Skip to content

Releases: containerd/containerd

containerd 2.1.0-beta.0

18 Mar 02:33
@github-actions github-actions
v2.1.0-beta.0
This tag was signed with the committer’s verified signature.
dmcgowan Derek McGowan
GPG key ID: F58C5D0A4405ACDB
Verified
Learn about vigilant mode.
b430e5a
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
containerd 2.1.0-beta.0 Pre-release
Pre-release

Welcome to the v2.1.0-beta.0 release of containerd!
This is a pre-release of containerd

The 2.1 beta series is here, see the 2.1 milestone to track
ongoing efforts. Please try out the beta and report any issues!

The first minor release of containerd 2.x focuses on continued stability alongside
new features and improvements. This is the first time-based released for containerd.
Most the feature set and core functionality has long been stable and harderened in production
environments, so now we transition to a balance of timely delivery of new functionality
with the same high confidence in stability and performance.

Highlights

Container Runtime Interface (CRI)

Image Distribution

  • Add dial timeout field to hosts toml configuration (#11106)

Node Resource Interface (NRI)

  • Expose Pod assigned IPs to NRI plugins (#10921)

Runtime

  • Support multiple uid/gid mappings (#10722)

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

  • Akihiro Suda
  • Derek McGowan
  • Phil Estes
  • Maksym Pavlenko
  • Jin Dong
  • Sebastiaan van Stijn
  • Wei Fu
  • Samuel Karp
  • Austin Vazquez
  • Kazuyoshi Kato
  • Henry Wang
  • Mike Brown
  • Akhil Mohan
  • Gao Xiang
  • Archit Kulkarni
  • Krisztian Litkey
  • ningmingxiao
  • Alexey Lunev
  • Antonio Ojea
  • Chris Henzie
  • Davanum Srinivas
  • Marat Radchenko
  • Michael Zappa
  • Paweł Gronowski
  • Adrien Delorme
  • Amit Barve
  • Andrey Smirnov
  • Divya
  • Etienne Champetier
  • Kirtana Ashok
  • fengwei0328
  • zounengren
  • Adrian Reber
  • Alfred Wingate
  • Amal Thundiyil
  • Athos Ribeiro
  • Brian Goff
  • ChengyuZhu6
  • Chongyi Zheng
  • Craig Ingram
  • David Son
  • Fupan Li
  • Jing Xu
  • Jonathan A. Sternberg
  • Jose Fernandez
  • Kaita Nakamura
  • Lei Liu
  • Mike Baynton
  • Philip Laine
  • Qiyuan Liang
  • Sameer
  • Shiming Zhang
  • Vered Rosen
  • alingse
  • bo.jiang
  • chriskery
  • luchenhan
  • mahmut

Changes

433 commits

  • b430e5ac3 Merge commit from fork
  • de1341c20 validate uid/gid
  • Bump github.com/go-jose/go-jose/v4 from 4.0.4 to 4.0.5 (#11544)
    • 8028a1d08 Bump github.com/go-jose/go-jose/v4 from v4.0.4 to v4.0.5
    • ce055b530 Bump golang.org/x/text from 0.22.0 to 0.23.0
    • e0aaed012 Bump golang.org/x/term from 0.29.0 to 0.30.0
  • fix: repeat args from sub-func call (#11512)
    • b947e0566 fix: repeat args from sub-func call
  • build(deps): bump github.com/prometheus/client_golang from 1.20.5 to 1.21.1 (#11525)
    • 75252f975 build(deps): bump github.com/prometheus/client_golang
  • integration: update TestUpgrade for 2.1 (#11519)
    • 06daffb4d integration: update TestUpgrade for 2.1
  • config:fix config migrate lost timeout config (#11532)
    • 531adbf06 config:fix config migrate lost timeout config
  • Add dial timeout field to hosts toml configuration (#11106)
    • c4982bffc Add dial timeout field to hosts toml configuration
  • Prepare release notes for v2.1.0-beta.0 (#11510)
    • 12762891d Remove test for issue 10467
    • 93cc1e6eb Fix upgrade test runtime config
    • 833d6bc8e Update release status for 2.1 to beta
    • 71cfe00ee Prepare release notes for v2.1.0-beta.n
    • be8fe50f4 Update the upgrade test to handle 2.1
  • build(deps): bump the otel group with 8 updates (#11521)
    • 94dd70f4f build(deps): bump the otel group with 8 updates
  • client: Respect client.WithTimeout option (#11508)
    • ee574e76e client: Respect client.WithTimeout option
  • build(deps): bump github.com/urfave/cli/v2 from 2.27.5 to 2.27.6 (#11523)
    • 700b98415 build(deps): bump github.com/urfave/cli/v2 from 2.27.5 to 2.27.6
  • build(deps): bump the golang-x group with 3 updates (#11520)
    • 85c04ab0e build(deps): bump the golang-x group with 3 updates
  • add k8s 1.32 to support table and as tested containerd supported branches at the time of release (#11534)
    • 5bbd3ed1b add k8s 1.32 and as tested containerd supported branches at the time of release
  • build(deps): bump google.golang.org/grpc from 1.70.0 to 1.71.0 (#11524)
    • c37e48b07 build(deps): bump google.golang.org/grpc from 1.70.0 to 1.71.0
  • Support container restore through CRI/Kubernetes (#10365)
    • 9e6beafd5 Support container restore through CRI/Kubernetes
  • build(deps): bump actions/attest-build-provenance from 2.2.2 to 2.2.3 (#11526)
    • d7de182dd build(deps): bump actions/attest-build-provenance from 2.2.2 to 2.2.3
  • build(deps): bump github/codeql-action from 3.28.10 to 3.28.11 (#11527)
    • 9f885ea4f build(deps): bump github/codeql-action from 3.28.10 to 3.28.11
  • build(deps): bump containerd/project-checks from 1.2.1 to 1.2.2 (#11528)
    • 88faaac97 build(deps): bump containerd/project-checks from 1.2.1 to 1.2.2
  • add name in package version (#11518)
  • update to go1.23.7 / go1.24.1 (#11513)
  • Don't produce unnecessary logs when encountering attestations (#11327)
    • 3cdfc1003 core/remotes: Handle attestations in MakeRefKey
    • e751b6bb1 core/images: Ignore attestations when traversing children
  • perf(applyNaive): avoid walking the tree for each file in the same directory (#11337)
Read more
Loading

