheritable capabilities (#10470)
8d2739857
Support for dropping inheritable capabilities
- errdefs: denote deprecation as a godoc comment (#10425)
ce685376f
errdefs: denote deprecation as a godoc comment
- update to go1.21.12 / go1.22.5 (#10427)
634ae543d
update to go1.21.12 / go1.22.5
- Updating hcsshim vendoring to 0.9.12 to include an important backported fix (#10398)
a0adb2933
Updating hcsshim to 0.9.12
- golangci-lint: enable depguard for packages that moved (#10368)
3ea0c4983
golangci-lint: enable depguard for packages that moved
- Fix HPC working directory in pkg/cri/server code (#10361)
086e1f56e
[release/1.7]: HPC working directory fix in pkg/cri/server code
- Remove overlayfs volatile option on temp mounts (#10333)
- Update runc binary to v1.1.13 (#10335)
f6ef0071b
update runc binary to v1.1.13
- Update Fedora and EL linux version in vagrant (#10339)
Dependency Changes
- github.com/Microsoft/hcsshim v0.9.11 -> v0.9.12
Previous release can be found at v1.6.33
containerd 1.7.19
Welcome to the v1.7.19 release of containerd!
The nineteenth patch release for containerd 1.7 contains various updates and
splits the main module from the api module in preparation for the same change
in containerd 2.0. Splitting the modules will allow 1.7 and 2.x to both exist
as transitive dependencies without running into API registration errors.
Projects should use this version as the minimum 1.7 version in preparing to
use containerd 2.0 or to be imported alongside it.
Highlights
- Fix support for OTLP config (#10360)
- Add API go module (#10189)
- Remove overlayfs volatile option on temp mounts (#10332)
- Update runc binary to v1.1.13 (#10336)
- Migrate platforms package to github.com/containerd/platforms (#10292)
- Migrate reference/docker package to github.com/distribution/reference (#10316)
Container Runtime Interface (CRI)
Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.
Contributors
- Derek McGowan
- Sebastiaan van Stijn
- Wei Fu
- Phil Estes
- Akhil Mohan
- Akihiro Suda
- Brian Goff
- Kirtana Ashok
- Maksym Pavlenko
- Samuel Karp
- Austin Vazquez
- Danny Canter
- Kazuyoshi Kato
- Maksim An
- Yuanyuan Lei
- krglosse
Changes
70 commits
- Prepare release notes for v1.7.19 (#10391)
74a3d2901
Prepare release notes for v1.7.19
- Fix panic in NRI from nil CRI reference (#10406)
7f5d3c5f4
cri: ensure NRI API never has nil CRI
- Windows: Supply windows shim version via file (#10403)
- reference: deprecate SplitObject (#10397)
dba53578c
pkg/reference: deprecate SplitObject
- Updating hcsshim vendoring to 0.11.7 to include an important backported fix (#10396)
415dd74a8
updating hcsshim to 0.11.7
- reference: reduce allocations and improve GoDoc (#10395)
- Update api version to v1.7.19 (#10387)
0eb786de6
Update api version to v1.7.19
- Prepare release notes for api v1.7.19 (#10386)
- : api: update github.com/containerd/ttrpc v1.2.5 to align with containerd 1.7 module (#10364)
2a6aa6ddf
[release/1.7] api: update github.com/containerd/ttrpc v1.2.5
- vendor: github.com/containerd/ttrpc v1.2.5 (#10373)
37926b10d
vendor: github.com/containerd/ttrpc v1.2.5
- golangci-lint fix typo in depguard message (#10371)
a522e267e
golangci-lint fix typo in depguard message
- Fix support for OTLP config (#10360)
1ce1c8f3e
1.7: Add back support for OTLP config from toml
- remove imports of errdefs package, and add depguard linter (#10367)
- Add API go module (#10189)
- Remove overlayfs volatile option on temp mounts (#10332)
- Update runc binary to v1.1.13 (#10336)
6dce90b15
update runc binary to v1.1.13
- Fail integration test early when a plugin load fails (#10311)
- Migrate platforms package to github.com/containerd/platforms (#10292)
- go.mod: github.com/klauspost/compress v1.16.7 (#10326)
- Use Github Actions to run Vagrant CI (#10325)
- Migrate reference/docker package to github.com/distribution/reference (#10316)
- [
97abbe9cb
](containerd@97abbe9...
