v0.8.4

Features

• Added the podman pod top command
• Added the ability to easily share namespaces within a pod
• Added a pod statistics endpoint to the Varlink API
• Added information on container capabilities to the output of podman inspect

Bugfixes

• Fixed a bug with the --device flag in podman run and podman create
• Fixed podman pod stats to accept partial pod IDs and pod names
• Fixed a bug with OCI hooks handling ALWAYS matches
• Fixed a bug with privileged rootless containers with --net=host set
• Fixed a bug where podman exec --user would not work with usernames, only numeric IDs
• Fixed a bug where Podman was forwarding both TCP and UDP ports to containers when protocol was not specified
• Fixed issues with Apparmor in rootless containers
• Fixed an issue with database encoding causing some containers created by Podman versions 0.8.1 and below to be unusable.

Compatability:

We switched JSON encoding/decoding to a new library for this release to address a compatability issue introduced by v0.8.2. However, this may cause issues with containers created in 0.8.2 and 0.8.3 with custom DNS servers.

v0.8.3

• Changelog for v0.8.3 (2018-08-17)
  • Make failure to retrieve individual ctrs/pods nonfatal
  • Mention that systemd is the default cgroup manager
  • Add dependency for python3-psutil module
  • Vendor in latest buildah and imagebuilder
  • Don't fail on size.
  • Fix handling of socket connection refusal.
  • podman: fix --uts=host
  • podman pod stats
  • Added helper function for libpod pod api calls
  • CreatePod args now PodCreate structure
  • Added reason to PodContainerError
  • Change batchcontainer to shared
  • Add Pod API to varlink.
  • Change pod varlink API.
  • Moved getPodStatus to pod API to be used in varlink
  • Vendor in latest containers/psgo code
  • switch projectatomic to containers
  • Revert "spec: bind mount /sys only for rootless containers"
  • Suport format param for varlink Commit
  • Fix segfault in top when -l and no args are passed
  • Document STORAGE_DRIVER and STORAGE_OPTS environment variable
  • podman.spec: recommend slirp4netns
  • Do not 'make all' on Travis for Linux
  • Fix build on non-Linux OSes
  • Create pod CGroups when using the systemd cgroup driver
  • Switch systemd default CGroup parent to machine.slice
  • spec: bind mount /sys only for rootless containers
  • build, rootless: specify IsolationOCIRootless
  • vendor: update buildah version
  • Fix handling of hostname in --net=host
  • Updated pod_api to reflect function spec
  • Add create and pull commands
  • rootless: not require userns for help/version
  • pkg/apparmor: use a pipe instead of a tmp file
  • pkg/apparmor: move data under Linux/apparmor buildtags
  • pkg/apparmor: move all linux-code into apparmor_linux*
  • podman in rootless mode will only work with cgroupfs at this point.
  • when searching, survive errors for multiple registries
  • Remove unused function in runtime.go
  • Fix papr tests by forcing cgroupfs in CI
  • Bump gitvalidation epoch
  • Bump to v0.8.3-dev

v0.8.2.1

• Changelog for v0.8.2.1 (2018-08-11)
  • Ensure pod inspect is locked and validity-checked
  • Swap default CGroup manager from cgroupfs to systemd