containerd 2.0.4

17 Mar 17:53
@github-actions github-actions
v2.0.4
This tag was signed with the committer’s verified signature.
dmcgowan Derek McGowan
GPG key ID: F58C5D0A4405ACDB
Verified
Learn about vigilant mode.
1a43cb6
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
containerd 2.0.4 Latest
Latest

Welcome to the v2.0.4 release of containerd!

The fourth patch release for containerd 2.0 includes various bug fixes and updates.

Highlights

  • Fix integer overflow in User ID handling (GHSA-265r-hfxg-fhmg)
  • Respect client.WithTimeout option on connect (#11536)
  • Update image type checks to avoid unnecessary logs for attestations (#11537)

Node Resource Interface (NRI)

  • Fix incorrect runtime name being passed to NRI (#11529)

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

  • Derek McGowan
  • Akihiro Suda
  • Paweł Gronowski
  • Akhil Mohan
  • Phil Estes
  • Samuel Karp
  • Craig Ingram
  • ningmingxiao

Changes

19 commits

  • 1a43cb6a1 Merge commit from fork
  • 07a0b5419 (cherry picked from commit de1341c)
  • Prepare release notes for v2.0.4 (#11541)
  • Respect client.WithTimeout option on connect (#11536)
    • 6b5efba83 client: Respect client.WithTimeout option
  • Update image type checks to avoid unnecessary logs for attestations (#11537)
    • 916d48722 core/remotes: Handle attestations in MakeRefKey
    • df4d905a6 core/images: Ignore attestations when traversing children
  • Fix incorrect runtime name being passed to NRI (#11529)
  • update build to go1.23.7, test go1.24.1 (#11514)
    • e5ad0d0a0 update build to go1.23.7, test go1.24.1
  • docs: include note about unprivileged sysctls (#11506)
    • a39f1146b docs: include note about unprivileged sysctls
  • e2e: use the shim bundled with containerd artifact (#11503)
    • 81b3384a0 e2e: use the shim bundled with containerd artifact
  • build(deps): bump containerd/project-checks from 1.1.0 to 1.2.1 (#11497)
    • 7215a7d2c build(deps): bump containerd/project-checks from 1.1.0 to 1.2.1

Dependency Changes

This release has no dependency changes

Previous release can be found at v2.0.3

Which file should I download?

  • containerd-<VERSION>-<OS>-<ARCH>.tar.gz: ✅Recommended. Dynamically linked with glibc 2.31 (Ubuntu 20.04).
  • containerd-static-<VERSION>-<OS>-<ARCH>.tar.gz: Statically linked. Expected to be used on non-glibc Linux distributions. Not position-independent.

In addition to containerd, typically you will have to install runc
and CNI plugins from their official sites too.

See also the Getting Started documentation.

Assets 25

containerd 1.7.27

17 Mar 17:57
@github-actions github-actions
v1.7.27
This tag was signed with the committer’s verified signature.
dmcgowan Derek McGowan
GPG key ID: F58C5D0A4405ACDB
Verified
Learn about vigilant mode.
05044ec
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
containerd 1.7.27

Welcome to the v1.7.27 release of containerd!

The twenty-seventh patch release for containerd 1.7 contains various fixes
and updates.

