-
v1.7.2488bf19b2 · ·
containerd 1.7.24 Welcome to the v1.7.24 release of containerd! The twenty-fourth patch release for containerd 1.7 contains various fixes and updates. ### Highlights * Update runc binary to 1.2.2 ([#11027](https://github.com/containerd/containerd/pull/11027)) * Fix "invalid metric type" error message for cgroup v1 ([#10814](https://github.com/containerd/containerd/pull/10814)) #### Container Runtime Interface (CRI) * Update the container exit log to info level ([#11007](https://github.com/containerd/containerd/pull/11007)) #### Image Distribution * Fix retry logic and concurrency issue with http fallback ([#11032](https://github.com/containerd/containerd/pull/11032)) Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues. ### Contributors * Derek McGowan * Phil Estes * Akhil Mohan * Akihiro Suda * Maksym Pavlenko * Austin Vazquez * Samuel Karp * Benjamin Peterson * Davanum Srinivas * Iceber Gu * Mike Brown * Sebastiaan van Stijn * Tõnis Tiigi * ningmingxiao ### Changes <details><summary>36 commits</summary> <p> * Prepare release notes for v1.7.24 ([#11036](https://github.com/containerd/containerd/pull/11036)) * [`936f8e2de`](https://github.com/containerd/containerd/commit/936f8e2dee4ab47369a23a1071efd4304ba35e39) Prepare release notes for v1.7.24 * Update the container exit log to info level ([#11007](https://github.com/containerd/containerd/pull/11007)) * [`47ff8e2b6`](https://github.com/containerd/containerd/commit/47ff8e2b6250e582c03564bb8a02eec2af19571f) add info of exited event * Fix retry logic and concurrency issue with http fallback ([#11032](https://github.com/containerd/containerd/pull/11032)) * [`10af0d60f`](https://github.com/containerd/containerd/commit/10af0d60fbaa20cc07c0d54c60ef22e349efce42) Adds a mutex to protect fallback host * [`e426ec51b`](https://github.com/containerd/containerd/commit/e426ec51ba9f27a64ba21a2c9a0902cfc8493832) Use unix and windows specific connection error checks * [`49c9f303b`](https://github.com/containerd/containerd/commit/49c9f303b1d35101bb798cb37c57b06cd1eacf5e) Allow fallback across default ports * local: avoid writing to content root on readonly store ([#10913](https://github.com/containerd/containerd/pull/10913)) * [`ddf2b03ed`](https://github.com/containerd/containerd/commit/ddf2b03edf74a7b72b69125efcaad724f85f8b5d) local: avoid writing to content root on readonly store * Update runc binary to 1.2.2 ([#11027](https://github.com/containerd/containerd/pull/11027)) * [`06e72da76`](https://github.com/containerd/containerd/commit/06e72da7673ef512e381fcabdc14e15b6677a7dc) update runc binary to 1.2.2 * Revert "Disable vagrant strict dependency checking" ([#11011](https://github.com/containerd/containerd/pull/11011)) * [`23a31ce63`](https://github.com/containerd/containerd/commit/23a31ce630a580517d741f6160bf146d17dbbf8b) Revert "Disable vagrant strict dependency checking" * testutil: avoid conflict with continuity/testutil ([#10956](https://github.com/containerd/containerd/pull/10956)) * [`4bd411f8c`](https://github.com/containerd/containerd/commit/4bd411f8c8cfc92fb6c55e8e1f5cb83d9790b3f8) testutil: avoid conflict with continuity/testutil * update cri-tools to v1.29.0 ([#10969](https://github.com/containerd/containerd/pull/10969)) * [`216dc892e`](https://github.com/containerd/containerd/commit/216dc892e02cee69e3f5cdaaf54760307e0558ab) update cri-tools to v1.29.0 * update build to go1.22.9, test go1.23.3 ([#10974](https://github.com/containerd/containerd/pull/10974)) * [`56a7d31cb`](https://github.com/containerd/containerd/commit/56a7d31cb5b4a3dac964350113240999707e26a9) update build to go1.22.9, test go1.23.3 * ci: disable marking 1.7 releases as latest ([#10962](https://github.com/containerd/containerd/pull/10962)) * [`205940716`](https://github.com/containerd/containerd/commit/205940716b01b4eb8244e7431afd5f06166e1cb4) ci: disable marking 1.7 releases as latest * Avoid arch info in the sed/replace when building cri-cni-containerd.tar.gz ([#10976](https://github.com/containerd/containerd/pull/10976)) * [`b7bb8d515`](https://github.com/containerd/containerd/commit/b7bb8d5158a497cff0f4735160f528e94b2b8e8b) Avoid arch info in the sed/replace when building cri-cni-containerd.tar.gz * backport: Disable vagrant strict dependency checking ([#10965](https://github.com/containerd/containerd/pull/10965)) * [`860a51384`](https://github.com/containerd/containerd/commit/860a51384231e9ce432710676a15d17ee0c90b4b) Disable vagrant strict dependency checking * Update runc binary to 1.2.1 ([#10940](https://github.com/containerd/containerd/pull/10940)) * [`710cd3716`](https://github.com/containerd/containerd/commit/710cd371690f0663c6953e1bdc7db4daee2354b5) update runc binary to 1.2.1 * services/snapshots: include name of snapshotter in debug logs ([#10931](https://github.com/containerd/containerd/pull/10931)) * [`5bd0834ce`](https://github.com/containerd/containerd/commit/5bd0834ce94032f394f5cd6e267f98ede4ebe889) services/snapshots: include name of snapshotter in debug logs * Make TestContainerPids more resilient ([#10936](https://github.com/containerd/containerd/pull/10936)) * [`455787bf8`](https://github.com/containerd/containerd/commit/455787bf80f3f1556f644211d393dbe26d5dafe6) Make TestContainerPids more resilient * Add After=dbus.service to containerd.service ([#10859](https://github.com/containerd/containerd/pull/10859)) * [`cb82e52a4`](https://github.com/containerd/containerd/commit/cb82e52a43cfb150daa5ce2dcce5805655447fa7) Add After=dbus.service to containerd.service * Fix "invalid metric type" error message for cgroup v1 ([#10814](https://github.com/containerd/containerd/pull/10814)) * [`d6f577843`](https://github.com/containerd/containerd/commit/d6f5778439dd9b2bdd7ab3199e6eaaddb3ba39b8) metrics: Use UnmarshalTo instead of UnmarshalAny </p> </details> ### Dependency Changes This release has no dependency changes Previous release can be found at [v1.7.23](https://github.com/containerd/containerd/releases/tag/v1.7.23)
-
v2.0.0207ad711 · ·
containerd 2.0.0 Welcome to the v2.0.0 release of containerd! The first major release of containerd 2.x focuses on the continued stability of containerd's core feature set with an easy upgrade from containerd 1.x. This release includes the stabilization of new features added in the last 1.x release as well as the removal of features which were deprecated in 1.x. The goal is to support the vast community of containerd users well into the future along with their ever increasing deployment footprints and variety of use cases. See [containerd 2.0](https://github.com/containerd/containerd/blob/main/docs/containerd-2.0.md) documentation for details on what is new and has changed in this release. ### Highlights * Allow sections of Plugins to be merged, and not overwritten as entire sections. ([#9982](https://github.com/containerd/containerd/pull/9982)) * Add Update API for sandbox controller ([#9903](https://github.com/containerd/containerd/pull/9903)) * Configure otel from env instead of config.toml ([#8970](https://github.com/containerd/containerd/pull/8970)) * Enable NRI by default ([#9744](https://github.com/containerd/containerd/pull/9744)) * Add PluginInfo to introspection API ([#9442](https://github.com/containerd/containerd/pull/9442)) * Remove overlayfs volatile option on temp mounts ([#9555](https://github.com/containerd/containerd/pull/9555)) * Expose usage of deprecated features ([#9258](https://github.com/containerd/containerd/pull/9258)) * Use Intel ISA-L's igzip if available ([#9200](https://github.com/containerd/containerd/pull/9200)) * Introduce top level config migration ([#9223](https://github.com/containerd/containerd/pull/9223)) * Add image delete target ([#8989](https://github.com/containerd/containerd/pull/8989)) * Remove `LimitNOFILE` from `containerd.service` ([#8924](https://github.com/containerd/containerd/pull/8924)) * Add support for image expiration during garbage collection ([#9022](https://github.com/containerd/containerd/pull/9022)) * Reduce the contention between ref lock and boltdb lock in content store ([#8792](https://github.com/containerd/containerd/pull/8792)) * Remove "containerd.io/restart.logpath" label ([#8264](https://github.com/containerd/containerd/pull/8264)) * Remove `aufs` snapshotter ([#8263](https://github.com/containerd/containerd/pull/8263)) * Fix deadlock during NRI plugin registration ([containerd/nri#79](https://github.com/containerd/nri/pull/79)) * Support arm64/v9 and minor variants ([containerd/platforms#8](https://github.com/containerd/platforms/pull/8)) * Fix deadlock when writing to pipe blocks ([containerd/ttrpc#168](https://github.com/containerd/ttrpc/pull/168)) #### Build and Release Toolchain * Generate attestation for artifacts during release ([#10543](https://github.com/containerd/containerd/pull/10543)) * Remove `cri-containerd-*.tar.gz` release bundles ([#9096](https://github.com/containerd/containerd/pull/9096)) #### Container Runtime Interface (CRI) * Use 'UserSpecifiedImage' from CRI to set the image-name annotation ([#10747](https://github.com/containerd/containerd/pull/10747)) * Fine-grained SupplementalGroups control ([#9737](https://github.com/containerd/containerd/pull/9737)) * Add support to set loopback to up ([#10238](https://github.com/containerd/containerd/pull/10238)) * KEP-3857: Recursive Read-only (RRO) mounts ([#9787](https://github.com/containerd/containerd/pull/9787)) * Add support for multiple subscribers to CRI container events ([#9661](https://github.com/containerd/containerd/pull/9661)) * Enable CDI by default ([#9621](https://github.com/containerd/containerd/pull/9621)) * Remove non-sandboxed CRI implementation ([#9228](https://github.com/containerd/containerd/pull/9228)) * Add support for userns in stateless and stateful pods with idmap mounts (KEP-127, k8s >= 1.27) ([#8287](https://github.com/containerd/containerd/pull/8287)) * Use sandboxed CRI by default ([#8994](https://github.com/containerd/containerd/pull/8994)) * Implement RuntimeConfig CRI call ([#8722](https://github.com/containerd/containerd/pull/8722)) * Add support for user namespaces (KEP-127) ([#8803](https://github.com/containerd/containerd/pull/8803)) * Remove CRI v1alpha2 ([#8276](https://github.com/containerd/containerd/pull/8276)) #### Go client * Add api Go module and move all protos under api ([#10151](https://github.com/containerd/containerd/pull/10151)) * Move packages based on contributing guide ([#9365](https://github.com/containerd/containerd/pull/9365)) * Generalize plugin library ([#9214](https://github.com/containerd/containerd/pull/9214)) * Use github.com/containerd/log ([#9086](https://github.com/containerd/containerd/pull/9086)) #### Image Distribution * Support to syncfs after pull by using diff plugin ([#10284](https://github.com/containerd/containerd/pull/10284)) * Skip "unknown" in image platform listing ([#10257](https://github.com/containerd/containerd/pull/10257)) * Update unpacker to fetch all provided content ([#10202](https://github.com/containerd/containerd/pull/10202)) * Enable Transfer service API to support plain HTTP ([#10024](https://github.com/containerd/containerd/pull/10024)) * Enable Transfer service to use registry configuration directory ([#9908](https://github.com/containerd/containerd/pull/9908)) * Disable the support for Schema 1 images ([#9765](https://github.com/containerd/containerd/pull/9765)) * Update Transfer service to add OCI descriptors to Progress structure ([#9630](https://github.com/containerd/containerd/pull/9630)) * Update import and export to allow references to missing content ([#9554](https://github.com/containerd/containerd/pull/9554)) * Add option to perform syncfs after pull ([#9401](https://github.com/containerd/containerd/pull/9401)) * Add image verifier transfer service plugin system based on a binary directory ([#8493](https://github.com/containerd/containerd/pull/8493)) #### Runtime * Implement RuntimeStatus.features.supplemental_groups_policy from KEP-3619 ([#10410](https://github.com/containerd/containerd/pull/10410)) * Add pprof to runc-shim ([#10242](https://github.com/containerd/containerd/pull/10242)) * Provide runtime options in plugin info ([#10251](https://github.com/containerd/containerd/pull/10251)) * Store bootstrap parameters in sandbox metadata ([#9736](https://github.com/containerd/containerd/pull/9736)) * Update apparmor to allow confined runc to kill containers ([#10123](https://github.com/containerd/containerd/pull/10123)) * Support vsock connection to task api ([#9738](https://github.com/containerd/containerd/pull/9738)) * Update RuntimeDefault seccomp profile to disallow io_uring related syscalls ([#9320](https://github.com/containerd/containerd/pull/9320)) * Switch runc shim to task service v3 and fix restore ([#9233](https://github.com/containerd/containerd/pull/9233)) * Add sandboxer configuration and move sandbox controllers to plugins ([#8268](https://github.com/containerd/containerd/pull/8268)) * Add annotations to CreateSandbox request ([#8960](https://github.com/containerd/containerd/pull/8960)) * Add SandboxMetrics ([#8680](https://github.com/containerd/containerd/pull/8680)) * Publish sandbox events ([#8602](https://github.com/containerd/containerd/pull/8602)) * Remove the CriuPath field from runc's options ([#8279](https://github.com/containerd/containerd/pull/8279)) * Remove `io.containerd.runtime.v1.linux` and `io.containerd.runc.v1` ([#8262](https://github.com/containerd/containerd/pull/8262)) #### Security Advisories * [medium] RAPL accessible to a container [GHSA-7ww5-4wqc-m92c](https://github.com/containerd/containerd/security/advisories/GHSA-7ww5-4wqc-m92c) #### Breaking * Remove `disable_cgroup` from CRI config ([#10594](https://github.com/containerd/containerd/pull/10594)) * Disable the support for Schema 1 images ([#9765](https://github.com/containerd/containerd/pull/9765)) * Update RuntimeDefault seccomp profile to disallow io_uring related syscalls ([#9320](https://github.com/containerd/containerd/pull/9320)) * Move client to subpackage ([#9316](https://github.com/containerd/containerd/pull/9316)) * Remove `LimitNOFILE` from `containerd.service` ([#8924](https://github.com/containerd/containerd/pull/8924)) * Remove CRI v1alpha2 ([#8276](https://github.com/containerd/containerd/pull/8276)) * Remove `io.containerd.runtime.v1.linux` and `io.containerd.runc.v1` ([#8262](https://github.com/containerd/containerd/pull/8262)) * Remove "containerd.io/restart.logpath" label ([#8264](https://github.com/containerd/containerd/pull/8264)) * Remove `aufs` snapshotter ([#8263](https://github.com/containerd/containerd/pull/8263)) #### Deprecations * Update warnings for deprecated CRI config fields ([#10509](https://github.com/containerd/containerd/pull/10509)) * Add type alias for event Envelope ([#10279](https://github.com/containerd/containerd/pull/10279)) * Postpone removal of deprecated CRI config properties ([#9966](https://github.com/containerd/containerd/pull/9966)) * Deprecate go-plugin configuration option ([#9238](https://github.com/containerd/containerd/pull/9238)) * CNI conf_template in CRI is no longer deprecated ([#8637](https://github.com/containerd/containerd/pull/8637)) Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues. ### Contributors * Derek McGowan * Akihiro Suda * Maksym Pavlenko * Wei Fu * Phil Estes * Sebastiaan van Stijn * Samuel Karp * Krisztian Litkey * Kazuyoshi Kato * Austin Vazquez * Rodrigo Campos * Danny Canter * Abel Feng * Mike Brown * Kirtana Ashok * Akhil Mohan * Iceber Gu * Gabriel Adrian Samfira * Jin Dong * Kohei Tokunaga * Bjorn Neergaard * Brian Goff * Justin Chadwell * rongfu.leng * James Sturtevant * Davanum Srinivas * Paul "TBBle" Hampson * Henry Wang * Enrico Weigelt * Laura Brehm * Marat Radchenko * Paweł Gronowski * Shingo Omura * Hsing-Yu (David) Chen * Ilya Hanov * Cardy.Tang * Swagat Bora * Aditi Sharma * Amit Barve * Bryant Biggs * Evan Lezar * James Jenkins * Jordan Liggitt * Kay Yan * Markus Lehtonen * Nashwan Azhari * Shuaiyi Zhang * Vinayak Goyal * helen * Alexandru Matei * Anthony Nandaa * Avi Deitcher * Charity Kathure * Cory Snider * Ed Bartosh * Etienne Champetier * Kevin Parsons * Michael Zappa * Milas Bowman * lengrongfu * ningmingxiao * yanggang * zounengren * Aditya Ramani * Adrian Reber * Amir M. Ghazanfari * Antonio Ojea * Artem Khramov * Brad Davidson * Chen Yiyang * Chongyi Zheng * Christian Muehlhaeuser * Djordje Lukic * Edgar Lee * Eric Lin * Ethan Lowman * Jiang Liu * June Rhodes * Kern Walster * Lei Jitang * Lucas Rattz * Mahamed Ali * Maksim An * Michael Crosby * Peteris Rudzusiks * Ray Burgemeestre * Sam Edwards * Samruddhi Khandale * Sascha Grunert * Steve Griffith * Tony Fang * Tõnis Tiigi * VERNOU Cédric * Vishal Reddy Gurrala * Xiaojin Zhang * Yang Yang * hang.jiang * harshitasao * jerryzhuang * roman-kiselenko * zhanluxianshen * Aaron Lehmann * AbdelrahmanElawady * Adrien Delorme * Alex Couture-Beil * Alex Ellis * Alex Rodriguez * Angelos Kolaitis * Antonio Huete Jimenez * Antti Kervinen * Arash Haghighat * Arkin Modi * Ben Foster * Benjamin Peterson * Bin Tang * Bin Xin * BinBin He * Brennan Kinney * Changqing Li * ChengenH * ChengyuZhu6 * Christian Stewart * Colin O'Dell * Craig Ingram * Daisy Rong * David Porter * David Son * Derek Nola * Eng Zer Jun * Erikson Tung * Fabiano Fidêncio * Fahed Dorgaa * Gabriela Cervantes * Gary McDonald * Iain Macdonald * James Lakin * Jan Dubois * Jaroslav Jindrak * Javier Maestro * Jian Wang * Jiongchi Yu * Julien Balestra * Kir Kolyshkin * Kirill A. Korinsky * Konstantin Khlebnikov * Lei Liu * Matteo Pulcini * Mauri de Souza Meneguzzo * Mike Baynton * Niklas Gehlen * Pan Yibo * Paul Meyer * Qasim Sarfraz * Qiutong Song * Reinhard Tartler * Robbie Buxton * Robert-André Mauchin * Ruihua Wen * Saket Jajoo * Sameer * Shengjing Zhu * Shiming Zhang * Shukui Yang * StepSecurity Bot * Talon * Tariq Ibrahim * Tianon Gravi * Tim Hockin * TinaMor * Tobias Klauser * Tomáš Virtus * Wang Xinwen * William Chen * Xinyang Ge * Yibo Zhuang * Yuhang Wei * Yury Gargay * Zechun Chen * Zhang Tianyang * Zoe * baijia * bo.jiang * bzsuni * charles-chenzz * chschumacher1994 * cormick * guangli.bao * guangwu * jinda.ljd * jingtao.liang * krglosse * pigletfly * rokkiter * wangxiang * zhangpeng * zhaojizhuang * 吴小白 * 张钰 * 沈陵 * 谭九鼎 ### Dependency Changes * **dario.cat/mergo** v1.0.1 **_new_** * **github.com/AdaLogics/go-fuzz-headers** 1f10f66a31bf -> e8a1dd7889d6 * **github.com/AdamKorcz/go-118-fuzz-build** 5330a85ea652 -> 2b5cbb29f3e2 * **github.com/Microsoft/go-winio** v0.6.0 -> v0.6.2 * **github.com/Microsoft/hcsshim** v0.10.0-rc.7 -> v0.12.9 * **github.com/cenkalti/backoff/v4** v4.2.0 -> v4.3.0 * **github.com/cespare/xxhash/v2** v2.2.0 -> v2.3.0 * **github.com/checkpoint-restore/checkpointctl** v1.3.0 **_new_** * **github.com/checkpoint-restore/go-criu/v7** v7.2.0 **_new_** * **github.com/cilium/ebpf** v0.9.1 -> v0.11.0 * **github.com/containerd/cgroups/v3** v3.0.1 -> v3.0.3 * **github.com/containerd/console** v1.0.3 -> v1.0.4 * **github.com/containerd/containerd/api** v1.8.0 **_new_** * **github.com/containerd/continuity** v0.3.0 -> v0.4.4 * **github.com/containerd/errdefs** v1.0.0 **_new_** * **github.com/containerd/errdefs/pkg** v0.3.0 **_new_** * **github.com/containerd/go-cni** v1.1.9 -> v1.1.10 * **github.com/containerd/go-runc** v1.0.0 -> v1.1.0 * **github.com/containerd/imgcrypt/v2** v2.0.0-rc.1 **_new_** * **github.com/containerd/log** v0.1.0 **_new_** * **github.com/containerd/nri** v0.3.0 -> v0.8.0 * **github.com/containerd/otelttrpc** ea5083fda723 **_new_** * **github.com/containerd/platforms** v1.0.0-rc.0 **_new_** * **github.com/containerd/plugin** v1.0.0 **_new_** * **github.com/containerd/ttrpc** v1.2.1 -> v1.2.6 * **github.com/containerd/typeurl/v2** v2.1.0 -> v2.2.2 * **github.com/containerd/zfs/v2** v2.0.0-rc.0 **_new_** * **github.com/containernetworking/cni** v1.1.2 -> v1.2.3 * **github.com/containernetworking/plugins** v1.2.0 -> v1.5.1 * **github.com/containers/ocicrypt** v1.1.6 -> v1.2.0 * **github.com/cpuguy83/go-md2man/v2** v2.0.2 -> v2.0.5 * **github.com/davecgh/go-spew** v1.1.1 -> d8f796af33cc * **github.com/distribution/reference** v0.6.0 **_new_** * **github.com/emicklei/go-restful/v3** v3.10.1 -> v3.11.0 * **github.com/felixge/httpsnoop** v1.0.4 **_new_** * **github.com/fsnotify/fsnotify** v1.6.0 -> v1.7.0 * **github.com/fxamacker/cbor/v2** v2.7.0 **_new_** * **github.com/go-jose/go-jose/v4** v4.0.4 **_new_** * **github.com/go-logr/logr** v1.2.3 -> v1.4.2 * **github.com/golang/protobuf** v1.5.2 -> v1.5.4 * **github.com/google/go-cmp** v0.5.9 -> v0.6.0 * **github.com/google/uuid** v1.3.0 -> v1.6.0 * **github.com/gorilla/websocket** v1.5.0 **_new_** * **github.com/grpc-ecosystem/go-grpc-middleware/providers/prometheus** v1.0.1 **_new_** * **github.com/grpc-ecosystem/go-grpc-middleware/v2** v2.1.0 **_new_** * **github.com/grpc-ecosystem/grpc-gateway/v2** v2.7.0 -> v2.22.0 * **github.com/intel/goresctrl** v0.3.0 -> v0.8.0 * **github.com/klauspost/compress** v1.16.0 -> v1.17.11 * **github.com/mdlayher/socket** v0.4.1 **_new_** * **github.com/mdlayher/vsock** v1.2.1 **_new_** * **github.com/mistifyio/go-zfs/v3** v3.0.1 **_new_** * **github.com/moby/spdystream** v0.2.0 -> v0.4.0 * **github.com/moby/sys/mountinfo** v0.6.2 -> v0.7.2 * **github.com/moby/sys/sequential** v0.5.0 -> v0.6.0 * **github.com/moby/sys/signal** v0.7.0 -> v0.7.1 * **github.com/moby/sys/symlink** v0.2.0 -> v0.3.0 * **github.com/moby/sys/user** v0.3.0 **_new_** * **github.com/moby/sys/userns** v0.1.0 **_new_** * **github.com/munnerz/goautoneg** a7dc8b61c822 **_new_** * **github.com/mxk/go-flowrate** cca7078d478f **_new_** * **github.com/opencontainers/image-spec** 3a7f492d3f1b -> v1.1.0 * **github.com/opencontainers/runtime-spec** v1.1.0-rc.1 -> v1.2.0 * **github.com/opencontainers/runtime-tools** 946c877fa809 -> 2e043c6bd626 * **github.com/opencontainers/selinux** v1.11.0 -> v1.11.1 * **github.com/pelletier/go-toml/v2** v2.2.3 **_new_** * **github.com/pmezard/go-difflib** v1.0.0 -> 5d4384ee4fb2 * **github.com/prometheus/client_golang** v1.14.0 -> v1.20.5 * **github.com/prometheus/client_model** v0.3.0 -> v0.6.1 * **github.com/prometheus/common** v0.37.0 -> v0.55.0 * **github.com/prometheus/procfs** v0.8.0 -> v0.15.1 * **github.com/sirupsen/logrus** v1.9.0 -> v1.9.3 * **github.com/stefanberger/go-pkcs11uri** 78d3cae3a980 -> 78284954bff6 * **github.com/stretchr/testify** v1.8.2 -> v1.9.0 * **github.com/urfave/cli/v2** v2.27.5 **_new_** * **github.com/vishvananda/netlink** v1.2.1-beta.2 -> v1.3.0 * **github.com/vishvananda/netns** 2eb08e3e575f -> v0.0.4 * **github.com/x448/float16** v0.8.4 **_new_** * **github.com/xrash/smetrics** 686a1a2994c1 **_new_** * **go.etcd.io/bbolt** v1.3.7 -> v1.3.11 * **go.mozilla.org/pkcs7** 432b2356ecb1 -> v0.9.0 * **go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc** v0.40.0 -> v0.56.0 * **go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp** v0.56.0 **_new_** * **go.opentelemetry.io/otel** v1.14.0 -> v1.31.0 * **go.opentelemetry.io/otel/exporters/otlp/otlptrace** v1.14.0 -> v1.31.0 * **go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc** v1.14.0 -> v1.31.0 * **go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp** v1.14.0 -> v1.31.0 * **go.opentelemetry.io/otel/metric** v0.37.0 -> v1.31.0 * **go.opentelemetry.io/otel/sdk** v1.14.0 -> v1.31.0 * **go.opentelemetry.io/otel/trace** v1.14.0 -> v1.31.0 * **go.opentelemetry.io/proto/otlp** v0.19.0 -> v1.3.1 * **golang.org/x/crypto** v0.1.0 -> v0.28.0 * **golang.org/x/exp** aacd6d4b4611 **_new_** * **golang.org/x/mod** v0.7.0 -> v0.21.0 * **golang.org/x/net** v0.7.0 -> v0.30.0 * **golang.org/x/oauth2** v0.4.0 -> v0.22.0 * **golang.org/x/sync** v0.1.0 -> v0.8.0 * **golang.org/x/sys** v0.6.0 -> v0.26.0 * **golang.org/x/term** v0.5.0 -> v0.25.0 * **golang.org/x/text** v0.7.0 -> v0.19.0 * **golang.org/x/time** 90d013bbcef8 -> v0.3.0 * **google.golang.org/genproto/googleapis/api** 5fefd90f89a9 **_new_** * **google.golang.org/genproto/googleapis/rpc** 324edc3d5d38 **_new_** * **google.golang.org/grpc** v1.53.0 -> v1.67.1 * **google.golang.org/protobuf** v1.28.1 -> v1.35.1 * **k8s.io/api** v0.26.2 -> v0.31.2 * **k8s.io/apimachinery** v0.26.2 -> v0.31.2 * **k8s.io/apiserver** v0.26.2 -> v0.31.2 * **k8s.io/client-go** v0.26.2 -> v0.31.2 * **k8s.io/component-base** v0.26.2 -> v0.31.2 * **k8s.io/cri-api** v0.26.2 -> v0.31.2 * **k8s.io/klog/v2** v2.90.1 -> v2.130.1 * **k8s.io/kubelet** v0.31.2 **_new_** * **k8s.io/utils** a5ecb0141aa5 -> 18e509b52bc8 * **sigs.k8s.io/json** f223a00ba0e2 -> bc3834ca7abd * **sigs.k8s.io/structured-merge-diff/v4** v4.2.3 -> v4.4.1 * **sigs.k8s.io/yaml** v1.3.0 -> v1.4.0 * **tags.cncf.io/container-device-interface** v0.8.0 **_new_** * **tags.cncf.io/container-device-interface/specs-go** v0.8.0 **_new_** Previous release can be found at [v1.7.0](https://github.com/containerd/containerd/releases/tag/v1.7.0) ### Which file should I download? * `containerd-<VERSION>-<OS>-<ARCH>.tar.gz`: ✅Recommended. Dynamically linked with glibc 2.31 (Ubuntu 20.04). * `containerd-static-<VERSION>-<OS>-<ARCH>.tar.gz`: Statically linked. Expected to be used on non-glibc Linux distributions. Not position-independent. In addition to containerd, typically you will have to install [runc](https://github.com/opencontainers/runc/releases) and [CNI plugins](https://github.com/containernetworking/plugins/releases) from their official sites too. See also the [Getting Started](https://github.com/containerd/containerd/blob/main/docs/getting-started.md) documentation.
