github/distribution
1
0
Fork 0
mirror of https://github.com/distribution/distribution.git synced 2025-07-14 23:54:17 +00:00
Code Issues Projects Releases Wiki Activity
5,619 Commits 24 Branches 6 Tags 146 MiB
c3a9722979
Commit Graph

5619 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Milos Gajdos
c3a9722979
build(deps): bump actions/upload-artifact from 4.6.1 to 4.6.2 (#4603) 2025-03-19 22:51:53 -07:00
dependabot[bot]
6be526bec8
build(deps): bump actions/upload-artifact from 4.6.1 to 4.6.2 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.6.1 to 4.6.2.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v4.6.1...v4.6.2)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-03-20 02:02:45 +00:00
João Pereira
98dd92206f
build(deps): bump golang.org/x/net from 0.33.0 to 0.36.0 in the go_modules group across 1 directory (#4597) 2025-03-19 16:34:08 +00:00
dependabot[bot]
896fec507e
build(deps): bump golang.org/x/net 
Bumps the go_modules group with 1 update in the / directory: [golang.org/x/net](https://github.com/golang/net).


Updates `golang.org/x/net` from 0.33.0 to 0.36.0
- [Commits](https://github.com/golang/net/compare/v0.33.0...v0.36.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  dependency-group: go_modules
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-03-19 14:59:20 +00:00
Milos Gajdos
fb71a0aefc
Bump Go version in prep for a release (#4601) 2025-03-19 07:58:04 -07:00
Milos Gajdos
d7b8fb6a0e
Bump Go version in prep for the next release 
This bumps the Go version in preparation for the next release.

Signed-off-by: Milos Gajdos <milosthegajdos@gmail.com>
 2025-03-19 07:47:32 -07:00
João Pereira
65f455352d
Rename cloud make targets to s3 (#4600) 2025-03-18 08:54:43 +00:00
Milos Gajdos
26b983c753
More renames 
Renamed some additional files that were missed in the first commit.

Signed-off-by: Milos Gajdos <milosthegajdos@gmail.com>
 2025-03-16 06:38:27 -07:00
Milos Gajdos
31c0221600
Rename cloud make targets to s3 
Originally we used to have integration tests only for S3 so we decided
to call them "clooud" (tests). We've now added integration tests for
Azure storage driver so calling the S3 one cloud is just opaque and
rather confusing. This commit renamed -cloud- targets to -s3- ones.

Signed-off-by: Milos Gajdos <milosthegajdos@gmail.com>
 2025-03-16 06:22:52 -07:00
Milos Gajdos
ebd20d3be7
Azure driver retry fix (#4576) 2025-03-14 10:20:25 -07:00
Milos Gajdos
2ffa1171c2
Azure driver fix 
* Make copy poll max retry, a global driver max retry
* Get support for etags in Azure
* Fix storage driver tests
* Fix auth mess and update docs
* Refactor Azure client and enable Azure storage tests

We use Azurite for integration testing which requires TLS,
so we had to figure out how to skip TLS verification when running tests locally:
this required updating testsuites Driver and constructor due to TestRedirectURL
sending GET and HEAD requests to remote storage which in this case is Azurite.

Signed-off-by: Milos Gajdos <milosthegajdos@gmail.com>
 2025-03-14 10:03:09 -07:00
Milos Gajdos
2a47e44433
use cached blob statter in ManifestService if available (#4595) 2025-03-11 10:48:09 -07:00
Oleg Gnusarev
b30274f26c use cached blob statter in ManifestService if available 
Signed-off-by: Oleg Gnusarev <ognusarev@mts.ru>
 2025-03-11 19:41:25 +03:00
Milos Gajdos
4974b855f6
fix: remove nested structs from configuration (#4523) 2025-03-09 13:00:35 -07:00
Mateusz Urbanek
b2cc4fe1c7
fix: define types for inline structs 
Signed-off-by: Mateusz Urbanek <mateusz.urbanek.98@gmail.com>
 2025-03-09 20:44:46 +01:00
Milos Gajdos
565ecec5b7
Update osx-setup-guide.md and com.docker.registry.plist (#4592) 2025-03-09 12:43:12 -07:00
andy-cooper
6599be4fe9
Update com.docker.registry.plist 
Add missing "serve" parameter