- [
containerd API 1.7.19-rc.0
Welcome to the api/v1.7.19 release of containerd!
The first dedicated release for the containerd 1.7 API. This release is
separately tagged from the main 1.7.x releases after the v1.7.18
release but follows the versioning.
Highlights
- Add API go module (#10189)
Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.
Contributors
- Derek McGowan
- Akhil Mohan
- Phil Estes
- Sebastiaan van Stijn
Changes
7 commits
Dependency Changes
- github.com/containerd/ttrpc v1.2.4 -> v1.2.5
- github.com/golang/protobuf v1.5.4 -> v1.5.3
- google.golang.org/genproto/googleapis/rpc d307bd883b97 -> b8732ec3820d
Previous release can be found at v1.7.18
containerd 2.0.0-rc.3
Welcome to the v2.0.0-rc.3 release of containerd!
This is a pre-release of containerd
The first major release of containerd 2.x focuses on the continued stability of
containerd's core feature set with an easy upgrade from containerd 1.x. This
release includes the stabilization of new features added in the last 1.x release
as well as the removal of features which were deprecated in 1.x. The goal is to
support the vast community of containerd users well into the future along with
their ever increasing deployment footprints and variety of use cases.
Highlights
- Preserve Unprivileged locked flags during remount of bind mounts (#10200)
- Add api Go module and move all protos under api (#10151)
- Configure otel from env instead of config.toml (#8970)
- Fix config import relative path glob (#9746)
- Enable NRI by default (#9744)
- Add PluginInfo to introspection API (#9442)
- Remove overlayfs volatile option on temp mounts (#9555)
- Move packages based on contributing guide (#9365)
- Expose usage of deprecated features (#9258)
- Use Intel ISA-L's igzip if available (#9200)
- Generalize plugin library (#9214)
- Introduce top level config migration (#9223)
- Add image delete target (#8989)
- Remove
LimitNOFILE
fromcontainerd.service
(#8924) - Use github.com/containerd/log (#9086)
- Add support for image expiration during garbage collection (#9022)
- Reduce the contention between ref lock and boltdb lock in content store (#8792)
- Remove "containerd.io/restart.logpath" label (#8264)
- Remove
aufs
snapshotter (#8263) - Fix deadlock during NRI plugin registration (containerd/nri#79)
- Fix deadlock when writing to pipe blocks (containerd/ttrpc#168)
Container Runtime Interface (CRI)
- Add support to set loopback to up (#10238)
- Add support for multiple subscribers to CRI container events (#9661)
- Enable CDI by default (#9621)
- Remove non-sandboxed CRI implementation (#9228)
- Add support for userns in stateless and stateful pods with idmap mounts (KEP-127, k8s >= 1.27) (#8287)
- Use sandboxed CRI by default (#8994)
- Implement RuntimeConfig CRI call (#8722)
- Add support for user namespaces (KEP-127) (#8803)
- Remove CRI v1alpha2 (#8276)
Image Distribution
- Skip "unknown" in image platform listing (#10257)
- Update unpacker to fetch all provided content (#10202)
- Enable Transfer service API to support plain HTTP (#10024)
- Enable Transfer service to use registry configuration directory (#9908)
- Disable the support for Schema 1 images (#9765)
- Update Transfer service to add OCI descriptors to Progress structure (#9630)
- Update import and export to allow references to missing content (#9554)
- Add option to perform syncfs after pull (#9401)
- Add image verifier transfer service plugin system based on a binary directory (#8493)
Runtime
- Provide runtime options in plugin info (#10251)