-
api/v1.8.0cf36acf6 · ·
containerd api/v1.8.0 Welcome to the api/v1.8.0 release of containerd! The first dedicated release for the containerd API. This release continues the 1.x line of API compatibility with the 9th minor release of the 1.x API. ### Highlights * Add Update API for sandbox controller ([#9903](https://github.com/containerd/containerd/pull/9903)) * Add PluginInfo to introspection API ([#9442](https://github.com/containerd/containerd/pull/9442)) * Expose usage of deprecated features ([#9258](https://github.com/containerd/containerd/pull/9258)) * Add image delete target ([#8989](https://github.com/containerd/containerd/pull/8989)) #### Go client * Add api Go module and move all protos under api ([#10151](https://github.com/containerd/containerd/pull/10151)) #### Image Distribution * Enable Transfer service API to support plain HTTP ([#10024](https://github.com/containerd/containerd/pull/10024)) * Enable Transfer service to use registry configuration directory ([#9908](https://github.com/containerd/containerd/pull/9908)) * Update Transfer service to add OCI descriptors to Progress structure ([#9630](https://github.com/containerd/containerd/pull/9630)) * Add option to perform syncfs after pull ([#9401](https://github.com/containerd/containerd/pull/9401)) #### Runtime * Store bootstrap parameters in sandbox metadata ([#9736](https://github.com/containerd/containerd/pull/9736)) * Add sandboxer configuration and move sandbox controllers to plugins ([#8268](https://github.com/containerd/containerd/pull/8268)) * Add annotations to CreateSandbox request ([#8960](https://github.com/containerd/containerd/pull/8960)) * Add SandboxMetrics ([#8680](https://github.com/containerd/containerd/pull/8680)) * Publish sandbox events ([#8602](https://github.com/containerd/containerd/pull/8602)) #### Deprecations * Add type alias for event Envelope ([#10279](https://github.com/containerd/containerd/pull/10279)) Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues. ### Contributors * Derek McGowan * Maksym Pavlenko * Wei Fu * Abel Feng * Akihiro Suda * Phil Estes * Danny Canter * Samuel Karp * Kohei Tokunaga * Sebastiaan van Stijn * Akhil Mohan * Brian Goff * Bryant Biggs * Davanum Srinivas * Iceber Gu * Kirtana Ashok ### Changes <details><summary>65 commits</summary> <p> * Prepare release notes for api/v1.8.0 ([#10935](https://github.com/containerd/containerd/pull/10935)) * [`d38911808`](https://github.com/containerd/containerd/commit/d38911808acfb7290092af0513cf25ec94dbcfe1) Prepare release notes for api/v1.8.0 * Clean up some dependency trees for runc shim ([#10757](https://github.com/containerd/containerd/pull/10757)) * [`2123855ee`](https://github.com/containerd/containerd/commit/2123855eeb399dfcbb152ca3502e8fb4322d06cb) Add build tag to omit grpc * Add Update API for sandbox controller ([#9903](https://github.com/containerd/containerd/pull/9903)) * [`15887d7ef`](https://github.com/containerd/containerd/commit/15887d7efc60e4bde9e65c87a0376d94e9f6eb04) sandbox: add update api for controller * api: update github.com/containerd/ttrpc v1.2.5 to be aligned with containerd ([#10366](https://github.com/containerd/containerd/pull/10366)) * [`cb38b1e2b`](https://github.com/containerd/containerd/commit/cb38b1e2be065ea9e248e03906ee893f954370d8) api: update github.com/containerd/ttrpc v1.2.5 * Add type alias for event Envelope ([#10279](https://github.com/containerd/containerd/pull/10279)) * [`3e71ccafc`](https://github.com/containerd/containerd/commit/3e71ccafc48bc87a054f4ce3a67ecf2df91932c5) Add type alias for event Envelope * Update api minimum Go version to 1.21 ([#10276](https://github.com/containerd/containerd/pull/10276)) * [`359d84351`](https://github.com/containerd/containerd/commit/359d84351d53d335688ab96c1a3e1ae0151b3a2d) Update api minimum go version to 1.21 * Prepare release notes for api/v1.8.0-rc.0 ([#10167](https://github.com/containerd/containerd/pull/10167)) * [`55fcebffc`](https://github.com/containerd/containerd/commit/55fcebffc76e642e9155eda5e097043f95109e4d) Prepare release notes for api/v1.8.0 * Add api Go module and move all protos under api ([#10151](https://github.com/containerd/containerd/pull/10151)) * [`2ac2b9c90`](https://github.com/containerd/containerd/commit/2ac2b9c909fb64f4d06958a0ca2f556bec348d05) Make api a Go sub-module * [`3e9cace72`](https://github.com/containerd/containerd/commit/3e9cace720cee5eb631c8291d8fb51928dc3fb3b) Move runtimeoptions to api directory * [`4a4550777`](https://github.com/containerd/containerd/commit/4a455077722796fd6a63253bc30d2b4c0c379d1d) Move runc options to api directory * Store bootstrap parameters in sandbox metadata ([#9736](https://github.com/containerd/containerd/pull/9736)) * [`de38490ed`](https://github.com/containerd/containerd/commit/de38490ed6b8d9cb9cb6ea7cfcd0071e8f27d304) sandbox: merge address and protocol to one url * [`f6e0cf189`](https://github.com/containerd/containerd/commit/f6e0cf1894b9211f07d801e1af3166f290969cd7) sandbox: add address info in Start and Status response * Enable Transfer service API to support plain HTTP ([#10024](https://github.com/containerd/containerd/pull/10024)) * [`433279438`](https://github.com/containerd/containerd/commit/4332794384253ad85a05a17fe42aa929f62fc72a) Transfer: Registry: Enable plain HTTP * Enable Transfer service to use registry configuration directory ([#9908](https://github.com/containerd/containerd/pull/9908)) * [`7a3b7fba5`](https://github.com/containerd/containerd/commit/7a3b7fba59a9ff9e8756976cf6f55117b1814a63) Transfer: Registry: Enable to use registry configuration diretory * Generate proto services with go-ttrpc ([#7609](https://github.com/containerd/containerd/pull/7609)) * [`f0e874941`](https://github.com/containerd/containerd/commit/f0e8749411301e99958e0caf545d85bf0112dda4) Add ttrpc generated services * [`65031eade`](https://github.com/containerd/containerd/commit/65031eadec262d783db25456a8bbca1eed1956b7) Update protobuild to build ttrpc services * Add OSVersion to platform protobuf ([#9733](https://github.com/containerd/containerd/pull/9733)) * [`5aa05481d`](https://github.com/containerd/containerd/commit/5aa05481ddd40138eef79ec4bce2b0232adef354) Add OSVersion to platform protobuf * Move Message proto to types ([#9742](https://github.com/containerd/containerd/pull/9742)) * [`0facc8592`](https://github.com/containerd/containerd/commit/0facc85925a114edac4b3b05a871f4ad205f45f1) Fix proto formatting * [`7f2d2c4f4`](https://github.com/containerd/containerd/commit/7f2d2c4f44afe090872301cc8614e8fc0d432e9e) Move Message proto to types * refactor: move plugin/fieldpath to api/types/ ([#9687](https://github.com/containerd/containerd/pull/9687)) * [`b16e3572a`](https://github.com/containerd/containerd/commit/b16e3572a308be0c58b3c810b1922ec8d444d1f7) refactor: move plugin/fieldpath to api/types/ * Add PluginInfo to introspection API ([#9442](https://github.com/containerd/containerd/pull/9442)) * [`22d586e51`](https://github.com/containerd/containerd/commit/22d586e515654d3a901c40443fb2b4adcad65827) api/services/instrospection: add PluginInfo * Update Transfer service to add OCI descriptors to Progress structure ([#9630](https://github.com/containerd/containerd/pull/9630)) * [`a2472c0b5`](https://github.com/containerd/containerd/commit/a2472c0b5ab17e46ab3f3b000a6fa512a45d7f05) transfer: add OCI descriptors to Progress structure * Add option to perform syncfs after pull ([#9401](https://github.com/containerd/containerd/pull/9401)) * [`bd5c602c4`](https://github.com/containerd/containerd/commit/bd5c602c4dc91d19976f2dc222a337ab76716750) api: introduce sync_fs to diff.ApplyRequest * Containerd v2 module ([#9306](https://github.com/containerd/containerd/pull/9306)) * [`5fdf55e49`](https://github.com/containerd/containerd/commit/5fdf55e493d68079d22a08de1a7afe522e5838e5) Update go module to github.com/containerd/containerd/v2 * Expose usage of deprecated features ([#9258](https://github.com/containerd/containerd/pull/9258)) * [`57c897f10`](https://github.com/containerd/containerd/commit/57c897f10df48556af799f71c85a91b889df2d70) api/introspection: deprecation warnings in server * Add sandboxer configuration and move sandbox controllers to plugins ([#8268](https://github.com/containerd/containerd/pull/8268)) * [`d2d434b7d`](https://github.com/containerd/containerd/commit/d2d434b7d6546842b1f791ef17392da99320265d) sandbox: add all sandbox information to Create method * [`f372b3501`](https://github.com/containerd/containerd/commit/f372b3501b6096c8228203f9d5d5aae8ff998d61) sandbox: add sandboxer field of sandbox requests * Add image delete target ([#8989](https://github.com/containerd/containerd/pull/8989)) * [`f8fb2dad3`](https://github.com/containerd/containerd/commit/f8fb2dad39a4b45ce1de59f236e72ee72ad53cf7) api: update image service to support target in delete request * fix: Add `containerd` to the message type reference ([#9126](https://github.com/containerd/containerd/pull/9126)) * [`42eee8bf0`](https://github.com/containerd/containerd/commit/42eee8bf05c89524a29f064cb4ce0a460a8c0081) fix: Add `containerd` to the message type reference * platforms: isolate from errdefs and api dependencies ([#9095](https://github.com/containerd/containerd/pull/9095)) * [`e916d77c8`](https://github.com/containerd/containerd/commit/e916d77c81b8a61d7a37276e310b4a150b04f4ab) platforms: move ToProto, FromProto to api/types * Add annotations to CreateSandbox request ([#8960](https://github.com/containerd/containerd/pull/8960)) * [`939ccbed4`](https://github.com/containerd/containerd/commit/939ccbed427e81eaecd37777ddcb2eac792114e6) Sandbox: Add annotations to CreateSandbox surface * archive: use 1970-01-01 as the whiteout timestamp ([#8764](https://github.com/containerd/containerd/pull/8764)) * [`5dedb6d0d`](https://github.com/containerd/containerd/commit/5dedb6d0d2565507f0636254a18fdb7462a9eac3) archive: use 1970-01-01 as the whiteout timestamp * Add SandboxMetrics ([#8680](https://github.com/containerd/containerd/pull/8680)) * [`d278d37ca`](https://github.com/containerd/containerd/commit/d278d37caae501ef18fd919e611610c639ad471b) Sandbox: Add Metrics rpc for controller * [`d56722ef2`](https://github.com/containerd/containerd/commit/d56722ef2a42953841728f5ed5666da776ce0d8f) Sandbox: Add SandboxMetrics rpc * Publish sandbox events ([#8602](https://github.com/containerd/containerd/pull/8602)) * [`65906335b`](https://github.com/containerd/containerd/commit/65906335bf086dfe4ed73fbddb90429047e8aa96) Add sandbox events protos * Cleanup protobuild config ([#8278](https://github.com/containerd/containerd/pull/8278)) * [`0bbca7f1b`](https://github.com/containerd/containerd/commit/0bbca7f1bcc29933dfd3cb3c463cc4fb8fbbe036) Cleanup protobuild config </p> </details> ### Dependency Changes * **github.com/containerd/log** v0.1.0 **_new_** * **github.com/containerd/ttrpc** v1.2.1 -> v1.2.5 * **github.com/containerd/typeurl/v2** v2.1.0 -> v2.1.1 * **github.com/golang/protobuf** v1.5.2 -> v1.5.3 * **github.com/opencontainers/image-spec** 3a7f492d3f1b -> v1.1.0 * **github.com/sirupsen/logrus** v1.9.0 -> v1.9.3 * **golang.org/x/net** v0.7.0 -> v0.23.0 * **golang.org/x/sys** v0.6.0 -> v0.18.0 * **golang.org/x/text** v0.7.0 -> v0.14.0 * **google.golang.org/genproto/googleapis/rpc** c3f982113cda **_new_** * **google.golang.org/grpc** v1.53.0 -> v1.59.0 * **google.golang.org/protobuf** v1.28.1 -> v1.33.0 Previous release can be found at [v1.7.0](https://github.com/containerd/containerd/releases/tag/v1.7.0)
-
v2.0.0-rc.6b70cce20 · ·
containerd 2.0.0-rc.6 Welcome to the v2.0.0-rc.6 release of containerd! *This is a pre-release of containerd* The first major release of containerd 2.x focuses on the continued stability of containerd's core feature set with an easy upgrade from containerd 1.x. This release includes the stabilization of new features added in the last 1.x release as well as the removal of features which were deprecated in 1.x. The goal is to support the vast community of containerd users well into the future along with their ever increasing deployment footprints and variety of use cases. ### Highlights * Allow sections of Plugins to be merged, and not overwritten as entire sections. ([#9982](https://github.com/containerd/containerd/pull/9982)) * Add Update API for sandbox controller ([#9903](https://github.com/containerd/containerd/pull/9903)) * Configure otel from env instead of config.toml ([#8970](https://github.com/containerd/containerd/pull/8970)) * Enable NRI by default ([#9744](https://github.com/containerd/containerd/pull/9744)) * Add PluginInfo to introspection API ([#9442](https://github.com/containerd/containerd/pull/9442)) * Remove overlayfs volatile option on temp mounts ([#9555](https://github.com/containerd/containerd/pull/9555)) * Expose usage of deprecated features ([#9258](https://github.com/containerd/containerd/pull/9258)) * Use Intel ISA-L's igzip if available ([#9200](https://github.com/containerd/containerd/pull/9200)) * Introduce top level config migration ([#9223](https://github.com/containerd/containerd/pull/9223)) * Add image delete target ([#8989](https://github.com/containerd/containerd/pull/8989)) * Remove `LimitNOFILE` from `containerd.service` ([#8924](https://github.com/containerd/containerd/pull/8924)) * Add support for image expiration during garbage collection ([#9022](https://github.com/containerd/containerd/pull/9022)) * Reduce the contention between ref lock and boltdb lock in content store ([#8792](https://github.com/containerd/containerd/pull/8792)) * Remove "containerd.io/restart.logpath" label ([#8264](https://github.com/containerd/containerd/pull/8264)) * Remove `aufs` snapshotter ([#8263](https://github.com/containerd/containerd/pull/8263)) * Fix deadlock during NRI plugin registration ([containerd/nri#79](https://github.com/containerd/nri/pull/79)) * Fix deadlock when writing to pipe blocks ([containerd/ttrpc#168](https://github.com/containerd/ttrpc/pull/168)) #### Build and Release Toolchain * Generate attestation for artifacts during release ([#10543](https://github.com/containerd/containerd/pull/10543)) * Remove `cri-containerd-*.tar.gz` release bundles ([#9096](https://github.com/containerd/containerd/pull/9096)) #### Container Runtime Interface (CRI) * Use 'UserSpecifiedImage' from CRI to set the image-name annotation ([#10747](https://github.com/containerd/containerd/pull/10747)) * Fine-grained SupplementalGroups control ([#9737](https://github.com/containerd/containerd/pull/9737)) * Add support to set loopback to up ([#10238](https://github.com/containerd/containerd/pull/10238)) * Add support for multiple subscribers to CRI container events ([#9661](https://github.com/containerd/containerd/pull/9661)) * Enable CDI by default ([#9621](https://github.com/containerd/containerd/pull/9621)) * Remove non-sandboxed CRI implementation ([#9228](https://github.com/containerd/containerd/pull/9228)) * Add support for userns in stateless and stateful pods with idmap mounts (KEP-127, k8s >= 1.27) ([#8287](https://github.com/containerd/containerd/pull/8287)) * Use sandboxed CRI by default ([#8994](https://github.com/containerd/containerd/pull/8994)) * Implement RuntimeConfig CRI call ([#8722](https://github.com/containerd/containerd/pull/8722)) * Add support for user namespaces (KEP-127) ([#8803](https://github.com/containerd/containerd/pull/8803)) * Remove CRI v1alpha2 ([#8276](https://github.com/containerd/containerd/pull/8276)) #### Go client * Add api Go module and move all protos under api ([#10151](https://github.com/containerd/containerd/pull/10151)) * Move packages based on contributing guide ([#9365](https://github.com/containerd/containerd/pull/9365)) * Generalize plugin library ([#9214](https://github.com/containerd/containerd/pull/9214)) * Use github.com/containerd/log ([#9086](https://github.com/containerd/containerd/pull/9086)) #### Image Distribution * Support to syncfs after pull by using diff plugin ([#10284](https://github.com/containerd/containerd/pull/10284)) * Skip "unknown" in image platform listing ([#10257](https://github.com/containerd/containerd/pull/10257)) * Update unpacker to fetch all provided content ([#10202](https://github.com/containerd/containerd/pull/10202)) * Enable Transfer service API to support plain HTTP ([#10024](https://github.com/containerd/containerd/pull/10024)) * Enable Transfer service to use registry configuration directory ([#9908](https://github.com/containerd/containerd/pull/9908)) * Disable the support for Schema 1 images ([#9765](https://github.com/containerd/containerd/pull/9765)) * Update Transfer service to add OCI descriptors to Progress structure ([#9630](https://github.com/containerd/containerd/pull/9630)) * Update import and export to allow references to missing content ([#9554](https://github.com/containerd/containerd/pull/9554)) * Add option to perform syncfs after pull ([#9401](https://github.com/containerd/containerd/pull/9401)) * Add image verifier transfer service plugin system based on a binary directory ([#8493](https://github.com/containerd/containerd/pull/8493)) #### Runtime * Implement RuntimeStatus.features.supplemental_groups_policy from KEP-3619 ([#10410](https://github.com/containerd/containerd/pull/10410)) * Add pprof to runc-shim ([#10242](https://github.com/containerd/containerd/pull/10242)) * Provide runtime options in plugin info ([#10251](https://github.com/containerd/containerd/pull/10251)) * Store bootstrap parameters in sandbox metadata ([#9736](https://github.com/containerd/containerd/pull/9736)) * Update apparmor to allow confined runc to kill containers ([#10123](https://github.com/containerd/containerd/pull/10123)) * Support vsock connection to task api ([#9738](https://github.com/containerd/containerd/pull/9738)) * Update RuntimeDefault seccomp profile to disallow io_uring related syscalls ([#9320](https://github.com/containerd/containerd/pull/9320)) * Switch runc shim to task service v3 and fix restore ([#9233](https://github.com/containerd/containerd/pull/9233)) * Add sandboxer configuration and move sandbox controllers to plugins ([#8268](https://github.com/containerd/containerd/pull/8268)) * Add annotations to CreateSandbox request ([#8960](https://github.com/containerd/containerd/pull/8960)) * Add SandboxMetrics ([#8680](https://github.com/containerd/containerd/pull/8680)) * Publish sandbox events ([#8602](https://github.com/containerd/containerd/pull/8602)) * Remove the CriuPath field from runc's options ([#8279](https://github.com/containerd/containerd/pull/8279)) * Remove `io.containerd.runtime.v1.linux` and `io.containerd.runc.v1` ([#8262](https://github.com/containerd/containerd/pull/8262)) #### Security Advisories * [medium] RAPL accessible to a container [GHSA-7ww5-4wqc-m92c](https://github.com/containerd/containerd/security/advisories/GHSA-7ww5-4wqc-m92c) #### Breaking * Remove `disable_cgroup` from CRI config ([#10594](https://github.com/containerd/containerd/pull/10594)) * Disable the support for Schema 1 images ([#9765](https://github.com/containerd/containerd/pull/9765)) * Update RuntimeDefault seccomp profile to disallow io_uring related syscalls ([#9320](https://github.com/containerd/containerd/pull/9320)) * Move client to subpackage ([#9316](https://github.com/containerd/containerd/pull/9316)) * Remove `LimitNOFILE` from `containerd.service` ([#8924](https://github.com/containerd/containerd/pull/8924)) * Remove CRI v1alpha2 ([#8276](https://github.com/containerd/containerd/pull/8276)) * Remove `io.containerd.runtime.v1.linux` and `io.containerd.runc.v1` ([#8262](https://github.com/containerd/containerd/pull/8262)) * Remove "containerd.io/restart.logpath" label ([#8264](https://github.com/containerd/containerd/pull/8264)) * Remove `aufs` snapshotter ([#8263](https://github.com/containerd/containerd/pull/8263)) #### Deprecations * Update warnings for deprecated CRI config fields ([#10509](https://github.com/containerd/containerd/pull/10509)) * Add type alias for event Envelope ([#10279](https://github.com/containerd/containerd/pull/10279)) * Postpone removal of deprecated CRI config properties ([#9966](https://github.com/containerd/containerd/pull/9966)) * Deprecate go-plugin configuration option ([#9238](https://github.com/containerd/containerd/pull/9238)) * CNI conf_template in CRI is no longer deprecated ([#8637](https://github.com/containerd/containerd/pull/8637)) Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues. ### Contributors * Derek McGowan * Akihiro Suda * Maksym Pavlenko * Wei Fu * Phil Estes * Sebastiaan van Stijn * Samuel Karp * Stefan Berger * Krisztian Litkey * Kazuyoshi Kato * Rodrigo Campos * Austin Vazquez * Danny Canter * Abel Feng * Mike Brown * Akhil Mohan * Kirtana Ashok * Iceber Gu * Gabriel Adrian Samfira * Jin Dong * Kohei Tokunaga * Bjorn Neergaard * Brian Goff * Justin Chadwell * rongfu.leng * James Sturtevant * Davanum Srinivas * Paul "TBBle" Hampson * Henry Wang * Enrico Weigelt * Laura Brehm * Marat Radchenko * Paweł Gronowski * Shingo Omura * Hsing-Yu (David) Chen * Ilya Hanov * Cardy.Tang * Swagat Bora * Aditi Sharma * Amit Barve * Bryant Biggs * Evan Lezar * James Jenkins * Jordan Liggitt * Kay Yan * Markus Lehtonen * Nashwan Azhari * Shuaiyi Zhang * Vinayak Goyal * helen * Alexandru Matei * Anthony Nandaa * Avi Deitcher * Charity Kathure * Cory Snider * Ed Bartosh * Etienne Champetier * Kevin Parsons * Michael Zappa * Milas Bowman * lengrongfu * ningmingxiao * yanggang * zounengren * Aditya Ramani * Adrian Reber * Amir M. Ghazanfari * Artem Khramov * Brad Davidson * Chen Yiyang * Christian Muehlhaeuser * Djordje Lukic * Edgar Lee * Eric Lin * Ethan Lowman * Jiang Liu * June Rhodes * Kern Walster * Lei Jitang * Lucas Rattz * Mahamed Ali * Maksim An * Michael Crosby * Peteris Rudzusiks * Ray Burgemeestre * Sam Edwards * Samruddhi Khandale * Sascha Grunert * Steve Griffith * Tony Fang * VERNOU Cédric * Vishal Reddy Gurrala * Xiaojin Zhang * hang.jiang * harshitasao * jerryzhuang * roman-kiselenko * zhanluxianshen * Aaron Lehmann * AbdelrahmanElawady * Adrien Delorme * Alex Couture-Beil * Alex Ellis * Alex Rodriguez * Angelos Kolaitis * Antonio Huete Jimenez * Antonio Ojea * Antti Kervinen * Arash Haghighat * Ben Foster * Benjamin Peterson * Bin Tang * Bin Xin * BinBin He * Brennan Kinney * Changqing Li * ChengenH * ChengyuZhu6 * Christian Stewart * Colin O'Dell * Craig Ingram * Daisy Rong * David Porter * Derek Nola * Eng Zer Jun * Erikson Tung * Fabiano Fidêncio * Fahed Dorgaa * Gabriela Cervantes * Gary McDonald * Iain Macdonald * James Lakin * Jan Dubois * Jaroslav Jindrak * Javier Maestro * Jian Wang * Jiongchi Yu * Julien Balestra * Kir Kolyshkin * Kirill A. Korinsky * Konstantin Khlebnikov * Lei Liu * Matteo Pulcini * Mauri de Souza Meneguzzo * Mike Baynton * Pan Yibo * Paul Meyer * Qasim Sarfraz * Qiutong Song * Reinhard Tartler * Robbie Buxton * Robert-André Mauchin * Ruihua Wen * Saket Jajoo * Sameer * Shengjing Zhu * Shiming Zhang * Shukui Yang * StepSecurity Bot * Talon * Tariq Ibrahim * Tianon Gravi * Tim Hockin * TinaMor * Tobias Klauser * Tomáš Virtus * Tõnis Tiigi * Wang Xinwen * William Chen * Xinyang Ge * Yang Yang * Yibo Zhuang * Yuhang Wei * Yury Gargay * Zechun Chen * Zhang Tianyang * Zoe * baijia * bo.jiang * bzsuni * charles-chenzz * chschumacher1994 * cormick * guangli.bao * guangwu * jinda.ljd * jingtao.liang * krglosse * pigletfly * rokkiter * wangxiang * zhangpeng * zhaojizhuang * 吴小白 * 张钰 * 沈陵 * 谭九鼎 ### Dependency Changes * **dario.cat/mergo** v1.0.1 **_new_** * **github.com/AdaLogics/go-fuzz-headers** 1f10f66a31bf -> ced1acdcaa24 * **github.com/AdamKorcz/go-118-fuzz-build** 5330a85ea652 -> 8075edf89bb0 * **github.com/Microsoft/go-winio** v0.6.0 -> v0.6.2 * **github.com/Microsoft/hcsshim** v0.10.0-rc.7 -> v0.12.8 * **github.com/cenkalti/backoff/v4** v4.2.0 -> v4.3.0 * **github.com/cespare/xxhash/v2** v2.2.0 -> v2.3.0 * **github.com/checkpoint-restore/checkpointctl** v1.2.1 **_new_** * **github.com/checkpoint-restore/go-criu/v7** v7.2.0 **_new_** * **github.com/cilium/ebpf** v0.9.1 -> v0.11.0 * **github.com/containerd/cgroups/v3** v3.0.1 -> v3.0.3 * **github.com/containerd/console** v1.0.3 -> v1.0.4 * **github.com/containerd/containerd/api** v1.8.0-rc.4 **_new_** * **github.com/containerd/continuity** v0.3.0 -> v0.4.3 * **github.com/containerd/errdefs** v0.3.0 **_new_** * **github.com/containerd/errdefs/pkg** v0.3.0 **_new_** * **github.com/containerd/go-cni** v1.1.9 -> v1.1.10 * **github.com/containerd/go-runc** v1.0.0 -> v1.1.0 * **github.com/containerd/imgcrypt** v1.1.7 -> v1.2.0-rc1 * **github.com/containerd/log** v0.1.0 **_new_** * **github.com/containerd/nri** v0.3.0 -> v0.7.0 * **github.com/containerd/otelttrpc** ea5083fda723 **_new_** * **github.com/containerd/platforms** v0.2.1 **_new_** * **github.com/containerd/plugin** v0.1.0 **_new_** * **github.com/containerd/ttrpc** v1.2.1 -> b5cd6e4b3287 * **github.com/containerd/typeurl/v2** v2.1.0 -> v2.2.0 * **github.com/containernetworking/cni** v1.1.2 -> v1.2.3 * **github.com/containernetworking/plugins** v1.2.0 -> v1.5.1 * **github.com/containers/ocicrypt** v1.1.6 -> v1.2.0 * **github.com/cpuguy83/go-md2man/v2** v2.0.2 -> v2.0.5 * **github.com/davecgh/go-spew** v1.1.1 -> d8f796af33cc * **github.com/distribution/reference** v0.6.0 **_new_** * **github.com/emicklei/go-restful/v3** v3.10.1 -> v3.11.0 * **github.com/felixge/httpsnoop** v1.0.4 **_new_** * **github.com/fsnotify/fsnotify** v1.6.0 -> v1.7.0 * **github.com/fxamacker/cbor/v2** v2.7.0 **_new_** * **github.com/go-jose/go-jose/v4** v4.0.2 **_new_** * **github.com/go-logr/logr** v1.2.3 -> v1.4.2 * **github.com/golang/protobuf** v1.5.2 -> v1.5.4 * **github.com/google/go-cmp** v0.5.9 -> v0.6.0 * **github.com/google/uuid** v1.3.0 -> v1.6.0 * **github.com/gorilla/websocket** v1.5.0 **_new_** * **github.com/grpc-ecosystem/go-grpc-middleware/providers/prometheus** v1.0.1 **_new_** * **github.com/grpc-ecosystem/go-grpc-middleware/v2** v2.1.0 **_new_** * **github.com/grpc-ecosystem/grpc-gateway/v2** v2.7.0 -> v2.22.0 * **github.com/intel/goresctrl** v0.3.0 -> v0.8.0 * **github.com/klauspost/compress** v1.16.0 -> v1.17.11 * **github.com/mdlayher/socket** v0.4.1 **_new_** * **github.com/mdlayher/vsock** v1.2.1 **_new_** * **github.com/moby/spdystream** v0.2.0 -> v0.4.0 * **github.com/moby/sys/mountinfo** v0.6.2 -> v0.7.2 * **github.com/moby/sys/sequential** v0.5.0 -> v0.6.0 * **github.com/moby/sys/signal** v0.7.0 -> v0.7.1 * **github.com/moby/sys/symlink** v0.2.0 -> v0.3.0 * **github.com/moby/sys/user** v0.3.0 **_new_** * **github.com/moby/sys/userns** v0.1.0 **_new_** * **github.com/munnerz/goautoneg** a7dc8b61c822 **_new_** * **github.com/mxk/go-flowrate** cca7078d478f **_new_** * **github.com/opencontainers/image-spec** 3a7f492d3f1b -> v1.1.0 * **github.com/opencontainers/runtime-spec** v1.1.0-rc.1 -> v1.2.0 * **github.com/opencontainers/runtime-tools** 946c877fa809 -> 2e043c6bd626 * **github.com/opencontainers/selinux** v1.11.0 -> v1.11.1 * **github.com/pelletier/go-toml/v2** v2.2.3 **_new_** * **github.com/pmezard/go-difflib** v1.0.0 -> 5d4384ee4fb2 * **github.com/prometheus/client_golang** v1.14.0 -> v1.20.5 * **github.com/prometheus/client_model** v0.3.0 -> v0.6.1 * **github.com/prometheus/common** v0.37.0 -> v0.55.0 * **github.com/prometheus/procfs** v0.8.0 -> v0.15.1 * **github.com/sirupsen/logrus** v1.9.0 -> v1.9.3 * **github.com/stefanberger/go-pkcs11uri** 78d3cae3a980 -> 78284954bff6 * **github.com/stretchr/testify** v1.8.2 -> v1.9.0 * **github.com/urfave/cli/v2** v2.27.5 **_new_** * **github.com/vishvananda/netlink** v1.2.1-beta.2 -> v1.3.0 * **github.com/vishvananda/netns** 2eb08e3e575f -> v0.0.4 * **github.com/x448/float16** v0.8.4 **_new_** * **github.com/xrash/smetrics** 686a1a2994c1 **_new_** * **go.etcd.io/bbolt** v1.3.7 -> v1.3.11 * **go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc** v0.40.0 -> v0.56.0 * **go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp** v0.56.0 **_new_** * **go.opentelemetry.io/otel** v1.14.0 -> v1.31.0 * **go.opentelemetry.io/otel/exporters/otlp/otlptrace** v1.14.0 -> v1.31.0 * **go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc** v1.14.0 -> v1.31.0 * **go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp** v1.14.0 -> v1.31.0 * **go.opentelemetry.io/otel/metric** v0.37.0 -> v1.31.0 * **go.opentelemetry.io/otel/sdk** v1.14.0 -> v1.31.0 * **go.opentelemetry.io/otel/trace** v1.14.0 -> v1.31.0 * **go.opentelemetry.io/proto/otlp** v0.19.0 -> v1.3.1 * **golang.org/x/crypto** v0.1.0 -> v0.28.0 * **golang.org/x/exp** aacd6d4b4611 **_new_** * **golang.org/x/mod** v0.7.0 -> v0.21.0 * **golang.org/x/net** v0.7.0 -> v0.30.0 * **golang.org/x/oauth2** v0.4.0 -> v0.22.0 * **golang.org/x/sync** v0.1.0 -> v0.8.0 * **golang.org/x/sys** v0.6.0 -> v0.26.0 * **golang.org/x/term** v0.5.0 -> v0.25.0 * **golang.org/x/text** v0.7.0 -> v0.19.0 * **golang.org/x/time** 90d013bbcef8 -> v0.3.0 * **google.golang.org/genproto/googleapis/api** 5fefd90f89a9 **_new_** * **google.golang.org/genproto/googleapis/rpc** 5fefd90f89a9 **_new_** * **google.golang.org/grpc** v1.53.0 -> v1.67.1 * **google.golang.org/protobuf** v1.28.1 -> v1.35.1 * **k8s.io/api** v0.26.2 -> v0.31.1 * **k8s.io/apimachinery** v0.26.2 -> v0.31.1 * **k8s.io/apiserver** v0.26.2 -> v0.31.1 * **k8s.io/client-go** v0.26.2 -> v0.31.1 * **k8s.io/component-base** v0.26.2 -> v0.31.1 * **k8s.io/cri-api** v0.26.2 -> v0.32.0-alpha.0 * **k8s.io/klog/v2** v2.90.1 -> v2.130.1 * **k8s.io/kubelet** v0.31.1 **_new_** * **k8s.io/utils** a5ecb0141aa5 -> 18e509b52bc8 * **sigs.k8s.io/json** f223a00ba0e2 -> bc3834ca7abd * **sigs.k8s.io/structured-merge-diff/v4** v4.2.3 -> v4.4.1 * **sigs.k8s.io/yaml** v1.3.0 -> v1.4.0 * **tags.cncf.io/container-device-interface** v0.8.0 **_new_** * **tags.cncf.io/container-device-interface/specs-go** v0.8.0 **_new_** Previous release can be found at [v1.7.0](https://github.com/containerd/containerd/releases/tag/v1.7.0) ### Which file should I download? * `containerd-<VERSION>-<OS>-<ARCH>.tar.gz`: ✅Recommended. Dynamically linked with glibc 2.31 (Ubuntu 20.04). * `containerd-static-<VERSION>-<OS>-<ARCH>.tar.gz`: Statically linked. Expected to be used on non-glibc Linux distributions. Not position-independent. In addition to containerd, typically you will have to install [runc](https://github.com/opencontainers/runc/releases) and [CNI plugins](https://github.com/containernetworking/plugins/releases) from their official sites too. See also the [Getting Started](https://github.com/containerd/containerd/blob/main/docs/getting-started.md) documentation.
