Ramkumar Chinchani
c1bf4456d0
update cosign deps
...
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-05-22 09:15:01 -07:00
laurentiuNiculae
7d8af50aec
mocked tests for routes
...
Signed-off-by: laurentiuNiculae <themelopeus@gmail.com>
2022-05-20 13:27:09 -07:00
Ramkumar Chinchani
287ac05ddc
update linter version to 1.46.2
...
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-05-20 11:53:56 -07:00
Ramkumar Chinchani
32afe712d6
build: fix base image in stacker files
...
Revert 058bbb94c6
Use alpine:3
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-05-20 10:38:44 -07:00
Catalin Hofnar
7c477f5ba3
Changed Github workflow to cache dependencies
...
Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
2022-05-19 09:44:52 -07:00
Petu Eusebiu
799eab63a9
clustering: Give time to minio container to come up
...
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
2022-05-18 10:35:26 -07:00
Petu Eusebiu
7c3a8f9d07
Report unknown keys when parsing configuration files
...
Report missing mandatory ldap keys
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
2022-05-16 14:13:31 -07:00
Catalin Hofnar
20a60cbad4
Enhance sync logic - stop blob redownloads and re-pushes ( #479 #480 )
...
Changed imagesToCopyFromUpstream to return a map[string][]types.ImageReference from just an array of refs
Rewrote some logic in sync.go to use the new signature of imagesToCopyFromUpstream
Split getLocalImageRef by adding function getLocalCachePath
Adapted tests for new changes, added some tests
Merged #481
Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
2022-05-16 10:05:01 -07:00
Shivam Mishra
c2245bf412
add failfast flag in go test
...
this flag disables running additional tests after any test fails.
Signed-off-by: Shivam Mishra <shimish2@cisco.com>
2022-05-13 18:53:24 -07:00
Ramkumar Chinchani
058bbb94c6
stacker builds: use a different base image
...
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-05-12 11:32:42 -07:00
Ramkumar Chinchani
0eed4fbed2
zb: fix usage help output
...
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-05-10 09:50:01 -07:00
Shivam Mishra
e04a9bf6e2
use TempDir instead of /tmp/zot in tests
...
Closes #508
Signed-off-by: Shivam Mishra <shimish2@cisco.com>
2022-05-05 10:38:53 -07:00
Ramkumar Chinchani
97173a54dd
add a CODEOWNERS file
...
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-05-04 11:52:28 -07:00
Ramkumar Chinchani
6d593b468f
dependabot alert: fix CVE-2022-29810
...
https://github.com/project-zot/zot/security/dependabot/14
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-05-03 14:36:41 -07:00
laurentiuNiculae
bb95af5b4d
default policy only authorization
...
unit tests for manifest integrity when updating
Signed-off-by: laurentiuNiculae <themelopeus@gmail.com>
2022-05-03 11:46:55 -07:00
Ramkumar Chinchani
e1a1bdff1a
codeql: move from v1 to v2
...
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-04-27 11:58:46 -07:00
Alex Stan
d325c8b5f4
Fix problems signaled by new linter version v1.45.2
...
PR (linter: upgrade linter version #405 ) triggered lint job which failed
with many errors generated by various linters. Configurations were added to
golangcilint.yaml and several refactorings were made in order to improve the
results of the linter.
maintidx linter disabled
Signed-off-by: Alex Stan <alexandrustan96@yahoo.ro>
2022-04-27 09:55:44 -07:00
Ramkumar Chinchani
d19a4bf2a1
build(deps): bump github.com/swaggo/http-swagger from 1.2.5 to 1.2.6
...
Fixes https://github.com/project-zot/zot/security/dependabot/12
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-04-26 09:31:11 -07:00
Andreea-Lupu
cb9d8d6c13
update metrics/Dockerfile to match current binary name format
...
Signed-off-by: Andreea-Lupu <andreealupu1470@yahoo.com>
2022-04-22 11:37:53 -07:00
Petu Eusebiu
ad90a4975f
Migrate from docker/build-push-action to stacker-build-push-action
...
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
2022-04-19 10:49:21 -07:00
Andreea-Lupu
5e35dfa28f
make gc periodic
...
Signed-off-by: Andreea-Lupu <andreealupu1470@yahoo.com>
2022-04-18 10:25:29 -07:00
Petu Eusebiu
89c5f4f604
sync: fix functions which compare signatures
...
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
2022-04-15 10:31:37 -07:00
Petu Eusebiu
4e20ab8a5d
go.mod: update dependencies
...
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
2022-04-15 10:31:37 -07:00
Petu Eusebiu
c62dae06c9
s3: fix initRepo not creating index.json in some edge cases
...
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
2022-04-14 15:06:40 -07:00
laurentiuNiculae
0d4cc8736d
Target for cheking not commited config files.
...
