a5d1cfc1e4
fix: provide only available capabilities to insecure environment
...
The problem this change is trying to fix are the environments where some
capabilities are already dropped, so they can't be granted to the
job with `--security=insecure`.
I know that probably fixed set of capabilities was implemented to
provide a stable build environment, but at the same time this breaks
environments with reduced capabilities.
Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>
2021-10-15 19:57:32 +03:00
ba673bbdab
Merge pull request #2395 from jmacelroy/master
...
Creating tcp socket without using go-connections.
2021-10-08 14:00:08 -07:00
7671a84fc2
Merge pull request #2398 from crazy-max/ulimit
...
Add support for ulimit
2021-10-08 10:50:44 -07:00
c46f7ad20c
Merge pull request #2399 from AkihiroSuda/update-multiplatform-docs
...
README.md: improve "Building multi-platform images" section
2021-10-08 10:44:33 -07:00
4e32ae5630
Add support for ulimit
...
Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com>
2021-10-08 11:50:09 +02:00
6813db907b
README.md: improve "Building multi-platform images" section
...
Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
2021-10-08 16:21:27 +09:00
b8462c3b7c
Merge pull request #2403 from tonistiigi/push-deadlock
...
limited: fix possible deadlock when pushhandler calls fetcher
2021-10-07 16:58:37 +09:00
7153f5a9bb
limited: fix possible deadlock when pushhandler calls fetcher
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-10-06 22:46:37 -07:00
b2ff444122
Merge pull request #2243 from crazy-max/gha-cache
...
Use gha cache on CI
2021-10-05 15:52:38 -07:00
91ecc991c3
Merge pull request #2393 from ktock/converter-uncompressed-annotation
...
converter: make sure uncompressed digest annotation is set
2021-10-05 15:52:03 -07:00
6d396b9684
Creating tcp socket without using go-connections.
...
Signed-off-by: Jacob MacElroy <jacob@okteto.com>
2021-10-05 12:28:17 -06:00
ec65f412b6
Use gha cache on CI
...
Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com>
2021-10-05 10:51:48 +02:00
5c27a53a15
Converter: make sure uncompressed digest annotation is set
...
Signed-off-by: Kohei Tokunaga <ktokunaga.mail@gmail.com>
2021-10-05 15:02:05 +09:00
78e88560e1
Merge pull request #2387 from tonistiigi/gha-fixes
...
fixes for github actions cache
2021-10-04 08:53:08 -07:00
10947b040c
Merge pull request #2388 from ktock/containerd-overlaydiff-bufcopy
...
Differ: write diff to the content store over bufio writer
2021-10-04 17:05:49 +09:00
ee1ad6893a
Merge pull request #2390 from ktock/overlaydiff-fuse-overlayfs
...
Do not enable overlayfs differ for fuse-overlayfs-snapshotter
2021-10-03 22:03:44 -07:00
9ffd7f24cb
Do not enable overlayfs differ for fuse-overlayfs-snapshotter
...
Signed-off-by: Kohei Tokunaga <ktokunaga.mail@gmail.com>
2021-10-04 13:50:05 +09:00
4f3e74c0ca
Differ: write diff to the content store over bufio writer
...
Signed-off-by: Kohei Tokunaga <ktokunaga.mail@gmail.com>
2021-10-04 11:43:00 +09:00
25d5c1f0fe
vendor: update go-actions-cache to 4d48f2ff
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-10-02 14:54:36 -07:00
c13f5de2fb
solver: make sure previous error gets reset
...
This happens for example when cache loading fails
but then fallback step execution succeeds.
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-10-02 14:52:14 -07:00
066a011c01
gha: handle missing blob gracefully
...
FromRemote now calls CheckDescriptor to validate
if the blob still exists. Otherwise cache loading
fallback does not get triggered because cache is
actually lazily pulled in only on exporting phase.
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-10-02 14:52:09 -07:00
d429b0b326
Merge pull request #2385 from venturehacks/panic_failed_to_get_edge
...
don't cast Value when pipe is errored
2021-10-02 14:06:59 -07:00
e76cfcfa22
don't cast Value when pipe is errored
...
Signed-off-by: Maxime Lagresle <maxime@angel.co>
2021-10-02 11:08:27 +02:00
dad6751112
gha: handle already exist error on save
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-10-01 22:33:47 -07:00
42aefeb694
Merge pull request #2384 from crazy-max/shmsize
...
Add support for shm size
2021-10-01 18:16:51 +02:00
6094339341
Add support for shm size
...
Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com>
2021-10-01 16:07:29 +02:00
b8e4ed1871
Merge pull request #2382 from venturehacks/panic_failed_to_get_edge
...
return an error instead of panicking when failing to get edge
2021-09-30 09:51:14 -07:00
b6d092d81e
return an error instead of panicking when failing to get edge
...