-
api/v1.8.0-rc.4b291eb80 · ·
containerd api/v1.8.0-rc.4 Welcome to the api/v1.8.0-rc.4 release of containerd! *This is a pre-release of containerd* The first dedicated release for the containerd API. This release continues the 1.x line of API compatibility with the 9th minor release of the 1.x API. ### Highlights * Add Update API for sandbox controller ([#9903](https://github.com/containerd/containerd/pull/9903)) * Add PluginInfo to introspection API ([#9442](https://github.com/containerd/containerd/pull/9442)) * Expose usage of deprecated features ([#9258](https://github.com/containerd/containerd/pull/9258)) * Add image delete target ([#8989](https://github.com/containerd/containerd/pull/8989)) #### Go client * Add api Go module and move all protos under api ([#10151](https://github.com/containerd/containerd/pull/10151)) #### Image Distribution * Enable Transfer service API to support plain HTTP ([#10024](https://github.com/containerd/containerd/pull/10024)) * Enable Transfer service to use registry configuration directory ([#9908](https://github.com/containerd/containerd/pull/9908)) * Update Transfer service to add OCI descriptors to Progress structure ([#9630](https://github.com/containerd/containerd/pull/9630)) * Add option to perform syncfs after pull ([#9401](https://github.com/containerd/containerd/pull/9401)) #### Runtime * Store bootstrap parameters in sandbox metadata ([#9736](https://github.com/containerd/containerd/pull/9736)) * Add sandboxer configuration and move sandbox controllers to plugins ([#8268](https://github.com/containerd/containerd/pull/8268)) * Add annotations to CreateSandbox request ([#8960](https://github.com/containerd/containerd/pull/8960)) * Add SandboxMetrics ([#8680](https://github.com/containerd/containerd/pull/8680)) * Publish sandbox events ([#8602](https://github.com/containerd/containerd/pull/8602)) #### Deprecations * Add type alias for event Envelope ([#10279](https://github.com/containerd/containerd/pull/10279)) Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues. ### Contributors * Derek McGowan * Maksym Pavlenko * Wei Fu * Abel Feng * Akihiro Suda * Phil Estes * Danny Canter * Samuel Karp * Kohei Tokunaga * Sebastiaan van Stijn * Akhil Mohan * Brian Goff * Bryant Biggs * Davanum Srinivas * Iceber Gu * Kirtana Ashok ### Changes <details><summary>63 commits</summary> <p> * Clean up some dependency trees for runc shim ([#10757](https://github.com/containerd/containerd/pull/10757)) * [`2123855ee`](https://github.com/containerd/containerd/commit/2123855eeb399dfcbb152ca3502e8fb4322d06cb) Add build tag to omit grpc * Add Update API for sandbox controller ([#9903](https://github.com/containerd/containerd/pull/9903)) * [`15887d7ef`](https://github.com/containerd/containerd/commit/15887d7efc60e4bde9e65c87a0376d94e9f6eb04) sandbox: add update api for controller * api: update github.com/containerd/ttrpc v1.2.5 to be aligned with containerd ([#10366](https://github.com/containerd/containerd/pull/10366)) * [`cb38b1e2b`](https://github.com/containerd/containerd/commit/cb38b1e2be065ea9e248e03906ee893f954370d8) api: update github.com/containerd/ttrpc v1.2.5 * Add type alias for event Envelope ([#10279](https://github.com/containerd/containerd/pull/10279)) * [`3e71ccafc`](https://github.com/containerd/containerd/commit/3e71ccafc48bc87a054f4ce3a67ecf2df91932c5) Add type alias for event Envelope * Update api minimum Go version to 1.21 ([#10276](https://github.com/containerd/containerd/pull/10276)) * [`359d84351`](https://github.com/containerd/containerd/commit/359d84351d53d335688ab96c1a3e1ae0151b3a2d) Update api minimum go version to 1.21 * Prepare release notes for api/v1.8.0-rc.0 ([#10167](https://github.com/containerd/containerd/pull/10167)) * [`55fcebffc`](https://github.com/containerd/containerd/commit/55fcebffc76e642e9155eda5e097043f95109e4d) Prepare release notes for api/v1.8.0 * Add api Go module and move all protos under api ([#10151](https://github.com/containerd/containerd/pull/10151)) * [`2ac2b9c90`](https://github.com/containerd/containerd/commit/2ac2b9c909fb64f4d06958a0ca2f556bec348d05) Make api a Go sub-module * [`3e9cace72`](https://github.com/containerd/containerd/commit/3e9cace720cee5eb631c8291d8fb51928dc3fb3b) Move runtimeoptions to api directory * [`4a4550777`](https://github.com/containerd/containerd/commit/4a455077722796fd6a63253bc30d2b4c0c379d1d) Move runc options to api directory * Store bootstrap parameters in sandbox metadata ([#9736](https://github.com/containerd/containerd/pull/9736)) * [`de38490ed`](https://github.com/containerd/containerd/commit/de38490ed6b8d9cb9cb6ea7cfcd0071e8f27d304) sandbox: merge address and protocol to one url * [`f6e0cf189`](https://github.com/containerd/containerd/commit/f6e0cf1894b9211f07d801e1af3166f290969cd7) sandbox: add address info in Start and Status response * Enable Transfer service API to support plain HTTP ([#10024](https://github.com/containerd/containerd/pull/10024)) * [`433279438`](https://github.com/containerd/containerd/commit/4332794384253ad85a05a17fe42aa929f62fc72a) Transfer: Registry: Enable plain HTTP * Enable Transfer service to use registry configuration directory ([#9908](https://github.com/containerd/containerd/pull/9908)) * [`7a3b7fba5`](https://github.com/containerd/containerd/commit/7a3b7fba59a9ff9e8756976cf6f55117b1814a63) Transfer: Registry: Enable to use registry configuration diretory * Generate proto services with go-ttrpc ([#7609](https://github.com/containerd/containerd/pull/7609)) * [`f0e874941`](https://github.com/containerd/containerd/commit/f0e8749411301e99958e0caf545d85bf0112dda4) Add ttrpc generated services * [`65031eade`](https://github.com/containerd/containerd/commit/65031eadec262d783db25456a8bbca1eed1956b7) Update protobuild to build ttrpc services * Add OSVersion to platform protobuf ([#9733](https://github.com/containerd/containerd/pull/9733)) * [`5aa05481d`](https://github.com/containerd/containerd/commit/5aa05481ddd40138eef79ec4bce2b0232adef354) Add OSVersion to platform protobuf * Move Message proto to types ([#9742](https://github.com/containerd/containerd/pull/9742)) * [`0facc8592`](https://github.com/containerd/containerd/commit/0facc85925a114edac4b3b05a871f4ad205f45f1) Fix proto formatting * [`7f2d2c4f4`](https://github.com/containerd/containerd/commit/7f2d2c4f44afe090872301cc8614e8fc0d432e9e) Move Message proto to types * refactor: move plugin/fieldpath to api/types/ ([#9687](https://github.com/containerd/containerd/pull/9687)) * [`b16e3572a`](https://github.com/containerd/containerd/commit/b16e3572a308be0c58b3c810b1922ec8d444d1f7) refactor: move plugin/fieldpath to api/types/ * Add PluginInfo to introspection API ([#9442](https://github.com/containerd/containerd/pull/9442)) * [`22d586e51`](https://github.com/containerd/containerd/commit/22d586e515654d3a901c40443fb2b4adcad65827) api/services/instrospection: add PluginInfo * Update Transfer service to add OCI descriptors to Progress structure ([#9630](https://github.com/containerd/containerd/pull/9630)) * [`a2472c0b5`](https://github.com/containerd/containerd/commit/a2472c0b5ab17e46ab3f3b000a6fa512a45d7f05) transfer: add OCI descriptors to Progress structure * Add option to perform syncfs after pull ([#9401](https://github.com/containerd/containerd/pull/9401)) * [`bd5c602c4`](https://github.com/containerd/containerd/commit/bd5c602c4dc91d19976f2dc222a337ab76716750) api: introduce sync_fs to diff.ApplyRequest * Containerd v2 module ([#9306](https://github.com/containerd/containerd/pull/9306)) * [`5fdf55e49`](https://github.com/containerd/containerd/commit/5fdf55e493d68079d22a08de1a7afe522e5838e5) Update go module to github.com/containerd/containerd/v2 * Expose usage of deprecated features ([#9258](https://github.com/containerd/containerd/pull/9258)) * [`57c897f10`](https://github.com/containerd/containerd/commit/57c897f10df48556af799f71c85a91b889df2d70) api/introspection: deprecation warnings in server * Add sandboxer configuration and move sandbox controllers to plugins ([#8268](https://github.com/containerd/containerd/pull/8268)) * [`d2d434b7d`](https://github.com/containerd/containerd/commit/d2d434b7d6546842b1f791ef17392da99320265d) sandbox: add all sandbox information to Create method * [`f372b3501`](https://github.com/containerd/containerd/commit/f372b3501b6096c8228203f9d5d5aae8ff998d61) sandbox: add sandboxer field of sandbox requests * Add image delete target ([#8989](https://github.com/containerd/containerd/pull/8989)) * [`f8fb2dad3`](https://github.com/containerd/containerd/commit/f8fb2dad39a4b45ce1de59f236e72ee72ad53cf7) api: update image service to support target in delete request * fix: Add `containerd` to the message type reference ([#9126](https://github.com/containerd/containerd/pull/9126)) * [`42eee8bf0`](https://github.com/containerd/containerd/commit/42eee8bf05c89524a29f064cb4ce0a460a8c0081) fix: Add `containerd` to the message type reference * platforms: isolate from errdefs and api dependencies ([#9095](https://github.com/containerd/containerd/pull/9095)) * [`e916d77c8`](https://github.com/containerd/containerd/commit/e916d77c81b8a61d7a37276e310b4a150b04f4ab) platforms: move ToProto, FromProto to api/types * Add annotations to CreateSandbox request ([#8960](https://github.com/containerd/containerd/pull/8960)) * [`939ccbed4`](https://github.com/containerd/containerd/commit/939ccbed427e81eaecd37777ddcb2eac792114e6) Sandbox: Add annotations to CreateSandbox surface * archive: use 1970-01-01 as the whiteout timestamp ([#8764](https://github.com/containerd/containerd/pull/8764)) * [`5dedb6d0d`](https://github.com/containerd/containerd/commit/5dedb6d0d2565507f0636254a18fdb7462a9eac3) archive: use 1970-01-01 as the whiteout timestamp * Add SandboxMetrics ([#8680](https://github.com/containerd/containerd/pull/8680)) * [`d278d37ca`](https://github.com/containerd/containerd/commit/d278d37caae501ef18fd919e611610c639ad471b) Sandbox: Add Metrics rpc for controller * [`d56722ef2`](https://github.com/containerd/containerd/commit/d56722ef2a42953841728f5ed5666da776ce0d8f) Sandbox: Add SandboxMetrics rpc * Publish sandbox events ([#8602](https://github.com/containerd/containerd/pull/8602)) * [`65906335b`](https://github.com/containerd/containerd/commit/65906335bf086dfe4ed73fbddb90429047e8aa96) Add sandbox events protos * Cleanup protobuild config ([#8278](https://github.com/containerd/containerd/pull/8278)) * [`0bbca7f1b`](https://github.com/containerd/containerd/commit/0bbca7f1bcc29933dfd3cb3c463cc4fb8fbbe036) Cleanup protobuild config </p> </details> ### Dependency Changes * **github.com/containerd/log** v0.1.0 **_new_** * **github.com/containerd/ttrpc** v1.2.1 -> v1.2.5 * **github.com/containerd/typeurl/v2** v2.1.0 -> v2.1.1 * **github.com/golang/protobuf** v1.5.2 -> v1.5.3 * **github.com/opencontainers/image-spec** 3a7f492d3f1b -> v1.1.0 * **github.com/sirupsen/logrus** v1.9.0 -> v1.9.3 * **golang.org/x/net** v0.7.0 -> v0.23.0 * **golang.org/x/sys** v0.6.0 -> v0.18.0 * **golang.org/x/text** v0.7.0 -> v0.14.0 * **google.golang.org/genproto/googleapis/rpc** c3f982113cda **_new_** * **google.golang.org/grpc** v1.53.0 -> v1.59.0 * **google.golang.org/protobuf** v1.28.1 -> v1.33.0 Previous release can be found at [v1.7.0](https://github.com/containerd/containerd/releases/tag/v1.7.0)
-
v1.7.2357f17b0a · ·
containerd 1.7.23 Welcome to the v1.7.23 release of containerd! The twenty-third patch release for containerd 1.7 contains various fixes and updates. ### Highlights * Add errdefs aliases ([#10792](https://github.com/containerd/containerd/pull/10792)) * Allow proxy plugins to have capabilities ([#10731](https://github.com/containerd/containerd/pull/10731)) * Revert errdefs package migration ([#10712](https://github.com/containerd/containerd/pull/10712)) #### Container Runtime Interface (CRI) * Add check for CNI plugins before tearing down pod network ([#10767](https://github.com/containerd/containerd/pull/10767)) #### Image Distribution * Fix the race condition during GC of snapshots when client retries ([#10763](https://github.com/containerd/containerd/pull/10763)) Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues. ### Contributors * Derek McGowan * Austin Vazquez * Phil Estes * Akihiro Suda * Samuel Karp * Maksym Pavlenko * Kern Walster * Kir Kolyshkin * Saket Jajoo * Sameer * Wei Fu * Zou Nengren * bo.jiang ### Changes <details><summary>37 commits</summary> <p> * Prepare release notes for v1.7.23 ([#10802](https://github.com/containerd/containerd/pull/10802)) * [`921f554af`](https://github.com/containerd/containerd/commit/921f554af99d32ff867f45499acdaf5f72444da6) Prepare release notes for v1.7.23 * Revert "update runc binary to 1.1.15" ([#10826](https://github.com/containerd/containerd/pull/10826)) * [`8f16d6588`](https://github.com/containerd/containerd/commit/8f16d6588a79c4b639e6473dfca0cb899028e575) Revert "update runc binary to 1.1.15" * Switch from actuated.dev to GH Action runners for arm64 ([#10822](https://github.com/containerd/containerd/pull/10822)) * [`41e8f24cd`](https://github.com/containerd/containerd/commit/41e8f24cd1d8de2360e6bb35a3f7e11c2330d23b) Switch from actuated.dev to GH Action runners for arm64 * [`dd811f224`](https://github.com/containerd/containerd/commit/dd811f224a327e9647fc3ff8fd30fb5c61322898) Update github actions ci to run on forks * bump golangci/golangci-lint-action from 4 to 6 ([#10813](https://github.com/containerd/containerd/pull/10813)) * [`284484af4`](https://github.com/containerd/containerd/commit/284484af449cd09d1708ff446489e0aa22730ec6) bump golangci/golangci-lint-action from 4 to 6 * update to go1.23.2,go1.22.8 ([#10808](https://github.com/containerd/containerd/pull/10808)) * [`814c59ba5`](https://github.com/containerd/containerd/commit/814c59ba56bfb2342350c034d791c9933014e657) update to go1.23.2,go1.22.8 * prow: allow ENABLE_CRI_SANDBOXES to be configured ([#10801](https://github.com/containerd/containerd/pull/10801)) * [`ae11176fa`](https://github.com/containerd/containerd/commit/ae11176facd42ab7cca86a3a04b1468c1dae4b9a) prow: allow ENABLE_CRI_SANDBOXES to be configured * TestNewBinaryIOCleanup: fix a comment, minor rewrite ([#10776](https://github.com/containerd/containerd/pull/10776)) * [`7fd794a7c`](https://github.com/containerd/containerd/commit/7fd794a7cd9ce246d1792842f2c6c0c16d9bdd76) TestNewBinaryIOCleanup: fix a comment, minor rewrite * Add errdefs aliases ([#10792](https://github.com/containerd/containerd/pull/10792)) * [`0714a2952`](https://github.com/containerd/containerd/commit/0714a2952af68dc83c41b46d50413a344af68521) Add errdefs aliases * Update runc binary to 1.1.15 ([#10794](https://github.com/containerd/containerd/pull/10794)) * [`113a9f1fc`](https://github.com/containerd/containerd/commit/113a9f1fc9aa47ed622bcd0eb954ef8cf84551e3) update runc binary to 1.1.15 * Update runner images to macOS13 ([#10783](https://github.com/containerd/containerd/pull/10783)) * [`5305b03f2`](https://github.com/containerd/containerd/commit/5305b03f2c374fb54edcbbd3f1f07e413460d79e) Update runner images to macOS13 * Allow proxy plugins to have capabilities ([#10731](https://github.com/containerd/containerd/pull/10731)) * [`950740390`](https://github.com/containerd/containerd/commit/9507403907c62536c97277bcd8ebffa7f357adae) Allow proxy plugins to have capabilities * Bump crun to 1.16.1 ([#10774](https://github.com/containerd/containerd/pull/10774)) * [`e8aae7824`](https://github.com/containerd/containerd/commit/e8aae7824420c2c6673aeba640d168db6332099b) Bump crun to 1.16 * [`ee1c39b79`](https://github.com/containerd/containerd/commit/ee1c39b79972102da15abab87f130fa1ab08f059) CI: bump up crun to 1.15 * Fix the race condition during GC of snapshots when client retries ([#10763](https://github.com/containerd/containerd/pull/10763)) * [`cb5e6a01a`](https://github.com/containerd/containerd/commit/cb5e6a01a30dd6a34d4f7c25d8d429a5173bc541) Fix the race condition during GC of snapshots when client retries * Add check for CNI plugins before tearing down pod network ([#10767](https://github.com/containerd/containerd/pull/10767)) * [`278bd0f72`](https://github.com/containerd/containerd/commit/278bd0f7251eb58583f0cd52a18c16c537ae967b) [release/1.7] Add check for CNI plugins before tearing down pod network * Revert errdefs package migration ([#10712](https://github.com/containerd/containerd/pull/10712)) * [`18403239e`](https://github.com/containerd/containerd/commit/18403239e8cf0c040d28bf98e434198fd4852f88) Synchronize 1.7 error package with errdefs * [`d8d27205b`](https://github.com/containerd/containerd/commit/d8d27205b50bf4933a60cd9e6ddf3aaa2b56c469) Revert "migrate errdefs package to github.com/containerd/errdefs module" * [`e82d201b3`](https://github.com/containerd/containerd/commit/e82d201b3ffb87c15d2b7be2eb2e0c7bfa99d114) Revert "replace uses of github.com/containerd/containerd/errdefs" * [`51939238f`](https://github.com/containerd/containerd/commit/51939238f648806330c67a0294b5b75c79956d75) Revert "errdefs: denote deprecation as a godoc comment" * [`ae80077e8`](https://github.com/containerd/containerd/commit/ae80077e80712ba27c162d85498bc7180710c210) Revert "golangci-lint: enable depguard for packages that moved" * [`32675f983`](https://github.com/containerd/containerd/commit/32675f9837d585d957849cabf72a4afd83cbd19c) Revert "remove imports of errdefs package" </p> </details> ### Changes from containerd/errdefs <details><summary>29 commits</summary> <p> * Add errdefs/pkg package ([containerd/errdefs#19](https://github.com/containerd/errdefs/pull/19)) * [`46a6522`](https://github.com/containerd/errdefs/commit/46a6522eb15b62d58e2eb429682318d5700b3123) Add errdefs/pkg package * Update GitHub Actions packages and runners ([containerd/errdefs#20](https://github.com/containerd/errdefs/pull/20)) * [`303a6ea`](https://github.com/containerd/errdefs/commit/303a6ea6abfdcbc4ba2b8bf44c1af25a5831caea) Update to Go 1.22.8 in CI * [`e70104e`](https://github.com/containerd/errdefs/commit/e70104e29d6783e914cbe12e7aeb6c6600d0d0a2) Upgrade to golangci-lint@v1.61.0 * [`ffe5586`](https://github.com/containerd/errdefs/commit/ffe5586c0581f6744ddebe87a82ca6f75bb0da78) Upgrade to golangci/golangci-lint-action@v6 * [`908b04b`](https://github.com/containerd/errdefs/commit/908b04b90d2a8dd2127469ebb66fb9dd60a780c5) Upgrade to actions/checkout@v4 * [`608b83c`](https://github.com/containerd/errdefs/commit/608b83c69071e34c689a7174d439a700a5b10aa8) Upgrade to actions/setup-go@v5 * [`8e82ae4`](https://github.com/containerd/errdefs/commit/8e82ae46fd7eecc2425ed55cd06c6738d31ab1ef) Upgrade macOS runner image to macOS 13 * Complete interface definitions for errors ([containerd/errdefs#18](https://github.com/containerd/errdefs/pull/18)) * [`41d12e1`](https://github.com/containerd/errdefs/commit/41d12e1db5cf9452436122e3c648e761453a112c) Complete interface definitions for errors * Add support for grpc error details and multiple errors ([containerd/errdefs#7](https://github.com/containerd/errdefs/pull/7)) * [`b9dce4d`](https://github.com/containerd/errdefs/commit/b9dce4d7bd5a514f38c0b47bcc4397b7ad7930f4) Add support for grpc error details * [`ffb0349`](https://github.com/containerd/errdefs/commit/ffb0349b41b940e9415587a6e12d571cd9a55fbe) Update Resolve function to support Is interface * Add support for custom error messages ([containerd/errdefs#10](https://github.com/containerd/errdefs/pull/10)) * [`dc9b20e`](https://github.com/containerd/errdefs/commit/dc9b20ea99092223cac03215dcaf6cd96f190a7c) Add support for custom error messages * Add a resolve error function to return first error ([containerd/errdefs#9](https://github.com/containerd/errdefs/pull/9)) * [`9f87502`](https://github.com/containerd/errdefs/commit/9f87502f13ad5c2758b225ff9bc10f3d9f932010) Add a resolve error function to return first error * Add stack support ([containerd/errdefs#8](https://github.com/containerd/errdefs/pull/8)) * [`f96dfda`](https://github.com/containerd/errdefs/commit/f96dfdab01b66580d2451fee46e05f002c9ea157) Add stack package for managing error stack traces * [`70fd2d7`](https://github.com/containerd/errdefs/commit/70fd2d7ff216659f37f286c42cf827f450d9d074) Add collapsible error type * [`6022faf`](https://github.com/containerd/errdefs/commit/6022faf38302b354934727fbe5a34851f9fb95b6) Add typeurl to go mod * Fix Cancelled interface typo ([containerd/errdefs#6](https://github.com/containerd/errdefs/pull/6)) * [`9564d8f`](https://github.com/containerd/errdefs/commit/9564d8ff88294257499cd16f16b8814ef78021b6) Fix Cancelled interface typo * Split gRPC and HTTP error utility into seperate packages ([containerd/errdefs#5](https://github.com/containerd/errdefs/pull/5)) * [`fd0e482`](https://github.com/containerd/errdefs/commit/fd0e4826e7aee061a8d584680686a8fade5bccc9) Split gRPC and HTTP error utility into seperate packages * Add more grpc types ([containerd/errdefs#3](https://github.com/containerd/errdefs/pull/3)) * [`f727cdb`](https://github.com/containerd/errdefs/commit/f727cdba81f149bab695a0d5cfb9a240e8f03ae9) Add HTTP status code and error type conversion * [`9854dc7`](https://github.com/containerd/errdefs/commit/9854dc7575de563e298661aec4079fe1766d9f43) Add more grpc error types </p> </details> ### Dependency Changes * **github.com/containerd/errdefs** v0.1.0 -> v0.3.0 Previous release can be found at [v1.7.22](https://github.com/containerd/containerd/releases/tag/v1.7.22)