v0.8.2

• Changelog for v0.8.2 (2018-08-10)
  • We need to sort mounts so that one mount does not over mount another.
  • search name should include registry
  • Split pod.go into 3 files
  • Make errors during refresh nonfatal
  • Add batch check to container stats lock
  • removeContainer: fix deadlock
  • Add FFJSON to build container
  • Don't require .gopathok for individual FFJSON targets
  • Add FFJSON generation to makefile
  • Re-add FFJSON for container and pod structs
  • Fixed a bug setting dependencies on the wrong container
  • Always connect to the stdout and stderr of stream
  • apparmor: respect "unconfined" setting
  • oci.go: syslog: fix debug formatting
  • add podman pod inspect
  • Fix ambiguity in adding localhost to podman save
  • Fix CGroupFS cgroup manager cgroup creation for pods
  • Update Conmon commit for testing
  • Pass newly-added --log-level flag to Conmon
  • Cleanup man pages
  • Improve ps handling of container start/stop time
  • rootless: fix user lookup if USER= is not set
  • enabled copr epel builds again
  • Handle yum and dnf
  • Test regressions against the RPM spec file
  • Pass DESTDIR down to python Makefile
  • Add dpkg support for returning oci/conmon versions
  • Have info print conmon/oci runtime information
  • Better pull error for fully-qualified images
  • Stub varlink pod methods.
  • Remove inotify work around
  • Rename varlink socket and interface
  • Change tarball filename in copr prepare and match short-commit length
  • Add Runc and Conmon versions to Podman Version
  • update copr spec, lets get it building again
  • Add missing dependencies to build system
  • Port to MacOS
  • Make one runtime for the varlink service
  • Bump gitvalidation epoch
  • Bump to v0.8.2-dev

v0.8.1

• Changelog for v0.8.1 (2018-08-03)
  • Vendor in latest github.com/projectatomic/buildah
  • Update gitvalidation epoch
  • Check for missing arguments in /proc/self/cmdline
  • Added ps --pod option
  • clarify pull error message
  • rootless: do not set setgroups to deny when using newuidmap
  • Man page fixes found by https://pagure.io/ManualPageScan
  • Inline pullGoalNamesFromPossiblyUnqualifiedName into Runtime.pullGoalFromPossibly...
  • Replace getPullRefName by Runtime.getPullRefPair
  • Inline pullGoalNamesFromImageReference back into Runtime.pullGoalFromImageReference
  • Introduce getSinglePullRefNameGoal
  • Test Runtime.pullGoalFromPossiblyUnqualifiedName instead of pullGoalNameFrom...
  • Test Runtime.pullGoalFromImageReference instead of pullGoalNamesFromImageReference
  • Use REGISTRIES_CONFIG_PATH for all tests
  • rootless: do not segfault if the parent already died
  • RFC: Rename runtime.pullImage to runtime.pullImageFromHeuristicSource
  • Introduce Runtime.pullImageFromReference, call it in Runtime.FromImageReference
  • RFC: Remove unused transport name constants from libpod
  • Replace Runtime.LoadFromArchive with Runtime.LoadFromArchiveReference
  • Rename the "image" variable to "imageName"
  • Fix the heuristic for docker-archive: sources in (podman pull)
  • Split doPullImage from pullImage
  • Remove the forceCompress parameter from getCopyOptions and DRO.GetSystemContext
  • Remove the authFile parameter from getCopyOptions and DRO.GetSystemContext
  • Remove the signaturePolicyPath parameter from getCopyOptions and DRO.GetSystemContext
  • Add a *types.SystemContext parameter to getCopyOptions and DRO.GetSystemContext
  • Move pullImage from Image to Runtime
  • Do not re-parse the list of search registries just for an error message
  • Eliminate duplicate determination whether to use search registries
  • Eliminate the "DockerArchive means pull all refPairs" special case
  • Introduce struct pullGoalNames
  • Introduce struct pullGoal
  • Use []pullRefPair instead of []*pullRefPair
  • Use []pullRefName instead of []*pullRefName
  • Introduce singlePullRefNameGoal
  • Use an early return from refNamesFromPossiblyUnqualifiedName
  • RFC: Rename Image.PushImage to Image.PushImageToHeuristicDestination
  • Remove an unnecessary use of alltransports.ParseImageName
  • RFC? Hard-code "format" string values instead of using libpod.* transport names
  • Use PushImageToReference for (podman save)
  • Call imageNameForSaveDestination while creating the references
  • Exit early in the simple case in imageNameForSaveDestination
  • Rename parameters of imageNameForSaveDestination
  • Split imageNameForSaveDestination from saveCmd
  • Split a single if statement into two.
  • Move source handling before destination parsing
  • Split Image.PushImageToReference from Image.PushImage
  • Don't format to string and re-parse a DockerReference()
  • Remove the :// end from DockerTransport
  • Remove the TransportNames arrays
  • Document the properties of DefaultTransport a bit better.
  • Eliminate the "dest" variable.
  • Use an early exit if a docker-archive: image has no repo tags
  • Reorganize the tag loading in DockerArchive case
  • Return early in refNamesFromImageReference instead of appending to pullNames
  • Use srcRef.StringWithinTransport() instead of parsing imgName again
  • Use a switch instead of if/if else/.../else
  • Remove the error return value from getPullRefName
  • Rename getPullListFromRef to refPairsFromImageReference
  • Split refNamesFromImageReference from Runtime.getPullListFromRef
  • Replace getPullRefPair with getPullRefName
  • Include the rejected reference when parsing it fails in pullRefPairsFromRefNames
  • Add --force to podman umount to force the unmounting of the rootfs
  • Integration Test Improvements #3
  • Ensure container and pod refresh picks up a State
  • Fix build on non-linux platforms
  • Rework state testing to allow State structs to be empty
  • Add additional comments on accessing state in API
  • Do not fetch pod and ctr State on retrieval in Bolt
  • network: add support for rootless network with slirp4netns
  • varlink ImageRemove should always return image ID
  • Add documentations on how to setup /etc/subuid and /etc/subgid
  • Integration Test Improvements #2
  • avoid spewing fds do to restore of cached images
  • Add load test for xz compressed images
  • Speed up test results
  • Show duration for each ginkgo test and test speed improvements
  • vendor: update containers/storage
  • Clean up pylint warnings and errors for podman
  • podman rmi shouldn't delete named referenced images

