1548723067
Upgrade podman to 1.4.4
2019-07-08 23:00:12 +02:00
85adbd76cb
Upgrade crio to 1.15.0
...
The repository was moved to a separate organization
strings.ReplaceAll only work in go1.12, not go1.10
Need to create conmon/config.h without tags and git
The configuration _needs_ to be updated (yet again)
2019-07-07 16:49:02 +02:00
37f3a64411
Upgrade crio.conf to version v1.15.0
2019-07-07 14:25:24 +02:00
8bea8e719f
Upgrade Docker, from 18.09.6 to 18.09.7
...
runc v1.0.0-rc8-0-g425e105
containerd v1.2.6
2019-07-01 21:56:15 +02:00
92e9a41fc9
Upgrade conmon version for podman
2019-06-26 20:37:18 +02:00
3fe495fb7e
Upgrade podman to 1.4.1
2019-06-26 20:37:18 +02:00
b31c66c807
Link runc dynamically, avoid docker-runc install
...
Static linking doesn't work with the systemd cgroup manager.
The latest docker package now uses the standard runc program.
2019-06-04 07:13:59 +02:00
32583d8c1f
Install podman configuration to use no_pivot_root
...
We need this podman setting, as long as we're running from rootfs.
no_pivot_root = true
Note that building uses a different way, an environment variable.
export BUILDAH_NOPIVOT=true
2019-06-04 07:13:28 +02:00
70a00bfb3b
Make podman depend on conmon from master
...
Need a later version than the one provided by crio.
So use separate installations, one for each program.
2019-06-04 07:13:09 +02:00
516904c9a1
Merge pull request #4321 from afbjorklund/podman-buildah
...
Make buildah --no-pivot default, using env var
2019-05-28 17:09:48 -07:00
fb0a6f4548
Make buildah --no-pivot default, using env var
...
Needed for doing "podman build" (uses buildah) when running on rootfs.
This environment variable has the same affect as DOCKER_RAMDISK does.
2019-05-25 13:23:29 +02:00
1a24097cfe
Merge pull request #4340 from amshinde/add-tc-u32-mirred
...
kernel: Add config for tc u32 filter and mirred action
2019-05-24 13:55:33 -07:00
2176f3fa37
kernel: Add config for tc u32 filter and mirred action
...
These are needed for running Kata Containers in minikube.
Kata uses linux tc for its networking
Signed-off-by: Archana Shinde <archana.m.shinde@intel.com>
2019-05-23 18:34:34 -07:00
6a9031aaf6
Enable GatewayPorts in sshd_config, for proxying in services into minikube
2019-05-24 09:56:49 +09:00
af443fc3ac
Merge pull request #4299 from afbjorklund/podman-1.3
...
Update to Podman 1.3 & CRIO v1.14.1
2019-05-20 16:29:43 -07:00
d3c088aefe
Merge branch 'master' into podman-1.3
2019-05-20 22:32:01 +02:00
d6434317c7
Upgrade crio to 1.14.1
2019-05-20 22:31:35 +02:00
dff8960a3c
Upgrade podman to 1.3.1
2019-05-20 22:23:26 +02:00
a3360831f4
Upgrade Docker, from 18.09.5 to 18.09.6
2019-05-20 22:12:05 +02:00
00832dc182
Merge pull request #4204 from afbjorklund/docker-18.09
...
Upgrade Docker, from 18.06.3-ce to 18.09.5
2019-05-20 08:12:55 -07:00
732c6d7e9b
Need to create the cni directory, or cri-o cries
...
config validation: invalid network_dir:
stat /etc/cni/net.d/: no such file or directory
2019-05-04 22:40:00 +02:00
c272f683ea
The cri-o config changed the type of a field
...
Trying to run with the old config gives fatal runtime error:
toml: cannot load TOML value of type string into a Go slice
2019-05-04 22:09:21 +02:00
8a4b8629dc
Upgrade crio.conf to version v1.14.0
2019-05-04 22:05:23 +02:00
1d8b7d6032
Upgrade crio.conf to version v1.13.0
2019-05-04 21:57:46 +02:00
bfed2948c1
Upgrade crio.conf to version v1.12.0
2019-05-04 21:55:12 +02:00
6dda382a6a
Upgrade crio.conf to version v1.10.0
2019-05-04 19:33:02 +02:00
5927bf874d
Upgrade Docker, from 18.06.3-ce to 18.09.5
...