-
v2.0.0-rc.505ee43a5 · ·
containerd 2.0.0-rc.5 Welcome to the v2.0.0-rc.5 release of containerd! *This is a pre-release of containerd* The first major release of containerd 2.x focuses on the continued stability of containerd's core feature set with an easy upgrade from containerd 1.x. This release includes the stabilization of new features added in the last 1.x release as well as the removal of features which were deprecated in 1.x. The goal is to support the vast community of containerd users well into the future along with their ever increasing deployment footprints and variety of use cases. ### Highlights * Add Update API for sandbox controller ([#9903](https://github.com/containerd/containerd/pull/9903)) * Configure otel from env instead of config.toml ([#8970](https://github.com/containerd/containerd/pull/8970)) * Enable NRI by default ([#9744](https://github.com/containerd/containerd/pull/9744)) * Add PluginInfo to introspection API ([#9442](https://github.com/containerd/containerd/pull/9442)) * Remove overlayfs volatile option on temp mounts ([#9555](https://github.com/containerd/containerd/pull/9555)) * Expose usage of deprecated features ([#9258](https://github.com/containerd/containerd/pull/9258)) * Use Intel ISA-L's igzip if available ([#9200](https://github.com/containerd/containerd/pull/9200)) * Introduce top level config migration ([#9223](https://github.com/containerd/containerd/pull/9223)) * Add image delete target ([#8989](https://github.com/containerd/containerd/pull/8989)) * Remove `LimitNOFILE` from `containerd.service` ([#8924](https://github.com/containerd/containerd/pull/8924)) * Add support for image expiration during garbage collection ([#9022](https://github.com/containerd/containerd/pull/9022)) * Reduce the contention between ref lock and boltdb lock in content store ([#8792](https://github.com/containerd/containerd/pull/8792)) * Remove "containerd.io/restart.logpath" label ([#8264](https://github.com/containerd/containerd/pull/8264)) * Remove `aufs` snapshotter ([#8263](https://github.com/containerd/containerd/pull/8263)) * Fix deadlock during NRI plugin registration ([containerd/nri#79](https://github.com/containerd/nri/pull/79)) * Fix deadlock when writing to pipe blocks ([containerd/ttrpc#168](https://github.com/containerd/ttrpc/pull/168)) #### Build and Release Toolchain * Generate attestation for artifacts during release ([#10543](https://github.com/containerd/containerd/pull/10543)) #### Container Runtime Interface (CRI) * Use 'UserSpecifiedImage' from CRI to set the image-name annotation ([#10747](https://github.com/containerd/containerd/pull/10747)) * Add support to set loopback to up ([#10238](https://github.com/containerd/containerd/pull/10238)) * Add support for multiple subscribers to CRI container events ([#9661](https://github.com/containerd/containerd/pull/9661)) * Enable CDI by default ([#9621](https://github.com/containerd/containerd/pull/9621)) * Remove non-sandboxed CRI implementation ([#9228](https://github.com/containerd/containerd/pull/9228)) * Add support for userns in stateless and stateful pods with idmap mounts (KEP-127, k8s >= 1.27) ([#8287](https://github.com/containerd/containerd/pull/8287)) * Use sandboxed CRI by default ([#8994](https://github.com/containerd/containerd/pull/8994)) * Implement RuntimeConfig CRI call ([#8722](https://github.com/containerd/containerd/pull/8722)) * Add support for user namespaces (KEP-127) ([#8803](https://github.com/containerd/containerd/pull/8803)) * Remove CRI v1alpha2 ([#8276](https://github.com/containerd/containerd/pull/8276)) #### Go client * Add api Go module and move all protos under api ([#10151](https://github.com/containerd/containerd/pull/10151)) * Move packages based on contributing guide ([#9365](https://github.com/containerd/containerd/pull/9365)) * Generalize plugin library ([#9214](https://github.com/containerd/containerd/pull/9214)) * Use github.com/containerd/log ([#9086](https://github.com/containerd/containerd/pull/9086)) #### Image Distribution * Support to syncfs after pull by using diff plugin ([#10284](https://github.com/containerd/containerd/pull/10284)) * Skip "unknown" in image platform listing ([#10257](https://github.com/containerd/containerd/pull/10257)) * Update unpacker to fetch all provided content ([#10202](https://github.com/containerd/containerd/pull/10202)) * Enable Transfer service API to support plain HTTP ([#10024](https://github.com/containerd/containerd/pull/10024)) * Enable Transfer service to use registry configuration directory ([#9908](https://github.com/containerd/containerd/pull/9908)) * Disable the support for Schema 1 images ([#9765](https://github.com/containerd/containerd/pull/9765)) * Update Transfer service to add OCI descriptors to Progress structure ([#9630](https://github.com/containerd/containerd/pull/9630)) * Update import and export to allow references to missing content ([#9554](https://github.com/containerd/containerd/pull/9554)) * Add option to perform syncfs after pull ([#9401](https://github.com/containerd/containerd/pull/9401)) * Add image verifier transfer service plugin system based on a binary directory ([#8493](https://github.com/containerd/containerd/pull/8493)) #### Runtime * Implement RuntimeStatus.features.supplemental_groups_policy from KEP-3619 ([#10410](https://github.com/containerd/containerd/pull/10410)) * Add pprof to runc-shim ([#10242](https://github.com/containerd/containerd/pull/10242)) * Provide runtime options in plugin info ([#10251](https://github.com/containerd/containerd/pull/10251)) * Store bootstrap parameters in sandbox metadata ([#9736](https://github.com/containerd/containerd/pull/9736)) * Update apparmor to allow confined runc to kill containers ([#10123](https://github.com/containerd/containerd/pull/10123)) * Support vsock connection to task api ([#9738](https://github.com/containerd/containerd/pull/9738)) * Update RuntimeDefault seccomp profile to disallow io_uring related syscalls ([#9320](https://github.com/containerd/containerd/pull/9320)) * Switch runc shim to task service v3 and fix restore ([#9233](https://github.com/containerd/containerd/pull/9233)) * Add sandboxer configuration and move sandbox controllers to plugins ([#8268](https://github.com/containerd/containerd/pull/8268)) * Add annotations to CreateSandbox request ([#8960](https://github.com/containerd/containerd/pull/8960)) * Add SandboxMetrics ([#8680](https://github.com/containerd/containerd/pull/8680)) * Publish sandbox events ([#8602](https://github.com/containerd/containerd/pull/8602)) * Remove the CriuPath field from runc's options ([#8279](https://github.com/containerd/containerd/pull/8279)) * Remove `io.containerd.runtime.v1.linux` and `io.containerd.runc.v1` ([#8262](https://github.com/containerd/containerd/pull/8262)) #### Security Advisories * [medium] RAPL accessible to a container [GHSA-7ww5-4wqc-m92c](https://github.com/containerd/containerd/security/advisories/GHSA-7ww5-4wqc-m92c) #### Breaking * Remove `disable_cgroup` from CRI config ([#10594](https://github.com/containerd/containerd/pull/10594)) * Disable the support for Schema 1 images ([#9765](https://github.com/containerd/containerd/pull/9765)) * Update RuntimeDefault seccomp profile to disallow io_uring related syscalls ([#9320](https://github.com/containerd/containerd/pull/9320)) * Move client to subpackage ([#9316](https://github.com/containerd/containerd/pull/9316)) * Remove `LimitNOFILE` from `containerd.service` ([#8924](https://github.com/containerd/containerd/pull/8924)) * Remove CRI v1alpha2 ([#8276](https://github.com/containerd/containerd/pull/8276)) * Remove `io.containerd.runtime.v1.linux` and `io.containerd.runc.v1` ([#8262](https://github.com/containerd/containerd/pull/8262)) * Remove "containerd.io/restart.logpath" label ([#8264](https://github.com/containerd/containerd/pull/8264)) * Remove `aufs` snapshotter ([#8263](https://github.com/containerd/containerd/pull/8263)) #### Deprecations * Update warnings for deprecated CRI config fields ([#10509](https://github.com/containerd/containerd/pull/10509)) * Add type alias for event Envelope ([#10279](https://github.com/containerd/containerd/pull/10279)) * Postpone removal of deprecated CRI config properties ([#9966](https://github.com/containerd/containerd/pull/9966)) * Deprecate go-plugin configuration option ([#9238](https://github.com/containerd/containerd/pull/9238)) * CNI conf_template in CRI is no longer deprecated ([#8637](https://github.com/containerd/containerd/pull/8637)) Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues. ### Contributors * Derek McGowan * Akihiro Suda * Maksym Pavlenko * Wei Fu * Phil Estes * Sebastiaan van Stijn * Samuel Karp * Stefan Berger * Kazuyoshi Kato * Rodrigo Campos * Danny Canter * Abel Feng * Akhil Mohan * Kirtana Ashok * Gabriel Adrian Samfira * Austin Vazquez * Iceber Gu * Krisztian Litkey * Kohei Tokunaga * Mike Brown * Jin Dong * Bjorn Neergaard * Justin Chadwell * rongfu.leng * James Sturtevant * Davanum Srinivas * Paul "TBBle" Hampson * Henry Wang * Brian Goff * Enrico Weigelt * Laura Brehm * Marat Radchenko * Paweł Gronowski * Shingo Omura * Hsing-Yu (David) Chen * Ilya Hanov * Cardy.Tang * Swagat Bora * Aditi Sharma * Amit Barve * Bryant Biggs * Evan Lezar * James Jenkins * Jordan Liggitt * Kay Yan * Markus Lehtonen * Nashwan Azhari * Shuaiyi Zhang * Vinayak Goyal * helen * Alexandru Matei * Anthony Nandaa * Avi Deitcher * Charity Kathure * Cory Snider * Ed Bartosh * Etienne Champetier * Kevin Parsons * Michael Zappa * Milas Bowman * ningmingxiao * yanggang * zounengren * Aditya Ramani * Adrian Reber * Amir M. Ghazanfari * Artem Khramov * Brad Davidson * Chen Yiyang * Christian Muehlhaeuser * Djordje Lukic * Edgar Lee * Eric Lin * Ethan Lowman * Jiang Liu * June Rhodes * Kern Walster * Lucas Rattz * Mahamed Ali * Maksim An * Michael Crosby * Peteris Rudzusiks * Sam Edwards * Samruddhi Khandale * Sascha Grunert * Steve Griffith * Tony Fang * VERNOU Cédric * Vishal Reddy Gurrala * hang.jiang * harshitasao * jerryzhuang * lengrongfu * roman-kiselenko * zhanluxianshen * Aaron Lehmann * Adrien Delorme * Alex Couture-Beil * Alex Ellis * Alex Rodriguez * Angelos Kolaitis * Antonio Huete Jimenez * Arash Haghighat * Ben Foster * Bin Tang * Bin Xin * BinBin He * Brennan Kinney * Changqing Li * ChengenH * ChengyuZhu6 * Christian Stewart * Colin O'Dell * Craig Ingram * Daisy Rong * David Porter * Derek Nola * Eng Zer Jun * Erikson Tung * Fabiano Fidêncio * Fahed Dorgaa * Gary McDonald * Iain Macdonald * James Lakin * Jan Dubois * Jaroslav Jindrak * Javier Maestro * Jian Wang * Jiongchi Yu * Julien Balestra * Kir Kolyshkin * Kirill A. Korinsky * Konstantin Khlebnikov * Mauri de Souza Meneguzzo * Pan Yibo * Paul Meyer * Qasim Sarfraz * Qiutong Song * Reinhard Tartler * Robbie Buxton * Robert-André Mauchin * Ruihua Wen * Sameer * Shengjing Zhu * Shiming Zhang * Shukui Yang * Talon * Tariq Ibrahim * Tianon Gravi * Tim Hockin * TinaMor * Tobias Klauser * Tomáš Virtus * Tõnis Tiigi * Wang Xinwen * William Chen * Xinyang Ge * Yibo Zhuang * Yury Gargay * Zechun Chen * Zhang Tianyang * Zoe * baijia * bo.jiang * bzsuni * charles-chenzz * chschumacher1994 * guangli.bao * guangwu * jinda.ljd * krglosse * pigletfly * rokkiter * wangxiang * zhangpeng * zhaojizhuang * 吴小白 * 张钰 * 沈陵 * 谭九鼎 ### Dependency Changes * **dario.cat/mergo** v1.0.1 **_new_** * **github.com/AdaLogics/go-fuzz-headers** 1f10f66a31bf -> ced1acdcaa24 * **github.com/AdamKorcz/go-118-fuzz-build** 5330a85ea652 -> 8075edf89bb0 * **github.com/Microsoft/go-winio** v0.6.0 -> v0.6.2 * **github.com/Microsoft/hcsshim** v0.10.0-rc.7 -> v0.12.6 * **github.com/cenkalti/backoff/v4** v4.2.0 -> v4.3.0 * **github.com/cespare/xxhash/v2** v2.2.0 -> v2.3.0 * **github.com/checkpoint-restore/checkpointctl** v1.2.1 **_new_** * **github.com/checkpoint-restore/go-criu/v7** v7.2.0 **_new_** * **github.com/cilium/ebpf** v0.9.1 -> v0.11.0 * **github.com/containerd/cgroups/v3** v3.0.1 -> v3.0.3 * **github.com/containerd/console** v1.0.3 -> v1.0.4 * **github.com/containerd/containerd/api** v1.8.0-rc.3 **_new_** * **github.com/containerd/continuity** v0.3.0 -> v0.4.3 * **github.com/containerd/errdefs** v0.1.0 **_new_** * **github.com/containerd/go-cni** v1.1.9 -> v1.1.10 * **github.com/containerd/go-runc** v1.0.0 -> v1.1.0 * **github.com/containerd/imgcrypt** v1.1.7 -> v1.2.0-rc1 * **github.com/containerd/log** v0.1.0 **_new_** * **github.com/containerd/nri** v0.3.0 -> v0.6.1 * **github.com/containerd/otelttrpc** ea5083fda723 **_new_** * **github.com/containerd/platforms** v0.2.1 **_new_** * **github.com/containerd/plugin** v0.1.0 **_new_** * **github.com/containerd/ttrpc** v1.2.1 -> v1.2.5 * **github.com/containerd/typeurl/v2** v2.1.0 -> v2.2.0 * **github.com/containernetworking/cni** v1.1.2 -> v1.2.3 * **github.com/containernetworking/plugins** v1.2.0 -> v1.5.1 * **github.com/containers/ocicrypt** v1.1.6 -> v1.2.0 * **github.com/cpuguy83/go-md2man/v2** v2.0.2 -> v2.0.4 * **github.com/davecgh/go-spew** v1.1.1 -> d8f796af33cc * **github.com/distribution/reference** v0.6.0 **_new_** * **github.com/emicklei/go-restful/v3** v3.10.1 -> v3.11.0 * **github.com/felixge/httpsnoop** v1.0.4 **_new_** * **github.com/fsnotify/fsnotify** v1.6.0 -> v1.7.0 * **github.com/fxamacker/cbor/v2** v2.7.0 **_new_** * **github.com/go-jose/go-jose/v4** v4.0.2 **_new_** * **github.com/go-logr/logr** v1.2.3 -> v1.4.2 * **github.com/golang/protobuf** v1.5.2 -> v1.5.4 * **github.com/google/go-cmp** v0.5.9 -> v0.6.0 * **github.com/google/uuid** v1.3.0 -> v1.6.0 * **github.com/gorilla/websocket** v1.5.0 **_new_** * **github.com/grpc-ecosystem/go-grpc-middleware/providers/prometheus** v1.0.1 **_new_** * **github.com/grpc-ecosystem/go-grpc-middleware/v2** v2.1.0 **_new_** * **github.com/grpc-ecosystem/grpc-gateway/v2** v2.7.0 -> v2.22.0 * **github.com/intel/goresctrl** v0.3.0 -> v0.7.0 * **github.com/klauspost/compress** v1.16.0 -> v1.17.10 * **github.com/mdlayher/socket** v0.4.1 **_new_** * **github.com/mdlayher/vsock** v1.2.1 **_new_** * **github.com/moby/spdystream** v0.2.0 -> v0.4.0 * **github.com/moby/sys/mountinfo** v0.6.2 -> v0.7.2 * **github.com/moby/sys/sequential** v0.5.0 -> v0.6.0 * **github.com/moby/sys/signal** v0.7.0 -> v0.7.1 * **github.com/moby/sys/symlink** v0.2.0 -> v0.3.0 * **github.com/moby/sys/user** v0.3.0 **_new_** * **github.com/moby/sys/userns** v0.1.0 **_new_** * **github.com/munnerz/goautoneg** a7dc8b61c822 **_new_** * **github.com/mxk/go-flowrate** cca7078d478f **_new_** * **github.com/opencontainers/image-spec** 3a7f492d3f1b -> v1.1.0 * **github.com/opencontainers/runtime-spec** v1.1.0-rc.1 -> v1.2.0 * **github.com/opencontainers/runtime-tools** 946c877fa809 -> 2e043c6bd626 * **github.com/pelletier/go-toml/v2** v2.2.3 **_new_** * **github.com/pmezard/go-difflib** v1.0.0 -> 5d4384ee4fb2 * **github.com/prometheus/client_golang** v1.14.0 -> v1.20.4 * **github.com/prometheus/client_model** v0.3.0 -> v0.6.1 * **github.com/prometheus/common** v0.37.0 -> v0.55.0 * **github.com/prometheus/procfs** v0.8.0 -> v0.15.1 * **github.com/sirupsen/logrus** v1.9.0 -> v1.9.3 * **github.com/stretchr/testify** v1.8.2 -> v1.9.0 * **github.com/urfave/cli/v2** v2.27.4 **_new_** * **github.com/vishvananda/netlink** v1.2.1-beta.2 -> v1.3.0 * **github.com/vishvananda/netns** 2eb08e3e575f -> v0.0.4 * **github.com/x448/float16** v0.8.4 **_new_** * **github.com/xrash/smetrics** 686a1a2994c1 **_new_** * **go.etcd.io/bbolt** v1.3.7 -> v1.3.11 * **go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc** v0.40.0 -> v0.55.0 * **go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp** v0.55.0 **_new_** * **go.opentelemetry.io/otel** v1.14.0 -> v1.30.0 * **go.opentelemetry.io/otel/exporters/otlp/otlptrace** v1.14.0 -> v1.30.0 * **go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc** v1.14.0 -> v1.30.0 * **go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp** v1.14.0 -> v1.30.0 * **go.opentelemetry.io/otel/metric** v0.37.0 -> v1.30.0 * **go.opentelemetry.io/otel/sdk** v1.14.0 -> v1.30.0 * **go.opentelemetry.io/otel/trace** v1.14.0 -> v1.30.0 * **go.opentelemetry.io/proto/otlp** v0.19.0 -> v1.3.1 * **golang.org/x/crypto** v0.1.0 -> v0.27.0 * **golang.org/x/exp** aacd6d4b4611 **_new_** * **golang.org/x/mod** v0.7.0 -> v0.21.0 * **golang.org/x/net** v0.7.0 -> v0.29.0 * **golang.org/x/oauth2** v0.4.0 -> v0.22.0 * **golang.org/x/sync** v0.1.0 -> v0.8.0 * **golang.org/x/sys** v0.6.0 -> v0.25.0 * **golang.org/x/term** v0.5.0 -> v0.24.0 * **golang.org/x/text** v0.7.0 -> v0.18.0 * **golang.org/x/time** 90d013bbcef8 -> v0.3.0 * **google.golang.org/genproto/googleapis/api** 8af14fe29dc1 **_new_** * **google.golang.org/genproto/googleapis/rpc** 8af14fe29dc1 **_new_** * **google.golang.org/grpc** v1.53.0 -> v1.67.0 * **google.golang.org/protobuf** v1.28.1 -> v1.34.2 * **k8s.io/api** v0.26.2 -> v0.31.1 * **k8s.io/apimachinery** v0.26.2 -> v0.31.1 * **k8s.io/apiserver** v0.26.2 -> v0.31.1 * **k8s.io/client-go** v0.26.2 -> v0.31.1 * **k8s.io/component-base** v0.26.2 -> v0.31.1 * **k8s.io/cri-api** v0.26.2 -> v0.32.0-alpha.0 * **k8s.io/klog/v2** v2.90.1 -> v2.130.1 * **k8s.io/kubelet** v0.31.1 **_new_** * **k8s.io/utils** a5ecb0141aa5 -> 18e509b52bc8 * **sigs.k8s.io/json** f223a00ba0e2 -> bc3834ca7abd * **sigs.k8s.io/structured-merge-diff/v4** v4.2.3 -> v4.4.1 * **sigs.k8s.io/yaml** v1.3.0 -> v1.4.0 * **tags.cncf.io/container-device-interface** v0.8.0 **_new_** * **tags.cncf.io/container-device-interface/specs-go** v0.8.0 **_new_** Previous release can be found at [v1.7.0](https://github.com/containerd/containerd/releases/tag/v1.7.0) ### Which file should I download? * `containerd-<VERSION>-<OS>-<ARCH>.tar.gz`: ✅Recommended. Dynamically linked with glibc 2.31 (Ubuntu 20.04). * `containerd-static-<VERSION>-<OS>-<ARCH>.tar.gz`: Statically linked. Expected to be used on non-glibc Linux distributions. Not position-independent. In addition to containerd, typically you will have to install [runc](https://github.com/opencontainers/runc/releases) and [CNI plugins](https://github.com/containernetworking/plugins/releases) from their official sites too. See also the [Getting Started](https://github.com/containerd/containerd/blob/main/docs/getting-started.md) documentation.