Highlights

  • Fix integer overflow in User ID handling (GHSA-265r-hfxg-fhmg)
  • Update image type checks to avoid unnecessary logs for attestations (#11538)

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

  • Jin Dong
  • Akhil Mohan
  • Derek McGowan
  • Maksym Pavlenko
  • Paweł Gronowski
  • Phil Estes
  • Akihiro Suda
  • Craig Ingram
  • Krisztian Litkey
  • Samuel Karp

Changes

20 commits

  • 05044ec0a Merge commit from fork
  • 11504c3fc validate uid/gid
  • Prepare release notes for v1.7.27 (#11540)
    • 1be04be6c Prepare release notes for v1.7.27
  • Update image type checks to avoid unnecessary logs for attestations (#11538)
    • 82b5c43fe core/remotes: Handle attestations in MakeRefKey
    • 2c670e79b core/images: Ignore attestations when traversing children
  • update build to go1.23.7, test go1.24.1 (#11515)
    • a39863c9f update build to go1.23.7, test go1.24.1
  • Remove hashicorp/go-multierror dependency and fix CI (#11499)
    • 49537b3a7 e2e: use the shim bundled with containerd artifact
    • fe490b76f Bump up github.com/intel/goresctrl to 0.5.0
    • 13fc9d313 update containerd/project-checks to 1.2.1
    • 585699c94 Remove unnecessary joinError unwrap
    • 4b9df59be Remove hashicorp/go-multierror
  • go.{mod,sum}: bump CDI deps to v0.8.1. (#11422)
    • 5ba28f8dc go.{mod,sum}: bump CDI deps to v0.8.1, re-vendor.
  • CI: arm64-8core-32gb -> ubuntu-24.04-arm (#11437)
    • 85f10bd92 CI: arm64-8core-32gb -> ubuntu-24.04-arm
    • 561ed520e increase xfs base image size to 300Mb

Dependency Changes

  • github.com/intel/goresctrl v0.3.0 -> v0.5.0
  • github.com/prometheus/client_golang v1.14.0 -> v1.16.0
  • github.com/prometheus/common v0.37.0 -> v0.42.0
  • github.com/prometheus/procfs v0.8.0 -> v0.10.1
  • k8s.io/apimachinery v0.26.2 -> v0.27.4
  • sigs.k8s.io/json f223a00ba0e2 -> bc3834ca7abd
  • tags.cncf.io/container-device-interface v0.7.2 -> v0.8.1
  • tags.cncf.io/container-device-interface/specs-go v0.7.0 -> v0.8.0

Previous release can be found at v1.7.26

Loading

containerd 1.6.38

17 Mar 17:55
@github-actions github-actions
v1.6.38
This tag was signed with the committer’s verified signature.
dmcgowan Derek McGowan
GPG key ID: F58C5D0A4405ACDB
Verified
Learn about vigilant mode.
cf158e8
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
containerd 1.6.38

Welcome to the v1.6.38 release of containerd!

The thirty-eighth patch release for containerd 1.6 contains various fixes
and updates.

Highlights

Container Runtime Interface (CRI)

  • Fix fatal map concurrency error in httpstream (#11319)

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

  • Jin Dong
  • Akhil Mohan
  • Derek McGowan
  • Phil Estes
  • Akihiro Suda
  • Craig Ingram
  • Kohei Tokunaga
  • Maksym Pavlenko
  • Samuel Karp
  • ningmingxiao

Changes

19 commits

  • cf158e884 Merge commit from fork
  • 9639b9625 validate uid/gid
  • Prepare release notes for v1.6.38 (#11539)
    • eee34bac2 Prepare release notes for v1.6.38
  • update build to go1.23.7, test go1.24.1 (#11421)
    • b67a35baf move exclude-dirs to issues.exclude-dirs
    • 2104a41ef update golangci-lint to 1.60.1
    • 820e81adc update build to go1.23.7, test go1.24.1
  • Remove hashicorp/go-multierror dependency and fix CI (#11500)
    • 7cc3b3dce e2e: use the shim bundled with containerd artifact
    • 0733895f3 Remove unnecessary joinError unwrap
    • 054c4cc79 Remove hashicorp/go-multierror
    • ff21be0ee Update go to 1.20 to use its multi error support
    • f63b5fd3f update containerd/project-checks to 1.2.1
  • Fix fatal map concurrency error in httpstream (#11319)
    • abd1692cf fix fatal error: concurrent map iteration and map write
  • CI: arm64-8core-32gb -> ubuntu-24.04-arm (#11438)
    • f5ab73c0a CI: arm64-8core-32gb -> ubuntu-24.04-arm
    • 2cc6b5b0a increase xfs base image size to 300Mb

Dependency Changes

This release has no dependency changes

Previous release can be found at v1.6.37

Loading

containerd 2.0.3

28 Feb 19:08
@github-actions github-actions
v2.0.3
This tag was signed with the committer’s verified signature.
dmcgowan Derek McGowan
GPG key ID: F58C5D0A4405ACDB
Verified
Learn about vigilant mode.
06b99ca
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
containerd 2.0.3

Welcome to the v2.0.3 release of containerd!

The third patch release for containerd 2.0 includes various bug fixes and updates.