- Store bootstrap parameters in sandbox metadata (#9736)
- Update apparmor to allow confined runc to kill containers (#10123)
- Support vsock connection to task api (#9738)
- Update RuntimeDefault seccomp profile to disallow io_uring related syscalls (#9320)
- Switch runc shim to task service v3 and fix restore (#9233)
- Add sandboxer configuration and move sandbox controllers to plugins (#8268)
- Add annotations to CreateSandbox request (#8960)
- Add SandboxMetrics (#8680)
- Publish sandbox events (#8602)
- Remove the CriuPath field from runc's options (#8279)
- Remove support for config.toml
version = 1
(#8275) - Remove
io.containerd.runtime.v1.linux
andio.containerd.runc.v1
(#8262)
Security Advisories
- [medium] RAPL accessible to a container GHSA-7ww5-4wqc-m92c
Breaking
- Disable the support for Schema 1 images (#9765)
- Update RuntimeDefault seccomp profile to disallow io_uring related syscalls (#9320)
- Move client to subpackage (#9316)
- Remove
LimitNOFILE
fromcontainerd.service
(#8924) - Remove CRI v1alpha2 (#8276)
- Remove
io.containerd.runtime.v1.linux
andio.containerd.runc.v1
(#8262) - Remove "containerd.io/restart.logpath" label (#8264)
- Remove
aufs
snapshotter (#8263)
Deprecations
- Add type alias for event Envelope (#10279)
- Postpone removal of deprecated CRI config properties (#9966)
- Deprecate go-plugin configuration option (#9238)
- CNI conf_template in CRI is no longer deprecated (#8637)
Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.
Contributors
- Derek McGowan
- Akihiro Suda
- Maksym Pavlenko
- Wei Fu
- Phil Estes
- Sebastiaan van Stijn
- Samuel Karp
- Stefan Berger
- Kazuyoshi Kato
- Rodrigo Campos
- Danny Canter
- Abel Feng
- Gabriel Adrian Samfira
- Kirtana Ashok
- Austin Vazquez
- Iceber Gu
- Kohei Tokunaga
- Mike Brown
- Krisztian Litkey
- Akhil Mohan
- Jin Dong
- Bjorn Neergaard
- rongfu.leng
- Justin Chadwell
- James Sturtevant
- Paul "TBBle" Hampson
- Davanum Srinivas
- Enrico Weigelt
- Brian Goff
- Henry Wang
- Paweł Gronowski
- Hsing-Yu (David) Chen
- Ilya Hanov
- Laura Brehm
- Marat Radchenko
- Cardy.Tang
- Shingo Omura
- Aditi Sharma
- Bryant Biggs
- Evan Lezar
- Jordan Liggitt
- Kay Yan
- Markus Lehtonen
- Nashwan Azhari
- Shuaiyi Zhang
- Vinayak Goyal
- helen
- Alexandru Matei
- Amit Barve
- Anthony Nandaa
- Charity Kathure
- Ed Bartosh
- Etienne Champetier
- James Jenkins
- Kevin Parsons
- Milas Bowman
- Swagat Bora
- yanggang
- Aditya Ramani
- Adrian Reber
- Amir M. Ghazanfari
- Artem Khramov
- Avi Deitcher
- Brad Davidson
- Chen Yiyang
- Christian Muehlhaeuser
- Cory Snider
- Djordje Lukic
- Edgar Lee
- Ethan Lowman
- Jiang Liu
- June Rhodes
- Lucas Rattz
- Mahamed Ali
- Maksim An
- Michael Crosby
- Peteris Rudzusiks
- Sam Edwards
- Samruddhi Khandale
- Steve Griffith
- Tony Fang
- VERNOU Cédric
- hang.jiang
- jerryzhuang
- lengrongfu
- ningmingxiao
- roman-kiselenko
- zhanluxianshen
- zounengren
- Aaron Lehmann
- Adrien Delorme
- Alex Couture-Beil
- Alex Ellis
- Alex Rodriguez
- Angelos Kolaitis
- Antonio Huete Jimenez
- Arash Haghighat
- Ben Foster
- Bin Tang
- Bin Xin
- BinBin He
- Brennan Kinney
- Changqing Li
- ChengenH
- ChengyuZhu6
- Christian Stewart
- Craig Ingram
- Daisy Rong
- David Porter
- Derek Nola
- Eng Zer Jun
- Fabiano Fidêncio
- Fahed Dorgaa
- Gary McDonald
- Iain Macdonald
- James Lakin
- Jan Dubois
- Jaroslav Jindrak
- Jiongchi Yu
- Julien Balestra
- Kern Walster
- Kirill A. Korinsky
- Konstantin Khlebnikov
- Michael Zappa
- Pan Yibo
- Qasim Sarfraz
- Qiutong Song...
