github.com/ruphin/docker@v1.10.1/CHANGELOG.md (about) 1 # Changelog 2 3 Items starting with `DEPRECATE` are important deprecation notices. For more 4 information on the list of deprecated flags and APIs please have a look at 5 https://docs.docker.com/misc/deprecated/ where target removal dates can also 6 be found. 7 8 ## 1.10.1 (2016-02-11) 9 10 ### Runtime 11 12 * Do not stop daemon on migration hard failure [#20156](https://github.com/docker/docker/pull/20156) 13 - Fix various issues with migration to content-addressable images [#20058](https://github.com/docker/docker/pull/20058) 14 - Fix ZFS permission bug with user namespaces [#20045](https://github.com/docker/docker/pull/20045) 15 - Do not leak /dev/mqueue from the host to all containers, keep it container-specific [#19876](https://github.com/docker/docker/pull/19876) [#20133](https://github.com/docker/docker/pull/20133) 16 - Fix `docker ps --filter before=...` to not show stopped containers without providing `-a` flag [#20135](https://github.com/docker/docker/pull/20135) 17 18 ### Security 19 20 - Fix issue preventing docker events to work properly with authorization plugin [#20002](https://github.com/docker/docker/pull/20002) 21 22 ### Distribution 23 24 * Add additional verifications and prevent from uploading invalid data to registries [#20164](https://github.com/docker/docker/pull/20164) 25 - Fix regression preventing uppercase characters in image reference hostname [#20175](https://github.com/docker/docker/pull/20175) 26 27 ### Networking 28 29 - Fix embedded DNS for user-defined networks in the presence of firewalld [#20060](https://github.com/docker/docker/pull/20060) 30 - Fix issue where removing a network during shutdown left Docker inoperable [#20181](https://github.com/docker/docker/issues/20181) [#20235](https://github.com/docker/docker/issues/20235) 31 - Embedded DNS is now able to return compressed results [#20181](https://github.com/docker/docker/issues/20181) 32 - Fix port-mapping issue with `userland-proxy=false` [#20181](https://github.com/docker/docker/issues/20181) 33 34 ### Logging 35 36 - Fix bug where tcp+tls protocol would be rejected [#20109](https://github.com/docker/docker/pull/20109) 37 38 ### Volumes 39 40 - Fix issue whereby older volume drivers would not receive volume options [#19983](https://github.com/docker/docker/pull/19983) 41 42 ### Misc 43 44 - Remove TasksMax from Docker systemd service [#20167](https://github.com/docker/docker/pull/20167) 45 46 ## 1.10.0 (2016-02-04) 47 48 **IMPORTANT**: Docker 1.10 uses a new content-addressable storage for images and layers. 49 A migration is performed the first time docker is run, and can take a significant amount of time depending on the number of images present. 50 Refer to this page on the wiki for more information: https://github.com/docker/docker/wiki/Engine-v1.10.0-content-addressability-migration 51 We also released a cool migration utility that enables you to perform the migration before updating to reduce downtime. 52 Engine 1.10 migrator can be found on Docker Hub: https://hub.docker.com/r/docker/v1.10-migrator/ 53 54 ### Runtime 55 56 + New `docker update` command that allows updating resource constraints on running containers [#15078](https://github.com/docker/docker/pull/15078) 57 + Add `--tmpfs` flag to `docker run` to create a tmpfs mount in a container [#13587](https://github.com/docker/docker/pull/13587) 58 + Add `--format` flag to `docker images` command [#17692](https://github.com/docker/docker/pull/17692) 59 + Allow to set daemon configuration in a file and hot-reload it with the `SIGHUP` signal [#18587](https://github.com/docker/docker/pull/18587) 60 + Updated docker events to include more meta-data and event types [#18888](https://github.com/docker/docker/pull/18888) 61 This change is backward compatible in the API, but not on the CLI. 62 + Add `--blkio-weight-device` flag to `docker run` [#13959](https://github.com/docker/docker/pull/13959) 