JohnHammond
/
buildkit
mirror of https://github.com/JohnHammond/buildkit.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
3,058 Commits
7 Branches
72 Tags
27 MiB
Commit Graph

3058 Commits (58c359bc5ebf50a00f6d7d0a0eab277bbfb99867)

Author SHA1 Message Date
Tonis Tiigi 77c9a2900d Dockerfile: add darwin/arm64 and windows/arm64 support 
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
 2021-03-23 19:33:11 -07:00
Tonis Tiigi fce365f469 vendor: update x/sys to 1e4c9ba for windows/arm64 support 
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
 2021-03-23 19:33:11 -07:00
Tonis Tiigi b4364bf4a7 update to new cross toolchain 
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
 2021-03-23 19:33:11 -07:00
Vlad A. Ionescu ab76674b24 Retry on temporary network failures. 
Signed-off-by: Vlad A. Ionescu <vladaionescu@users.noreply.github.com>
 2021-03-23 17:28:04 -07:00
Tonis Tiigi 1982e1e285 contenthash: include basename in content checksum for wildcards 
While we generally ignore the basename in this layer, for wildcards
there in no other place to add the basename to the checksum as they
can not be resolved earlier. Before the basename that was in the
checksum was the wildcard itself, so if the wildcard remained same,
content remained same but the file where wildcard pointed to was
renamed, the cache was not invalidated.

Unfortunately, this change breaks cache for all copy commands that
use a wildcard.

Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
 2021-03-23 17:15:50 -07:00
Akihiro Suda ad681c0154
AkihiroSuda/containerd-fuse-overlayfs -> containerd/fuse-overlayfs-snapshotter 
The repo has been moved.

Also bumps up containerd library to v1.5.0-beta.4.

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2021-03-23 18:43:01 +09:00
Akihiro Suda 8effd45b99
Merge pull request #2031 from tonistiigi/caps-contains 
caps: add contains method
 2021-03-22 15:36:34 +09:00
Tonis Tiigi 1d982af3b4 caps: add contains method 
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
 2021-03-21 22:53:27 -07:00
Akihiro Suda 2b990eb801
Merge pull request #2024 from tonistiigi/cache-loop-export 
remotecache: check loops on marshaling cache config
 2021-03-22 14:07:44 +09:00
Tõnis Tiigi cfa948f185
Merge pull request #2029 from crazy-max/gh-checks 
Disable GitHub Checks Patch Annotations
 2021-03-19 09:44:56 -07:00
CrazyMax b21badaf6a
Disable GitHub Checks Patch Annotations 
Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com>
 2021-03-19 09:23:28 +01:00
Tonis Tiigi bee77d81b9 solver: check for edge dependency before merging 
In some cases edges that depend on each other
can have identical cache keys. This happens for
example when empty layers are optimized out by
the differ between identical commands. We need to
detect this case and avoid merge.

Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
 2021-03-18 19:55:35 -07:00
Tonis Tiigi f3e88854a4 remotecache: validate remote cache for loops before export 
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
 2021-03-16 23:08:42 -07:00
Tonis Tiigi a0ae7f4807 dockerfile: test cache export loop 
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
 2021-03-16 23:08:42 -07:00
Akihiro Suda 4eca10a46c
Merge pull request #2020 from tonistiigi/push-tags 
push: avoid overwriting tags on push
 2021-03-16 10:47:52 +09:00
Tõnis Tiigi c5c2af712f
Merge pull request #1994 from kohtala/patch-1 
Explain the cache identity
 2021-03-14 21:54:37 -07:00
Tõnis Tiigi df582bd74c
Merge pull request #2021 from thaJeztah/bump_sys_mount 
go.mod: moby/sys/mount v0.2.0, moby/sys/mountinfo v0.4.1
 2021-03-14 21:52:45 -07:00
Tõnis Tiigi ae306d8b15
Merge pull request #2022 from thaJeztah/less_looping 
security/entitlements.WithInsecureSpec() remove redundant loop
 2021-03-14 21:52:26 -07:00
Sebastiaan van Stijn 1b4affddcd
security/entitlements.WithInsecureSpec() remove redundant loop 
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2021-03-14 13:09:09 +01:00
Sebastiaan van Stijn 583b4679f6
go.mod: moby/sys/mount v0.2.0, moby/sys/mountinfo v0.4.1 
github.com/moby/sys/mountinfo v0.4.1
-------------------------------------

- Fix PrefixFilter() being too greedy
- TestMountedBy*: add missing pre-checks
- Documentation improvements

github.com/moby/sys/mount v0.2.0
-------------------------------------

Breaking changes:

- Remove stub-implementations for Windows for Mount(), Unmount(), RecursiveUnmount(),
  MergeTmpfsOptions()

Fixes and improvements:

- go.mod: update github.com/moby/sys/mountinfo to v0.4.0
- use MNT_* flags from golang.org/x/sys/unix on freebsd
- add support for OpenBSD in addition to FreeBSD
- fix package overview documentation not showing
- RecursiveUnmount(): minor improvements

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2021-03-14 11:36:26 +01:00
Tonis Tiigi 1d7526b1bb push: avoid overwriting tags on push 
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
 2021-03-12 13:45:01 -08:00
Tõnis Tiigi 2be23848e8
Merge pull request #2013 from AkihiroSuda/containerd-20210310 
vendor containerd (requred for rootless overlayfs on kernel 5.11)
 2021-03-10 19:00:09 -08:00
Akihiro Suda 13ea18ad08
vendor containerd (requred for rootless overlayfs on kernel 5.11) 
Required for rootless overlayfs on kernel 5.11
https://github.com/containerd/containerd/pull/5076

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2021-03-10 13:51:27 +09:00
Marko Kohtala f2a6e83adc Explain the cache identity 
One has doubt his guess of the obvious is correct unless it is mentioned in documentation.