-
v1.7.227f7fdf5f · ·
containerd 1.7.22 Welcome to the v1.7.22 release of containerd! The twenty-second patch release for containerd 1.7 contains various fixes and updates. ### Highlights #### Build and Release Toolchain * Update to go1.22.7, go1.23.1 ([#10679](https://github.com/containerd/containerd/pull/10679)) #### Container Runtime Interface (CRI) * Cumulative stats can't decrease ([#10670](https://github.com/containerd/containerd/pull/10670)) #### Runtime * Fix bug where init exits were being dropped ([#10675](https://github.com/containerd/containerd/pull/10675)) * Update runc binary to 1.1.14 ([#10668](https://github.com/containerd/containerd/pull/10668)) Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues. ### Contributors * Samuel Karp * James Sturtevant * Laura Brehm * Maksym Pavlenko * Akhil Mohan * Akihiro Suda * Cory Snider * Derek McGowan * Sebastiaan van Stijn ### Changes <details><summary>16 commits</summary> <p> * Prepare release notes for v1.7.22 ([#10684](https://github.com/containerd/containerd/pull/10684)) * [`43174ee6a`](https://github.com/containerd/containerd/commit/43174ee6addb26a0e52f3fbed4a76bbbcc151ae0) Prepare release notes for v1.7.22 * integration: regression test for issue 10589 ([#10682](https://github.com/containerd/containerd/pull/10682)) * [`0c4ba21d8`](https://github.com/containerd/containerd/commit/0c4ba21d855ce81b2b946d2f6779c1dc529da506) integration: regression test for issue 10589 * [`1cc2cfa4b`](https://github.com/containerd/containerd/commit/1cc2cfa4bf042e8c202f44903a6445bd1f432a5b) fifosync: cross-process synchronization * Fix bug where init exits were being dropped ([#10675](https://github.com/containerd/containerd/pull/10675)) * [`f338717ed`](https://github.com/containerd/containerd/commit/f338717ed4fdc06d289b8d6e2862eeb3035b32da) runc-shim: handle pending execs as running * [`686c69490`](https://github.com/containerd/containerd/commit/686c69490d0bb9ed6513b3ed2f2502ec65b11d75) runc-shim: refuse to start execs after init exits * [`760935e52`](https://github.com/containerd/containerd/commit/760935e5211df1b6681fcf14d62804710fe512cd) runc-shim: remove misleading comment * Update to go1.22.7, go1.23.1 ([#10679](https://github.com/containerd/containerd/pull/10679)) * [`19d678f73`](https://github.com/containerd/containerd/commit/19d678f732da9fcf9445a65ece4ad5ad3e993580) update to go1.22.7, go1.23.1 * Cumulative stats can't decrease ([#10670](https://github.com/containerd/containerd/pull/10670)) * [`3658d5b40`](https://github.com/containerd/containerd/commit/3658d5b403bbcb92f994cfdcd03b6fca1acb87aa) Include change in cri server * [`88d001c74`](https://github.com/containerd/containerd/commit/88d001c749a8b90416460c776196c88f0fc26977) Cumulative stats can't decrease * Update runc binary to 1.1.14 ([#10668](https://github.com/containerd/containerd/pull/10668)) * [`33e8a2005`](https://github.com/containerd/containerd/commit/33e8a20050808a9d9300269d2ce705ec934154e3) update runc binary to 1.1.14 </p> </details> ### Dependency Changes This release has no dependency changes Previous release can be found at [v1.7.21](https://github.com/containerd/containerd/releases/tag/v1.7.21)
-
v1.6.3688c3d9bc · ·
containerd 1.6.36 Welcome to the v1.6.36 release of containerd! The thirty-sixth patch release for containerd 1.6 contains various fixes and updates. ### Highlights * Ensure the CRIAPIV1Alpha2 warning's lastOccurrence is accurate ([#10582](https://github.com/containerd/containerd/pull/10582)) #### Build and Release Toolchain * Update to go1.22.7, go1.23.1 ([#10680](https://github.com/containerd/containerd/pull/10680)) #### Container Runtime Interface (CRI) * Cumulative stats can't decrease ([#10671](https://github.com/containerd/containerd/pull/10671)) * Fix memory leak with `kubectl exec` >= 1.30.0 ([#10574](https://github.com/containerd/containerd/pull/10574)) #### Runtime * Fix bug where init exits were being dropped ([#10676](https://github.com/containerd/containerd/pull/10676)) * Update runc binary to 1.1.14 ([#10667](https://github.com/containerd/containerd/pull/10667)) #### Deprecations * Ensure the CRIAPIV1Alpha2 warning's lastOccurrence is accurate ([#10582](https://github.com/containerd/containerd/pull/10582)) Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues. ### Contributors * Samuel Karp * Davanum Srinivas * Akhil Mohan * Akihiro Suda * Laura Brehm * Sebastiaan van Stijn * Chris Henzie * Cory Snider * Derek McGowan * James Sturtevant * Maksym Pavlenko * Mike Brown * Phil Estes * Shengjing Zhu ### Changes <details><summary>32 commits</summary> <p> * Prepare release notes for v1.6.36 ([#10685](https://github.com/containerd/containerd/pull/10685)) * [`7fee84514`](https://github.com/containerd/containerd/commit/7fee84514d3e87bf39e0f811044e6f91c30d3b72) Prepare release notes for v1.6.36 * integration: regression test for issue 10589 ([#10683](https://github.com/containerd/containerd/pull/10683)) * [`ab9fedde2`](https://github.com/containerd/containerd/commit/ab9fedde2888c382e8eeec875622620a5b90b027) integration: regression test for issue 10589 * [`d0989e952`](https://github.com/containerd/containerd/commit/d0989e952d28dfcbe94f64b1ea40897fc7834e93) fifosync: cross-process synchronization * Fix bug where init exits were being dropped ([#10676](https://github.com/containerd/containerd/pull/10676)) * [`c9617c321`](https://github.com/containerd/containerd/commit/c9617c321f016fef7678f5333075542e6e565cbb) runc-shim: handle pending execs as running * [`15ad6ac67`](https://github.com/containerd/containerd/commit/15ad6ac67216a04fcf5c996e0e10b79d9a3bff6d) runc-shim: refuse to start execs after init exits * [`7e6a18c24`](https://github.com/containerd/containerd/commit/7e6a18c2472b036eefbb8be6301447391722cc55) runc-shim: remove misleading comment * Update to go1.22.7, go1.23.1 ([#10680](https://github.com/containerd/containerd/pull/10680)) * [`951af274c`](https://github.com/containerd/containerd/commit/951af274c4154f353a624b8004c400d6aed13088) update to go1.22.7, go1.23.1 * Cumulative stats can't decrease ([#10671](https://github.com/containerd/containerd/pull/10671)) * [`c8e5b1eb6`](https://github.com/containerd/containerd/commit/c8e5b1eb692dbe1439d668f31caebf7c77f08cff) Cumulative stats can't decrease * move builds to go1.22 and testing to go1.23 ([#10595](https://github.com/containerd/containerd/pull/10595)) * [`0bbc90aee`](https://github.com/containerd/containerd/commit/0bbc90aee447736b2cdc9e79bbb447442971e2d7) use git clone to install gogo/protobuf * [`383b2dcd1`](https://github.com/containerd/containerd/commit/383b2dcd1f3f55c46d388e6c0f116740e01b61c4) move builds to go1.22 and testing to go1.23 * Update runc binary to 1.1.14 ([#10667](https://github.com/containerd/containerd/pull/10667)) * [`fd70da38b`](https://github.com/containerd/containerd/commit/fd70da38ba59bed7476e05aca59f51f130149f51) update runc binary to 1.1.14 * Fix TestNewBinaryIOCleanup on Go 1.23 and Linux 5.4 ([#10591](https://github.com/containerd/containerd/pull/10591)) * [`4fd7d4eef`](https://github.com/containerd/containerd/commit/4fd7d4eef143baadfad5f37080692bada83d7702) Fix TestNewBinaryIOCleanup on Go 1.23 and Linux 5.4 * Fix memory leak with `kubectl exec` >= 1.30.0 ([#10574](https://github.com/containerd/containerd/pull/10574)) * [`6f9efd3a9`](https://github.com/containerd/containerd/commit/6f9efd3a909dbdaed4edbdb5392861379f39cb0d) hide wsstream under internal/ to prevent external use * [`4694b84e8`](https://github.com/containerd/containerd/commit/4694b84e825cb33c82a6fa752844a4211e09b351) golangci-lint should only look for problems in new code * [`05c2b1413`](https://github.com/containerd/containerd/commit/05c2b141386d5cb59aabcae1aee9d45297056436) Run go mod tidy * [`a7b0c015d`](https://github.com/containerd/containerd/commit/a7b0c015d20695cfdcc125c961a1900ba0ee5a84) Add copyright headers * [`78f079926`](https://github.com/containerd/containerd/commit/78f079926886632c77ac642f69f92b0cec90365a) switch over references to the new package * [`64430d636`](https://github.com/containerd/containerd/commit/64430d63666514900bdfabb96c912a1920278367) Fix up some constant references * [`a37b08102`](https://github.com/containerd/containerd/commit/a37b081023f06258a9b314366e1df9acbcaadcb8) Copy over wsstream from k8s v1.31.0-rc.1 release * Ensure the CRIAPIV1Alpha2 warning's lastOccurrence is accurate ([#10582](https://github.com/containerd/containerd/pull/10582)) * [`d727961d2`](https://github.com/containerd/containerd/commit/d727961d2ded6843c66eb52c5c6efcc7a9b9a9ff) Update CRIAPIV1Alpha2 warning lastOccurrence every call * update to go1.21.13 / go1.22.6 ([#10577](https://github.com/containerd/containerd/pull/10577)) * [`be0f0db07`](https://github.com/containerd/containerd/commit/be0f0db070cdc71344403634177f6c57f88510ca) update to go1.21.13 / go1.22.6 </p> </details> ### Dependency Changes This release has no dependency changes Previous release can be found at [v1.6.35](https://github.com/containerd/containerd/releases/tag/v1.6.35)
-
v2.0.0-rc.4fa5bf66f · ·
containerd 2.0.0-rc.4 Welcome to the v2.0.0-rc.4 release of containerd! *This is a pre-release of containerd* The first major release of containerd 2.x focuses on the continued stability of containerd's core feature set with an easy upgrade from containerd 1.x. This release includes the stabilization of new features added in the last 1.x release as well as the removal of features which were deprecated in 1.x. The goal is to support the vast community of containerd users well into the future along with their ever increasing deployment footprints and variety of use cases. ### Highlights * Add Update API for sandbox controller ([#9903](https://github.com/containerd/containerd/pull/9903)) * Configure otel from env instead of config.toml ([#8970](https://github.com/containerd/containerd/pull/8970)) * Enable NRI by default ([#9744](https://github.com/containerd/containerd/pull/9744)) * Add PluginInfo to introspection API ([#9442](https://github.com/containerd/containerd/pull/9442)) * Remove overlayfs volatile option on temp mounts ([#9555](https://github.com/containerd/containerd/pull/9555)) * Expose usage of deprecated features ([#9258](https://github.com/containerd/containerd/pull/9258)) * Use Intel ISA-L's igzip if available ([#9200](https://github.com/containerd/containerd/pull/9200)) * Introduce top level config migration ([#9223](https://github.com/containerd/containerd/pull/9223)) * Add image delete target ([#8989](https://github.com/containerd/containerd/pull/8989)) * Remove `LimitNOFILE` from `containerd.service` ([#8924](https://github.com/containerd/containerd/pull/8924)) * Add support for image expiration during garbage collection ([#9022](https://github.com/containerd/containerd/pull/9022)) * Reduce the contention between ref lock and boltdb lock in content store ([#8792](https://github.com/containerd/containerd/pull/8792)) * Remove "containerd.io/restart.logpath" label ([#8264](https://github.com/containerd/containerd/pull/8264)) * Remove `aufs` snapshotter ([#8263](https://github.com/containerd/containerd/pull/8263)) * Fix deadlock during NRI plugin registration ([containerd/nri#79](https://github.com/containerd/nri/pull/79)) * Fix deadlock when writing to pipe blocks ([containerd/ttrpc#168](https://github.com/containerd/ttrpc/pull/168)) #### Build and Release Toolchain * Generate attestation for artifacts during release ([#10543](https://github.com/containerd/containerd/pull/10543)) #### Container Runtime Interface (CRI) * Add support to set loopback to up ([#10238](https://github.com/containerd/containerd/pull/10238)) * Add support for multiple subscribers to CRI container events ([#9661](https://github.com/containerd/containerd/pull/9661)) * Enable CDI by default ([#9621](https://github.com/containerd/containerd/pull/9621)) * Remove non-sandboxed CRI implementation ([#9228](https://github.com/containerd/containerd/pull/9228)) * Add support for userns in stateless and stateful pods with idmap mounts (KEP-127, k8s >= 1.27) ([#8287](https://github.com/containerd/containerd/pull/8287)) * Use sandboxed CRI by default ([#8994](https://github.com/containerd/containerd/pull/8994)) * Implement RuntimeConfig CRI call ([#8722](https://github.com/containerd/containerd/pull/8722)) * Add support for user namespaces (KEP-127) ([#8803](https://github.com/containerd/containerd/pull/8803)) * Remove CRI v1alpha2 ([#8276](https://github.com/containerd/containerd/pull/8276)) #### Go client * Add api Go module and move all protos under api ([#10151](https://github.com/containerd/containerd/pull/10151)) * Move packages based on contributing guide ([#9365](https://github.com/containerd/containerd/pull/9365)) * Generalize plugin library ([#9214](https://github.com/containerd/containerd/pull/9214)) * Use github.com/containerd/log ([#9086](https://github.com/containerd/containerd/pull/9086)) #### Image Distribution * Support to syncfs after pull by using diff plugin ([#10284](https://github.com/containerd/containerd/pull/10284)) * Skip "unknown" in image platform listing ([#10257](https://github.com/containerd/containerd/pull/10257)) * Update unpacker to fetch all provided content ([#10202](https://github.com/containerd/containerd/pull/10202)) * Enable Transfer service API to support plain HTTP ([#10024](https://github.com/containerd/containerd/pull/10024)) * Enable Transfer service to use registry configuration directory ([#9908](https://github.com/containerd/containerd/pull/9908)) * Disable the support for Schema 1 images ([#9765](https://github.com/containerd/containerd/pull/9765)) * Update Transfer service to add OCI descriptors to Progress structure ([#9630](https://github.com/containerd/containerd/pull/9630)) * Update import and export to allow references to missing content ([#9554](https://github.com/containerd/containerd/pull/9554)) * Add option to perform syncfs after pull ([#9401](https://github.com/containerd/containerd/pull/9401)) * Add image verifier transfer service plugin system based on a binary directory ([#8493](https://github.com/containerd/containerd/pull/8493)) #### Runtime * Implement RuntimeStatus.features.supplemental_groups_policy from KEP-3619 ([#10410](https://github.com/containerd/containerd/pull/10410)) * Add pprof to runc-shim ([#10242](https://github.com/containerd/containerd/pull/10242)) * Provide runtime options in plugin info ([#10251](https://github.com/containerd/containerd/pull/10251)) * Store bootstrap parameters in sandbox metadata ([#9736](https://github.com/containerd/containerd/pull/9736)) * Update apparmor to allow confined runc to kill containers ([#10123](https://github.com/containerd/containerd/pull/10123)) * Support vsock connection to task api ([#9738](https://github.com/containerd/containerd/pull/9738)) * Update RuntimeDefault seccomp profile to disallow io_uring related syscalls ([#9320](https://github.com/containerd/containerd/pull/9320)) * Switch runc shim to task service v3 and fix restore ([#9233](https://github.com/containerd/containerd/pull/9233)) * Add sandboxer configuration and move sandbox controllers to plugins ([#8268](https://github.com/containerd/containerd/pull/8268)) * Add annotations to CreateSandbox request ([#8960](https://github.com/containerd/containerd/pull/8960)) * Add SandboxMetrics ([#8680](https://github.com/containerd/containerd/pull/8680)) * Publish sandbox events ([#8602](https://github.com/containerd/containerd/pull/8602)) * Remove the CriuPath field from runc's options ([#8279](https://github.com/containerd/containerd/pull/8279)) * Remove support for config.toml `version = 1` ([#8275](https://github.com/containerd/containerd/pull/8275)) * Remove `io.containerd.runtime.v1.linux` and `io.containerd.runc.v1` ([#8262](https://github.com/containerd/containerd/pull/8262)) #### Security Advisories * [medium] RAPL accessible to a container [GHSA-7ww5-4wqc-m92c](https://github.com/containerd/containerd/security/advisories/GHSA-7ww5-4wqc-m92c) #### Breaking * Disable the support for Schema 1 images ([#9765](https://github.com/containerd/containerd/pull/9765)) * Update RuntimeDefault seccomp profile to disallow io_uring related syscalls ([#9320](https://github.com/containerd/containerd/pull/9320)) * Move client to subpackage ([#9316](https://github.com/containerd/containerd/pull/9316)) * Remove `LimitNOFILE` from `containerd.service` ([#8924](https://github.com/containerd/containerd/pull/8924)) * Remove CRI v1alpha2 ([#8276](https://github.com/containerd/containerd/pull/8276)) * Remove `io.containerd.runtime.v1.linux` and `io.containerd.runc.v1` ([#8262](https://github.com/containerd/containerd/pull/8262)) * Remove "containerd.io/restart.logpath" label ([#8264](https://github.com/containerd/containerd/pull/8264)) * Remove `aufs` snapshotter ([#8263](https://github.com/containerd/containerd/pull/8263)) #### Deprecations * Update warnings for deprecated CRI config fields ([#10509](https://github.com/containerd/containerd/pull/10509)) * Add type alias for event Envelope ([#10279](https://github.com/containerd/containerd/pull/10279)) * Postpone removal of deprecated CRI config properties ([#9966](https://github.com/containerd/containerd/pull/9966)) * Deprecate go-plugin configuration option ([#9238](https://github.com/containerd/containerd/pull/9238)) * CNI conf_template in CRI is no longer deprecated ([#8637](https://github.com/containerd/containerd/pull/8637)) Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues. ### Contributors * Derek McGowan * Akihiro Suda * Maksym Pavlenko * Wei Fu * Phil Estes * Sebastiaan van Stijn * Samuel Karp * Stefan Berger * Kazuyoshi Kato * Rodrigo Campos * Danny Canter * Abel Feng * Akhil Mohan * Kirtana Ashok * Gabriel Adrian Samfira * Austin Vazquez * Iceber Gu * Kohei Tokunaga * Mike Brown * Krisztian Litkey * Jin Dong * Bjorn Neergaard * Justin Chadwell * rongfu.leng * James Sturtevant * Paul "TBBle" Hampson * Davanum Srinivas * Enrico Weigelt * Henry Wang * Brian Goff * Paweł Gronowski * Shingo Omura * Hsing-Yu (David) Chen * Ilya Hanov * Laura Brehm * Marat Radchenko * Cardy.Tang * Swagat Bora * Aditi Sharma * Amit Barve * Bryant Biggs * Evan Lezar * James Jenkins * Jordan Liggitt * Kay Yan * Markus Lehtonen * Nashwan Azhari * Shuaiyi Zhang * Vinayak Goyal * helen * Alexandru Matei * Anthony Nandaa * Avi Deitcher * Charity Kathure * Ed Bartosh * Etienne Champetier * Kevin Parsons * Michael Zappa * Milas Bowman * ningmingxiao * yanggang * Aditya Ramani * Adrian Reber * Amir M. Ghazanfari * Artem Khramov * Brad Davidson * Chen Yiyang * Christian Muehlhaeuser * Cory Snider * Djordje Lukic * Edgar Lee * Eric Lin * Ethan Lowman * Jiang Liu * June Rhodes * Kern Walster * Lucas Rattz * Mahamed Ali * Maksim An * Michael Crosby * Peteris Rudzusiks * Sam Edwards * Samruddhi Khandale * Sascha Grunert * Steve Griffith * Tony Fang * VERNOU Cédric * Vishal Reddy Gurrala * hang.jiang * harshitasao * jerryzhuang * lengrongfu * roman-kiselenko * zhanluxianshen * zounengren * Aaron Lehmann * Adrien Delorme * Alex Couture-Beil * Alex Ellis * Alex Rodriguez * Angelos Kolaitis * Antonio Huete Jimenez * Arash Haghighat * Ben Foster * Bin Tang * Bin Xin * BinBin He * Brennan Kinney * Changqing Li * ChengenH * ChengyuZhu6 * Christian Stewart * Colin O'Dell * Craig Ingram * Daisy Rong * David Porter * Derek Nola * Eng Zer Jun * Erikson Tung * Fabiano Fidêncio * Fahed Dorgaa * Gary McDonald * Iain Macdonald * James Lakin * Jan Dubois * Jaroslav Jindrak * Javier Maestro * Jian Wang * Jiongchi Yu * Julien Balestra * Kirill A. Korinsky * Konstantin Khlebnikov * Mauri de Souza Meneguzzo * Pan Yibo * Paul Meyer * Qasim Sarfraz * Qiutong Song * Reinhard Tartler * Robbie Buxton * Robert-André Mauchin * Ruihua Wen * Shengjing Zhu * Shukui Yang * Talon * Tariq Ibrahim * Tianon Gravi * Tim Hockin * TinaMor * Tobias Klauser * Tomáš Virtus * Tõnis Tiigi * Wang Xinwen * William Chen * Xinyang Ge * Yibo Zhuang * Yury Gargay * Zechun Chen * Zhang Tianyang * Zoe * baijia * bzsuni * charles-chenzz * chschumacher1994 * guangli.bao * guangwu * krglosse * pigletfly * rokkiter * wangxiang * zhangpeng * zhaojizhuang * 吴小白 * 张钰 * 沈陵 * 谭九鼎 ### Dependency Changes * **dario.cat/mergo** v1.0.1 **_new_** * **github.com/AdaLogics/go-fuzz-headers** 1f10f66a31bf -> ced1acdcaa24 * **github.com/AdamKorcz/go-118-fuzz-build** 5330a85ea652 -> 8075edf89bb0 * **github.com/Microsoft/go-winio** v0.6.0 -> v0.6.2 * **github.com/Microsoft/hcsshim** v0.10.0-rc.7 -> v0.12.6 * **github.com/cenkalti/backoff/v4** v4.2.0 -> v4.3.0 * **github.com/cespare/xxhash/v2** v2.2.0 -> v2.3.0 * **github.com/checkpoint-restore/checkpointctl** v1.2.1 **_new_** * **github.com/checkpoint-restore/go-criu/v7** v7.1.0 **_new_** * **github.com/cilium/ebpf** v0.9.1 -> v0.11.0 * **github.com/containerd/cgroups/v3** v3.0.1 -> v3.0.3 * **github.com/containerd/console** v1.0.3 -> v1.0.4 * **github.com/containerd/containerd/api** v1.8.0-rc.3 **_new_** * **github.com/containerd/continuity** v0.3.0 -> v0.4.3 * **github.com/containerd/errdefs** v0.1.0 **_new_** * **github.com/containerd/go-cni** v1.1.9 -> v1.1.10 * **github.com/containerd/go-runc** v1.0.0 -> v1.1.0 * **github.com/containerd/imgcrypt** v1.1.7 -> v1.2.0-rc1 * **github.com/containerd/log** v0.1.0 **_new_** * **github.com/containerd/nri** v0.3.0 -> v0.6.1 * **github.com/containerd/platforms** v0.2.1 **_new_** * **github.com/containerd/plugin** v0.1.0 **_new_** * **github.com/containerd/ttrpc** v1.2.1 -> v1.2.5 * **github.com/containerd/typeurl/v2** v2.1.0 -> v2.2.0 * **github.com/containernetworking/cni** v1.1.2 -> v1.2.3 * **github.com/containernetworking/plugins** v1.2.0 -> v1.5.1 * **github.com/containers/ocicrypt** v1.1.6 -> v1.2.0 * **github.com/cpuguy83/go-md2man/v2** v2.0.2 -> v2.0.4 * **github.com/davecgh/go-spew** v1.1.1 -> d8f796af33cc * **github.com/distribution/reference** v0.6.0 **_new_** * **github.com/emicklei/go-restful/v3** v3.10.1 -> v3.11.0 * **github.com/felixge/httpsnoop** v1.0.4 **_new_** * **github.com/fsnotify/fsnotify** v1.6.0 -> v1.7.0 * **github.com/fxamacker/cbor/v2** v2.7.0 **_new_** * **github.com/go-jose/go-jose/v4** v4.0.2 **_new_** * **github.com/go-logr/logr** v1.2.3 -> v1.4.2 * **github.com/golang/protobuf** v1.5.2 -> v1.5.4 * **github.com/google/go-cmp** v0.5.9 -> v0.6.0 * **github.com/google/uuid** v1.3.0 -> v1.6.0 * **github.com/gorilla/websocket** v1.5.0 **_new_** * **github.com/grpc-ecosystem/go-grpc-middleware/providers/prometheus** v1.0.1 **_new_** * **github.com/grpc-ecosystem/go-grpc-middleware/v2** v2.1.0 **_new_** * **github.com/grpc-ecosystem/grpc-gateway/v2** v2.7.0 -> v2.20.0 * **github.com/intel/goresctrl** v0.3.0 -> v0.7.0 * **github.com/klauspost/compress** v1.16.0 -> v1.17.9 * **github.com/mdlayher/socket** v0.4.1 **_new_** * **github.com/mdlayher/vsock** v1.2.1 **_new_** * **github.com/moby/spdystream** v0.2.0 -> v0.4.0 * **github.com/moby/sys/mountinfo** v0.6.2 -> v0.7.2 * **github.com/moby/sys/sequential** v0.5.0 -> v0.6.0 * **github.com/moby/sys/signal** v0.7.0 -> v0.7.1 * **github.com/moby/sys/symlink** v0.2.0 -> v0.3.0 * **github.com/moby/sys/user** v0.3.0 **_new_** * **github.com/moby/sys/userns** v0.1.0 **_new_** * **github.com/munnerz/goautoneg** a7dc8b61c822 **_new_** * **github.com/mxk/go-flowrate** cca7078d478f **_new_** * **github.com/opencontainers/image-spec** 3a7f492d3f1b -> v1.1.0 * **github.com/opencontainers/runtime-spec** v1.1.0-rc.1 -> v1.2.0 * **github.com/opencontainers/runtime-tools** 946c877fa809 -> 2e043c6bd626 * **github.com/pelletier/go-toml/v2** v2.2.3 **_new_** * **github.com/pmezard/go-difflib** v1.0.0 -> 5d4384ee4fb2 * **github.com/prometheus/client_golang** v1.14.0 -> v1.20.1 * **github.com/prometheus/client_model** v0.3.0 -> v0.6.1 * **github.com/prometheus/common** v0.37.0 -> v0.55.0 * **github.com/prometheus/procfs** v0.8.0 -> v0.15.1 * **github.com/sirupsen/logrus** v1.9.0 -> v1.9.3 * **github.com/stretchr/testify** v1.8.2 -> v1.9.0 * **github.com/urfave/cli/v2** v2.27.4 **_new_** * **github.com/vishvananda/netns** 2eb08e3e575f -> v0.0.4 * **github.com/x448/float16** v0.8.4 **_new_** * **github.com/xrash/smetrics** 686a1a2994c1 **_new_** * **go.etcd.io/bbolt** v1.3.7 -> v1.3.11 * **go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc** v0.40.0 -> v0.53.0 * **go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp** v0.53.0 **_new_** * **go.opentelemetry.io/otel** v1.14.0 -> v1.28.0 * **go.opentelemetry.io/otel/exporters/otlp/otlptrace** v1.14.0 -> v1.28.0 * **go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc** v1.14.0 -> v1.28.0 * **go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp** v1.14.0 -> v1.28.0 * **go.opentelemetry.io/otel/metric** v0.37.0 -> v1.28.0 * **go.opentelemetry.io/otel/sdk** v1.14.0 -> v1.28.0 * **go.opentelemetry.io/otel/trace** v1.14.0 -> v1.28.0 * **go.opentelemetry.io/proto/otlp** v0.19.0 -> v1.3.1 * **golang.org/x/crypto** v0.1.0 -> v0.25.0 * **golang.org/x/exp** aacd6d4b4611 **_new_** * **golang.org/x/mod** v0.7.0 -> v0.20.0 * **golang.org/x/net** v0.7.0 -> v0.27.0 * **golang.org/x/oauth2** v0.4.0 -> v0.21.0 * **golang.org/x/sync** v0.1.0 -> v0.8.0 * **golang.org/x/sys** v0.6.0 -> v0.24.0 * **golang.org/x/term** v0.5.0 -> v0.22.0 * **golang.org/x/text** v0.7.0 -> v0.16.0 * **golang.org/x/time** 90d013bbcef8 -> v0.3.0 * **google.golang.org/genproto/googleapis/api** f6361c86f094 **_new_** * **google.golang.org/genproto/googleapis/rpc** f6361c86f094 **_new_** * **google.golang.org/grpc** v1.53.0 -> v1.65.0 * **google.golang.org/protobuf** v1.28.1 -> v1.34.2 * **k8s.io/api** v0.26.2 -> v0.31.0 * **k8s.io/apimachinery** v0.26.2 -> v0.31.0 * **k8s.io/apiserver** v0.26.2 -> v0.31.0 * **k8s.io/client-go** v0.26.2 -> v0.31.0 * **k8s.io/component-base** v0.26.2 -> v0.31.0 * **k8s.io/cri-api** v0.26.2 -> v0.32.0-alpha.0 * **k8s.io/klog/v2** v2.90.1 -> v2.130.1 * **k8s.io/kubelet** v0.31.0 **_new_** * **k8s.io/utils** a5ecb0141aa5 -> 18e509b52bc8 * **sigs.k8s.io/json** f223a00ba0e2 -> bc3834ca7abd * **sigs.k8s.io/structured-merge-diff/v4** v4.2.3 -> v4.4.1 * **sigs.k8s.io/yaml** v1.3.0 -> v1.4.0 * **tags.cncf.io/container-device-interface** v0.8.0 **_new_** * **tags.cncf.io/container-device-interface/specs-go** v0.8.0 **_new_** Previous release can be found at [v1.7.0](https://github.com/containerd/containerd/releases/tag/v1.7.0) ### Which file should I download? * `containerd-<VERSION>-<OS>-<ARCH>.tar.gz`: ✅Recommended. Dynamically linked with glibc 2.31 (Ubuntu 20.04). * `containerd-static-<VERSION>-<OS>-<ARCH>.tar.gz`: Statically linked. Expected to be used on non-glibc Linux distributions. Not position-independent. In addition to containerd, typically you will have to install [runc](https://github.com/opencontainers/runc/releases) and [CNI plugins](https://github.com/containernetworking/plugins/releases) from their official sites too. See also the [Getting Started](https://github.com/containerd/containerd/blob/main/docs/getting-started.md) documentation.