Highlights

  • Update remote content to break up writes to avoid grpc message size limits (#11457)
  • Update runc binary to v1.2.5 (#11394)

Container Runtime Interface (CRI)

  • Fix privileged container sysfs can't be rw because pod is ro by default (#11456)
  • Fix recursive RLock() mutex acquisition (containerd/go-cni#126)

Node Resource Interface (NRI)

  • Fix initial sync race when registering NRI plugins (#11329)

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

  • Derek McGowan
  • Akihiro Suda
  • Mike Brown
  • Phil Estes
  • Akhil Mohan
  • Chifeng Cai
  • Krisztian Litkey
  • Wei Fu
  • Andrey Smirnov
  • Austin Vazquez
  • Chris Henzie
  • Jing Xu
  • Jonathan A. Sternberg
  • Jose Fernandez
  • Kirtana Ashok
  • Lei Liu
  • Maksym Pavlenko
  • Michael Zappa
  • Samuel Karp
  • fengwei0328
  • zounengren

Changes

42 commits

  • Prepare release notes for v2.0.3 (#11443)
  • Update remote content to break up writes to avoid grpc message size limits (#11457)
    • eaa7ca80d proxy: break up writes from the remote writer to avoid grpc limits
  • Fix privileged container sysfs can't be rw because pod is ro by default (#11456)
    • c7f64196f Fix privileged container sysfs can't be rw because pod is ro by default
  • go.{mod,sum}: bump CDI deps to v.0.8.1. (#11430)
  • Prefer runtime options for PluginInfo request (#11446)
    • 569af34cb Prefer runtime options for PluginInfo request
  • pkg: prevent oom watcher from depending on shim pkg (#11439)
    • 0ce93e16a prevent oom watcher depend on shim pkg.
  • CI: arm64-8core-32gb -> ubuntu-24.04-arm (#11436)
    • f3284aa68 CI: arm64-8core-32gb -> ubuntu-24.04-arm
  • Revert "Add timestamp to PodSandboxStatusResponse for kubernetes Evented PLEG" (#11403)
    • b5313993c Revert "Add timestamp to PodSandboxStatusResponse for kubernetes Evented PLEG"
  • move the device after the options when using mkfs.ext4 (#11411)
    • f95a426b8 move the device after the options when using mkfs.ext4
  • update build to go1.23.6, test go1.24.0 (#11410)
    • 4d19a6adf update build to go1.23.6, test go1.24.0
  • build(deps): bump actions/cache from 4.1.2 to 4.2.0 (#11405)
    • c738c3aab build(deps): bump actions/cache from 4.1.2 to 4.2.0
  • Upgrade x/net to 0.33.0 to fix vulnerability GHSA-w32m-9786-jp63 (#11387)
  • Update install-imgcrypt to allow change install repo (#11357)
    • 0785bd8cc Update install-imgcrypt to allow change install repo
  • Update runc binary to v1.2.5 (#11394)
  • Update go-cni version to fix Race Condition issue (#11269)
  • Fix initial sync race when registering NRI plugins (#11329)
    • 79cdbf61b cri,nri: block NRI plugin sync. during event processing.
  • Update github.com/containerd/imgcrypt to v2.0.0 (#11325)
    • 9d5cfce83 Update github.com/containerd/imgcrypt to v2.0.0
  • Move CDI device spec out of the OCI package (#11265)
    • f58939c33 Remove deprecated WithCDIDevices in oci spec opts
    • 3d53430fe Move CDI device spec out of the OCI package
  • update to go1.23.5 / go1.22.11 (#11297)
  • build(deps): bump google.golang.org/protobuf from 1.35.1 to 1.35.2 (#11263)
    • 3a6ab80d0 build(deps): bump google.golang.org/protobuf from 1.35.1 to 1.35.2

Changes from containerd/go-cni

2 commits

Dependency Changes

  • github.com/containerd/go-cni v1.1.11 -> v1.1.12
  • github.com/containerd/imgcrypt/v2 v2.0.0-rc.1 -> v2.0.0
  • github.com/containers/ocicrypt v1.2.0 -> v1.2.1
  • github.com/petermattis/goid 4fcff4a6cae7 new
  • github.com/sasha-s/go-deadlock v0.3.5 new
  • github.com/smallstep/pkcs7 v0.1.1 new
  • golang.org/x/crypto v0.28.0 -> v0.31.0
  • golang.org/x/net v0.30.0 -> v0.33.0
  • golang.org/x/oauth2 v0.22.0 -> v0.23.0
  • golang.org/x/sync v0.8.0 -> v0.10.0
  • golang.org/x/sys v0.26.0 -> v0.28.0
  • golang.org/x/term v0.25.0 -> v0.27.0
  • golang.org/x/text v0.19.0 -> v0.21.0
  • google.golang.org/grpc v1.67.1 -> v1.68.1
  • google.golang.org/protobuf v1.35.1 -> v1.35.2
  • tags.cncf.io/container-device-interface v0.8.0 -> v0.8.1

Previous release can be found at v2.0.2

Which file should I download?

  • containerd-<VERSION>-<OS>-<ARCH>.tar.gz: ✅Recommended. Dynamically linked with glibc 2.31 (Ubuntu 20.04).
  • containerd-static-<VERSION>-<OS>-<ARCH>.tar.gz: Statically linked. Expected to be used on non-glibc Linux distributions. Not position-independent.

In addition to containerd, typically you will have to install runc
and CNI plugins from their official sites too.

See also the Getting Started documentation.

Loading

containerd 1.7.26

27 Feb 01:00
@github-actions github-actions
v1.7.26
This tag was signed with the committer’s verified signature.
dmcgowan Derek McGowan
GPG key ID: F58C5D0A4405ACDB
Verified
Learn about vigilant mode.
753481e
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
containerd 1.7.26

Welcome to the v1.7.26 release of containerd!

The twenty-sixth patch release for containerd 1.7 contains various fixes
and updates.

