• CRI-O v1.23.1
  • Downloads
  • Changelog since v1.23.0
    • Changes by Kind
      • Other
      • Feature
      • Uncategorized
  • Dependencies
    • Added
    • Changed
    • Removed

CRI-O v1.23.1

The release notes have been generated for the commit range v1.23.0…1607c6e on Mon, 28 Feb 2022 17:36:25 UTC.

Downloads

Download one of our static release bundles via our Google Cloud Bucket:

• cri-o.amd64.1607c6ec2eddc927ef736db5525761e49df13e24.tar.gz
• cri-o.amd64.1607c6ec2eddc927ef736db5525761e49df13e24.tar.gz.sha256sum
• cri-o.arm64.1607c6ec2eddc927ef736db5525761e49df13e24.tar.gz
• cri-o.arm64.1607c6ec2eddc927ef736db5525761e49df13e24.tar.gz.sha256sum

Changelog since v1.23.0

Changes by Kind

Other

• Introduce the following metrics: crio_operations_total, crio_operations_latency_seconds_total, crio_operations_latency_seconds, crio_operations_errors_total, crio_image_pulls_bytes_total, crio_image_pulls_skipped_bytes_total, crio_image_pulls_success_total, crio_image_pulls_failure_total, crio_image_layer_reuse_total, crio_containers_oom_count_total while marking metric names that do not follow prometheus best practices as Deprecated in Prometheus metric help text. (#5487, @swghosh)

Feature

• Add allowed_devices field to config, allowing admins to specify which devices are allowed to be specified in the “io.kubernetes.cri-o.Devices” allowed_annotation. The default for this config field is [/dev/fuse] (#5561, @haircommander)

Uncategorized

• Add functionality to use taskset to spawn new commands cri-o runs. Now, if InfraCtrCPUSet is called, all newly spawned commands will be placed in the InfraCtrCPUSet (as it’s expected to be set to the reserved CPU set that system commands should run on). (#5541, @openshift-cherrypick-robot)
• Fix a bug where a pod given a host IPC or network namespace could configure sysctls on the host (#5615, @openshift-cherrypick-robot)
• Fix a bug where invalid default_sysctls could be specified, leading to an error like “Failed to configure sysctls after unshare: No such file or directory” (#5685, @openshift-cherrypick-robot)
• Fix a bug where memory swap values were specified even if the memory swap cgroup is not enabled (#5614, @openshift-cherrypick-robot)
• Fix a bug where situations of excessive load on nodes causes containers to never actually start (#5592, @openshift-cherrypick-robot)
• Fix a potential crash caused by a log message NULL-pointer dereference. (#5580, @openshift-cherrypick-robot)
• Fix an issue where protobuf panics when serializing ListContainer and ListPodSandbox calls (#5611, @openshift-cherrypick-robot)
• Fix bug where ip a reports Error: Peer netns reference is invalid (#5550, @openshift-cherrypick-robot)
• Fix crypto-profile bind within RHEL based containers. (#5575, @openshift-cherrypick-robot)
• Fix vm containers couldn’t restore after cri-o restart (#5633, @openshift-cherrypick-robot)
• Fixed possible runtime panic on pod sandbox stats retrieval. (#5589, @openshift-cherrypick-robot)

Dependencies

Added

Nothing has changed.

Changed

• github.com/containers/image/v5: v5.16.1 → v5.17.0
• github.com/docker/docker: v20.10.9+incompatible → v20.10.11+incompatible
• github.com/manifoldco/promptui: v0.8.0 → v0.9.0
• golang.org/x/net: e898025 → d4b1ae0
• golang.org/x/sys: 751e447 → 2c5d950

Removed

Nothing has changed.