containerd 1.7.18
Welcome to the v1.7.18 release of containerd!
The eighteenth patch release for containerd 1.7 contains various updates along
with an updated version of Go. Go 1.22.4 and 1.21.11 include a fix for a symlink
time of check to time of use race condition during directory removal.
Highlights
- Update Go version to 1.21.11 (#10298)
- Remove uses of
platforms.Platform
alias (#10277) - Migrate log imports to
github.com/containerd/log
(#10269) - Migrate errdefs package to
github.com/containerd/errdefs
(#10266) - Fix usage of "unknown" platform (#10261)
Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.
Contributors
- Derek McGowan
- Sebastiaan van Stijn
- Akhil Mohan
- Austin Vazquez
- Phil Estes
Changes
16 commits
- Prepare release notes for v1.7.18 (#10301)
9426aab62
Prepare release notes for v1.7.18
- Update Go version to 1.21.11 (#10298)
cdd3ea913
Update Go version to 1.21.11
- Remove uses of
platforms.Platform
alias (#10277)1e3c662d6
[release/1.7] remove uses of platforms.Platform alias
- Migrate log imports to
github.com/containerd/log
(#10269)0af6825b1
migrate logs imports to github.com/containerd/log module
- Migrate errdefs package to
github.com/containerd/errdefs
(#10266) - Fix usage of "unknown" platform (#10261)
f4d11912a
core/image: fix usage of "unknown" platform
- Explicitly set release latest to true (#10265)
Changes from containerd/errdefs
6 commits
- Add common files (containerd/errdefs#1)
- Add LICENSE (containerd/errdefs#2)
33a2275
Add LICENSE
Dependency Changes
- github.com/containerd/errdefs v0.1.0 new
- google.golang.org/genproto b8732ec3820d -> e6e6cdab5c13
- google.golang.org/genproto/googleapis/api b8732ec3820d -> 007df8e322eb
- google.golang.org/genproto/googleapis/rpc b8732ec3820d -> d307bd883b97
Previous release can be found at v1.7.17
containerd API 1.8.0-rc.0
Welcome to the api/v1.8.0-rc.0 release of containerd!
This is a pre-release of containerd
The first dedicated release for the containerd API. This release continues the 1.x
line of API compatibility with the 9th minor release of the 1.x API.
Highlights
- Add api Go module and move all protos under api (#10151)
- Add PluginInfo to introspection API (#9442)
- Expose usage of deprecated features (#9258)
- Add image delete target (#8989)
Image Distribution
- Enable Transfer service API to support plain HTTP (#10024)
- Enable Transfer service to use registry configuration directory (#9908)
- Update Transfer service to add OCI descriptors to Progress structure (#9630)
- Add option to perform syncfs after pull (#9401)
Runtime
- Store bootstrap parameters in sandbox metadata (#9736)
- Add sandboxer configuration and move sandbox controllers to plugins (#8268)
- Add annotations to CreateSandbox request (#8960)
- Add SandboxMetrics (#8680)
- Publish sandbox events (#8602)
Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.