Highlights

Container Runtime Interface (CRI)

  • Fix fatal concurrency error in port forwarding (#11306)

Node Resource Interface (NRI)

Runtime

  • Fix console TTY leak in runc shim (#11250)

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

  • Krisztian Litkey
  • Mike Brown
  • Samuel Karp
  • Wei Fu
  • Phil Estes
  • Derek McGowan
  • Iceber Gu
  • Akhil Mohan
  • Antonio Ojea
  • Austin Vazquez
  • Henry Wang
  • Jin Dong
  • Xiaojin Zhang
  • ningmingxiao
  • AbdelrahmanElawady
  • Akihiro Suda
  • Antti Kervinen
  • Jing Xu
  • Jitang Lei
  • Justin Alvarez
  • Lei Liu
  • Maksym Pavlenko
  • Yang Yang
  • Yuhang Wei
  • cormick
  • jingtao.liang

Changes

24 commits

  • Prepare release notes for v1.7.26 (#11356)
    • ceba197f5 Prepare release notes for v1.7.26
  • Upgrade x/net to 0.33.0 to fix vulnerability GHSA-w32m-9786-jp63 (#11434)
  • update build to go1.23.6, test go1.24.0 (#11419)
    • 9025d3075 update build to go1.23.6, test go1.24.0
  • Update install-imgcrypt to allow change install repo (#11358)
    • 83eaab482 Update install-imgcrypt to allow change install repo
  • Add support for syncfs after unpack (#11267)
    • 8bc21cba7 support to syncfs after pull by using diff plugin
  • Update runc binary to v1.2.5 (#11395)
  • Move run.skip-dirs to issues.exclude-dirs in golangci-lint config (#11400)
    • 8d8034b66 move skip-dirs to issues.exclude-dirs
  • Fix initial sync race when registering NRI plugins (#11326)
    • 11af05177 cri,nri: block NRI plugin sync. during event processing.
    • d4036cd3d go.{mod,sum}: bump NRI to v0.8.0, re-vendor.
  • Fix console TTY leak in runc shim (#11250)
    • c3e24e024 Add integ test to check tty leak
    • 4e45a463d fix master tty leak due to leaking init container object
  • Fix fatal concurrency error in port forwarding (#11306)
    • 0fe9f0b52 fix fatal error: concurrent map iteration and map write
  • update build to go1.22.11, test go1.23.5 (#11298)
    • 441b92636 update build to go1.22.11, test go1.23.5

Changes from containerd/nri

77 commits

  • Add API support for reading Pod IPs (containerd/nri#119)
  • generate: do not set OOMScoreAdj if no adjustment (containerd/nri#116)
  • 07bfc18 wip: generate: add test for oom score adj
  • b5fc359 generate: do not set OOMScoreAdj if no adjustment
  • device-injector: remove unreachable code. (containerd/nri#115)
    • 235aa11 chore: remove unreachable code and fmt files
  • Fix plugin sync to use multiple messages if ttrpc max message limit is hit (containerd/nri#111)
    • 159f575 template: dump pod/container count in sync message.
    • bf267e3 stub: collect/handle split sync messages.
    • ed78ae9 adaptation: use multiple sync messages if necessary.
    • 6fd59d6 api: add support for multiple sync messages.
    • a7fcccc mux: split oversized messages.
    • 5fe9b06 mux: fix maximum allowed message size.
    • 693d64e go.{mod,sum}, plugins: update ttrpc and NRI deps.
  • Update API to pass configured timeouts to plugins. (containerd/nri#109)
    • 320e4e7 adaptation: tests for runtime version, timeouts.
    • f86d982 api,adaptation,stub: let plugin know configured timeouts.
    • cfcd2af Makefile: fix ginkgo-tests target.
    • 8cd9504 adaptation: block plugin sync/registration in test suite.
    • 966ac92 adaptation: implement plugin synchronization blocks.
  • ci: verify that code generation works and results match (containerd/nri#113)
    • f74ce31 ci: verify code generation and generated files in repo
  • deps: bump gingko to v2.19.1, golang to v1.21.x. (containerd/nri#110)
    • e4d5c36 ci: stop testing with golang 1.20.x.
    • 6578149 go.{mod,sum}: bump golang requirement to 1.21.
    • 442e812 go.{mod,sum}: update to ginkgo v2.19.1.
  • sync sandboxes and containers after starting the pre-installed plugins (containerd/nri#43)
    • eada085 ignore pre-installed plugins that did not sync successfully
    • b881bc4 sync sandboxes and containers after starting the pre-installed plugins
  • Fix mount removal in adjustments ([containerd/nri#10...
Read more
Loading

containerd 1.6.37

27 Feb 00:28
@github-actions github-actions
v1.6.37
This tag was signed with the committer’s verified signature.
dmcgowan Derek McGowan
GPG key ID: F58C5D0A4405ACDB
Verified
Learn about vigilant mode.
cfc13b6
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
containerd 1.6.37

Welcome to the v1.6.37 release of containerd!

The thirty-seventh patch release for containerd 1.6 contains various fixes
and updates.