63 + Add `--device-read-bps` and `--device-write-bps` flags to `docker run` [#14466](https://github.com/docker/docker/pull/14466) 64 + Add `--device-read-iops` and `--device-write-iops` flags to `docker run` [#15879](https://github.com/docker/docker/pull/15879) 65 + Add `--oom-score-adj` flag to `docker run` [#16277](https://github.com/docker/docker/pull/16277) 66 + Add `--detach-keys` flag to `attach`, `run`, `start` and `exec` commands to override the default key sequence that detaches from a container [#15666](https://github.com/docker/docker/pull/15666) 67 + Add `--shm-size` flag to `run`, `create` and `build` to set the size of `/dev/shm` [#16168](https://github.com/docker/docker/pull/16168) 68 + Show the number of running, stopped, and paused containers in `docker info` [#19249](https://github.com/docker/docker/pull/19249) 69 + Show the `OSType` and `Architecture` in `docker info` [#17478](https://github.com/docker/docker/pull/17478) 70 + Add `--cgroup-parent` flag on `daemon` to set cgroup parent for all containers [#19062](https://github.com/docker/docker/pull/19062) 71 + Add `-L` flag to docker cp to follow symlinks [#16613](https://github.com/docker/docker/pull/16613) 72 + New `status=dead` filter for `docker ps` [#17908](https://github.com/docker/docker/pull/17908) 73 * Change `docker run` exit codes to distinguish between runtime and application errors [#14012](https://github.com/docker/docker/pull/14012) 74 * Enhance `docker events --since` and `--until` to support nanoseconds and timezones [#17495](https://github.com/docker/docker/pull/17495) 75 * Add `--all`/`-a` flag to `stats` to include both running and stopped containers [#16742](https://github.com/docker/docker/pull/16742) 76 * Change the default cgroup-driver to `cgroupfs` [#17704](https://github.com/docker/docker/pull/17704) 77 * Emit a "tag" event when tagging an image with `build -t` [#17115](https://github.com/docker/docker/pull/17115) 78 * Best effort for linked containers' start order when starting the daemon [#18208](https://github.com/docker/docker/pull/18208) 79 * Add ability to add multiple tags on `build` [#15780](https://github.com/docker/docker/pull/15780) 80 * Permit `OPTIONS` request against any url, thus fixing issue with CORS [#19569](https://github.com/docker/docker/pull/19569) 81 - Fix the `--quiet` flag on `docker build` to actually be quiet [#17428](https://github.com/docker/docker/pull/17428) 82 - Fix `docker images --filter dangling=false` to now show all non-dangling images [#19326](https://github.com/docker/docker/pull/19326) 83 - Fix race condition causing autorestart turning off on restart [#17629](https://github.com/docker/docker/pull/17629) 84 - Recognize GPFS filesystems [#19216](https://github.com/docker/docker/pull/19216) 85 - Fix obscure bug preventing to start containers [#19751](https://github.com/docker/docker/pull/19751) 86 - Forbid `exec` during container restart [#19722](https://github.com/docker/docker/pull/19722) 87 - devicemapper: Increasing `--storage-opt dm.basesize` will now increase the base device size on daemon restart [#19123](https://github.com/docker/docker/pull/19123) 88 89 ### Security 90 91 + Add `--userns-remap` flag to `daemon` to support user namespaces (previously in experimental) [#19187](https://github.com/docker/docker/pull/19187) 92 + Add support for custom seccomp profiles in `--security-opt` [#17989](https://github.com/docker/docker/pull/17989) 93 + Add default seccomp profile [#18780](https://github.com/docker/docker/pull/18780) 94 + Add `--authorization-plugin` flag to `daemon` to customize ACLs [#15365](https://github.com/docker/docker/pull/15365) 95 + Docker Content Trust now supports the ability to read and write user delegations [#18887](https://github.com/docker/docker/pull/18887) 96 This is an optional, opt-in feature that requires the explicit use of the Notary command-line utility in order to be enabled. 