Infrastructure/zot
0
Fork 0
mirror of https://github.com/project-zot/zot.git synced 2024-12-16 21:56:37 -05:00
Code Issues Activity
431 commits 7 branches 108 tags 208 MiB
Commit graph

431 commits

This branch
This branch
All branches
Author SHA1 Message Date
Ramkumar Chinchani
97173a54dd add a CODEOWNERS file 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-05-04 11:52:28 -07:00
Ramkumar Chinchani
6d593b468f dependabot alert: fix CVE-2022-29810 
https://github.com/project-zot/zot/security/dependabot/14

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-05-03 14:36:41 -07:00
laurentiuNiculae
bb95af5b4d default policy only authorization 
unit tests for manifest integrity when updating

Signed-off-by: laurentiuNiculae <themelopeus@gmail.com>
 2022-05-03 11:46:55 -07:00
Ramkumar Chinchani
e1a1bdff1a codeql: move from v1 to v2 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-04-27 11:58:46 -07:00
Alex Stan
d325c8b5f4 Fix problems signaled by new linter version v1.45.2 
PR (linter: upgrade linter version #405) triggered lint job which failed
with many errors generated by various linters. Configurations were added to
golangcilint.yaml and several refactorings were made in order to improve the
results of the linter.

maintidx linter disabled

Signed-off-by: Alex Stan <alexandrustan96@yahoo.ro>
 2022-04-27 09:55:44 -07:00
Ramkumar Chinchani
d19a4bf2a1 build(deps): bump github.com/swaggo/http-swagger from 1.2.5 to 1.2.6 
Fixes https://github.com/project-zot/zot/security/dependabot/12

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-04-26 09:31:11 -07:00
Andreea-Lupu
cb9d8d6c13 update metrics/Dockerfile to match current binary name format 
Signed-off-by: Andreea-Lupu <andreealupu1470@yahoo.com>
 2022-04-22 11:37:53 -07:00
Petu Eusebiu
ad90a4975f Migrate from docker/build-push-action to stacker-build-push-action 
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-04-19 10:49:21 -07:00
Andreea-Lupu
5e35dfa28f make gc periodic 
Signed-off-by: Andreea-Lupu <andreealupu1470@yahoo.com>
 2022-04-18 10:25:29 -07:00
Petu Eusebiu
89c5f4f604 sync: fix functions which compare signatures 
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-04-15 10:31:37 -07:00
Petu Eusebiu
4e20ab8a5d go.mod: update dependencies 
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-04-15 10:31:37 -07:00
Petu Eusebiu
c62dae06c9 s3: fix initRepo not creating index.json in some edge cases 
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-04-14 15:06:40 -07:00
laurentiuNiculae
0d4cc8736d Target for cheking not commited config files. 
Signed-off-by: laurentiuNiculae <themelopeus@gmail.com>

Separated updateDistSpec functionality

Removed rewriting of config when distSpecVersion was wrong
 2022-04-14 10:28:38 -07:00
Roxana Nemulescu
efc55b013e Add reading tests for zb binary: read-only tests and mixed read-only tests 
Add mixed write-only tests
Add mixed read-write tests

Signed-off-by: Roxana Nemulescu <roxana.nemulescu@gmail.com>
 2022-04-13 13:22:36 -07:00
Ramkumar Chinchani
e739cce983 update demos for better sizing and layout 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-04-11 10:22:11 -07:00
Ramkumar Chinchani
e583c2fc4e update 3rd party licenses 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-04-08 09:48:13 -07:00
Catalin Hofnar
475d97b1ad Separate make commands that require sudo 
Reworked privileged cert test so it runs in Go by moving make logic to Go logic

Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
 2022-04-05 10:12:43 -07:00
Ramkumar Chinchani
ceb8c8ae6f demos: initial commit of asciinema demos 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-04-04 13:52:55 -07:00
Andreea-Lupu
9454c77be2 make scrub inline and periodic 
Signed-off-by: Andreea-Lupu <andreealupu1470@yahoo.com>
 2022-04-01 13:38:24 -07:00
Alexei Dodon
ad519e2d3e Leave zot repositories in a consistent state after zot hits fd limit closes #359 
Signed-off-by: Alexei Dodon <adodon@cisco.com>
 2022-03-31 13:25:15 -07:00
Petu Eusebiu
ba41368469 Modified shared storage haproxy config to stick only writes, not reads 
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-03-31 10:26:03 -07:00
Petu Eusebiu
03dd558ec6 sync: fix inconsistent test 
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-03-31 09:19:07 -07:00
Ramkumar Chinchani
554e99a967 build: add -buildmode=pie to builds 
This makes zot a dynamic binary, so the container base image has to be
changed accordingly

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-03-24 13:27:40 -07:00
Ramkumar Chinchani
b2a4388522 gc: add a unit test 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-03-24 12:02:52 -07:00
Petu Eusebiu
be910cf01c lint: Move out config reloader context from controller struct 
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-03-24 10:50:01 -07:00
Petu Eusebiu
353b0c6034 Move api constants in separate 'constants' package to avoid circular imports 
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-03-24 10:50:01 -07:00
Petu Eusebiu
f53dc9eb8d sync: Add a new flag to enforce syncing only signed images, closes #455 
sync: When checking if a image is already synced also check for changes in upstream signatures.

Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-03-24 10:50:01 -07:00
Andrei Aaron
dd6cedcf78
Refactor the push/pull tests to use the bats test framework (#467) 
This is a follow up to #444.

Signed-off-by: Andrei Aaron <andaaron@cisco.com>
 2022-03-23 00:13:10 +02:00
Ramkumar Chinchani
251857fb6e move module deps under project-zot repo 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-03-21 11:03:19 -07:00
laurentiuNiculae
0d148e1d6b new config option for sync-destination 
Signed-off-by: laurentiuNiculae <themelopeus@gmail.com>
 2022-03-21 08:12:34 -07:00
Petu Eusebiu
6d04ab3cdc sync: support reloading sync config when the config file changes 
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-03-18 11:24:11 -07:00
Catalin-George Hofnar
7e8cc3c71c
Exported PATH for notation (#470) 
Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
 2022-03-18 17:55:04 +02:00
Ramkumar Chinchani
cff3be638f ci/cd: scan released images with trivy scanner 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-03-17 19:13:49 -07:00
Ramkumar Chinchani
e767cb456c fix issue and PR templates 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-03-17 11:10:56 -07:00
Ramkumar Chinchani
10f0e6c307 fix dependabot alert 
https://github.com/project-zot/zot/security/dependabot/10

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-03-15 16:55:32 -07:00
laurentiuNiculae
63d94d4ac5 Update dist-spec version automatically 
Warning if config has wrong dist-spec version

Signed-off-by: laurentiuNiculae <themelopeus@gmail.com>
 2022-03-14 10:24:03 -07:00
Petu Eusebiu
fa27e22404 Added clustering github workflow 
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-03-09 10:54:17 -08:00
Shivam Mishra
b8010e1ee4 routes: changes required to do browser authentication 
whenever we make a request that contains header apart from CORS allowed header, browser sends a preflight request
and in response accept *Access-Control-Allow-Headers*.

preflight request is in form of OPTIONS method, added new http handler func to set headers
and returns HTTP status ok in case of OPTIONS method.

in case of authorization, request contains authorization header
added authorization header in Access-Control-Allow-Headers list

added AllowOrigin field in HTTPConfig this field value is set to Access-Control-Allow-Origin header and will give zot adminstrator to limit incoming request.

Signed-off-by: Shivam Mishra <shimish2@cisco.com>
 2022-03-08 17:42:54 -08:00
laurentiuNiculae
aee94218aa remove root access for skopeo in Makefile 
Signed-off-by: laurentiuNiculae <themelopeus@gmail.com>
 2022-03-08 10:39:22 -08:00
Eng Zer Jun
0d77b60de7 test: use T.TempDir to create temporary test directory 
The directory created by `T.TempDir` is automatically removed when the
test and all its subtests complete.

Reference: https://pkg.go.dev/testing#T.TempDir
Signed-off-by: Eng Zer Jun <engzerjun@gmail.com>
 2022-03-07 12:28:49 -08:00
Ramkumar Chinchani
4be2652085 conformance: fix cross-mount behavior when 'from' is missing 
fixes issue #442

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-03-04 17:24:50 -08:00
Ramkumar Chinchani
95e4b2054b upgrade module deps 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-03-04 13:10:58 -08:00
Ramkumar Chinchani
3b9699c536 go.mod: cleanup deps so 'go mod tidy' works 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-03-04 13:10:58 -08:00
Ramkumar Chinchani
cf70a8d71e CVE-2022-23648: update dependencies in go.mod 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-03-03 09:55:48 -08:00
Petu Eusebiu
9cffbcaccb s3: bugfix, use sync.Map instead of map for storing multi part uploads references 
add storage lock in GetIndexContent

Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-03-03 09:12:07 -08:00
Ramkumar Chinchani
bf21435d42 remove linger go.sum entries to fix dependabot alert 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-03-02 13:28:37 -08:00
Ramkumar Chinchani
8db3e1b192 CVE-2022-23649: fix dependabot alert 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-03-02 12:01:14 -08:00
Ramkumar Chinchani
3ada6af0de tls: set min version to 1.2 and restrict cipher suites 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-03-02 10:03:50 -08:00
Petu Eusebiu
45968e0bb7 sync: fix inconsistent test, used inject error fw for hard to reach test cases 
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-03-01 09:56:27 -08:00
Ramkumar Chinchani
408f043f1e codecov: upgrade from v1 to v2 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-02-25 09:23:57 -08:00