Contributors
- Derek McGowan
- Maksym Pavlenko
- Akihiro Suda
- Wei Fu
- Abel Feng
- Danny Canter
- Phil Estes
- Samuel Karp
- Kohei Tokunaga
- Akhil Mohan
- Bryant Biggs
- Davanum Srinivas
- Iceber Gu
- Kirtana Ashok
- Sebastiaan van Stijn
Changes
53 commits
- Prepare release notes for api/v1.8.0-rc.0 (#10167)
55fcebffc
Prepare release notes for api/v1.8.0
- Add api Go module and move all protos under api (#10151)
- Store bootstrap parameters in sandbox metadata (#9736)
- Enable Transfer service API to support plain HTTP (#10024)
433279438
Transfer: Registry: Enable plain HTTP
- Enable Transfer service to use registry configuration directory (#9908)
7a3b7fba5
Transfer: Registry: Enable to use registry configuration diretory
- Generate proto services with go-ttrpc (#7609)
- Add OSVersion to platform protobuf (#9733)
5aa05481d
Add OSVersion to platform protobuf
- Move Message proto to types (#9742)
- refactor: move plugin/fieldpath to api/types/ (#9687)
b16e3572a
refactor: move plugin/fieldpath to api/types/
- Add PluginInfo to introspection API (#9442)
22d586e51
api/services/instrospection: add PluginInfo
- Update Transfer service to add OCI descriptors to Progress structure (#9630)
a2472c0b5
transfer: add OCI descriptors to Progress structure
- Add option to perform syncfs after pull (#9401)
bd5c602c4
api: introduce sync_fs to diff.ApplyRequest
- Containerd v2 module (#9306)
5fdf55e49
Update go module to github.com/containerd/containerd/v2
- Expose usage of deprecated features (#9258)
57c897f10
api/introspection: deprecation warnings in server
- Add sandboxer configuration and move sandbox controllers to plugins (#8268)
- Add image delete target (#8989)
f8fb2dad3
api: update image service to support target in delete request
- fix: Add
containerd
to the message type reference (#9126)42eee8bf0
fix: Addcontainerd
to the message type reference
- platforms: isolate from errdefs and api dependencies (#9095)
e916d77c8
platforms: move ToProto, FromProto to api/types
- Add annotations to CreateSandbox request (#8960)
939ccbed4
Sandbox: Add annotations to CreateSandbox surface
- archive: use 1970-01-01 as the whiteout timestamp (#8764)
5dedb6d0d
archive: use 1970-01-01 as the whiteout timestamp
- Add SandboxMetrics (#8680)
- Publish sandbox events (#8602)
65906335b
Add sandbox events protos
- Cleanup protobuild config (#8278)
0bbca7f1b
Cleanup protobuild config
Dependency Changes
- github.com/containerd/ttrpc v1.2.1 -> v1.2.3
- github.com/containerd/typeurl/v2 v2.1.0 -> v2.1.1
- github.com/golang/protobuf v1.5.2 -> v1.5.3
- github.com/opencontainers/image-spec 3a7f492d3f1b -> v1.1.0
- github.com/sirupsen/logrus v1.9.0 -> v1.8.1
- golang.org/x/net v0.7.0 -> v0.21.0
- golang.org/x/sys v0.6.0 -> v0.17.0
- golang.org/x/text v0.7.0 -> v0.14.0
- google.golang.org/genproto/googleapis/rpc c3f982113cda new
- google.golang.org/grpc v1.53.0 -> v1.59.0
- google.golang.org/protobuf v1.28.1 -> v1.33.0
Previous release can be found at v1.7.0
containerd API 1.8.0-test.1
Welcome to the api/v1.8.0 release of containerd!
The first dedicated release for the containerd API. This release continues the 1.x
line of API compatibility with the 9th minor release of the 1.x API.
Highlights
- Add api Go module and move all protos under api (#10151)
- Add PluginInfo to introspection API (#9442)
- Expose usage of deprecated features (#9258)
- Add image delete target (#8989)
Image Distribution
- Enable Transfer service API to support plain HTTP (#10024)
- Enable Transfer service to use registry configuration directory (#9908)
- Update Transfer service to add OCI descriptors to Progress structure (#9630)
- Add option to perform syncfs after pull (#9401)
Runtime
- Store bootstrap parameters in sandbox metadata (#9736)
- Add sandboxer configuration and move sandbox controllers to plugins (#8268)
- Add annotations to CreateSandbox request (#8960)
- Add SandboxMetrics (#8680)
- Publish sandbox events (#8602)
Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.