Stop installing docker-runc, docker-containerd and docker-containerd-ctr
Instead use the upstream runc, containerd and ctr (after upgrading them)
runc v1.0.0-rc6-69-g2b18fe1
containerd v1.2.5
2019-05-04 18:16:37 +02:00
3cc4376298
Upgrade crio to 1.14.0
2019-05-04 16:17:12 +02:00
af5b2c7c2d
Upgrade podman to 1.2.0
2019-05-04 16:10:10 +02:00
14414d1676
Merge pull request #4030 from laozc/fix-hv-daemon
...
Update Hyper-V daemons
2019-04-10 15:17:40 -07:00
b06b3ee3f8
Enable CONFIG_NF_CONNTRACK_ZONES
2019-04-09 06:50:22 -07:00
9a5f3c2673
Do not attempt to restart service on failures for Hyper-V daemons
...
Service restart may not work when a specific integration service
is disabled in the VM setting. Remove the setting for performance
concerns.
2019-03-31 14:06:56 +08:00
e8cdc4ba85
Merge Hyper-V deamon packages to hyperv-daemons
...
Signed-off-by: Zhongcheng Lao <Zhongcheng.Lao@microsoft.com>
2019-03-31 12:28:00 +08:00
e0d7363fba
Add udev rules to generate devices for Hyper-V daemons
...
Signed-off-by: Zhongcheng Lao <Zhongcheng.Lao@microsoft.com>
2019-03-31 12:27:54 +08:00
def1a55472
Install Hyper-V FCOPY daemon
...
Signed-off-by: Zhongcheng Lao <Zhongcheng.Lao@microsoft.com>
2019-03-31 12:27:23 +08:00
47f4d2ebac
Install Hyper-V VSS daemon
...
Signed-off-by: Zhongcheng Lao <Zhongcheng.Lao@microsoft.com>
2019-03-31 12:26:37 +08:00
f18136dc9e
Install required scripts for Hyper-V KVP daemon
...
Signed-off-by: Zhongcheng Lao <Zhongcheng.Lao@microsoft.com>
2019-03-30 19:20:57 +08:00
4c4d0b270b
Upgrade Docker, from 18.06.2-ce to 18.06.3-ce
...
We have our own runc version anyway, instead of the older
unpatched one that was shipped by mistake with 18.06.2...
But now that we are printing the container runtime version,
some people find it disturbing to see the older number.
2019-03-30 08:36:10 +01:00
cc5d4e9724
Merge branch 'master' into rkt-remove
2019-03-25 11:31:09 -07:00
593c4795de
Merge pull request #3946 from afbjorklund/podman-toolbox
...
Use podman instead of rkt, for extracting toolbox
2019-03-25 11:28:10 -07:00
71b3e3ec5d
Store the toolbox on the disk instead of rootfs
...
There was a lack of "disk" space, when using memory.
This also makes the toolbox persistent over reboots.
2019-03-25 07:41:21 +01:00
2590fc7b9a
Remove the rkt container runtime
...
It has not been updated since kubernetes 1.9 or so
2019-03-24 08:50:58 +01:00
3d483b292c
Use podman instead of rkt, for extracting toolbox
...
Need to create and mount a dummy container, to get at image.
Used rsync instead of cp -pR, easier with sudo permissions.
2019-03-23 22:20:20 +01:00
06d9210937
Merge pull request #3927 from tstromberg/noswap-2.0
...
Remove the swap partition from minikube.iso
2019-03-21 11:48:25 -07:00
5f804d6d67
Update CoreOS GPG key hash
2019-03-21 10:40:26 -07:00
7ad20b00db
Merge branch 'master' into noswap-2.0
2019-03-21 10:34:19 -07:00
4ca9f79310
Merge pull request #3905 from afbjorklund/rktlet
...
The rktlet binary is missing, for the rkt container runtime
2019-03-21 10:32:39 -07:00
37e5e6d25f
Merge pull request #3921 from tstromberg/podman-no-tools
...
podman needs no install.tools
2019-03-21 10:30:41 -07:00
3304951683
podman needs no install.tools
2019-03-20 22:26:57 -07:00
4701ef8f1e
Upgrade crio to v1.13.1, skip install.tools target as it isn't necessary
2019-03-20 22:20:49 -07:00
089e1c9cc2
Remove where a swap partition is created and activated
2019-03-20 20:50:49 -07:00
a380dbbeae
Add rktlet from master
2019-03-18 20:47:37 +01:00
39f1164542
Upgrade rkt to 1.30.0
2019-03-18 20:37:34 +01:00
cc71bf9e82
Merge pull request #3758 from karmab/vhost_net_support
...