Signed-off-by: andy-cooper <andrew.john.cooper@gmail.com>
 2025-03-08 21:35:10 -05:00
andy-cooper
bb0253d1df
Update osx-setup-guide.md 
Incorrect directories fixed. Added explanation for ensuring port 5000 is available or changing it. There will be a subsequent fix to the plist file.

Signed-off-by: andy-cooper <andrew.john.cooper@gmail.com>
 2025-03-08 19:19:51 -05:00
Milos Gajdos
1b01625dae
Enable MD5 check on GCS driver (#4586) 2025-03-01 07:47:00 -08:00
Milos Gajdos
7884c71297
Add code comment 
Adding a code comment that explains setting MD5 Sum field.

Signed-off-by: Milos Gajdos <milosthegajdos@gmail.com>
 2025-03-01 07:35:41 -08:00
Milos Gajdos
e20645c050
Enable MD5 check on GCS driver 
Apparently you can upload 0-size content wihtout GCS reportin any errors
back to you.

This is something a lot of our users experienced and reported. See here
for at least one example:
github.com/distribution/distribution/issues/3018

This sets tbe MD5 sum on the uploaded content which should rectify
things according to the docs:
https://pkg.go.dev/cloud.google.com/go/storage#ObjectAttrs

Signed-off-by: Milos Gajdos <milosthegajdos@gmail.com>
 2025-02-28 07:20:48 -08:00
Milos Gajdos
d9b0802d81
build(deps): bump actions/upload-artifact from 4.6.0 to 4.6.1 (#4580) 2025-02-25 06:42:02 -08:00
João Pereira
27d490c4ab
build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.1 (#4579) 2025-02-25 08:16:21 +00:00
João Pereira
205d098fdc
build(deps): bump github.com/go-jose/go-jose/v4 from 4.0.2 to 4.0.5 in the go_modules group (#4582) 2025-02-25 08:15:26 +00:00
dependabot[bot]
fc3dd55d3d
build(deps): bump github.com/go-jose/go-jose/v4 in the go_modules group 
Bumps the go_modules group with 1 update: [github.com/go-jose/go-jose/v4](https://github.com/go-jose/go-jose).


Updates `github.com/go-jose/go-jose/v4` from 4.0.2 to 4.0.5
- [Release notes](https://github.com/go-jose/go-jose/releases)
- [Changelog](https://github.com/go-jose/go-jose/blob/main/CHANGELOG.md)
- [Commits](https://github.com/go-jose/go-jose/compare/v4.0.2...v4.0.5)

---
updated-dependencies:
- dependency-name: github.com/go-jose/go-jose/v4
  dependency-type: direct:production
  dependency-group: go_modules
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-02-24 22:51:52 +00:00
Milos Gajdos
9e96aec357
Fix broken signing algorithm configuration for token authentication (#4578) 2025-02-24 07:41:25 -08:00
evanebb
64f780f6c5
Explicitly return zero value instead of partially filled struct 
Signed-off-by: evanebb <git@evanus.nl>
 2025-02-24 16:04:41 +01:00
dependabot[bot]
da2bbf0441
build(deps): bump actions/upload-artifact from 4.6.0 to 4.6.1 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.6.0 to 4.6.1.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v4.6.0...v4.6.1)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-02-24 01:21:18 +00:00
dependabot[bot]
484fa0432a
build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.1 
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.4.0 to 2.4.1.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](62b2cac7ed...f49aabe0b5)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-02-24 01:21:15 +00:00
evanebb
0762a1bb57
Fix error message for unsupported signing algorithm by not overriding var 
Signed-off-by: evanebb <git@evanus.nl>
 2025-02-23 22:17:17 +01:00
evanebb
70d99154ac
Fix signing algorithm configuration for token authentication 
Signed-off-by: evanebb <git@evanus.nl>
 2025-02-23 22:16:11 +01:00
Milos Gajdos
63d3892315
registry/storage: add option to quiet GC output. (#4560) 2025-02-13 07:37:00 -08:00
Milos Gajdos
51bdcb7bac
Prep for v3-rc.3 release (#4568) 2025-02-11 07:49:20 -08:00
Milos Gajdos
198db9cb06
Prep for v3-rc.3 release 
* Created a changelog file
* Updated version