Contributors
- Derek McGowan
- Maksym Pavlenko
- Akihiro Suda
- Wei Fu
- Abel Feng
- Danny Canter
- Phil Estes
- Samuel Karp
- Kohei Tokunaga
- Akhil Mohan
- Bryant Biggs
- Davanum Srinivas
- Iceber Gu
- Kirtana Ashok
- Sebastiaan van Stijn
Changes
52 commits
170db9b45
Prepare release notes for api/v1.8.0- Add api Go module and move all protos under api (#10151)
- Store bootstrap parameters in sandbox metadata (#9736)
- Enable Transfer service API to support plain HTTP (#10024)
433279438
Transfer: Registry: Enable plain HTTP
- Enable Transfer service to use registry configuration directory (#9908)
7a3b7fba5
Transfer: Registry: Enable to use registry configuration diretory
- Generate proto services with go-ttrpc (#7609)
- Add OSVersion to platform protobuf (#9733)
5aa05481d
Add OSVersion to platform protobuf
- Move Message proto to types (#9742)
- refactor: move plugin/fieldpath to api/types/ (#9687)
b16e3572a
refactor: move plugin/fieldpath to api/types/
- Add PluginInfo to introspection API (#9442)
22d586e51
api/services/instrospection: add PluginInfo
- Update Transfer service to add OCI descriptors to Progress structure (#9630)
a2472c0b5
transfer: add OCI descriptors to Progress structure
- Add option to perform syncfs after pull (#9401)
bd5c602c4
api: introduce sync_fs to diff.ApplyRequest
- Containerd v2 module (#9306)
5fdf55e49
Update go module to github.com/containerd/containerd/v2
- Expose usage of deprecated features (#9258)
57c897f10
api/introspection: deprecation warnings in server
- Add sandboxer configuration and move sandbox controllers to plugins (#8268)
- Add image delete target (#8989)
f8fb2dad3
api: update image service to support target in delete request
- fix: Add
containerd
to the message type reference (#9126)42eee8bf0
fix: Addcontainerd
to the message type reference
- platforms: isolate from errdefs and api dependencies (#9095)
e916d77c8
platforms: move ToProto, FromProto to api/types
- Add annotations to CreateSandbox request (#8960)
939ccbed4
Sandbox: Add annotations to CreateSandbox surface
- archive: use 1970-01-01 as the whiteout timestamp (#8764)
5dedb6d0d
archive: use 1970-01-01 as the whiteout timestamp
- Add SandboxMetrics (#8680)
- Publish sandbox events (#8602)
65906335b
Add sandbox events protos
- Cleanup protobuild config (#8278)
0bbca7f1b
Cleanup protobuild config
Dependency Changes
- github.com/containerd/ttrpc v1.2.1 -> v1.2.3
- github.com/containerd/typeurl/v2 v2.1.0 -> v2.1.1
- github.com/golang/protobuf v1.5.2 -> v1.5.3
- github.com/opencontainers/image-spec 3a7f492d3f1b -> v1.1.0
- github.com/sirupsen/logrus v1.9.0 -> v1.8.1
- golang.org/x/net v0.7.0 -> v0.21.0
- golang.org/x/sys v0.6.0 -> v0.17.0
- golang.org/x/text v0.7.0 -> v0.14.0
- google.golang.org/genproto/googleapis/rpc c3f982113cda new
- google.golang.org/grpc v1.53.0 -> v1.59.0
- google.golang.org/protobuf v1.28.1 -> v1.33.0
Previous release can be found at v1.7.0
containerd 2.0.0-rc.1
Welcome to the v2.0.0-rc.r1 release of containerd!