Enable tap and vhost-net in minikube iso
2019-03-06 14:16:37 -08:00
3fdda45e30
Enable kernel modules necessary for IPVS
...
To be able to use Kubernetes' IPVS proxy-mode, certain (IP Set) kernel modules
need to be enabled during kernel build time.
Building a new Minikube image with these modules enabled, will allow
others to switch kube-proxy in IPVS mode and experiment with it inside
Minikube.
2019-03-02 20:49:00 +01:00
46492b5cfc
Enable tap and vhost-net in minikube iso
2019-02-26 09:46:32 +01:00
24b639307e
Add Netfilter `xt_socket` module to complete support for Transparent Proxying (TPROXY)
...
According to Kernel documentation, support for Transparent Proxying (TPROXY)
requires 2 Netfilter modules to be installed: `xt_TPROXY` and `xt_socket`.
So far, Minikube had only `xt_TPROXY`.
See https://www.kernel.org/doc/Documentation/networking/tproxy.txt
2019-02-17 18:54:50 +01:00
7e6c688116
Merge pull request #3666 from afbjorklund/docker-runc
...
Upgrade Docker, from 18.06.1-ce to 18.06.2-ce
2019-02-14 21:29:15 +01:00
bab67c46fc
runc 0a012df
...
CVE-2019-5736
2019-02-13 20:26:43 +01:00
f92d76b13b
Upgrade Docker, from 18.06.1-ce to 18.06.2-ce
...
CVE-2019-5736
2019-02-13 19:42:43 +01:00
abb5fc0af0
Show name as CRI-O, even if class is CRIO
...
Should use the proper name for display, even if we use a name more
suitable to naming classes and methods for the implementation...
Also use the --runtime=cri-o when testing, and update the github
repository now that cri-o has graduated from incubator to a sig.
See https://cri-o.io/
2019-02-12 21:03:51 +01:00
ad62f93012
crio: use official kube pause image from gcr
2019-02-05 22:14:28 +01:00
2702526566
Update crictl to v1.13.0
2019-02-04 09:18:57 -08:00
d609aa3239
$TOOLBOX_DOCKER_ARCHIVE variable removed
2019-01-30 14:37:17 -02:00
4226ff70aa
updated to fedora-29. issues #2889 $3058
2019-01-30 13:46:53 -02:00
0d02609e76
Merge pull request #3584 from afbjorklund/podman-1.0
...
Podman 1.0.0
2019-01-25 09:33:09 -08:00
aadbb1e42a
containerd: upgrade from beta to release version
2019-01-24 20:57:03 +01:00
d18dce5850
Make containerd report the correct version
...
It was trying to use "git", on the tarball.
Closes #3454
2019-01-24 20:51:09 +01:00
2caf997fcb
Make sure to use correct git commit, not buildroot
2019-01-24 20:13:23 +01:00
43eeaea420
Upgrade podman to 1.0.0
2019-01-24 20:13:23 +01:00
18097177fd
The podman github project has moved
...
From "projectatomic" to "containers"
2019-01-24 20:13:23 +01:00
5a7e216caf
Upgrade podman to 0.9.3
2019-01-24 20:13:18 +01:00
2aa4927e78
Add basic registries.conf for docker.io registry
2019-01-24 20:09:39 +01:00
108883ef16
Use mac as identifier for dhcp
2019-01-23 14:45:20 +01:00
227d560417
Merge pull request #3545 from tstromberg/runc-update
...
Install upstream runc into /usr/bin/docker-runc
2019-01-18 13:42:55 -08:00
5b7506574d
Add remove TODO comments for docker 18.09
2019-01-18 09:09:51 -08:00
28d0edda80
Install upstream runc into /usr/bin/docker-runc
2019-01-18 08:07:23 -08:00
e1804d24ba
Merge pull request #3535 from tstromberg/runc-update
...
Update to opencontainers/runc HEAD as of 2019-01-15
2019-01-17 09:27:27 -08:00
0219c67612
Pull in opencontainers/runc#1962 by updating to runc HEAD
2019-01-16 11:06:49 -08:00
3aa83674a9
Merge pull request #3441 from brb/2907-no-cni-conf-by-default
...