Signed-off-by: Maxime Lagresle <maxime@angel.co>
2021-09-30 14:17:07 +02:00
e839ff729b
Merge pull request #2380 from tonistiigi/release-ci
...
make sure ci runs on version branches
2021-09-28 13:09:25 +09:00
c38341f4e9
make sure ci runs on version branches
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-09-27 20:39:19 -07:00
509b73d91e
Merge pull request #2356 from crazy-max/git-umask
...
Standard user umask for git process
2021-09-27 18:44:13 -07:00
23c8affb1f
Merge pull request #2377 from crazy-max/resolver-config
...
Move resolver config to a dedicated package
2021-09-27 21:20:02 +02:00
3f1152f657
Standard user umask for git process
...
Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com>
2021-09-27 20:10:19 +02:00
73625be54a
Move resolver config to a dedicated package
...
Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com>
2021-09-27 19:41:38 +02:00
1031116f12
Merge pull request #2368 from crazy-max/ansi-color
...
Enhance ANSI colors for progress ui
2021-09-24 13:58:26 +02:00
deb1440fe6
Merge pull request #2372 from jgiannuzzi/fix-issue-2198
...
Fix flakiness during import of a cache with empty layers removed
2021-09-23 23:19:09 -07:00
ec787d91c8
Merge pull request #2352 from ktock/esgzcvt-preserve-tar
...
Fix estargz compression loses the original tar metadata
2021-09-24 11:19:13 +09:00
165e70568e
Enhance ANSI color for progress ui
...
Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com>
2021-09-23 18:51:37 +02:00
da821a471c
Fix estargz compression loses the original tar metadata
...
Currently, eStargz compression doesn't preserve the original tar metadata
(header bytes and their order). This causes failure of `TestGetRemote` because
an uncompressed blob converted from a gzip blob provides different digset
against the one converted from eStargz blob even if their original tar (computed
by differ) are the same.
This commit solves this issue by fixing eStargz to preserve original tar's
metadata that is modified by eStargz.
Signed-off-by: Kohei Tokunaga <ktokunaga.mail@gmail.com>
2021-09-22 10:50:57 +09:00
4997b57f1d
Merge pull request #2373 from crazy-max/buildarg-hostname
...
Add BUILDKIT_SANDBOX_HOSTNAME build-arg
2021-09-21 15:47:16 -07:00
e5ecbf9722
Add BUILDKIT_SANDBOX_HOSTNAME build-arg
...
Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com>
2021-09-22 00:17:20 +02:00
2c540bdc9d
Fix issues #1980 and #2198
...
Signed-off-by: Jonathan Giannuzzi <jonathan@giannuzzi.me>
2021-09-21 15:57:00 +01:00
44891f4cb9
Merge pull request #2369 from tonistiigi/resolver-timeout-fixes
...
resolver timeout fixes
2021-09-21 14:29:01 +09:00
e878d4d823
Merge pull request #2348 from zchee/gomod-resort
...
go.mod: sort and move self managed indirect dependencies to first block
2021-09-20 12:34:29 -07:00
7fb8e74422
Merge pull request #2361 from crazy-max/move-config
...
Move config parsing to a dedicated pkg
2021-09-20 10:24:02 -07:00
a0afb6902a
Merge pull request #2311 from crazy-max/buildsources
...
Generate and embed build sources
2021-09-20 09:15:53 -07:00
d211b5a505
go.mod: sort and move self-managed indirect dependencies to first block
...
Signed-off-by: Koichi Shiraishi <zchee.io@gmail.com>
2021-09-20 18:29:01 +09:00
161b581e71
solver: increase timeout for job registration
...
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-09-18 21:28:45 -07:00
f62bb55245
resolver: make sure authorizer is not overwritten on other resolvers
...
Authorizer stores the current session.Group so if it is
overwritten for another resolver it means that session might
have been dropped and authentication will fail.
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-09-18 21:22:32 -07:00
6bd2eb5046
resolver: use different mutext for handlers and hosts
...
hosts mutex is called on initialization, meaning `GetResolver` might
block if it is in the middle of auth exchange. This is currently bad
in the case where Job initialization needs to register a name before
timeout is reached.
Signed-off-by: Tonis Tiigi <tonistiigi@gmail.com>
2021-09-18 21:04:16 -07:00
Andrey Smirnov
Tõnis Tiigi
CrazyMax
Akihiro Suda
Jacob MacElroy
Kohei Tokunaga
Maxime Lagresle
CrazyMax
Jonathan Giannuzzi
Koichi Shiraishi