-
v1.7.2147273190 · ·
containerd 1.7.21 Welcome to the v1.7.21 release of containerd! The twenty-first patch release for containerd 1.7 contains various fixes and updates. ### Highlights * Regenerate introspection UUID if state is empty ([#10510](https://github.com/containerd/containerd/pull/10510)) * Set stderr to empty string when using terminal on Windows ([#10499](https://github.com/containerd/containerd/pull/10499)) #### Build and Release Toolchain * Move builds to Go 1.22 and add support for testing with 1.23 ([#10596](https://github.com/containerd/containerd/pull/10596)) #### Container Runtime Interface (CRI) * Borrow latest wsstream from k8s v1.31.x to 1.7 ([#10575](https://github.com/containerd/containerd/pull/10575)) * Ensure the CRIAPIV1Alpha2 warning's lastOccurrence is accurate ([#10571](https://github.com/containerd/containerd/pull/10571)) * Make `StopContainer` idempotent ([#10528](https://github.com/containerd/containerd/pull/10528)) * Make `StopPodSandbox` idempotent ([#10527](https://github.com/containerd/containerd/pull/10527)) #### Go client * Fix failed force deletion for tasks with PID 0 ([#10523](https://github.com/containerd/containerd/pull/10523)) #### Runtime * Fix packaged runc reporting incorrect version ([#10559](https://github.com/containerd/containerd/pull/10559)) * Ensure `/run/containerd` gets created with correct perms ([#10534](https://github.com/containerd/containerd/pull/10534)) #### Deprecations * Ensure the CRIAPIV1Alpha2 warning's lastOccurrence is accurate ([#10571](https://github.com/containerd/containerd/pull/10571)) * Update warnings for deprecated CRI config fields ([#10512](https://github.com/containerd/containerd/pull/10512)) Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues. ### Contributors * Davanum Srinivas * Samuel Karp * Sebastiaan van Stijn * Phil Estes * Maksym Pavlenko * Akhil Mohan * Chris Henzie * Derek McGowan * Kazuyoshi Kato * Sascha Grunert * Akihiro Suda * Erikson Tung * Iceber Gu * Mauri de Souza Meneguzzo * Mike Brown * Shengjing Zhu * TinaMor * rongfu.leng ### Changes <details><summary>45 commits</summary> <p> * Prepare release notes for v1.7.21 ([#10632](https://github.com/containerd/containerd/pull/10632)) * [`975f279ee`](https://github.com/containerd/containerd/commit/975f279eeb3033d05e1b1089b11bd678cc73efd7) Prepare release notes for v1.7.21 * go.mod: keep minimum go version at go1.21 ([#10633](https://github.com/containerd/containerd/pull/10633)) * [`d63bd8464`](https://github.com/containerd/containerd/commit/d63bd846458b7c504dc0efe59f275fee8e29322d) go.mod: keep minimum go version at go1.21 * Move builds to Go 1.22 and add support for testing with 1.23 ([#10596](https://github.com/containerd/containerd/pull/10596)) * [`c76028088`](https://github.com/containerd/containerd/commit/c7602808814d6ca235d37323ff37cde9bdf9d6bb) update golangci-lint to 1.60.1 * [`3b263d082`](https://github.com/containerd/containerd/commit/3b263d082cb09a2911150135a760508527557a0e) add go1.23.0, drop go1.21.x * Fix TestNewBinaryIOCleanup on Go 1.23 and Linux 5.4 ([#10590](https://github.com/containerd/containerd/pull/10590)) * [`09ca004de`](https://github.com/containerd/containerd/commit/09ca004dee1fe7752a652f474661e23d7e3489d4) Fix TestNewBinaryIOCleanup on Go 1.23 and Linux 5.4 * Borrow latest wsstream from k8s v1.31.x to 1.7 ([#10575](https://github.com/containerd/containerd/pull/10575)) * [`9269d97b1`](https://github.com/containerd/containerd/commit/9269d97b1d3c08afba0914028a1ae73220aaa6e4) hide wsstream under internal/ to prevent external use * [`59815fa44`](https://github.com/containerd/containerd/commit/59815fa44be5f20954e4acf02c91590f78c053f6) golangci-lint should only look for problems in new code * [`1c431dc6f`](https://github.com/containerd/containerd/commit/1c431dc6ff7bb928ad3656c318a24548026f560f) Run go mod tidy * [`226f93d92`](https://github.com/containerd/containerd/commit/226f93d928723e1cc14d07d84f774e77d4d1bb61) Add copyright headers * [`6f3252733`](https://github.com/containerd/containerd/commit/6f3252733c4f5dd13048096fdf08799ad5733893) switch over references to the new package * [`0a85d476a`](https://github.com/containerd/containerd/commit/0a85d476a1c2dd9b0ee562a8a3e295744a6f9685) Fix up some constant references * [`82bfa44d0`](https://github.com/containerd/containerd/commit/82bfa44d0fedef27c2b74af49866d74d5317359b) Copy over wsstream from k8s v1.31.0-rc.1 release * Ensure the CRIAPIV1Alpha2 warning's lastOccurrence is accurate ([#10571](https://github.com/containerd/containerd/pull/10571)) * [`52b79f337`](https://github.com/containerd/containerd/commit/52b79f3377af7c0003abe85e3d93d7d679d8418f) Update CRIAPIV1Alpha2 warning lastOccurrence every call * pkg/userns: deprecate and migrate to github.com/moby/sys/userns ([#10564](https://github.com/containerd/containerd/pull/10564)) * [`dce0b5a6d`](https://github.com/containerd/containerd/commit/dce0b5a6d338900f33ff44808483ebf63dced65a) migrate to github.com/moby/sys/userns * [`65f7d0740`](https://github.com/containerd/containerd/commit/65f7d07409562252aaab84da481ca4e9334a5810) pkg/userns: deprecate and migrate to github.com/moby/sys/user/userns * [`f21675c27`](https://github.com/containerd/containerd/commit/f21675c2731774c54412b3855a9eb43a757f69c4) vendor: github.com/moby/sys/user v0.2.0 * update to go1.21.13 / go1.22.6 ([#10570](https://github.com/containerd/containerd/pull/10570)) * [`228914a5e`](https://github.com/containerd/containerd/commit/228914a5e533db62f2637267c26b0093b6e8625e) update to go1.21.13 / go1.22.6 * Fix TestNewBinaryIOCleanup failing with gotip ([#10554](https://github.com/containerd/containerd/pull/10554)) * [`3ff82ba0f`](https://github.com/containerd/containerd/commit/3ff82ba0f007e0fb856f7b2b174f5bc1ab1237cd) Fix TestNewBinaryIOCleanup failing with gotip * Fix packaged runc reporting incorrect version ([#10559](https://github.com/containerd/containerd/pull/10559)) * [`d51143f6f`](https://github.com/containerd/containerd/commit/d51143f6fad370fce2c2f5b0507365fb0a229372) script/setup/install-runc: fix runc using incorrect version * update auths code comment ([#10536](https://github.com/containerd/containerd/pull/10536)) * [`7bb1455d8`](https://github.com/containerd/containerd/commit/7bb1455d88aef5c558125c8c3b08230dc78fbdcb) update auths code comment * Ensure `/run/containerd` gets created with correct perms ([#10534](https://github.com/containerd/containerd/pull/10534)) * [`16c5fc768`](https://github.com/containerd/containerd/commit/16c5fc7689d8c9d715b2387c2844b22bb7a8e76e) Ensure /run/containerd is created with correct perms * Make `StopContainer` idempotent ([#10528](https://github.com/containerd/containerd/pull/10528)) * [`6da4e40b2`](https://github.com/containerd/containerd/commit/6da4e40b22ce2beb3cbb88dcdb8c7ede279e5b14) Make `StopContainer` RPC idempotent * Make `StopPodSandbox` idempotent ([#10527](https://github.com/containerd/containerd/pull/10527)) * [`b3b6f1507`](https://github.com/containerd/containerd/commit/b3b6f15075e1ecd07ca49d667e6dedd94bf4145a) Make `StopPodSandbox` RPC idempotent * Fix failed force deletion for tasks with PID 0 ([#10523](https://github.com/containerd/containerd/pull/10523)) * [`0db46f664`](https://github.com/containerd/containerd/commit/0db46f664ab1394add6c813b764121a5f12d6ef3) client: fix tasks with PID 0 cannot be forced to delete * Update warnings for deprecated CRI config fields ([#10512](https://github.com/containerd/containerd/pull/10512)) * [`9afb8dcdf`](https://github.com/containerd/containerd/commit/9afb8dcdfecfdc37297ab110548214e4954bb2ab) deprecation: update warnings for CRI config fields * Regenerate introspection UUID if state is empty ([#10510](https://github.com/containerd/containerd/pull/10510)) * [`b140792e4`](https://github.com/containerd/containerd/commit/b140792e46e962d8a5c6aafaf0012cf572bdacb3) introspection: regenerate UUID if state is empty * Set stderr to empty string when using terminal on Windows ([#10499](https://github.com/containerd/containerd/pull/10499)) * [`f9beac3db`](https://github.com/containerd/containerd/commit/f9beac3db8e9345b9acfc1cbe5126ff0c7e8c9eb) Set stderr to empty string when using terminal on Windows. </p> </details> ### Dependency Changes * **github.com/moby/sys/userns** v0.1.0 **_new_** Previous release can be found at [v1.7.20](https://github.com/containerd/containerd/releases/tag/v1.7.20)
-
api/v1.8.0-rc.3e8104a48 · ·
containerd api/v1.8.0-rc.3 Welcome to the api/v1.8.0-rc.3 release of containerd! *This is a pre-release of containerd* The first dedicated release for the containerd API. This release continues the 1.x line of API compatibility with the 9th minor release of the 1.x API. ### Highlights * Add Update API for sandbox controller ([#9903](https://github.com/containerd/containerd/pull/9903)) * Add api Go module and move all protos under api ([#10151](https://github.com/containerd/containerd/pull/10151)) * Add PluginInfo to introspection API ([#9442](https://github.com/containerd/containerd/pull/9442)) * Expose usage of deprecated features ([#9258](https://github.com/containerd/containerd/pull/9258)) * Add image delete target ([#8989](https://github.com/containerd/containerd/pull/8989)) #### Image Distribution * Enable Transfer service API to support plain HTTP ([#10024](https://github.com/containerd/containerd/pull/10024)) * Enable Transfer service to use registry configuration directory ([#9908](https://github.com/containerd/containerd/pull/9908)) * Update Transfer service to add OCI descriptors to Progress structure ([#9630](https://github.com/containerd/containerd/pull/9630)) * Add option to perform syncfs after pull ([#9401](https://github.com/containerd/containerd/pull/9401)) #### Runtime * Store bootstrap parameters in sandbox metadata ([#9736](https://github.com/containerd/containerd/pull/9736)) * Add sandboxer configuration and move sandbox controllers to plugins ([#8268](https://github.com/containerd/containerd/pull/8268)) * Add annotations to CreateSandbox request ([#8960](https://github.com/containerd/containerd/pull/8960)) * Add SandboxMetrics ([#8680](https://github.com/containerd/containerd/pull/8680)) * Publish sandbox events ([#8602](https://github.com/containerd/containerd/pull/8602)) #### Deprecations * Add type alias for event Envelope ([#10279](https://github.com/containerd/containerd/pull/10279)) Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues. ### Contributors * Derek McGowan * Maksym Pavlenko * Wei Fu * Abel Feng * Akihiro Suda * Phil Estes * Danny Canter * Samuel Karp * Kohei Tokunaga * Sebastiaan van Stijn * Akhil Mohan * Bryant Biggs * Davanum Srinivas * Iceber Gu * Kirtana Ashok ### Changes <details><summary>61 commits</summary> <p> * Add Update API for sandbox controller ([#9903](https://github.com/containerd/containerd/pull/9903)) * [`15887d7ef`](https://github.com/containerd/containerd/commit/15887d7efc60e4bde9e65c87a0376d94e9f6eb04) sandbox: add update api for controller * api: update github.com/containerd/ttrpc v1.2.5 to be aligned with containerd ([#10366](https://github.com/containerd/containerd/pull/10366)) * [`cb38b1e2b`](https://github.com/containerd/containerd/commit/cb38b1e2be065ea9e248e03906ee893f954370d8) api: update github.com/containerd/ttrpc v1.2.5 * Add type alias for event Envelope ([#10279](https://github.com/containerd/containerd/pull/10279)) * [`3e71ccafc`](https://github.com/containerd/containerd/commit/3e71ccafc48bc87a054f4ce3a67ecf2df91932c5) Add type alias for event Envelope * Update api minimum Go version to 1.21 ([#10276](https://github.com/containerd/containerd/pull/10276)) * [`359d84351`](https://github.com/containerd/containerd/commit/359d84351d53d335688ab96c1a3e1ae0151b3a2d) Update api minimum go version to 1.21 * Prepare release notes for api/v1.8.0-rc.0 ([#10167](https://github.com/containerd/containerd/pull/10167)) * [`55fcebffc`](https://github.com/containerd/containerd/commit/55fcebffc76e642e9155eda5e097043f95109e4d) Prepare release notes for api/v1.8.0 * Add api Go module and move all protos under api ([#10151](https://github.com/containerd/containerd/pull/10151)) * [`2ac2b9c90`](https://github.com/containerd/containerd/commit/2ac2b9c909fb64f4d06958a0ca2f556bec348d05) Make api a Go sub-module * [`3e9cace72`](https://github.com/containerd/containerd/commit/3e9cace720cee5eb631c8291d8fb51928dc3fb3b) Move runtimeoptions to api directory * [`4a4550777`](https://github.com/containerd/containerd/commit/4a455077722796fd6a63253bc30d2b4c0c379d1d) Move runc options to api directory * Store bootstrap parameters in sandbox metadata ([#9736](https://github.com/containerd/containerd/pull/9736)) * [`de38490ed`](https://github.com/containerd/containerd/commit/de38490ed6b8d9cb9cb6ea7cfcd0071e8f27d304) sandbox: merge address and protocol to one url * [`f6e0cf189`](https://github.com/containerd/containerd/commit/f6e0cf1894b9211f07d801e1af3166f290969cd7) sandbox: add address info in Start and Status response * Enable Transfer service API to support plain HTTP ([#10024](https://github.com/containerd/containerd/pull/10024)) * [`433279438`](https://github.com/containerd/containerd/commit/4332794384253ad85a05a17fe42aa929f62fc72a) Transfer: Registry: Enable plain HTTP * Enable Transfer service to use registry configuration directory ([#9908](https://github.com/containerd/containerd/pull/9908)) * [`7a3b7fba5`](https://github.com/containerd/containerd/commit/7a3b7fba59a9ff9e8756976cf6f55117b1814a63) Transfer: Registry: Enable to use registry configuration diretory * Generate proto services with go-ttrpc ([#7609](https://github.com/containerd/containerd/pull/7609)) * [`f0e874941`](https://github.com/containerd/containerd/commit/f0e8749411301e99958e0caf545d85bf0112dda4) Add ttrpc generated services * [`65031eade`](https://github.com/containerd/containerd/commit/65031eadec262d783db25456a8bbca1eed1956b7) Update protobuild to build ttrpc services * Add OSVersion to platform protobuf ([#9733](https://github.com/containerd/containerd/pull/9733)) * [`5aa05481d`](https://github.com/containerd/containerd/commit/5aa05481ddd40138eef79ec4bce2b0232adef354) Add OSVersion to platform protobuf * Move Message proto to types ([#9742](https://github.com/containerd/containerd/pull/9742)) * [`0facc8592`](https://github.com/containerd/containerd/commit/0facc85925a114edac4b3b05a871f4ad205f45f1) Fix proto formatting * [`7f2d2c4f4`](https://github.com/containerd/containerd/commit/7f2d2c4f44afe090872301cc8614e8fc0d432e9e) Move Message proto to types * refactor: move plugin/fieldpath to api/types/ ([#9687](https://github.com/containerd/containerd/pull/9687)) * [`b16e3572a`](https://github.com/containerd/containerd/commit/b16e3572a308be0c58b3c810b1922ec8d444d1f7) refactor: move plugin/fieldpath to api/types/ * Add PluginInfo to introspection API ([#9442](https://github.com/containerd/containerd/pull/9442)) * [`22d586e51`](https://github.com/containerd/containerd/commit/22d586e515654d3a901c40443fb2b4adcad65827) api/services/instrospection: add PluginInfo * Update Transfer service to add OCI descriptors to Progress structure ([#9630](https://github.com/containerd/containerd/pull/9630)) * [`a2472c0b5`](https://github.com/containerd/containerd/commit/a2472c0b5ab17e46ab3f3b000a6fa512a45d7f05) transfer: add OCI descriptors to Progress structure * Add option to perform syncfs after pull ([#9401](https://github.com/containerd/containerd/pull/9401)) * [`bd5c602c4`](https://github.com/containerd/containerd/commit/bd5c602c4dc91d19976f2dc222a337ab76716750) api: introduce sync_fs to diff.ApplyRequest * Containerd v2 module ([#9306](https://github.com/containerd/containerd/pull/9306)) * [`5fdf55e49`](https://github.com/containerd/containerd/commit/5fdf55e493d68079d22a08de1a7afe522e5838e5) Update go module to github.com/containerd/containerd/v2 * Expose usage of deprecated features ([#9258](https://github.com/containerd/containerd/pull/9258)) * [`57c897f10`](https://github.com/containerd/containerd/commit/57c897f10df48556af799f71c85a91b889df2d70) api/introspection: deprecation warnings in server * Add sandboxer configuration and move sandbox controllers to plugins ([#8268](https://github.com/containerd/containerd/pull/8268)) * [`d2d434b7d`](https://github.com/containerd/containerd/commit/d2d434b7d6546842b1f791ef17392da99320265d) sandbox: add all sandbox information to Create method * [`f372b3501`](https://github.com/containerd/containerd/commit/f372b3501b6096c8228203f9d5d5aae8ff998d61) sandbox: add sandboxer field of sandbox requests * Add image delete target ([#8989](https://github.com/containerd/containerd/pull/8989)) * [`f8fb2dad3`](https://github.com/containerd/containerd/commit/f8fb2dad39a4b45ce1de59f236e72ee72ad53cf7) api: update image service to support target in delete request * fix: Add `containerd` to the message type reference ([#9126](https://github.com/containerd/containerd/pull/9126)) * [`42eee8bf0`](https://github.com/containerd/containerd/commit/42eee8bf05c89524a29f064cb4ce0a460a8c0081) fix: Add `containerd` to the message type reference * platforms: isolate from errdefs and api dependencies ([#9095](https://github.com/containerd/containerd/pull/9095)) * [`e916d77c8`](https://github.com/containerd/containerd/commit/e916d77c81b8a61d7a37276e310b4a150b04f4ab) platforms: move ToProto, FromProto to api/types * Add annotations to CreateSandbox request ([#8960](https://github.com/containerd/containerd/pull/8960)) * [`939ccbed4`](https://github.com/containerd/containerd/commit/939ccbed427e81eaecd37777ddcb2eac792114e6) Sandbox: Add annotations to CreateSandbox surface * archive: use 1970-01-01 as the whiteout timestamp ([#8764](https://github.com/containerd/containerd/pull/8764)) * [`5dedb6d0d`](https://github.com/containerd/containerd/commit/5dedb6d0d2565507f0636254a18fdb7462a9eac3) archive: use 1970-01-01 as the whiteout timestamp * Add SandboxMetrics ([#8680](https://github.com/containerd/containerd/pull/8680)) * [`d278d37ca`](https://github.com/containerd/containerd/commit/d278d37caae501ef18fd919e611610c639ad471b) Sandbox: Add Metrics rpc for controller * [`d56722ef2`](https://github.com/containerd/containerd/commit/d56722ef2a42953841728f5ed5666da776ce0d8f) Sandbox: Add SandboxMetrics rpc * Publish sandbox events ([#8602](https://github.com/containerd/containerd/pull/8602)) * [`65906335b`](https://github.com/containerd/containerd/commit/65906335bf086dfe4ed73fbddb90429047e8aa96) Add sandbox events protos * Cleanup protobuild config ([#8278](https://github.com/containerd/containerd/pull/8278)) * [`0bbca7f1b`](https://github.com/containerd/containerd/commit/0bbca7f1bcc29933dfd3cb3c463cc4fb8fbbe036) Cleanup protobuild config </p> </details> ### Dependency Changes * **github.com/containerd/log** v0.1.0 **_new_** * **github.com/containerd/ttrpc** v1.2.1 -> v1.2.5 * **github.com/containerd/typeurl/v2** v2.1.0 -> v2.1.1 * **github.com/golang/protobuf** v1.5.2 -> v1.5.3 * **github.com/opencontainers/image-spec** 3a7f492d3f1b -> v1.1.0 * **github.com/sirupsen/logrus** v1.9.0 -> v1.9.3 * **golang.org/x/net** v0.7.0 -> v0.23.0 * **golang.org/x/sys** v0.6.0 -> v0.18.0 * **golang.org/x/text** v0.7.0 -> v0.14.0 * **google.golang.org/genproto/googleapis/rpc** c3f982113cda **_new_** * **google.golang.org/grpc** v1.53.0 -> v1.59.0 * **google.golang.org/protobuf** v1.28.1 -> v1.33.0 Previous release can be found at [v1.7.0](https://github.com/containerd/containerd/releases/tag/v1.7.0)
-
v1.6.353e986834 · ·
containerd 1.6.35 Welcome to the v1.6.35 release of containerd! The thirty-fifth patch release for containerd 1.6 contains various fixes and updates. ### Highlights * Regenerate UUID if state is empty in introspection service ([#10511](https://github.com/containerd/containerd/pull/10511)) * Set stderr to empty string when using terminal on Windows ([#10500](https://github.com/containerd/containerd/pull/10500)) #### Container Runtime Interface (CRI) * Revert HPC working directory fix in pkg/cri/server code ([#10549](https://github.com/containerd/containerd/pull/10549)) * Make `StopPodSandbox` RPC idempotent ([#10531](https://github.com/containerd/containerd/pull/10531)) #### Runtime * Fix packaged runc reporting incorrect version ([#10558](https://github.com/containerd/containerd/pull/10558)) * Ensure `/run/containerd` gets created with correct perms ([#10535](https://github.com/containerd/containerd/pull/10535)) #### Deprecations * Update warnings for deprecated CRI config fields ([#10525](https://github.com/containerd/containerd/pull/10525)) Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues. ### Contributors * Phil Estes * Samuel Karp * Kazuyoshi Kato * Kirtana Ashok * Sascha Grunert * Akihiro Suda * Derek McGowan * Erikson Tung * Iceber Gu * Maksym Pavlenko * Mauri de Souza Meneguzzo * Sebastiaan van Stijn * TinaMor * Wei Fu * rongfu.leng ### Changes <details><summary>24 commits</summary> <p> * Prepare release notes for v1.6.35 ([#10565](https://github.com/containerd/containerd/pull/10565)) * [`849650ab7`](https://github.com/containerd/containerd/commit/849650ab7268ae16d659492d6f942eaca67ecbd3) Prepare release notes for v1.6.35 * Fix TestNewBinaryIOCleanup failing with gotip ([#10555](https://github.com/containerd/containerd/pull/10555)) * [`4ec5cd6bd`](https://github.com/containerd/containerd/commit/4ec5cd6bd0c8d9a87ecade3812007b32e66232b2) Fix TestNewBinaryIOCleanup failing with gotip * Fix packaged runc reporting incorrect version ([#10558](https://github.com/containerd/containerd/pull/10558)) * [`9539b9b7b`](https://github.com/containerd/containerd/commit/9539b9b7b459dd01a1de6694639abd12dfe53361) script/setup/install-runc: fix runc using incorrect version * Revert HPC working directory fix in pkg/cri/server code ([#10549](https://github.com/containerd/containerd/pull/10549)) * [`c3c2b4eec`](https://github.com/containerd/containerd/commit/c3c2b4eec17844c3f3cbd7db9d9d03288ec36252) Revert "[release/1.7]: HPC working directory fix in pkg/cri/server code" * update auths code comment ([#10537](https://github.com/containerd/containerd/pull/10537)) * [`65cf37bcb`](https://github.com/containerd/containerd/commit/65cf37bcb49de11c2fd20fd21f76809739cb788d) update auths code comment * Ensure `/run/containerd` gets created with correct perms ([#10535](https://github.com/containerd/containerd/pull/10535)) * [`b1ef73e76`](https://github.com/containerd/containerd/commit/b1ef73e76a8913ae5347985647d576ea07873b9c) Ensure /run/containerd is created with correct perms * Make `StopContainer` RPC idempotent ([#10530](https://github.com/containerd/containerd/pull/10530)) * [`7134b03ba`](https://github.com/containerd/containerd/commit/7134b03ba546a9183bd7daf03ae5de56aeaad202) Make `StopContainer` RPC idempotent * Make `StopPodSandbox` RPC idempotent ([#10531](https://github.com/containerd/containerd/pull/10531)) * [`18ea8f288`](https://github.com/containerd/containerd/commit/18ea8f288ec87e3137d429adfc90c3a23e7277db) Make `StopPodSandbox` RPC idempotent * Update warnings for deprecated CRI config fields ([#10525](https://github.com/containerd/containerd/pull/10525)) * [`ed87e4787`](https://github.com/containerd/containerd/commit/ed87e47878e8cbcc3bc6df1cfd362ba18201f772) deprecation: update warnings for CRI config fields * client: fix tasks with PID 0 cannot be forced to delete ([#10524](https://github.com/containerd/containerd/pull/10524)) * [`5c8818782`](https://github.com/containerd/containerd/commit/5c8818782363935285f09b9ced3933c15baadfd8) client: fix tasks with PID 0 cannot be forced to delete * Regenerate UUID if state is empty in introspection service ([#10511](https://github.com/containerd/containerd/pull/10511)) * [`a4846fc0d`](https://github.com/containerd/containerd/commit/a4846fc0d30878e2869cccdd7d46693df474bd65) introspection: regenerate UUID if state is empty * Set stderr to empty string when using terminal on Windows ([#10500](https://github.com/containerd/containerd/pull/10500)) * [`484705c62`](https://github.com/containerd/containerd/commit/484705c62156ed058e27f6f66d6bf77d13c65198) Set stderr to empty string when using terminal on Windows. </p> </details> ### Dependency Changes This release has no dependency changes Previous release can be found at [v1.6.34](https://github.com/containerd/containerd/releases/tag/v1.6.34)
-
v1.7.208fc6bcff · ·