Do not include the default CNI config by default
2019-01-15 17:14:20 -08:00
5d9311bcdf
Merge pull request #3190 from afbjorklund/crio
...
Improve the default crio-bin configuration
2019-01-15 17:02:12 -08:00
d8f2e99076
Merge pull request #3510 from brb/enable_ipvlan_module
...
Enable ipvlan kernel module
2019-01-14 14:30:27 -08:00
666a902ba7
Add newline
2019-01-11 10:53:29 -08:00
4792a62bc8
Enable ipvlan kernel module
...
This makes it possible to use ipvlan CNI plugins in minikube.
Signed-off-by: Martynas Pumputis <m@lambda.lt>
2019-01-09 14:50:49 +01:00
b2831c871e
Update crio-bin to v1.13.0
2019-01-08 16:22:21 -08:00
1252ad9a6d
Get rid of /usr/libexec/kubernetes/kubelet-plugins/net/exec/k8s.conf
...
As per https://github.com/kubernetes/kubernetes/pull/32151 , kubelet
doesn't search for CNI configs in /usr/libexec/kubernetes/kubelet-plugins/net/exec/
by default anymore.
Signed-off-by: Martynas Pumputis <m@lambda.lt>
2019-01-03 09:23:29 +01:00
d982c4bf74
Do not include the default CNI config by default
...
Previously, minikube has been shipped with the default CNI config
(/etc/cni/net.d/k8s.conf) in its rootfs. This complicated a lot
when using a custom CNI plugin, as the default config was picked
by kubelet before the custom CNI plugin has installed its own CNI
config. So, the end result was that some Pods were attached to a
network defined in the default config, and some got managed by
the custom plugin.
This commit introduces the flag "--enable-default-cni" to
"minikube start" to trigger the provisioning of the default CNI
config.
Signed-off-by: Martynas Pumputis <m@lambda.lt>
2019-01-03 09:23:29 +01:00
e4303ebb91
Disable vboxvideo and remove timesync-set-on-restore: neither work correctly w/ 5.1.x drivers in minikube
2018-12-20 13:54:57 -08:00
9a2600e791
Revert "Upgrade vbox from 5.1.38 to 5.2.22"
...
This reverts commit cbe5878ef2
2018-12-20 11:46:54 -08:00
cbe5878ef2
Upgrade vbox from 5.1.38 to 5.2.22
2018-12-17 11:59:35 -08:00
cee128ad3a
Disable timesyncd: not used in our environment
2018-12-17 11:59:23 -08:00
c3ce6ba0ec
Force vbox timesync at boot
2018-12-17 11:59:00 -08:00
bbfb8ff4cb
Add schedutils for ionice (used by k8s 1.12)
2018-12-05 16:15:36 -08:00
1c3df2dc3c
Add NET_PRIO cgroup to iso ( #3396 )
...
This cgroup is required for running gvisor in minikube.
2018-12-03 14:44:00 -08:00
f7ac166f6b
crio is now in kubernetes-sigs rather than kubernetes-incubator.
2018-11-12 14:44:26 -08:00
d2ac7ae28e
Upgrade to crio v1.11.8
2018-11-07 15:05:51 -08:00
8edef67226
Upgrade Docker, from 17.12.1-ce to 18.06.1-ce
...
Docker >= 18.06 is needed for securityContext.procMount (Kubernetes >= 1.12)
See kubernetes/kubernetes#64283 and docker/docker-ce@67fe100
Signed-off-by: Akihiro Suda <suda.akihiro@lab.ntt.co.jp>
2018-10-06 06:17:01 +09:00
79e95f8e67
Merge pull request #3152 from afbjorklund/cni
...
Upgrade cni and cni-plugins to release version
2018-10-03 21:55:07 -07:00
9ce572222e
Merge pull request #3195 from davidovich/ensure_dev_mounted
...
ensure that /dev has settled before operating
2018-10-03 21:36:55 -07:00
67d5fc8984
Merge pull request #3162 from ansiwen/upgrade-gluster
...
Upgrade gluster client in ISO to 4.1.5
2018-10-02 17:54:01 -07:00
Anders F Björklund
Thomas Strömberg
Archana Shinde
Toliver Jue
Joji Mekkatt
Zhongcheng Lao
Miel Donkers
karmab
Yaroslav Skopets
Kauê Doretto Grecchi
Leif Ringstad
Martynas Pumputis
priyawadhwa
Akihiro Suda