Signed-off-by: Milos Gajdos <milosthegajdos@gmail.com>
 2025-02-11 06:56:02 -08:00
Milos Gajdos
5ea9aa028d
Merge commit from fork 
Fix registry token authentication bug
 2025-02-10 19:50:35 -08:00
Milos Gajdos
939a525dd5
Bump Go version (#4566) 2025-02-08 07:20:26 -08:00
Milos Gajdos
7098b3f42c
Bump Go version 
Signed-off-by: Milos Gajdos <milosthegajdos@gmail.com>
 2025-02-07 19:34:01 -08:00
Milos Gajdos
6ed60b0f48
Apply suggestions from code review 
Co-authored-by: Sebastiaan van Stijn <thaJeztah@users.noreply.github.com>
Signed-off-by: Milos Gajdos <milosgajdos83@gmail.com>
 2025-02-06 17:43:28 +00:00
Milos Gajdos
53c382641c
Remove named returns and fix linting woes 
Signed-off-by: Milos Gajdos <milosthegajdos@gmail.com>
 2025-02-05 21:26:23 -08:00
Rafael Fonseca
2a491b35dd docs/garbage-collection: document --delete-untagged and --quiet options 
Signed-off-by: Rafael Fonseca <r4f4rfs@gmail.com>
 2025-02-03 17:36:20 +01:00
Rafael Fonseca
a032989bf9 registry/storage: add option to quiet GC output. 
Consumers might not want GC output to be displayed (e.g, if you have
your own logging system).

Signed-off-by: Rafael Fonseca <r4f4rfs@gmail.com>
 2025-02-02 10:18:45 +01:00
Milos Gajdos
f4a500caf6
Fix registry token authentication bug 
When a JWT contains a JWK header without a certificate chain,
the original code only checked if the KeyID (kid) matches one of the trusted keys,
but doesn't verify that the actual key material matches.

As a result, if an attacker guesses the kid, they can inject an
untrusted key which would then be used to grant access to protected
data.

This fixes the issue such as only the trusted key is verified.

Signed-off-by: Milos Gajdos <milosthegajdos@gmail.com>
 2025-02-01 15:30:18 -08:00
Milos Gajdos
7271d882c0
ci: fix bake build (#4555) 2025-01-16 20:19:08 +00:00
CrazyMax
4c5e394561
ci: fix bake build 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2025-01-16 18:54:00 +01:00
Milos Gajdos
3270367d89
(security): Bump golang.org/x/net module (#4542) 2025-01-10 10:51:24 +00:00
Milos Gajdos
17550ead96
build(deps): bump actions/upload-artifact from 4.5.0 to 4.6.0 (#4553) 2025-01-10 10:23:20 +00:00
Milos Gajdos
9dff0cbf9f
ci: update bake-action to v6 (#4554) 2025-01-10 10:06:22 +00:00
CrazyMax
808f0b8961
ci: update bake-action to v6 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2025-01-10 10:31:13 +01:00
dependabot[bot]
825eeb039d
build(deps): bump actions/upload-artifact from 4.5.0 to 4.6.0 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.5.0 to 4.6.0.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v4.5.0...v4.6.0)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-01-10 01:54:12 +00:00
Wang Yan
43291261fa
build(deps): bump actions/upload-artifact from 4.3.6 to 4.5.0 (#4538) 2024-12-23 12:43:19 +08:00