This is a pre-release of containerd
The first major release of containerd 2.x focuses on the continued stability of
containerd's core feature set with an easy upgrade from containerd 1.x. This
release includes the stabilization of new features added in the last 1.x release
as well as the removal of features which were deprecated in 1.x. The goal is to
support the vast community of containerd users well into the future along with
their ever increasing deployment footprints and variety of use cases.
Highlights
- Enable Transfer service to use registry configuration directory (#9908)
- Configure otel from env instead of config.toml (#8970)
- Disable the support for Schema 1 images (#9765)
- Fix config import relative path glob (#9746)
- Enable NRI by default (#9744)
- Add PluginInfo to introspection API (#9442)
- Remove overlayfs volatile option on temp mounts (#9555)
- Move packages based on contributing guide (#9365)
- Update import and export to allow references to missing content (#9554)
- Add option to perform syncfs after pull (#9401)
- Expose usage of deprecated features (#9258)
- Use Intel ISA-L's igzip if available (#9200)
- Generalize plugin library (#9214)
- Introduce top level config migration (#9223)
- Add image delete target (#8989)
- Remove
LimitNOFILE
fromcontainerd.service
(#8924) - Use github.com/containerd/log (#9086)
- Add image verifier transfer service plugin system based on a binary directory (#8493)
- Add support for image expiration during garbage collection (#9022)
- Reduce the contention between ref lock and boltdb lock in content store (#8792)
- Remove "containerd.io/restart.logpath" label (#8264)
- Remove
aufs
snapshotter (#8263)
Container Runtime Interface (CRI)
- Add support for multiple subscribers to CRI container events (#9661)
- Enable CDI by default (#9621)
- Remove non-sandboxed CRI implementation (#9228)
- Add support for userns in stateless and stateful pods with idmap mounts (KEP-127, k8s >= 1.27) (#8287)
- Use sandboxed CRI by default (#8994)
- Implement RuntimeConfig CRI call (#8722)
- Add support for user namespaces (KEP-127) (#8803)
- Remove CRI v1alpha2 (#8276)
Runtime
- Support vsock connection to task api (#9738)
- Update RuntimeDefault seccomp profile to disallow io_uring related syscalls (#9320)
- Switch runc shim to task service v3 and fix restore (#9233)
- Add sandboxer configuration and move sandbox controllers to plugins (#8268)
- Remove the CriuPath field from runc's options (#8279)
- Remove support for config.toml
version = 1
(#8275) - Remove
io.containerd.runtime.v1.linux
andio.containerd.runc.v1
(#8262)
Security Advisories
- [medium] RAPL accessible to a container GHSA-7ww5-4wqc-m92c
Breaking
- Disable the support for Schema 1 images (#9765)
- Update RuntimeDefault seccomp profile to disallow io_uring related syscalls (#9320)
- Move client to subpackage (#9316)
- Remove
LimitNOFILE
fromcontainerd.service
(#8924) - Remove CRI v1alpha2 (#8276)
- Remove
io.containerd.runtime.v1.linux
andio.containerd.runc.v1
(#8262) - Remove "containerd.io/restart.logpath" label (#8264)
- Remove
aufs
snapshotter (#8263)
Deprecations
- Postpone removal of deprecated CRI config properties (#9966)
- Deprecate go-plugin configuration option (#9238)
- CNI conf_template in CRI is no longer deprecated (#8637)
Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.