v0.7.4

• Changelog for v0.7.4 (2018-07-27)
  • Add pod pause/unpause
  • Fix up docker compatibility messages
  • Update vendored version of runc,buildah,containers/image
  • Refactored method of getting pods
  • Fix godoc comment in pkg/netns
  • Fix handling of Linux network namespaces
  • Update containernetworking/plugins to current master
  • Cleanup descriptions and help information
  • Skip seccomp-dependent tests on non-Linux
  • Use the Linux version BoltState.getContainerFromDB on all platforms.
  • Split parseNetNSBoltData from BoltState.getContainerFromDB
  • Use testify/require in a few places to avoid panics in tests
  • Skip unit tests which require storage when not running as root
  • Don't pollute the build output with failures to build checkseccomp
  • Remove cmd/podman/user.go
  • double papr timeout for all ci tests
  • vendor latest containers/psgo
  • Vendor latest container/storage to fix overlay mountopt
  • Add pod kill
  • Added pod restart
  • Added pod.Restart() functionality to libpod.
  • Add a mutex to BoltDB state to prevent lock issues
  • Clear variables used to store options after parsing for every volume
  • Clean up pylint warnings and errors
  • podman: allow to specify the IPC namespace to join
  • podman: allow to specify the UTS namespace to join
  • podman: allow to specify the PID namespace to join
  • podman: allow to specify the userns to join
  • network: support ns: prefix to join existing namespace
  • spec: allow container:NAME network mode
  • Update comments in BoltDB and In-Memory states
  • Add an E2E test to verify basic namespace functionality
  • Add libpod namespace to config
  • Add missing runtime.go lines to set namespace
  • Address first round of review comments
  • Set namespace for new pods/containers based on runtime
  • Add --namespace flag to Podman
  • Update documentation for the State interface
  • Ensure pods are part of the set namespace when added
  • Enforce namespace checks on container add
  • Add tests for state namespacing
  • Add namespaces to in memory state
  • Untested implementation of namespaced BoltDB access
  • Add constraint that dependencies must be in the same ns
  • Add namespaces and initial constraints to database
  • Add container and pod namespaces to configs
  • Fix varlink API usage of psgo
  • Update issue template to point build bugs at buildah
  • We don't currently support --mac-address
  • Vendor in latest containers/psgo code
  • Update container Mounted() and Mountpoint() functions
  • [WIP] Refactor and simplify python builds
  • AppArmor: runtime check if it's enabled on the host
  • Add format descriptors infor to podman top
  • Fix error handling in pod start/stop.
  • docs/podman-top: fix typo and whitespace
  • Use the result of reference.Parse when checking for digests.
  • Make refNamesFromPossiblyUnqualifiedName independent from Image
  • Make Image.HasShaInInputName to an independent local function
  • Split createNamesToPull into ref{Names,Pairs}FromPossiblyUnqualifiedName
  • Rename local variables in Runtime.pullRefPairsFromRefNames
  • Split Runtime.pullRefPairsFromRefNames from Image.createNamesToPull
  • Rename nameToPull to pullRefName
  • Rename pullStruct to pullRefPair
  • Replace optional nameToPull.shaPullName with mandatory dstName
  • Introduce nameToPull, move shaPullName in there
  • Split normalizeTag from Image.TagImage
  • Remove Image.isShortName
  • Inline getTags into its only user
  • Add unit tests for imageParts
  • Add OnBuild and usernamespace test to baseline