Highlights

  • Update runc binary to v1.2.5 (#11396)
  • Fix the race condition during GC of snapshots when client retries (#10764)

Container Runtime Interface (CRI)

  • Update the container exit log to info level (#11008)
  • Handle teardown failure to avoid blocking cleanup (#10778)
  • Add check for CNI plugins before tearing down pod network (#10766)

Runtime

  • Fix console TTY leak in runc shim (#11359)
  • Fix panic due to nil dereference cgroups v2 (#11100)

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

  • Phil Estes
  • Akihiro Suda
  • Maksym Pavlenko
  • Akhil Mohan
  • Austin Vazquez
  • Derek McGowan
  • Samuel Karp
  • Henry Wang
  • Jin Dong
  • Jing Xu
  • Sebastiaan van Stijn
  • Wei Fu
  • Benjamin Peterson
  • Kazuyoshi Kato
  • Saket Jajoo
  • Sameer
  • Zou Nengren
  • bo.jiang
  • jinda.ljd
  • ningmingxiao

Changes

59 commits

  • Prepare release notes for v1.6.37 (#11429)
    • 16ba72ad9 Prepare release notes for v1.6.37
  • Fix console TTY leak in runc shim (#11359)
    • 3e6f219d7 Add integ test to check tty leak
    • bc20f7457 fix master tty leak due to leaking init container object
  • Update install-imgcrypt to allow change install repo (#11418)
    • cbd44298c Update install-imgcrypt to allow change install repo
  • Update runc binary to v1.2.5 (#11396)
  • Update vagrant host OS to fix Vagrant CI runs (#11348)
    • d92457c71 Remove vagrant scp from the install list
  • update runc binary to v1.2.4 (#11237)
  • update runc binary to v1.2.3 (#11144)
  • update build to go1.22.10, test go1.23.4 (#11112)
    • bf89950f5 update build to go1.22.10, test go1.23.4
  • Fix panic due to nil dereference cgroups v2 (#11100)
    • db096794f fix panic due to nil dereference cgroups v2
  • Add almalinux/9 in CI (#11055)
  • Update the container exit log to info level (#11008)
  • update runc binary to 1.2.2 (#11028)
  • Revert "Disable vagrant strict dependency checking" (#11010)
    • f42035a21 Revert "Disable vagrant strict dependency checking"
  • update build to go1.22.9, test go1.23.3 (#10975)
    • 20958cbb0 update build to go1.22.9, test go1.23.3
  • backport: Disable vagrant strict dependency checking (#10966)
    • edb3df5ab Disable vagrant strict dependency checking
  • Update critools-version to 1.29 (#10929)
    • 9eca374a4 Update critools-version to 1.29 in release 1.6
  • update runc binary to 1.2.1 (#10941)
  • services/snapshots: include name of snapshotter in debug logs (#10932)
    • 4e54972f0 services/snapshots: include name of snapshotter in debug logs
  • Make TestContainerPids more resilient (#10937)
    • d7c7a12f3 Make TestContainerPids more resilient
  • Add After=dbus.service to containerd.service (#10860)
    • e6d8e5e9c Add After=dbus.service to containerd.service
  • Handle teardown failure to avoid blocking cleanup (#10778)
    • b1f8b03e7 Handle teardown failure to avoid blocking cleanup
  • Switch from actuated.dev to GH Action runners for arm64 (#10823)
    • ba411483a Switch from actuated.dev to GH Action runners for arm64
    • 8c58f78c2 Update github actions ci to run on forks
  • bump golangci/golangci-lint-action from 4 to 6 (#10819)
    • e4211a530 bump golangci/golangci-lint-action from 4 to 6
  • update to go1.23.2,go1.22.8 (#10809)
  • Update runner images to macOS13 (#10784)
  • Bump crun to 1.16.1 (#10775)
  • Fix the race condition during GC of snapshots when client retries (#10764)
    • 74951d6cf Fix the race condition during GC of snapshots when client retries
  • Add check for CNI plugins before tearing down pod network (#10766)
    • ca6516ee8 [release/1.6] Add check for CNI plugins before tearing down pod network

Dependency Changes

This release has no dependency changes

Previous release can be found at v1.6.36

Loading

containerd 2.0.2

14 Jan 05:34
@github-actions github-actions
v2.0.2
This tag was signed with the committer’s verified signature.
dmcgowan Derek McGowan
GPG key ID: F58C5D0A4405ACDB
Verified
Learn about vigilant mode.
c507a02
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
containerd 2.0.2

Welcome to the v2.0.2 release of containerd!

The second patch release for containerd 2.0 includes a number of bug fixes and improvements.