containerd 1.7.20 Welcome to the v1.7.20 release of containerd! The twentieth patch release for containerd 1.7 contains various fixes and updates. ### Highlights * Support for dropping inheritable capabilities ([#10469](https://github.com/containerd/containerd/pull/10469)) #### Container Runtime Interface (CRI) * Make PodSandboxStatus friendlier to shim crashes ([#10461](https://github.com/containerd/containerd/pull/10461)) * Handle empty DNSConfig differently than unspecified ([#10462](https://github.com/containerd/containerd/pull/10462)) * Fix for `[cri] ttrpc: closed` during ListPodSandboxStats ([#10423](https://github.com/containerd/containerd/pull/10423)) Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues. ### Contributors * Derek McGowan * Akihiro Suda * Phil Estes * Akhil Mohan * Bryant Biggs * Danny Canter * Davanum Srinivas * Mike Brown * Samuel Karp * Tim Hockin ### Changes <details><summary>16 commits</summary> <p> * Prepare release notes for v1.7.20 ([#10481](https://github.com/containerd/containerd/pull/10481)) * [`7f2d4cd97`](https://github.com/containerd/containerd/commit/7f2d4cd978f602bc5f68c3a3f7123a834150fe1d) Prepare release notes for v1.7.20 * deps: Update otelgrpc ([#10413](https://github.com/containerd/containerd/pull/10413)) * [`3a02c523d`](https://github.com/containerd/containerd/commit/3a02c523d07fd8636b72ba8de6fd21d6c3ffa042) deps: Update otelgrpc * Make PodSandboxStatus friendlier to shim crashes ([#10461](https://github.com/containerd/containerd/pull/10461)) * [`df86bdd5d`](https://github.com/containerd/containerd/commit/df86bdd5dc6a9948e65fe8a8a296052b19734286) CRI Sbserver: Make PodSandboxStatus friendlier to shim crashes * Handle empty DNSConfig differently than unspecified ([#10462](https://github.com/containerd/containerd/pull/10462)) * [`209ee4f10`](https://github.com/containerd/containerd/commit/209ee4f107af61f1385bb77770c9ae0568add13e) CRI: An empty DNSConfig != unspecified * Support for dropping inheritable capabilities ([#10469](https://github.com/containerd/containerd/pull/10469)) * [`ce65228af`](https://github.com/containerd/containerd/commit/ce65228afd0b0fce6f5ef3dd0d7ec312b2c552b0) Support for dropping inheritable capabilities * Fix for `[cri] ttrpc: closed` during ListPodSandboxStats ([#10423](https://github.com/containerd/containerd/pull/10423)) * [`610498df7`](https://github.com/containerd/containerd/commit/610498df750c3b30b137ddb4ab236e5b0a84ceda) Fix for `[cri] ttrpc: closed` during ListPodSandboxStats * update to go1.21.12 / go1.22.5 ([#10426](https://github.com/containerd/containerd/pull/10426)) * [`e61c7932e`](https://github.com/containerd/containerd/commit/e61c7932efc40f7246eaffb00b19fd697c0447f8) update to go1.21.12 / go1.22.5 * errdefs: denote deprecation as a godoc comment ([#10424](https://github.com/containerd/containerd/pull/10424)) * [`c7d5e430a`](https://github.com/containerd/containerd/commit/c7d5e430a4dc9e7fb3a0241adfb5477466f09c59) errdefs: denote deprecation as a godoc comment </p> </details> ### Dependency Changes * **github.com/go-logr/logr** v1.2.4 -> v1.3.0 * **github.com/google/go-cmp** v0.5.9 -> v0.6.0 * **github.com/google/uuid** v1.3.1 -> v1.4.0 * **go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc** v0.45.0 -> v0.46.1 * **go.opentelemetry.io/otel** v1.19.0 -> v1.21.0 * **go.opentelemetry.io/otel/metric** v1.19.0 -> v1.21.0 * **go.opentelemetry.io/otel/sdk** v1.19.0 -> v1.21.0 * **go.opentelemetry.io/otel/trace** v1.19.0 -> v1.21.0 * **google.golang.org/genproto** e6e6cdab5c13 -> 989df2bf70f3 * **google.golang.org/genproto/googleapis/api** 007df8e322eb -> 83a465c0220f * **google.golang.org/genproto/googleapis/rpc** d307bd883b97 -> 995d672761c0 Previous release can be found at [v1.7.19](https://github.com/containerd/containerd/releases/tag/v1.7.19)
-
v1.6.34e9e2c770 · ·
containerd 1.6.34 Welcome to the v1.6.34 release of containerd! The thirty-fourth patch release for containerd 1.6 contains various fixes and updates. ### Highlights * Remove overlayfs volatile option on temp mounts ([#10333](https://github.com/containerd/containerd/pull/10333)) * Update runc binary to v1.1.13 ([#10335](https://github.com/containerd/containerd/pull/10335)) #### Container Runtime Interface (CRI) * Handle empty DNSConfig differently than unspecified ([#10463](https://github.com/containerd/containerd/pull/10463)) * Fix HPC working directory in pkg/cri/server code ([#10361](https://github.com/containerd/containerd/pull/10361)) #### Runtime * Prepare release notes for v1.6.34 ([#10480](https://github.com/containerd/containerd/pull/10480)) * Support for dropping inheritable capabilities ([#10470](https://github.com/containerd/containerd/pull/10470)) Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues. ### Contributors * Derek McGowan * Akihiro Suda * Sebastiaan van Stijn * Wei Fu * Akhil Mohan * Maksim An * Maksym Pavlenko * Mike Brown * Phil Estes * Samuel Karp * Tim Hockin * Yuanyuan Lei * krglosse ### Changes <details><summary>26 commits</summary> <p> * Prepare release notes for v1.6.34 ([#10480](https://github.com/containerd/containerd/pull/10480)) * [`b2863e9e7`](https://github.com/containerd/containerd/commit/b2863e9e712c07af8141aefddc052dc9e9a90bf6) Prepare release notes for v1.6.34 * Handle empty DNSConfig differently than unspecified ([#10463](https://github.com/containerd/containerd/pull/10463)) * [`b7d06a619`](https://github.com/containerd/containerd/commit/b7d06a619215bd1972ef19c4870e8e7f81c6dc6f) CRI: An empty DNSConfig != unspecified * Support for dropping inheritable capabilities ([#10470](https://github.com/containerd/containerd/pull/10470)) * [`8d2739857`](https://github.com/containerd/containerd/commit/8d27398577471912762bb1aa53d68c6e315bbe54) Support for dropping inheritable capabilities * errdefs: denote deprecation as a godoc comment ([#10425](https://github.com/containerd/containerd/pull/10425)) * [`ce685376f`](https://github.com/containerd/containerd/commit/ce685376f06d6bd6c9ba9c1581f4487930964dff) errdefs: denote deprecation as a godoc comment * update to go1.21.12 / go1.22.5 ([#10427](https://github.com/containerd/containerd/pull/10427)) * [`634ae543d`](https://github.com/containerd/containerd/commit/634ae543d4df4a0fd73cc5d6a4163027be220010) update to go1.21.12 / go1.22.5 * Updating hcsshim vendoring to 0.9.12 to include an important backported fix ([#10398](https://github.com/containerd/containerd/pull/10398)) * [`a0adb2933`](https://github.com/containerd/containerd/commit/a0adb29333f7d2b4b5afe389105b35a4cfcf946a) Updating hcsshim to 0.9.12 * golangci-lint: enable depguard for packages that moved ([#10368](https://github.com/containerd/containerd/pull/10368)) * [`3ea0c4983`](https://github.com/containerd/containerd/commit/3ea0c498361e40a23b5e5c3781efe4cc7baf1725) golangci-lint: enable depguard for packages that moved * Fix HPC working directory in pkg/cri/server code ([#10361](https://github.com/containerd/containerd/pull/10361)) * [`086e1f56e`](https://github.com/containerd/containerd/commit/086e1f56e446740466b113a04f201e2040ae5a22) [release/1.7]: HPC working directory fix in pkg/cri/server code * Remove overlayfs volatile option on temp mounts ([#10333](https://github.com/containerd/containerd/pull/10333)) * [`166283a34`](https://github.com/containerd/containerd/commit/166283a34d6060d9c569673423440a2b1cf0ad85) integration: backport upgrade testsuite's utils * [`990a05d0a`](https://github.com/containerd/containerd/commit/990a05d0a851f2b188d97a884554b809e0361462) *: export RemoveVolatileOption for CRI image volumes * [`a894b5f81`](https://github.com/containerd/containerd/commit/a894b5f810756a3cbcc6d5d2b544a2a5e836e954) strip-volatile-option-tmp-mounts * Update runc binary to v1.1.13 ([#10335](https://github.com/containerd/containerd/pull/10335)) * [`f6ef0071b`](https://github.com/containerd/containerd/commit/f6ef0071b487e3db7ad8c1ebc4ca0c50ac4698f4) update runc binary to v1.1.13 * Update Fedora and EL linux version in vagrant ([#10339](https://github.com/containerd/containerd/pull/10339)) * [`89bb437f8`](https://github.com/containerd/containerd/commit/89bb437f8b25840a2efbd2278d0f0b1b06025b13) Remove rocklinux 9 * [`01fa3d0d7`](https://github.com/containerd/containerd/commit/01fa3d0d77f487e64a1a3f9760277fd16fa0289b) Backport version from box string in Vagrantfile * [`0be3788f5`](https://github.com/containerd/containerd/commit/0be3788f52f8e5889a018006b002f00cca63e4dd) Update Fedora and EL linux version </p> </details> ### Dependency Changes * **github.com/Microsoft/hcsshim** v0.9.11 -> v0.9.12 Previous release can be found at [v1.6.33](https://github.com/containerd/containerd/releases/tag/v1.6.33)
-
v1.7.192bf793ef · ·
containerd 1.7.19 Welcome to the v1.7.19 release of containerd! The nineteenth patch release for containerd 1.7 contains various updates and splits the main module from the api module in preparation for the same change in containerd 2.0. Splitting the modules will allow 1.7 and 2.x to both exist as transitive dependencies without running into API registration errors. Projects should use this version as the minimum 1.7 version in preparing to use containerd 2.0 or to be imported alongside it. ### Highlights * Fix support for OTLP config ([#10360](https://github.com/containerd/containerd/pull/10360)) * Add API go module ([#10189](https://github.com/containerd/containerd/pull/10189)) * Remove overlayfs volatile option on temp mounts ([#10332](https://github.com/containerd/containerd/pull/10332)) * Update runc binary to v1.1.13 ([#10336](https://github.com/containerd/containerd/pull/10336)) * Migrate platforms package to github.com/containerd/platforms ([#10292](https://github.com/containerd/containerd/pull/10292)) * Migrate reference/docker package to github.com/distribution/reference ([#10316](https://github.com/containerd/containerd/pull/10316)) #### Container Runtime Interface (CRI) * Fix panic in NRI from nil CRI reference ([#10406](https://github.com/containerd/containerd/pull/10406)) * Fix Windows HPC working directory ([#10306](https://github.com/containerd/containerd/pull/10306)) Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues. ### Contributors * Derek McGowan * Sebastiaan van Stijn * Wei Fu * Phil Estes * Akhil Mohan * Akihiro Suda * Brian Goff * Kirtana Ashok * Maksym Pavlenko * Samuel Karp * Austin Vazquez * Danny Canter * Kazuyoshi Kato * Maksim An * Yuanyuan Lei * krglosse ### Changes <details><summary>70 commits</summary> <p> * Prepare release notes for v1.7.19 ([#10391](https://github.com/containerd/containerd/pull/10391)) * [`74a3d2901`](https://github.com/containerd/containerd/commit/74a3d29017d780a06601e9015958a162c86f44f4) Prepare release notes for v1.7.19 * Fix panic in NRI from nil CRI reference ([#10406](https://github.com/containerd/containerd/pull/10406)) * [`7f5d3c5f4`](https://github.com/containerd/containerd/commit/7f5d3c5f4d5325265f3dfe76f9cc4c17859a6e8a) cri: ensure NRI API never has nil CRI * Windows: Supply windows shim version via file ([#10403](https://github.com/containerd/containerd/pull/10403)) * [`6efc5bb89`](https://github.com/containerd/containerd/commit/6efc5bb89621afab16ff7aaeb83460fd27d1c4c1) update runhcs binary to v0.11.7 * [`945ae09fd`](https://github.com/containerd/containerd/commit/945ae09fd30a421f108993d7e04f9a6c0b5aa989) Windows: Supply windows shim version via file * reference: deprecate SplitObject ([#10397](https://github.com/containerd/containerd/pull/10397)) * [`dba53578c`](https://github.com/containerd/containerd/commit/dba53578c2b8d5db159295371a6aa9fd0d1ee79f) pkg/reference: deprecate SplitObject * Updating hcsshim vendoring to 0.11.7 to include an important backported fix ([#10396](https://github.com/containerd/containerd/pull/10396)) * [`415dd74a8`](https://github.com/containerd/containerd/commit/415dd74a81ad3a5ed5cc416ad16cfe3cbb09aec3) updating hcsshim to 0.11.7 * reference: reduce allocations and improve GoDoc ([#10395](https://github.com/containerd/containerd/pull/10395)) * [`5ad1d2e75`](https://github.com/containerd/containerd/commit/5ad1d2e7592e2a38e5d67eaec5501164f57c7fa2) pkg/reference: Spec.Digest(): inline SplitObject code * [`57ce09b42`](https://github.com/containerd/containerd/commit/57ce09b4284cc090af68fdd3f19f4f92125c5b94) pkg/reference: SplitObject: add proper GoDoc * [`78ac93fed`](https://github.com/containerd/containerd/commit/78ac93fed415d2d9246cf53cf646e939de955cc9) pkg/reference: SplitObject: zero allocations * [`b074e3a7c`](https://github.com/containerd/containerd/commit/b074e3a7ce4dae91324da1ec0f7a619ced0a5e37) pkg/reference: Spec.String(): use string-concatenation instead of sprintf * Update api version to v1.7.19 ([#10387](https://github.com/containerd/containerd/pull/10387)) * [`0eb786de6`](https://github.com/containerd/containerd/commit/0eb786de6692db09ee8b3492f6b6df4c011603e8) Update api version to v1.7.19 * Prepare release notes for api v1.7.19 ([#10386](https://github.com/containerd/containerd/pull/10386)) * [`436feeb0d`](https://github.com/containerd/containerd/commit/436feeb0ddcf8188c84c616b97b34cc8acd1aa9f) Prepare api release for v1.7.19 * [`83822d144`](https://github.com/containerd/containerd/commit/83822d144695458892cc04c237132653e54ca183) Add api release action * : api: update github.com/containerd/ttrpc v1.2.5 to align with containerd 1.7 module ([#10364](https://github.com/containerd/containerd/pull/10364)) * [`2a6aa6ddf`](https://github.com/containerd/containerd/commit/2a6aa6ddf1f09bedc8b86f33a277f2cf6852eedd) [release/1.7] api: update github.com/containerd/ttrpc v1.2.5 * vendor: github.com/containerd/ttrpc v1.2.5 ([#10373](https://github.com/containerd/containerd/pull/10373)) * [`37926b10d`](https://github.com/containerd/containerd/commit/37926b10d0dc14cd068dc35dd18190bd38ef9a01) vendor: github.com/containerd/ttrpc v1.2.5 * golangci-lint fix typo in depguard message ([#10371](https://github.com/containerd/containerd/pull/10371)) * [`a522e267e`](https://github.com/containerd/containerd/commit/a522e267e8b3312fa1a8679a7dee0c28b208a474) golangci-lint fix typo in depguard message * Fix support for OTLP config ([#10360](https://github.com/containerd/containerd/pull/10360)) * [`1ce1c8f3e`](https://github.com/containerd/containerd/commit/1ce1c8f3e6d36202dab28fe910bf9282fafc2aab) 1.7: Add back support for OTLP config from toml * remove imports of errdefs package, and add depguard linter ([#10367](https://github.com/containerd/containerd/pull/10367)) * [`136e1b72d`](https://github.com/containerd/containerd/commit/136e1b72d8330d43b9cedf051a0b745cf70df9ee) golangci-lint: enable depguard for packages that moved * [`f5ce2f204`](https://github.com/containerd/containerd/commit/f5ce2f2049204e1792756b156299eb3470379692) remove imports of errdefs package * Add API go module ([#10189](https://github.com/containerd/containerd/pull/10189)) * [`3be919f3c`](https://github.com/containerd/containerd/commit/3be919f3c023f776e5db1b162f642d79a36312a8) Add support for 1.8 interfaces * [`5b87eb502`](https://github.com/containerd/containerd/commit/5b87eb502c705dba767a203b64dfdc3ad0bda109) Add go mod replace when proto changes happen * [`a3a7431bc`](https://github.com/containerd/containerd/commit/a3a7431bc3151a5d0a8c6d9e36a6430a76418f81) Add api go submodule * [`61b3e2261`](https://github.com/containerd/containerd/commit/61b3e226104ccb52aff9230617750bddd046b76d) Alias protobuf plugin to new api types package * [`4b82470f6`](https://github.com/containerd/containerd/commit/4b82470f6939ab951334105cf0b10ca9167964ea) refactor: move plugin/fieldpath to api/types/ * Remove overlayfs volatile option on temp mounts ([#10332](https://github.com/containerd/containerd/pull/10332)) * [`24ce9e431`](https://github.com/containerd/containerd/commit/24ce9e4315aa0b1215d1ed0c52df13691e7ff523) integration: backport upgrade testsuite's utils * [`79500d5cb`](https://github.com/containerd/containerd/commit/79500d5cb24d2ce7189857ec3322970ff61817c7) *: export RemoveVolatileOption for CRI image volumes * [`bb80bd768`](https://github.com/containerd/containerd/commit/bb80bd7681ce22e8bd11aa5aa285a61ef1ac19c2) strip-volatile-option-tmp-mounts * Update runc binary to v1.1.13 ([#10336](https://github.com/containerd/containerd/pull/10336)) * [`6dce90b15`](https://github.com/containerd/containerd/commit/6dce90b1586903a60d84028c7b4a643ac5472fbb) update runc binary to v1.1.13 * Fail integration test early when a plugin load fails ([#10311](https://github.com/containerd/containerd/pull/10311)) * [`884094be8`](https://github.com/containerd/containerd/commit/884094be857fd0d72edc716f0791b44b14861a53) devmapper plugin: skip plugin when not configured * [`40012b644`](https://github.com/containerd/containerd/commit/40012b6445f6275aabf10be78f2a7a9b6ec6b927) Fail integration test early when a plugin load fails * Migrate platforms package to github.com/containerd/platforms ([#10292](https://github.com/containerd/containerd/pull/10292)) * [`869b78677`](https://github.com/containerd/containerd/commit/869b7867724e10f285f2f26f358b98d4ef0bd310) vendor: github.com/containerd/platforms v0.2.1 * [`6ccdf6977`](https://github.com/containerd/containerd/commit/6ccdf697711dc9c8915e2c1c8da5f60c2472df5e) platforms: mark aliases as deprecated * [`19a056163`](https://github.com/containerd/containerd/commit/19a056163cc37077c33f4e11f8c60d52c14d9a8f) adjust default platform for backward-compatibility * [`6ff3e09d2`](https://github.com/containerd/containerd/commit/6ff3e09d201c82839be50f176895656d2bbcffec) migrate platforms package to github.com/containerd/platforms * go.mod: github.com/klauspost/compress v1.16.7 ([#10326](https://github.com/containerd/containerd/pull/10326)) * [`327a3ac61`](https://github.com/containerd/containerd/commit/327a3ac61d9eb30a37a8227ca19fa3ce9ab26545) go.mod: github.com/klauspost/compress v1.16.7 * [`d0d1264a6`](https://github.com/containerd/containerd/commit/d0d1264a65c522283b938179ab0d9b529952125b) vendor: github.com/klauspost/compress v1.16.5 * Use Github Actions to run Vagrant CI ([#10325](https://github.com/containerd/containerd/pull/10325)) * [`02b8dd5ff`](https://github.com/containerd/containerd/commit/02b8dd5ffcb552521d1e6589a488cdf401845a40) Remove cirrus configuration * [`31d951bf5`](https://github.com/containerd/containerd/commit/31d951bf5b6a2fc0cd0ee2d7388e52e6b73aba8f) Run vagrant integration tests as github actions * Migrate reference/docker package to github.com/distribution/reference ([#10316](https://github.com/containerd/containerd/pull/10316)) * [`97abbe9cb`](https://github.com/containerd/containerd/commit/97abbe9cba96592987e5accc4951c89059ced51b) build(deps): bump github.com/distribution/reference from 0.5.0 to 0.6.0 * [`a00a2d20a`](https://github.com/containerd/containerd/commit/a00a2d20a367cf6b906b63cef18dbbbf4157bfb8) reference/docker: remove deprecated SplitHostname * [`b38c0f2ef`](https://github.com/containerd/containerd/commit/b38c0f2ef8c887ba2ebdaf186d94115934a2bbbb) replace reference/docker for github.com/distribution/reference v0.5.0 * build(deps): bump go.etcd.io/bbolt from 1.3.9 to 1.3.10 ([#10315](https://github.com/containerd/containerd/pull/10315)) * [`fef432bfe`](https://github.com/containerd/containerd/commit/fef432bfebd3e0ce813e4f05230649ba22af99e6) build(deps): bump go.etcd.io/bbolt from 1.3.9 to 1.3.10 * [`487c61bfb`](https://github.com/containerd/containerd/commit/487c61bfbbbaccce4154a335c6a5cb97d1f08381) vendor: go.etcd.io/bbolt v1.3.9 * [`7211f87c4`](https://github.com/containerd/containerd/commit/7211f87c4874b9d09af4545c7c9570a0f406b79c) build(deps): bump golang.org/x/sync from 0.4.0 to 0.5.0 * [`e908c3e6f`](https://github.com/containerd/containerd/commit/e908c3e6fcc5e23d44fd9581bdcdd33868c5cd5b) vendor: golang.org/x/sync v0.4.0 * [`d814be5ce`](https://github.com/containerd/containerd/commit/d814be5ce8194934b12e87fe2c50223bf8f38e60) build(deps): bump go.etcd.io/bbolt from 1.3.7 to 1.3.8 * Fix Windows HPC working directory ([#10306](https://github.com/containerd/containerd/pull/10306)) * [`33b62936e`](https://github.com/containerd/containerd/commit/33b62936ea56c85183331ad2b1d9cb3c76dce8da) [release/1.7]: HPC working directory fix in pkg/cri/server code </p> </details> ### Changes from containerd/platforms <details><summary>21 commits</summary> <p> * Remove hcsshim import from repo ([containerd/platforms#10](https://github.com/containerd/platforms/pull/10)) * [`f680838`](https://github.com/containerd/platforms/commit/f6808384daf3b725b61bc23fd40fac5e3a85168f) Remove hcsshim import from repo * Fix windows matching when os version is empty ([containerd/platforms#11](https://github.com/containerd/platforms/pull/11)) * [`983ba15`](https://github.com/containerd/platforms/commit/983ba156b67be3c9597b773bd1f509f0ba693c3d) Update windows matcher to not compare empty os version * [`17c859f`](https://github.com/containerd/platforms/commit/17c859f02e8008cc3a4fba44314aa35c947e3f7f) Add tests for osversion matching with no version * Add format for platform string ([containerd/platforms#6](https://github.com/containerd/platforms/pull/6)) * [`38a74d2`](https://github.com/containerd/platforms/commit/38a74d209d3bd4091fa83db35061ce32da31b5c3) Add grammar for platform string * downgrade minimum required version of hcsshim to v0.10.0 ([containerd/platforms#5](https://github.com/containerd/platforms/pull/5)) * [`724b9f8`](https://github.com/containerd/platforms/commit/724b9f89557de4d6e70a9d68882afb1b27e5ac57) downgrade minimum required version of hcsshim to v0.10.0 * enable linter on windows ([containerd/platforms#4](https://github.com/containerd/platforms/pull/4)) * [`f6dd384`](https://github.com/containerd/platforms/commit/f6dd3842706b19a665ff27854f12bc8a7f808eb6) enable linter on windows * fix grammar and highlights in README ([containerd/platforms#3](https://github.com/containerd/platforms/pull/3)) * [`cb03428`](https://github.com/containerd/platforms/commit/cb034281bd28d792528b116680b2bbabac7bef75) fix grammar and highlights in README * Fix link in README ([containerd/platforms#1](https://github.com/containerd/platforms/pull/1)) * [`5b937b0`](https://github.com/containerd/platforms/commit/5b937b0167e6bbe5c715dc03e0d37a00f6e833f2) Fix link in README * Update Windows linter version ([containerd/platforms#2](https://github.com/containerd/platforms/pull/2)) * [`129b256`](https://github.com/containerd/platforms/commit/129b256bd216ea5f2fe6f6a78be0ec548c51c9ee) Update linter to skip Windows * [`18e3da6`](https://github.com/containerd/platforms/commit/18e3da61205bc54fe188a5a78c0cb83070c48a2c) Add Github actions CI * [`ed29dfd`](https://github.com/containerd/platforms/commit/ed29dfd2f71167ddc59cbb096fc28b173023f2ea) Remove space at end of readme * [`b3f80ee`](https://github.com/containerd/platforms/commit/b3f80ee8ee3f73aac75070feb14614cdfc2f8be4) Add go module * [`8ff004c`](https://github.com/containerd/platforms/commit/8ff004cf820d1b3fbe8d100fef3adb0e50ded133) Add license and readme </p> </details> ### Changes from containerd/ttrpc <details><summary>4 commits</summary> <p> * switch to github.com/containerd/log for logs ([containerd/ttrpc#169](https://github.com/containerd/ttrpc/pull/169)) * [`4785c70`](https://github.com/containerd/ttrpc/commit/4785c70883bf1729151379b3b5c4674ed2101c61) switch to github.com/containerd/log for logs * Fix CI build status badge in readme ([containerd/ttrpc#162](https://github.com/containerd/ttrpc/pull/162)) * [`e0f3ead`](https://github.com/containerd/ttrpc/commit/e0f3eadca58efdd8f24904d02ba8e1d8a561ec37) Fix CI build status badge in readme </p> </details> ### Dependency Changes * **github.com/Microsoft/hcsshim** v0.11.5 -> v0.11.7 * **github.com/containerd/containerd/api** v1.7.19 **_new_** * **github.com/containerd/platforms** v0.2.1 **_new_** * **github.com/containerd/ttrpc** v1.2.4 -> v1.2.5 * **github.com/distribution/reference** v0.6.0 **_new_** * **github.com/klauspost/compress** v1.16.0 -> v1.16.7 * **go.etcd.io/bbolt** v1.3.7 -> v1.3.10 * **golang.org/x/sync** v0.3.0 -> v0.5.0 Previous release can be found at [v1.7.18](https://github.com/containerd/containerd/releases/tag/v1.7.18)
-
api/v1.7.19b600181a · ·
containerd api/v1.7.19 Welcome to the api/v1.7.19 release of containerd! The first dedicated release for the containerd 1.7 API. This release is separately tagged from the main 1.7.x releases after the v1.7.18 release but follows the versioning. ### Highlights * Add API go module ([#10189](https://github.com/containerd/containerd/pull/10189)) Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues. ### Contributors * Derek McGowan * Akhil Mohan * Phil Estes * Sebastiaan van Stijn ### Changes <details><summary>8 commits</summary> <p> * Prepare release notes for api v1.7.19 ([#10386](https://github.com/containerd/containerd/pull/10386)) * [`436feeb0d`](https://github.com/containerd/containerd/commit/436feeb0ddcf8188c84c616b97b34cc8acd1aa9f) Prepare api release for v1.7.19 * : api: update github.com/containerd/ttrpc v1.2.5 to align with containerd 1.7 module ([#10364](https://github.com/containerd/containerd/pull/10364)) * [`2a6aa6ddf`](https://github.com/containerd/containerd/commit/2a6aa6ddf1f09bedc8b86f33a277f2cf6852eedd) [release/1.7] api: update github.com/containerd/ttrpc v1.2.5 * Add API go module ([#10189](https://github.com/containerd/containerd/pull/10189)) * [`3be919f3c`](https://github.com/containerd/containerd/commit/3be919f3c023f776e5db1b162f642d79a36312a8) Add support for 1.8 interfaces * [`a3a7431bc`](https://github.com/containerd/containerd/commit/a3a7431bc3151a5d0a8c6d9e36a6430a76418f81) Add api go submodule * [`4b82470f6`](https://github.com/containerd/containerd/commit/4b82470f6939ab951334105cf0b10ca9167964ea) refactor: move plugin/fieldpath to api/types/ </p> </details> ### Dependency Changes * **github.com/containerd/ttrpc** v1.2.4 -> v1.2.5 * **github.com/golang/protobuf** v1.5.4 -> v1.5.3 * **google.golang.org/genproto/googleapis/rpc** d307bd883b97 -> b8732ec3820d Previous release can be found at [v1.7.18](https://github.com/containerd/containerd/releases/tag/v1.7.18)