v0.7.3

• Changelog for v0.7.3 (2018-07-20)
  • Update psgo vendor
  • Podman load/tag/save prepend localhost when no repository is present
  • Pod ps now uses pod.Status()
  • Added pod start and stop
  • rootless: support a per-user mounts.conf
  • secrets: parse only one mounts configuration file
  • rootless: allow a per-user registries.conf file
  • pull: get registries using the registries pkg
  • rootless: allow a per-user storage.conf file
  • rootless, docs: document the libpod.conf file used in rootless mode
  • Let containers/storage keep track of mounts
  • podman-top: use containers/psgo
  • Vendor in latest code for storage,image, buildah
  • Abort a test on nil containers, so that future tests don't panic
  • Fix TestPostDeleteHooks on macOS
  • Use ... for a regexp constant to improve readability
  • oci: keep exposed ports busy and leak the fd into conmon
  • Dockerfile: install nmap-ncat
  • Update podman_tutorial.md
  • Update transfer.md
  • Add missing podman commands
  • Update gitvalidation epoch
  • Fix ps filter with key=value labels
  • rootless: require subids to be present
  • Downgrade setup.py
  • Bump gitvalidation epoch
  • Bump to v0.7.3-dev

v0.7.2

• Changelog for v0.7.2 (2018-07-13)
  • Change logic for detecting conflicting flags in ps
  • Update python directories to better support setup.py
  • Fix ps --sort=size test
  • remote python client for podman
  • Only print container size JSON if --size was requested
  • Don't print rootfs and rw sizes if they're empty
  • Major fixes to podman ps --format=json output
  • Ignore running containers in ps exit-code filters
  • Record whether the container has exited
  • rootless: correctly propagate the exit status from the container
  • rootless: unshare mount namespace
  • Need to wait for container to exit before completing run/start completes
  • If proxy fails then then signal should be sent to the main process
  • fix pull image that includes a sha
  • Added full podman pod ps, with tests and man page
  • Podman pod create/rm commands with man page and tests.
  • Added created time to pod state
  • Support multiple networks
  • Log all output of logrus to syslog as well as stdout/stderr
  • podman rmi should only untag image if parent of another
  • Changed container status of Unknown from being printed as Dead to Error in Ps
  • Fix podman build completions
  • Refactor attach()/start() after podman changes
  • create conmon sockets when getting their paths
  • build: enable ostree in containers/storage when available
  • podman/libpod: add default AppArmor profile
  • runtime: delete unused function
  • rootless: propagate errors from GetRootlessRuntimeDir()
  • rootless: resolve the user home directory
  • rootless: fix when argv[0] is not an absolute path
  • Allow Init() on stopped containers
  • urfave/cli: fix regression in short-opts parsing
  • Add --volumes-from flag to podman run and create
  • Vendor in latest buildah to add masks for /proc/keys and /proc/acpi
  • Vendor in latest containers/storage
  • Mask /proc/keys to protect information leak about keys on host
  • ctime: Drop 32-/64-bit distinction on Linux
  • Podman stats with no containers listed is the same as podman stats --all
  • Refactor unittest for change in history API
  • Bump gitvalidation epoch
  • Bump to v0.7.2-dev