Highlights

Container Runtime Interface (CRI)

  • Remove confusing warning in cri runtime config migration (#11256)
  • Fix runtime platform loading in cri image plugin init (#11248)

Runtime

  • Update runc binary to v1.2.4 (#11239)

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

  • Jin Dong
  • Derek McGowan
  • Akihiro Suda
  • Kazuyoshi Kato
  • Henry Wang
  • Krisztian Litkey
  • Phil Estes
  • Samuel Karp
  • Sebastiaan van Stijn
  • Akhil Mohan
  • Brian Goff
  • Chongyi Zheng
  • Maksym Pavlenko
  • Mike Brown
  • Pierre Gimalac
  • Wei Fu

Changes

23 commits

  • Prepare release notes for v2.0.2 (#11245)
  • Update platforms to latest rc (#11259)
  • Remove confusing warning in cri runtime config migration (#11256)
    • 468079c5c Remove confusing warning in cri runtime config migration
  • Fix runtime platform loading in cri image plugin init (#11248)
    • a2d9d4fd5 Fix runtime platform loading in cri image plugin init
  • make sure console master tty is closed on task exit (#11246)
    • 184ffad01 Add integ test to check tty leak
    • 17181ed33 fix master tty leak due to leaking init container object
  • Bump up otelttrpc to 0.1.0 (#11242)
  • ctr: ctr images import --all-platforms: fix unpack (#11236)
    • c4270430d ctr: ctr images import --all-platforms: fix unpack
  • Update runc binary to v1.2.4 (#11239)
  • downgrade go-difflib and go-spew to tagged releases (#11222)
    • f34147772 downgrade go-difflib and go-spew to tagged releases
  • Add a build tag to disable std plugin import (#11213)
    • dca769485 chore: add a build tag to disable containerd plugin import
  • Update golangci to 1.60.3 (#11187)

Changes from containerd/otelttrpc

6 commits

Changes from containerd/platforms

6 commits

Changes from containerd/ttrpc

5 commits

Dependency Changes

  • github.com/containerd/otelttrpc ea5083fda723 -> v0.1.0
  • github.com/containerd/platforms v1.0.0-rc.0 -> v1.0.0-rc.1
  • github.com/containerd/ttrpc v1.2.6 -> v1.2.7
  • github.com/davecgh/go-spew d8f796af33cc -> v1.1.1
  • github.com/pmezard/go-difflib 5d4384ee4fb2 -> v1.0.0
  • github.com/stretchr/testify v1.9.0 -> v1.10.0

Previous release can be found at v2.0.1

Which file should I download?

  • containerd-<VERSION>-<OS>-<ARCH>.tar.gz: ✅Recommended. Dynamically linked with glibc 2.31 (Ubuntu 20.04).
  • containerd-static-<VERSION>-<OS>-<ARCH>.tar.gz: Statically linked. Expected to be used on non-glibc Linux distributions. Not position-independent.

In addition to containerd, typically you will have to install runc
and CNI plugins from their official sites too.

See also the Getting Started documentation.

Loading

containerd 1.7.25

10 Jan 06:58
@github-actions github-actions
v1.7.25
This tag was signed with the committer’s verified signature.
dmcgowan Derek McGowan
GPG key ID: F58C5D0A4405ACDB
Verified
Learn about vigilant mode.
bcc810d
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
containerd 1.7.25

Welcome to the v1.7.25 release of containerd!

The twenty-fifth patch release for containerd 1.7 contains various fixes
and updates.

Highlights

  • Update runc binary to v1.2.4 (#11238)
  • Fix proto conflicts and update to 1.8 API (#11184)

Container Runtime Interface (CRI)

  • Fix ip_pref configuration option (#11223)

Runtime

  • Fix panic due to nil dereference cgroups v2 (#11099)

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

  • Akihiro Suda
  • Derek McGowan
  • Sebastiaan van Stijn
  • Wei Fu
  • Maksym Pavlenko
  • Akhil Mohan
  • Henry Wang
  • Jin Dong
  • Phil Estes
  • Sam Edwards
  • Samuel Karp
  • Brian Goff
  • David Son
  • Kohei Tokunaga
  • Pierre Gimalac
  • Yang Yang
  • bo.jiang

Changes

32 commits

  • Prepare release notes for v1.7.25 (#11243)
    • bda53fc60 Prepare release notes for v1.7.25
  • Update runc binary to v1.2.4 (#11238)
  • Reduce shim plugin log level (#11224)
    • 99c973791 runtime/v2: reduce shim plugin log
  • Fix ip_pref configuration option (#11223)
    • 0cfc1edf3 Fix "even if IPv4 comes first" test to have IPv4 first
    • 53d1fd0d9 Don't use To16() != nil to detect IPv6 addresses
  • Add a build tag to disable std plugin import (#11202) (#11203)
    • 2b12ef2f4 chore: add a build tag to disable containerd plugin import
  • bump github.com/containerd/continuity from 0.4.2 to 0.4.4 (#11216)
    • b99091838 build(deps): bump github.com/containerd/continuity from 0.4.3 to 0.4.4
    • 9f48f7af0 build(deps): bump google.golang.org/protobuf from 1.33.0 to 1.35.2
    • 79172ba16 go.mod: github.com/containerd/continuity v0.4.3
  • deps: update golang.org/x/ (#11178)
    • 2dfbe2c7c vendor: update golang.org/x/crypto dependencies
  • Fix proto conflicts and update to 1.8 API (#11184)
  • update runc binary to v1.2.3 (#11143)
  • update build to go1.22.10, test go1.23.4 (#11111)
    • 4c0db6ad6 update build to go1.22.10, test go1.23.4
  • Fix panic due to nil dereference cgroups v2 (#11099)
    • a40aa60a5 fix panic due to nil dereference cgroups v2
  • Move rockylinux 9.4 to almalinux/9 in CI (#11054)
    • b1ef1dda7 move rocky 9.4 to almalinux/9 in CI

Changes from containerd/continuity

40 commits

Read more
Loading

containerd 2.0.1

13 Dec 23:58
@github-actions github-actions
v2.0.1
This tag was signed with the committer’s verified signature.
dmcgowan Derek McGowan
GPG key ID: F58C5D0A4405ACDB
Verified
Learn about vigilant mode.
88aa2f5
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
containerd 2.0.1

Welcome to the v2.0.1 release of containerd!

