v0.8.18

Shim

• Fix behavior when the shim is invoked with the "delete" command line argument. Previously we would try and delete the bundle directory ourselves as well as shutdown a sandbox container for a pod in the delete path. This unveiled an issue where if delete was called on an application container in a pod, it would bring down the whole pod.

v0.8.17

Shim

• Fix an issue where a goroutine could be leaked if using the binary cmd option (Thanks @hex0punk!)
• Optimize osversion.Build() and Get() to only get invoked once and cache the result. (Thanks @thaJeztah!)
• Fixed a bug in the tar2ext4 code to correctly handle unordered tars not starting with a root folder. (Thanks @estebanreyl!)
• Add support for assigning a Utility VM to a cpu group at creation time of the VM on supported builds.
• Support passing in propagation flags for SCSI mounts for LCOW.
• Close individual stdio IO relay pipes when the relay is finished. This fixes some unwanted behavior if the shim's IO relay is severed on the write end.

Hns/Hcn

• Add the definition for VmEndpointRequest
• Add Ipv6 flag to HCN OutBoundNatPolicySetting
• Add proxy exceptions to L4WFP Proxy Policy
• Fix the supported version range for HNS Ipv6 Dual Stack support (HNS 11.10+).
• Add support for the TierAclPolicy.

Internal

• Move around HCS schema and resource path definitions to all be collocated under the hcs package.
• Add a new ttrpc service to facilitate talking to other virt stacks to launch hypervisor isolated containers.
• Revert grpc and genproto libraries to a prior version to avoid a panic in ttrpc.
• Add new vm package to abstract away direct HCS interactions to assist in talking to other virtstacks.
• Change from a hcsshim:: prefix to hcs:: in the internal/hcs packages logging to make log messages clearer in where the logs are originating from.
• Add a utility function to execute a command in a Utility VM for the cri-containerd test suite.

v0.8.16

Shim

• add implementation of network configuration proxy (ncproxy)
• support modifying device IOV settings for ncproxy
• add implementation of job containers (host process containers)
• remove "extra info" from error logs
• fix issue in tar2ext4 when a file is listed before its parent directory

Repository

• switch CI to Github Actions
• switch from deprecated gometalinter to golangci/golangci-lint-action in CI

v0.8.15

Shim

• Added support for containerd logging binaries
• Stats calls no longer return an error when the container does not exist or when querying stats fails due to permissions
• Resolve mount source path before passing it to HCS (fixes containerd/containerd#4915)
• When the shim is called with delete action, it will look for and log panic.log in the bundle directory

Packages

• Added pkg/ociwclayer package with support for working with Windows container layers

v0.8.14

New Features

• shim: Add ability to share files from the host into a Utility VM

Misc.

• Convert to LF line endings everywhere

v0.8.13

New Features

• shim: Add ability to update the cpu limits for a UVM.
• shim: Add ability to assign a UVM to a cpu group after start.

Bug fixes

• shim: Fix nil pointer dereference when creating a task with no shim options were passed.

v0.8.12

New Features

• hcn package: Updated L4WfpProxyPolicy struct to include specifying an inbound and outbound port.
• computestorage package: Added helper functions to make setting up a container/uvm layer easier.
• shim - Add UVM call to update cpu limits for the vm.

Bug Fixes

• shim: Fix panic that would occur for LCOW if no network namespace was specified.

v0.8.11

New Features

• shim: Add option to scale Windows container CPU limit based on UVM CPUs via toml override.
• shim: Add SetJobCompartmentId binding and expose CompartmentId on hns Namespace object.
• shim: Added support for GMSA in HCS schema v2 hypervisor-isolated Windows containers.
• shim: Add new diagnostic function to execute a command on the host system.
• shim: Add a high level job object wrapper.
• hcn package: Updating the supported version ranges for the Network L4proxy policy
• computestorage package: Add computestorage.dll bindings. Allows finer grained control over Windows layer creation.

Bug Fixes/Misc.

• shim: Improve logging for LCOW layer operations
• shim: Add registry key for WCOW to deal with containment for a GNS.dll change in 20H1 container images.
• shim: Force disable VSMB direct map when the volume does not support it. This fixes an issue seen on certain versions of Windows where instead of falling back to non-direct map when FileIdInfo is not supported, VSMB will just return errors when files are accessed on the share.
• shim: Revendor go-winio at d1ffc52c73318019ce58aaa5282588c52df029b7
• shim: Remove support for automanaged vhd functionality

v0.8.10

Highlights

• shim: Added support for GMSA in HCS schema v2 process-isolated Windows containers.
• shim: Added support for assigning host devices into process-isolated Windows containers.
• shim: Correctly calculate cap for UVM CPU count when there are multiple processor groups on the host.
• shim: Switched to connect directly to the GCS for hypervisor-isolated Windows containers. This should improve reliability and allow future innovations.
• shim: Removed code that blocked processor weight/maximum to be set for processor QoS for process-isolated Windows containers. Previously there was an OS issue preventing this from working, but that has been fixed.
• hcsshim package: Fixed an issue that could cause Windows container layers to have incorrect modification timestamps. This could lead to a case impacting container start time due to directory timestamps not matching the expected value. #830.

v0.8.9

New Features

• Added version support for IPv6 Dual stack in HNS.
• Updated HNS session affinity version check for load balancing.

Bug Fixes

• Fixed a bug when an LCOW container used SCSI for layers. If a second container was started that shared a layer with an existing container, it would fail to start.