v0.7.1

• Changelog for v0.7.1 (2018-07-06)
  • pkg/ctime: Factor libpod/finished* into a separate package
  • Block use of /proc/acpi from inside containers
  • remove buildah requirement for the libpod image library
  • contrib/python/test/test_tunnel: Fix -nNT -> -nNTq
  • Refactor podman/utils with a single container start and attach function
  • Remove now-unneeded cleanupCgroup() for unsupported OS
  • Remove per-container CGroup parents
  • Fix nits and GOPATH in tutorial
  • spec: Make addPrivilegedDevices and createBlockIO per-platform
  • libpod/runtime_pod: Make removePod per-platform
  • libpod/networking_unsupported: Remove JoinNetworkNameSpace
  • .travis: Run gofmt and lint on OS X
  • rootless: Merge rootless.go back into rootless_linux.go
  • Makefile: Use a pattern rule for cross-compilation
  • more changes to compile darwin
  • Fix timeout issue with built-in volume test
  • rootless: add /run/user/$UID to the lookup paths
  • rootless: add function to retrieve the original UID
  • rootless: always set XDG_RUNTIME_DIR
  • rootless: set XDG_RUNTIME_DIR also for state and exec
  • libpod/container: Replace containerState* with containerPlatformState
  • urfave/cli: fix parsing of short opts
  • docs: Follow man-pages(7) suggestions for SYNOPSIS
  • Allow multiple mounts
  • Makefile: Use 'git diff' to show gofmt changes
  • Skip a test in Travis that has timeout issues
  • vendor in selinux and buildah for darwin compilation
  • add image user to inspect data
  • changes to allow for darwin compilation
  • Bump gitvalidation epoch
  • Bump to v0.7.1-dev

v0.6.5

• Changelog for v0.6.5 (2018-06-29)
  • Fix built-in volume issue with podman run/create
  • Add podman container cleanup to CLI
  • Allow multiple containers and all for umount
  • Returning joining namespace error should not be fatal
  • Start using github.com/seccomp/containers-golang
  • Test to verify overlay quotas work, show container overhead on quota
  • conmon no longer writes to syslog
  • Fix broken f28/cloud instance
  • Vendor latest projectatomic/buildah
  • vendor in latest golang/x/sys
  • vendor in latest docker package
  • Remove the --registry flag from podman search
  • utils: fix endless write of resize event
  • Start prints UUID or container name that user inputs on success
  • cmd/podman/utils.go: Cancel-able resize writes
  • Fix podman hangs when detecting startup error in container attached mode
  • travis: bump go to 1.9.x and 1.10.x
  • podman-build --help: update description
  • *: Replace Generator.Spec() with Generator.Config
  • generator.New() requires an OS string input variable
  • Vendor in latest buildah
  • Vendor in latest runtime-tools
  • docs: add documentation for rootless containers
  • runtime: change rootless data storage default path
  • rootless: use $HOME/.config/containers/libpod.conf
  • test: add env variables to the debug output
  • rootless: do not configure additional groups
  • oci: set XDG_RUNTIME_DIR to the runtime from GetRootlessRuntimeDir()
  • rootless: add management for the userNS
  • container_internal: don't ignore error from cleanupNetwork()
  • Mark containers invalid earlier during removal
  • Add --authfile to podman search
  • Vendor in latest containers/image
  • add podman remote client
  • Vendor in go-selinux again
  • Update the vendoring of github.com/opencontainers/selinux
  • Containers can dissappear
  • Add podman-image and podman-container man page links
  • Update ocicni vendor to pick up bugfixes
  • make varlink optional for podman
  • Bump gitvalidation epoch
  • Bump to v0.6.5-dev