The first patch release for containerd 2.0 includes a number of bug fixes and improvements.

Highlights

Container Runtime Interface (CRI)

Image Distribution

  • Update differ to handle zstd media types (#11068)

Runtime

  • Update runc binary to v1.2.3 (#11142)
  • Fix panic due to nil dereference cgroups v2 (#11098)

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

  • Derek McGowan
  • Wei Fu
  • Archit Kulkarni
  • Jin Dong
  • Phil Estes
  • Akhil Mohan
  • Akihiro Suda
  • Alexey Lunev
  • Austin Vazquez
  • Maksym Pavlenko
  • Mike Brown
  • Michael Zappa
  • Samuel Karp
  • Sebastiaan van Stijn
  • Andrey Smirnov
  • Davanum Srinivas

Changes

50 commits

  • Prepare release notes for v2.0.1 (#11158)
  • build(deps): bump actions/attest-build-provenance from 1.4.4 to 2.1.0 (#11154)
    • fe6957084 build(deps): bump actions/attest-build-provenance from 1.4.4 to 2.1.0
  • update xx to v1.6.1 for compatibility with alpine 3.21 and file 5.46+ (#11153)
    • eb2ce6882 update xx to v1.6.1 for compatibility with alpine 3.21 and file 5.46+
  • ctr pull should unpack for default platform when transfer service is used (#11139)
    • 44cdca68b ctr pull unpack for default platform using transfer service
  • Fix apply IoOwner options when not in user namespace (#11151)
    • 018d83650 internal/cri: should not apply IoOwner options
  • Update go-cni for CNI STATUS (#11146)
    • 5eb7995a9 feat: update go-cni version for CNI STATUS
  • Fix cri grpc plugin config migration (#11140)
    • a2302ea89 Add integration test for custom configuration
    • be5eda069 complete cri grpc config migration
  • Update runc binary to v1.2.3 (#11142)
  • Update differ to handle zstd media types (#11068)
    • 73f57acb0 Update differ to handle zstd media types
  • update to go1.23.4 / go1.22.10 (#11109)
  • CI: update Fedora to 41 (#11110)
  • Fix panic due to nil dereference cgroups v2 (#11098)
    • 3ba2df924 fix panic due to nil dereference cgroups v2
  • Publish attestation as release artifact (#11067)
    • 34a45cab2 Publish attestation as release artifact
  • Move rockylinux 9.4 to almalinux/9 in CI (#11053)
    • 7dec6b460 move rocky 9.4 to almalinux/9 in CI
  • *: should align pipe's owner with init process (#11035)
    • cf07f28ee *: should align pipe's owner with init process
  • fix: set the credentials even if not provided (#11031)
    • 986088866 fix: set the credentials even if not provided
  • fsverity_test.go: fix nil pointer derefence, fix test fail, fix minor/major device numbers resolving (#10978)
    • 30b929ece fsverity_test.go: fix major/minor device number resolving
    • 10996a334 fsverity_test.go: fix nil pointer dereference, fix test fail
  • update runc binary to 1.2.2 (#11023)
  • Revert "Disable vagrant strict dependency checking" (#11009)
    • 6399c936f Revert "Disable vagrant strict dependency checking"
  • fsverity_linux.go: Fix fsverity.IsEnabled() for big endian systems (#11005)
    • a7f2b562f fsverity_linux.go: Fix fsverity.IsEnabled() for big endian systems
  • bump github.com/containerd/typeurl/v2 from 2.2.2 to 2.2.3 (#10997)
    • 389e781ea build(deps): bump github.com/containerd/typeurl/v2 from 2.2.2 to 2.2.3
  • update to go1.23.3 / go1.22.9 (#10973)
  • ci: enable marking 2.0 releases as latest (#10963)
    • 458215f6c ci: enable marking 2.0 releases as latest
  • Avoid arch info in the sed/replace when building cri-cni-containerd.tar.gz (#10968)
    • e99c2b55c Avoid arch info in the sed/replace when building cri-cni-containerd.tar.gz

Changes from containerd/go-cni

7 commits

Dependency Changes

  • github.com/containerd/go-cni v1.1.10 -> v1.1.11
  • github.com/containerd/typeurl/v2 v2.2.2 -> v2.2.3

Previous release can be found at v2.0.0

Which file should I download?

  • containerd-<VERSION>-<OS>-<ARCH>.tar.gz: ✅Recommended. Dynamically linked with glibc 2.31 (Ubuntu 20.04).
  • containerd-static-<VERSION>-<OS>-<ARCH>.tar.gz: Statically linked. Expected to be used on non-glibc Linux distributions. Not position-independent.

In addition to containerd, typically you will have to install runc
and CNI plugins from their official sites too.

See also the Getting Started document...

Read more
Loading