Contributors
- Derek McGowan
- Akihiro Suda
- Wei Fu
- Phil Estes
- Maksym Pavlenko
- Sebastiaan van Stijn
- Samuel Karp
- Kazuyoshi Kato
- Rodrigo Campos
- Danny Canter
- Gabriel Adrian Samfira
- Iceber Gu
- Kirtana Ashok
- Abel Feng
- Austin Vazquez
- Krisztian Litkey
- Akhil Mohan
- Kohei Tokunaga
- Mike Brown
- Jin Dong
- Bjorn Neergaard
- rongfu.leng
- Justin Chadwell
- James Sturtevant
- Paul "TBBle" Hampson
- Davanum Srinivas
- Enrico Weigelt
- Brian Goff
- Paweł Gronowski
- Hsing-Yu (David) Chen
- Ilya Hanov
- Laura Brehm
- Marat Radchenko
- Cardy.Tang
- Henry Wang
- Aditi Sharma
- Bryant Biggs
- Evan Lezar
- Jordan Liggitt
- Kay Yan
- Markus Lehtonen
- Nashwan Azhari
- Shingo Omura
- Vinayak Goyal
- helen
- Alexandru Matei
- Amit Barve
- Charity Kathure
- Ed Bartosh
- Etienne Champetier
- James Jenkins
- Milas Bowman
- Shuaiyi Zhang
- yanggang
- Aditya Ramani
- Amir M. Ghazanfari
- Anthony Nandaa
- Artem Khramov
- Brad Davidson
- Chen Yiyang
- Christian Muehlhaeuser
- Cory Snider
- Djordje Lukic
- Edgar Lee
- Ethan Lowman
- Jiang Liu
- June Rhodes
- Mahamed Ali
- Maksim An
- Michael Crosby
- Peteris Rudzusiks
- Sam Edwards
- Samruddhi Khandale
- Steve Griffith
- Swagat Bora
- Tony Fang
- VERNOU Cédric
- hang.jiang
- jerryzhuang
- lengrongfu
- roman-kiselenko
- zhanluxianshen
- Aaron Lehmann
- Adrian Reber
- Alex Couture-Beil
- Alex Ellis
- Alex Rodriguez
- Angelos Kolaitis
- Antonio Huete Jimenez
- Arash Haghighat
- Avi Deitcher
- Ben Foster
- Bin Tang
- Bin Xin
- BinBin He
- Brennan Kinney
- ChengenH
- ChengyuZhu6
- Christian Stewart
- Craig Ingram
- Daisy Rong
- David Porter
- Derek Nola
- Eng Zer Jun
- Fahed Dorgaa
- Gary McDonald
- Iain Macdonald
- James Lakin
- Jan Dubois
- Jaroslav Jindrak
- Jiongchi Yu
- Julien Balestra
- Kern Walster
- Kevin Parsons
- Kirill A. Korinsky
- Konstantin Khlebnikov
- Pan Yibo
- Qasim Sarfraz
- Qiutong Song
- Robbie Buxton
- Robert-André Mauchin
- Shukui Yang
- Talon
- Tianon Gravi
- Tim Hockin
- Tobias Klauser
- Tõnis Tiigi
- Wang Xinwen
- William Chen
- Yibo Zhuang
- Yury Gargay
- Zechun Chen
- Zhang Tianyang
- Zoe
- baijia
- charles-chenzz
- chschumacher1994
- guangli.bao
- guangwu
- krglosse
- ningmingxiao
- pigletfly
- rokkiter
- wangxiang
- zhangpeng
- zhaojizhuang
- zounengren
- 吴小白
- 张钰
- 沈陵
- 谭九鼎
Dependency Changes
- dario.cat/mergo v1.0.0 new
- github.com/AdaLogics/go-fuzz-headers 1f10f66a31bf -> ced1acdcaa24
- github.com/AdamKorcz/go-118-fuzz-build 5330a85ea652 -> 8075edf89bb0
- github.com/Masterminds/semver/v3 v3.2.1 new
- github.com/Microsoft/go-winio v0.6.0 -> v0.6.2
- github.com/Microsoft/hcsshim v0.10.0-rc.7 -> v0.12.3
- github.com/cenkalti/backoff/v4 v4.2.0 -> v4.3.0
- github.com/checkpoint-restore/checkpointctl v1.1.0 new
- github.com/checkpoint-restore/go-criu/v7 v7.1.0 new
- github.com/cilium/ebpf v0.9.1 -> v0.11.0
- github.com/containerd/cgroups/v3 v3.0.1 -> v3.0.3
- github.com/containerd/console v1.0.3 -> v1.0.4
- github.com/containerd/continuity v0.3.0 -> v0.4.3
- github.com/containerd/errdefs v0.1.0 new
- github.com/containerd/go-runc ...