Signed-off-by: laurentiuNiculae <themelopeus@gmail.com>
Separated updateDistSpec functionality
Removed rewriting of config when distSpecVersion was wrong
2022-04-14 10:28:38 -07:00
Roxana Nemulescu
efc55b013e
Add reading tests for zb binary: read-only tests and mixed read-only tests
...
Add mixed write-only tests
Add mixed read-write tests
Signed-off-by: Roxana Nemulescu <roxana.nemulescu@gmail.com>
2022-04-13 13:22:36 -07:00
Ramkumar Chinchani
e739cce983
update demos for better sizing and layout
...
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-04-11 10:22:11 -07:00
Ramkumar Chinchani
e583c2fc4e
update 3rd party licenses
...
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-04-08 09:48:13 -07:00
Catalin Hofnar
475d97b1ad
Separate make commands that require sudo
...
Reworked privileged cert test so it runs in Go by moving make logic to Go logic
Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
2022-04-05 10:12:43 -07:00
Ramkumar Chinchani
ceb8c8ae6f
demos: initial commit of asciinema demos
...
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-04-04 13:52:55 -07:00
Andreea-Lupu
9454c77be2
make scrub inline and periodic
...
Signed-off-by: Andreea-Lupu <andreealupu1470@yahoo.com>
2022-04-01 13:38:24 -07:00
Alexei Dodon
ad519e2d3e
Leave zot repositories in a consistent state after zot hits fd limit closes #359
...
Signed-off-by: Alexei Dodon <adodon@cisco.com>
2022-03-31 13:25:15 -07:00
Petu Eusebiu
ba41368469
Modified shared storage haproxy config to stick only writes, not reads
...
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
2022-03-31 10:26:03 -07:00
Petu Eusebiu
03dd558ec6
sync: fix inconsistent test
...
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
2022-03-31 09:19:07 -07:00
Ramkumar Chinchani
554e99a967
build: add -buildmode=pie to builds
...
This makes zot a dynamic binary, so the container base image has to be
changed accordingly
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-03-24 13:27:40 -07:00
Ramkumar Chinchani
b2a4388522
gc: add a unit test
...
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-03-24 12:02:52 -07:00
Petu Eusebiu
be910cf01c
lint: Move out config reloader context from controller struct
...
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
2022-03-24 10:50:01 -07:00
Petu Eusebiu
353b0c6034
Move api constants in separate 'constants' package to avoid circular imports
...
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
2022-03-24 10:50:01 -07:00
Petu Eusebiu
f53dc9eb8d
sync: Add a new flag to enforce syncing only signed images, closes #455
...
sync: When checking if a image is already synced also check for changes in upstream signatures.
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
2022-03-24 10:50:01 -07:00
Andrei Aaron
dd6cedcf78
Refactor the push/pull tests to use the bats test framework ( #467 )
...
This is a follow up to #444 .
Signed-off-by: Andrei Aaron <andaaron@cisco.com>
2022-03-23 00:13:10 +02:00
Ramkumar Chinchani
251857fb6e
move module deps under project-zot repo
...
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-03-21 11:03:19 -07:00
laurentiuNiculae
0d148e1d6b
new config option for sync-destination
...
Signed-off-by: laurentiuNiculae <themelopeus@gmail.com>
2022-03-21 08:12:34 -07:00
Petu Eusebiu
6d04ab3cdc
sync: support reloading sync config when the config file changes
...
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
2022-03-18 11:24:11 -07:00
Catalin-George Hofnar
7e8cc3c71c
Exported PATH for notation ( #470 )
...
Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
2022-03-18 17:55:04 +02:00
Ramkumar Chinchani
cff3be638f
ci/cd: scan released images with trivy scanner
...
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-03-17 19:13:49 -07:00
Ramkumar Chinchani
e767cb456c
fix issue and PR templates
...
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-03-17 11:10:56 -07:00
Ramkumar Chinchani
10f0e6c307
fix dependabot alert
...
https://github.com/project-zot/zot/security/dependabot/10
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-03-15 16:55:32 -07:00
laurentiuNiculae
63d94d4ac5
Update dist-spec version automatically
...
Warning if config has wrong dist-spec version
Signed-off-by: laurentiuNiculae <themelopeus@gmail.com>
2022-03-14 10:24:03 -07:00
Petu Eusebiu
fa27e22404
Added clustering github workflow
...
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
2022-03-09 10:54:17 -08:00
Shivam Mishra
b8010e1ee4
routes: changes required to do browser authentication
...
whenever we make a request that contains header apart from CORS allowed header, browser sends a preflight request
and in response accept *Access-Control-Allow-Headers*.
preflight request is in form of OPTIONS method, added new http handler func to set headers
and returns HTTP status ok in case of OPTIONS method.
in case of authorization, request contains authorization header
added authorization header in Access-Control-Allow-Headers list
added AllowOrigin field in HTTPConfig this field value is set to Access-Control-Allow-Origin header and will give zot adminstrator to limit incoming request.
Signed-off-by: Shivam Mishra <shimish2@cisco.com>
2022-03-08 17:42:54 -08:00