Signed-off-by: Marko Kohtala <marko.kohtala@gmail.com>
 2021-02-25 13:11:13 +02:00
Tonis Tiigi e42fe0b499 Dockerfile: update containerd to 1.4.3 
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
 2021-02-24 15:25:23 -08:00
Tõnis Tiigi c3f5c93e39
Merge pull request #1998 from tonistiigi/update-runc-rc93 
Dockerfile: update runc to rc93
 2021-02-24 15:20:49 -08:00
Tonis Tiigi da323d7728 Dockerfile: update runc to rc93 
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
 2021-02-24 14:24:38 -08:00
Tibor Vass c775aec183
Merge pull request #1993 from tonistiigi/empty-layer-export-fix 
allow skipping empty layer detection on cache export
 2021-02-24 12:25:19 -08:00
Tõnis Tiigi 53b241f870
Merge pull request #1978 from ktock/stargz-snapshotter-v0.4.0 
Bump stargz snapshotter to v0.4.1
 2021-02-24 10:09:39 -08:00
Tonis Tiigi 29af1397e2 allow skipping empty layer detection on cache export 
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
 2021-02-24 01:11:17 -08:00
ktock 072126f710 Bump stargz snapshotter to v0.4.1 
Signed-off-by: ktock <ktokunaga.mail@gmail.com>
 2021-02-24 12:09:14 +09:00
Akihiro Suda 661f60f2fe
Merge pull request #1989 from tonistiigi/revert-tcp-limit 2021-02-22 04:25:21 +09:00
Akihiro Suda c6c1d97c7e
Merge pull request #1987 from tonistiigi/git-token-scope 2021-02-22 04:24:44 +09:00
Tonis Tiigi 49c4ab46ad Revert "resolver: fix tcp connections limit" 
This reverts commit 58dc579d57.

Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
 2021-02-20 12:15:25 -08:00
Tonis Tiigi 5bf64293f8 git: set token only for main remote access 
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
 2021-02-19 00:25:35 -08:00
Akihiro Suda ddbed13a0b
Merge pull request #1986 from tonistiigi/tcp-conn-limit 
resolver: fix tcp connections limit
 2021-02-19 17:24:41 +09:00
Tonis Tiigi 58dc579d57 resolver: fix tcp connections limit 
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
 2021-02-18 23:04:37 -08:00
Akihiro Suda 19d31737fb
Merge pull request #1963 from tonistiigi/release-count-fixes 2021-02-19 08:22:54 +09:00
Tõnis Tiigi 25bd56b3b5
Merge pull request #1985 from cpuguy83/dockerfile_multiplat_opt 
Support BUILDKIT_MULTI_PLATFORM arg in Dockerfile
 2021-02-17 21:06:51 -08:00
Brian Goff adf8f25aa2 Support BUILDKIT_MULTI_PLATFORM arg in Dockerfile 
This sets the platform prefix based on the `BUILDKIT_MULTI_PLATFORM`
value (if set).  This is similar to the changes here in
docker/buildx@7f58ad45fa

Signed-off-by: Brian Goff <cpuguy83@gmail.com>
 2021-02-17 21:47:04 +00:00
Akihiro Suda 7f26b0512d
Merge pull request #1979 from robtaylor/master 
Update buildkitd.toml.md
 2021-02-16 15:05:08 +09:00
Rob Taylor fd8e32debc Update buildkitd.toml.md 
gckeepstorage is in MB, not bytes.

Signed-off-by: Rob Taylor <robtaylor@floopily.org>
 2021-02-13 13:31:10 +00:00
Akihiro Suda 7641cbf961
Merge pull request #1975 from tonistiigi/update-testify 2021-02-09 03:10:14 +09:00
Tonis Tiigi f5962fca5e vendor: update testify 
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
 2021-02-07 16:40:35 -08:00
Tõnis Tiigi 58038e6371
Merge pull request #1966 from thaJeztah/master_apparmor 
[master] Add support for apparmor/selinux
 2021-02-05 09:25:33 -08:00
Tõnis Tiigi 9bb4fa53b1
Merge pull request #1954 from thaJeztah/dockerfile_export_flags_used 
frontend/dockerfile: add RunCommand.FlagsUsed field
 2021-02-04 13:04:44 -08:00
Brian Goff d9834f872c
Add support for apparmor/selinux 
Set's an apparmor profile on the OCI spec if one is configred on the
worker.
Adds selinux labels to containers (only added if selinux is enabled on
the system).

This assumes that the specified apparmor profile is already loaded on
the system and does not try to load it or even check if it is loaded.

SELinux support requires the `selinux` build tag to be added.
Likewise, `runc` would require both the `apparmor` and `selinux` build
tags.

Signed-off-by: Brian Goff <cpuguy83@gmail.com>

Vendored go-selinux to v1.8.0
Fixed tests

Signed-off-by: Tibor Vass <tibor@docker.com>
(cherry picked from commit 68bb095353)
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2021-02-04 22:01:34 +01:00
Akihiro Suda d5579348b8
Merge pull request #1965 from tonistiigi/fileop-cache-fix 2021-02-05 01:29:44 +09:00
Tonis Tiigi 8d70777537 fileop: fix checksum to contain indexes of inputs 
Cache mismatch can happen if fileop switches input indexes
between different actions.

Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
 2021-02-03 22:17:57 -08:00
Tonis Tiigi 42fb2a8771 avoid double release of same ref released multiple times 
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
 2021-02-03 10:53:19 -08:00