-
v2.0.0-rc.327de5fea · ·
containerd 2.0.0-rc.3 Welcome to the v2.0.0-rc.3 release of containerd! *This is a pre-release of containerd* The first major release of containerd 2.x focuses on the continued stability of containerd's core feature set with an easy upgrade from containerd 1.x. This release includes the stabilization of new features added in the last 1.x release as well as the removal of features which were deprecated in 1.x. The goal is to support the vast community of containerd users well into the future along with their ever increasing deployment footprints and variety of use cases. ### Highlights * Preserve Unprivileged locked flags during remount of bind mounts ([#10200](https://github.com/containerd/containerd/pull/10200)) * Add api Go module and move all protos under api ([#10151](https://github.com/containerd/containerd/pull/10151)) * Configure otel from env instead of config.toml ([#8970](https://github.com/containerd/containerd/pull/8970)) * Fix config import relative path glob ([#9746](https://github.com/containerd/containerd/pull/9746)) * Enable NRI by default ([#9744](https://github.com/containerd/containerd/pull/9744)) * Add PluginInfo to introspection API ([#9442](https://github.com/containerd/containerd/pull/9442)) * Remove overlayfs volatile option on temp mounts ([#9555](https://github.com/containerd/containerd/pull/9555)) * Move packages based on contributing guide ([#9365](https://github.com/containerd/containerd/pull/9365)) * Expose usage of deprecated features ([#9258](https://github.com/containerd/containerd/pull/9258)) * Use Intel ISA-L's igzip if available ([#9200](https://github.com/containerd/containerd/pull/9200)) * Generalize plugin library ([#9214](https://github.com/containerd/containerd/pull/9214)) * Introduce top level config migration ([#9223](https://github.com/containerd/containerd/pull/9223)) * Add image delete target ([#8989](https://github.com/containerd/containerd/pull/8989)) * Remove `LimitNOFILE` from `containerd.service` ([#8924](https://github.com/containerd/containerd/pull/8924)) * Use github.com/containerd/log ([#9086](https://github.com/containerd/containerd/pull/9086)) * Add support for image expiration during garbage collection ([#9022](https://github.com/containerd/containerd/pull/9022)) * Reduce the contention between ref lock and boltdb lock in content store ([#8792](https://github.com/containerd/containerd/pull/8792)) * Remove "containerd.io/restart.logpath" label ([#8264](https://github.com/containerd/containerd/pull/8264)) * Remove `aufs` snapshotter ([#8263](https://github.com/containerd/containerd/pull/8263)) * Fix deadlock during NRI plugin registration ([containerd/nri#79](https://github.com/containerd/nri/pull/79)) * Fix deadlock when writing to pipe blocks ([containerd/ttrpc#168](https://github.com/containerd/ttrpc/pull/168)) #### Container Runtime Interface (CRI) * Add support to set loopback to up ([#10238](https://github.com/containerd/containerd/pull/10238)) * Add support for multiple subscribers to CRI container events ([#9661](https://github.com/containerd/containerd/pull/9661)) * Enable CDI by default ([#9621](https://github.com/containerd/containerd/pull/9621)) * Remove non-sandboxed CRI implementation ([#9228](https://github.com/containerd/containerd/pull/9228)) * Add support for userns in stateless and stateful pods with idmap mounts (KEP-127, k8s >= 1.27) ([#8287](https://github.com/containerd/containerd/pull/8287)) * Use sandboxed CRI by default ([#8994](https://github.com/containerd/containerd/pull/8994)) * Implement RuntimeConfig CRI call ([#8722](https://github.com/containerd/containerd/pull/8722)) * Add support for user namespaces (KEP-127) ([#8803](https://github.com/containerd/containerd/pull/8803)) * Remove CRI v1alpha2 ([#8276](https://github.com/containerd/containerd/pull/8276)) #### Image Distribution * Skip "unknown" in image platform listing ([#10257](https://github.com/containerd/containerd/pull/10257)) * Update unpacker to fetch all provided content ([#10202](https://github.com/containerd/containerd/pull/10202)) * Enable Transfer service API to support plain HTTP ([#10024](https://github.com/containerd/containerd/pull/10024)) * Enable Transfer service to use registry configuration directory ([#9908](https://github.com/containerd/containerd/pull/9908)) * Disable the support for Schema 1 images ([#9765](https://github.com/containerd/containerd/pull/9765)) * Update Transfer service to add OCI descriptors to Progress structure ([#9630](https://github.com/containerd/containerd/pull/9630)) * Update import and export to allow references to missing content ([#9554](https://github.com/containerd/containerd/pull/9554)) * Add option to perform syncfs after pull ([#9401](https://github.com/containerd/containerd/pull/9401)) * Add image verifier transfer service plugin system based on a binary directory ([#8493](https://github.com/containerd/containerd/pull/8493)) #### Runtime * Provide runtime options in plugin info ([#10251](https://github.com/containerd/containerd/pull/10251)) * Store bootstrap parameters in sandbox metadata ([#9736](https://github.com/containerd/containerd/pull/9736)) * Update apparmor to allow confined runc to kill containers ([#10123](https://github.com/containerd/containerd/pull/10123)) * Support vsock connection to task api ([#9738](https://github.com/containerd/containerd/pull/9738)) * Update RuntimeDefault seccomp profile to disallow io_uring related syscalls ([#9320](https://github.com/containerd/containerd/pull/9320)) * Switch runc shim to task service v3 and fix restore ([#9233](https://github.com/containerd/containerd/pull/9233)) * Add sandboxer configuration and move sandbox controllers to plugins ([#8268](https://github.com/containerd/containerd/pull/8268)) * Add annotations to CreateSandbox request ([#8960](https://github.com/containerd/containerd/pull/8960)) * Add SandboxMetrics ([#8680](https://github.com/containerd/containerd/pull/8680)) * Publish sandbox events ([#8602](https://github.com/containerd/containerd/pull/8602)) * Remove the CriuPath field from runc's options ([#8279](https://github.com/containerd/containerd/pull/8279)) * Remove support for config.toml `version = 1` ([#8275](https://github.com/containerd/containerd/pull/8275)) * Remove `io.containerd.runtime.v1.linux` and `io.containerd.runc.v1` ([#8262](https://github.com/containerd/containerd/pull/8262)) #### Security Advisories * [medium] RAPL accessible to a container [GHSA-7ww5-4wqc-m92c](https://github.com/containerd/containerd/security/advisories/GHSA-7ww5-4wqc-m92c) #### Breaking * Disable the support for Schema 1 images ([#9765](https://github.com/containerd/containerd/pull/9765)) * Update RuntimeDefault seccomp profile to disallow io_uring related syscalls ([#9320](https://github.com/containerd/containerd/pull/9320)) * Move client to subpackage ([#9316](https://github.com/containerd/containerd/pull/9316)) * Remove `LimitNOFILE` from `containerd.service` ([#8924](https://github.com/containerd/containerd/pull/8924)) * Remove CRI v1alpha2 ([#8276](https://github.com/containerd/containerd/pull/8276)) * Remove `io.containerd.runtime.v1.linux` and `io.containerd.runc.v1` ([#8262](https://github.com/containerd/containerd/pull/8262)) * Remove "containerd.io/restart.logpath" label ([#8264](https://github.com/containerd/containerd/pull/8264)) * Remove `aufs` snapshotter ([#8263](https://github.com/containerd/containerd/pull/8263)) #### Deprecations * Add type alias for event Envelope ([#10279](https://github.com/containerd/containerd/pull/10279)) * Postpone removal of deprecated CRI config properties ([#9966](https://github.com/containerd/containerd/pull/9966)) * Deprecate go-plugin configuration option ([#9238](https://github.com/containerd/containerd/pull/9238)) * CNI conf_template in CRI is no longer deprecated ([#8637](https://github.com/containerd/containerd/pull/8637)) Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues. ### Contributors * Derek McGowan * Akihiro Suda * Maksym Pavlenko * Wei Fu * Phil Estes * Sebastiaan van Stijn * Samuel Karp * Stefan Berger * Kazuyoshi Kato * Rodrigo Campos * Danny Canter * Abel Feng * Gabriel Adrian Samfira * Kirtana Ashok * Austin Vazquez * Iceber Gu * Kohei Tokunaga * Mike Brown * Krisztian Litkey * Akhil Mohan * Jin Dong * Bjorn Neergaard * rongfu.leng * Justin Chadwell * James Sturtevant * Paul "TBBle" Hampson * Davanum Srinivas * Enrico Weigelt * Brian Goff * Henry Wang * Paweł Gronowski * Hsing-Yu (David) Chen * Ilya Hanov * Laura Brehm * Marat Radchenko * Cardy.Tang * Shingo Omura * Aditi Sharma * Bryant Biggs * Evan Lezar * Jordan Liggitt * Kay Yan * Markus Lehtonen * Nashwan Azhari * Shuaiyi Zhang * Vinayak Goyal * helen * Alexandru Matei * Amit Barve * Anthony Nandaa * Charity Kathure * Ed Bartosh * Etienne Champetier * James Jenkins * Kevin Parsons * Milas Bowman * Swagat Bora * yanggang * Aditya Ramani * Adrian Reber * Amir M. Ghazanfari * Artem Khramov * Avi Deitcher * Brad Davidson * Chen Yiyang * Christian Muehlhaeuser * Cory Snider * Djordje Lukic * Edgar Lee * Ethan Lowman * Jiang Liu * June Rhodes * Lucas Rattz * Mahamed Ali * Maksim An * Michael Crosby * Peteris Rudzusiks * Sam Edwards * Samruddhi Khandale * Steve Griffith * Tony Fang * VERNOU Cédric * hang.jiang * jerryzhuang * lengrongfu * ningmingxiao * roman-kiselenko * zhanluxianshen * zounengren * Aaron Lehmann * Adrien Delorme * Alex Couture-Beil * Alex Ellis * Alex Rodriguez * Angelos Kolaitis * Antonio Huete Jimenez * Arash Haghighat * Ben Foster * Bin Tang * Bin Xin * BinBin He * Brennan Kinney * Changqing Li * ChengenH * ChengyuZhu6 * Christian Stewart * Craig Ingram * Daisy Rong * David Porter * Derek Nola * Eng Zer Jun * Fabiano Fidêncio * Fahed Dorgaa * Gary McDonald * Iain Macdonald * James Lakin * Jan Dubois * Jaroslav Jindrak * Jiongchi Yu * Julien Balestra * Kern Walster * Kirill A. Korinsky * Konstantin Khlebnikov * Michael Zappa * Pan Yibo * Qasim Sarfraz * Qiutong Song * Reinhard Tartler * Robbie Buxton * Robert-André Mauchin * Ruihua Wen * Shukui Yang * Talon * Tianon Gravi * Tim Hockin * Tobias Klauser * Tomáš Virtus * Tõnis Tiigi * Wang Xinwen * William Chen * Xinyang Ge * Yibo Zhuang * Yury Gargay * Zechun Chen * Zhang Tianyang * Zoe * baijia * bzsuni * charles-chenzz * chschumacher1994 * guangli.bao * guangwu * krglosse * pigletfly * rokkiter * wangxiang * zhangpeng * zhaojizhuang * 吴小白 * 张钰 * 沈陵 * 谭九鼎 ### Dependency Changes * **dario.cat/mergo** v1.0.0 **_new_** * **github.com/AdaLogics/go-fuzz-headers** 1f10f66a31bf -> ced1acdcaa24 * **github.com/AdamKorcz/go-118-fuzz-build** 5330a85ea652 -> 8075edf89bb0 * **github.com/Masterminds/semver/v3** v3.2.1 **_new_** * **github.com/Microsoft/go-winio** v0.6.0 -> v0.6.2 * **github.com/Microsoft/hcsshim** v0.10.0-rc.7 -> v0.12.4 * **github.com/cenkalti/backoff/v4** v4.2.0 -> v4.3.0 * **github.com/checkpoint-restore/checkpointctl** v1.2.0 **_new_** * **github.com/checkpoint-restore/go-criu/v7** v7.1.0 **_new_** * **github.com/cilium/ebpf** v0.9.1 -> v0.11.0 * **github.com/containerd/cgroups/v3** v3.0.1 -> v3.0.3 * **github.com/containerd/console** v1.0.3 -> v1.0.4 * **github.com/containerd/containerd/api** v1.8.0-rc.2 **_new_** * **github.com/containerd/continuity** v0.3.0 -> v0.4.3 * **github.com/containerd/errdefs** v0.1.0 **_new_** * **github.com/containerd/go-runc** v1.0.0 -> v1.1.0 * **github.com/containerd/imgcrypt** v1.1.7 -> 3ca09a2db5cd * **github.com/containerd/log** v0.1.0 **_new_** * **github.com/containerd/nri** v0.3.0 -> v0.6.1 * **github.com/containerd/platforms** v0.2.1 **_new_** * **github.com/containerd/plugin** v0.1.0 **_new_** * **github.com/containerd/ttrpc** v1.2.1 -> v1.2.4 * **github.com/containerd/typeurl/v2** v2.1.0 -> v2.1.1 * **github.com/containernetworking/cni** v1.1.2 -> v1.2.0 * **github.com/containernetworking/plugins** v1.2.0 -> v1.4.1 * **github.com/containers/ocicrypt** v1.1.6 -> v1.1.10 * **github.com/cpuguy83/go-md2man/v2** v2.0.2 -> v2.0.4 * **github.com/davecgh/go-spew** v1.1.1 -> d8f796af33cc * **github.com/distribution/reference** v0.6.0 **_new_** * **github.com/emicklei/go-restful/v3** v3.10.1 -> v3.11.0 * **github.com/felixge/httpsnoop** v1.0.4 **_new_** * **github.com/fsnotify/fsnotify** v1.6.0 -> v1.7.0 * **github.com/go-jose/go-jose/v3** v3.0.3 **_new_** * **github.com/go-logr/logr** v1.2.3 -> v1.4.1 * **github.com/golang/protobuf** v1.5.2 -> v1.5.4 * **github.com/google/go-cmp** v0.5.9 -> v0.6.0 * **github.com/google/uuid** v1.3.0 -> v1.6.0 * **github.com/gorilla/websocket** v1.5.0 **_new_** * **github.com/grpc-ecosystem/go-grpc-middleware/providers/prometheus** v1.0.1 **_new_** * **github.com/grpc-ecosystem/go-grpc-middleware/v2** v2.1.0 **_new_** * **github.com/grpc-ecosystem/grpc-gateway/v2** v2.7.0 -> v2.19.1 * **github.com/intel/goresctrl** v0.3.0 -> v0.7.0 * **github.com/klauspost/compress** v1.16.0 -> v1.17.8 * **github.com/klauspost/cpuid/v2** v2.0.4 -> v2.2.5 * **github.com/mdlayher/socket** v0.4.1 **_new_** * **github.com/mdlayher/vsock** v1.2.1 **_new_** * **github.com/minio/sha256-simd** v1.0.0 -> v1.0.1 * **github.com/moby/sys/mountinfo** v0.6.2 -> v0.7.1 * **github.com/moby/sys/user** v0.1.0 **_new_** * **github.com/mxk/go-flowrate** cca7078d478f **_new_** * **github.com/opencontainers/image-spec** 3a7f492d3f1b -> v1.1.0 * **github.com/opencontainers/runtime-spec** v1.1.0-rc.1 -> v1.2.0 * **github.com/opencontainers/runtime-tools** 946c877fa809 -> 2e043c6bd626 * **github.com/pelletier/go-toml/v2** v2.2.2 **_new_** * **github.com/pmezard/go-difflib** v1.0.0 -> 5d4384ee4fb2 * **github.com/prometheus/client_golang** v1.14.0 -> v1.19.1 * **github.com/prometheus/client_model** v0.3.0 -> v0.5.0 * **github.com/prometheus/common** v0.37.0 -> v0.48.0 * **github.com/prometheus/procfs** v0.8.0 -> v0.12.0 * **github.com/sirupsen/logrus** v1.9.0 -> v1.9.3 * **github.com/stretchr/testify** v1.8.2 -> v1.9.0 * **github.com/urfave/cli/v2** v2.27.2 **_new_** * **github.com/vishvananda/netns** 2eb08e3e575f -> v0.0.4 * **github.com/xrash/smetrics** 5f08fbb34913 **_new_** * **go.etcd.io/bbolt** v1.3.7 -> v1.3.10 * **go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc** v0.40.0 -> v0.51.0 * **go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp** v0.51.0 **_new_** * **go.opentelemetry.io/otel** v1.14.0 -> v1.26.0 * **go.opentelemetry.io/otel/exporters/otlp/otlptrace** v1.14.0 -> v1.26.0 * **go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc** v1.14.0 -> v1.26.0 * **go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp** v1.14.0 -> v1.26.0 * **go.opentelemetry.io/otel/metric** v0.37.0 -> v1.26.0 * **go.opentelemetry.io/otel/sdk** v1.14.0 -> v1.26.0 * **go.opentelemetry.io/otel/trace** v1.14.0 -> v1.26.0 * **go.opentelemetry.io/proto/otlp** v0.19.0 -> v1.2.0 * **golang.org/x/crypto** v0.1.0 -> v0.23.0 * **golang.org/x/exp** aacd6d4b4611 **_new_** * **golang.org/x/mod** v0.7.0 -> v0.18.0 * **golang.org/x/net** v0.7.0 -> v0.25.0 * **golang.org/x/oauth2** v0.4.0 -> v0.17.0 * **golang.org/x/sync** v0.1.0 -> v0.7.0 * **golang.org/x/sys** v0.6.0 -> v0.21.0 * **golang.org/x/term** v0.5.0 -> v0.20.0 * **golang.org/x/text** v0.7.0 -> v0.15.0 * **golang.org/x/time** 90d013bbcef8 -> v0.3.0 * **google.golang.org/appengine** v1.6.7 -> v1.6.8 * **google.golang.org/genproto/googleapis/api** 6ceb2ff114de **_new_** * **google.golang.org/genproto/googleapis/rpc** 8c6c420018be **_new_** * **google.golang.org/grpc** v1.53.0 -> v1.63.2 * **google.golang.org/protobuf** v1.28.1 -> v1.34.1 * **k8s.io/api** v0.26.2 -> v0.30.0 * **k8s.io/apimachinery** v0.26.2 -> v0.30.0 * **k8s.io/apiserver** v0.26.2 -> v0.30.0 * **k8s.io/client-go** v0.26.2 -> v0.30.0 * **k8s.io/component-base** v0.26.2 -> v0.30.0 * **k8s.io/cri-api** v0.26.2 -> 3a66d9d86654 * **k8s.io/klog/v2** v2.90.1 -> v2.120.1 * **k8s.io/kubelet** v0.30.0 **_new_** * **k8s.io/utils** a5ecb0141aa5 -> 3b25d923346b * **sigs.k8s.io/json** f223a00ba0e2 -> bc3834ca7abd * **sigs.k8s.io/structured-merge-diff/v4** v4.2.3 -> v4.4.1 * **tags.cncf.io/container-device-interface** v0.7.2 **_new_** * **tags.cncf.io/container-device-interface/specs-go** v0.7.0 **_new_** Previous release can be found at [v1.7.0](https://github.com/containerd/containerd/releases/tag/v1.7.0) ### Which file should I download? * `containerd-<VERSION>-<OS>-<ARCH>.tar.gz`: ✅Recommended. Dynamically linked with glibc 2.31 (Ubuntu 20.04). * `containerd-static-<VERSION>-<OS>-<ARCH>.tar.gz`: Statically linked. Expected to be used on non-glibc Linux distributions. Not position-independent. In addition to containerd, typically you will have to install [runc](https://github.com/opencontainers/runc/releases) and [CNI plugins](https://github.com/containernetworking/plugins/releases) from their official sites too. See also the [Getting Started](https://github.com/containerd/containerd/blob/main/docs/getting-started.md) documentation.
-
v1.7.18ae71819c · ·
containerd 1.7.18 Welcome to the v1.7.18 release of containerd! The eighteenth patch release for containerd 1.7 contains various updates along with an updated version of Go. Go 1.22.4 and 1.21.11 include a fix for a symlink time of check to time of use race condition during directory removal. ### Highlights * Update Go version to 1.21.11 ([#10298](https://github.com/containerd/containerd/pull/10298)) * Remove uses of `platforms.Platform` alias ([#10277](https://github.com/containerd/containerd/pull/10277)) * Migrate log imports to `github.com/containerd/log` ([#10269](https://github.com/containerd/containerd/pull/10269)) * Migrate errdefs package to `github.com/containerd/errdefs` ([#10266](https://github.com/containerd/containerd/pull/10266)) * Fix usage of "unknown" platform ([#10261](https://github.com/containerd/containerd/pull/10261)) Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues. ### Contributors * Derek McGowan * Sebastiaan van Stijn * Akhil Mohan * Austin Vazquez * Phil Estes ### Changes <details><summary>16 commits</summary> <p> * Prepare release notes for v1.7.18 ([#10301](https://github.com/containerd/containerd/pull/10301)) * [`9426aab62`](https://github.com/containerd/containerd/commit/9426aab62b6496ad93edb7e08b8655bb92d3a84b) Prepare release notes for v1.7.18 * Update Go version to 1.21.11 ([#10298](https://github.com/containerd/containerd/pull/10298)) * [`cdd3ea913`](https://github.com/containerd/containerd/commit/cdd3ea913586c6e3d1098416a5cded136d761456) Update Go version to 1.21.11 * Remove uses of `platforms.Platform` alias ([#10277](https://github.com/containerd/containerd/pull/10277)) * [`1e3c662d6`](https://github.com/containerd/containerd/commit/1e3c662d6c2bd0eafdcd402a32324e84d5f0498b) [release/1.7] remove uses of platforms.Platform alias * Migrate log imports to `github.com/containerd/log` ([#10269](https://github.com/containerd/containerd/pull/10269)) * [`0af6825b1`](https://github.com/containerd/containerd/commit/0af6825b1e64d56ffd72f801c4fb1224f888c367) migrate logs imports to github.com/containerd/log module * Migrate errdefs package to `github.com/containerd/errdefs` ([#10266](https://github.com/containerd/containerd/pull/10266)) * [`308341a44`](https://github.com/containerd/containerd/commit/308341a4464bd723630d3df19a5df20aa252af9f) replace uses of github.com/containerd/containerd/errdefs * [`47ff8cfce`](https://github.com/containerd/containerd/commit/47ff8cfce0768d4f4c98ad05bd72e8f9ad8dfb5c) migrate errdefs package to github.com/containerd/errdefs module * Fix usage of "unknown" platform ([#10261](https://github.com/containerd/containerd/pull/10261)) * [`f4d11912a`](https://github.com/containerd/containerd/commit/f4d11912a77c1e15db200aed7481d45bd12b5eb1) core/image: fix usage of "unknown" platform * Explicitly set release latest to true ([#10265](https://github.com/containerd/containerd/pull/10265)) * [`5b0480009`](https://github.com/containerd/containerd/commit/5b0480009c5f4ee1f8a80cbe7aae22642867ee25) Explicitly set release latest to true * [`d669b100d`](https://github.com/containerd/containerd/commit/d669b100d5337150d7f9a170de55ac7d2d7ec24c) build(deps): bump softprops/action-gh-release from 1 to 2 </p> </details> ### Changes from containerd/errdefs <details><summary>6 commits</summary> <p> * Add common files ([containerd/errdefs#1](https://github.com/containerd/errdefs/pull/1)) * [`78f3494`](https://github.com/containerd/errdefs/commit/78f3494a77384f066cd3457e1dfa1bda180f180d) Add Github actions configuration * [`46f1770`](https://github.com/containerd/errdefs/commit/46f1770bd5e80699a13fa107e0d5b195d1db9db4) Add go.mod configuration * [`959121a`](https://github.com/containerd/errdefs/commit/959121a299905905fed65b533f72a7ee36786301) Add README.md * Add LICENSE ([containerd/errdefs#2](https://github.com/containerd/errdefs/pull/2)) * [`33a2275`](https://github.com/containerd/errdefs/commit/33a2275efb9a92237b9a8e7f41c31672f3293ccb) Add LICENSE </p> </details> ### Dependency Changes * **github.com/containerd/errdefs** v0.1.0 **_new_** * **google.golang.org/genproto** b8732ec3820d -> e6e6cdab5c13 * **google.golang.org/genproto/googleapis/api** b8732ec3820d -> 007df8e322eb * **google.golang.org/genproto/googleapis/rpc** b8732ec3820d -> d307bd883b97 Previous release can be found at [v1.7.17](https://github.com/containerd/containerd/releases/tag/v1.7.17)
-
v1.6.33d2d58213 · ·
containerd 1.6.33 Welcome to the v1.6.33 release of containerd! The thirty-third patch release for containerd 1.6 contains various updates along with an updated version of Go. Go 1.22.4 and 1.21.11 include a fix for a symlink time of check to time of use race condition during directory removal. ### Highlights * Update Go version to 1.21.11 ([#10299](https://github.com/containerd/containerd/pull/10299)) * Migrate log imports to `github.com/containerd/log` ([#10271](https://github.com/containerd/containerd/pull/10271)) * Migrate `errdefs` package to `github.com/containerd/errdefs` ([#10267](https://github.com/containerd/containerd/pull/10267)) * Fix usage of "unknown" platform ([#10268](https://github.com/containerd/containerd/pull/10268)) Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues. ### Contributors * Derek McGowan * Phil Estes * Sebastiaan van Stijn * Akhil Mohan * Austin Vazquez * Samuel Karp ### Changes <details><summary>14 commits</summary> <p> * Prepare release notes for v1.6.33 ([#10300](https://github.com/containerd/containerd/pull/10300)) * [`97e059626`](https://github.com/containerd/containerd/commit/97e0596267dd50cce08d9d4238557b345794197b) Prepare release notes for v1.6.33 * Update Go version to 1.21.11 ([#10299](https://github.com/containerd/containerd/pull/10299)) * [`da9a04e54`](https://github.com/containerd/containerd/commit/da9a04e54cac42438c459fda6ec8f2c772c50441) Includes fix for a symlink race on remove * Migrate log imports to `github.com/containerd/log` ([#10271](https://github.com/containerd/containerd/pull/10271)) * [`a389bb305`](https://github.com/containerd/containerd/commit/a389bb3051aa217bf72905ca4544d6661840fc03) migrate logs imports to github.com/containerd/log module * Migrate `errdefs` package to `github.com/containerd/errdefs` ([#10267](https://github.com/containerd/containerd/pull/10267)) * [`615fb03e4`](https://github.com/containerd/containerd/commit/615fb03e4721cae0ca7630f66c21e3d148e0fb57) replace uses of github.com/containerd/containerd/errdefs * [`c83be1b9e`](https://github.com/containerd/containerd/commit/c83be1b9ecc5df733c038a596af42bdff445ad7f) migrate errdefs package to github.com/containerd/errdefs module * Fix usage of "unknown" platform ([#10268](https://github.com/containerd/containerd/pull/10268)) * [`d4d489496`](https://github.com/containerd/containerd/commit/d4d489496305e9ebab9deb78f718658d1c17579f) core/image: fix usage of "unknown" platform * Explicitly set release latest to false ([#10263](https://github.com/containerd/containerd/pull/10263)) * [`5eaf5f881`](https://github.com/containerd/containerd/commit/5eaf5f88144bf71725b161a47c7e6af2d2b16331) Explicitly set release latest to false * [`b51f7445d`](https://github.com/containerd/containerd/commit/b51f7445d353c9ce18b8614a26756f145f5e19b0) build(deps): bump softprops/action-gh-release from 1 to 2 </p> </details> ### Changes from containerd/errdefs <details><summary>6 commits</summary> <p> * Add common files ([containerd/errdefs#1](https://github.com/containerd/errdefs/pull/1)) * [`78f3494`](https://github.com/containerd/errdefs/commit/78f3494a77384f066cd3457e1dfa1bda180f180d) Add Github actions configuration * [`46f1770`](https://github.com/containerd/errdefs/commit/46f1770bd5e80699a13fa107e0d5b195d1db9db4) Add go.mod configuration * [`959121a`](https://github.com/containerd/errdefs/commit/959121a299905905fed65b533f72a7ee36786301) Add README.md * Add LICENSE ([containerd/errdefs#2](https://github.com/containerd/errdefs/pull/2)) * [`33a2275`](https://github.com/containerd/errdefs/commit/33a2275efb9a92237b9a8e7f41c31672f3293ccb) Add LICENSE </p> </details> ### Dependency Changes * **github.com/containerd/errdefs** v0.1.0 **_new_** Previous release can be found at [v1.6.32](https://github.com/containerd/containerd/releases/tag/v1.6.32)