97 Enabling delegation support in a specific repository will break the ability of Docker 1.9 and 1.8 to pull from that repository, if content trust is enabled. 98 * Allow SELinux to run in a container when using the BTRFS storage driver [#16452](https://github.com/docker/docker/pull/16452) 99 100 ### Distribution 101 102 * Use content-addressable storage for images and layers [#17924](https://github.com/docker/docker/pull/17924) 103 Note that a migration is performed the first time docker is run; it can take a significant amount of time depending on the number of images and containers present. 104 Images no longer depend on the parent chain but contain a list of layer references. 105 `docker load`/`docker save` tarballs now also contain content-addressable image configurations. 106 For more information: https://github.com/docker/docker/wiki/Engine-v1.10.0-content-addressability-migration 107 * Add support for the new [manifest format ("schema2")](https://github.com/docker/distribution/blob/master/docs/spec/manifest-v2-2.md) [#18785](https://github.com/docker/docker/pull/18785) 108 * Lots of improvements for push and pull: performance++, retries on failed downloads, cancelling on client disconnect [#18353](https://github.com/docker/docker/pull/18353), [#18418](https://github.com/docker/docker/pull/18418), [#19109](https://github.com/docker/docker/pull/19109), [#18353](https://github.com/docker/docker/pull/18353) 109 * Limit v1 protocol fallbacks [#18590](https://github.com/docker/docker/pull/18590) 110 - Fix issue where docker could hang indefinitely waiting for a nonexistent process to pull an image [#19743](https://github.com/docker/docker/pull/19743) 111 112 ### Networking 113 114 + Use DNS-based discovery instead of `/etc/hosts` [#19198](https://github.com/docker/docker/pull/19198) 115 + Support for network-scoped alias using `--net-alias` on `run` and `--alias` on `network connect` [#19242](https://github.com/docker/docker/pull/19242) 116 + Add `--ip` and `--ip6` on `run` and `network connect` to support custom IP addresses for a container in a network [#19001](https://github.com/docker/docker/pull/19001) 117 + Add `--ipam-opt` to `network create` for passing custom IPAM options [#17316](https://github.com/docker/docker/pull/17316) 118 + Add `--internal` flag to `network create` to restrict external access to and from the network [#19276](https://github.com/docker/docker/pull/19276) 119 + Add `kv.path` option to `--cluster-store-opt` [#19167](https://github.com/docker/docker/pull/19167) 120 + Add `discovery.heartbeat` and `discovery.ttl` options to `--cluster-store-opt` to configure discovery TTL and heartbeat timer [#18204](https://github.com/docker/docker/pull/18204) 121 + Add `--format` flag to `network inspect` [#17481](https://github.com/docker/docker/pull/17481) 122 + Add `--link` to `network connect` to provide a container-local alias [#19229](https://github.com/docker/docker/pull/19229) 123 + Support for Capability exchange with remote IPAM plugins [#18775](https://github.com/docker/docker/pull/18775) 124 + Add `--force` to `network disconnect` to force container to be disconnected from network [#19317](https://github.com/docker/docker/pull/19317) 125 * Support for multi-host networking using built-in overlay driver for all engine supported kernels: 3.10+ [#18775](https://github.com/docker/docker/pull/18775) 126 * `--link` is now supported on `docker run` for containers in user-defined network [#19229](https://github.com/docker/docker/pull/19229) 127 * Enhance `docker network rm` to allow removing multiple networks [#17489](https://github.com/docker/docker/pull/17489) 128 * Include container names in `network inspect` [#17615](https://github.com/docker/docker/pull/17615) 129 * Include auto-generated subnets for user-defined networks in `network inspect` [#17316](https://github.com/docker/docker/pull/17316) 130 * Add `--filter` flag to `network ls` to hide predefined networks [#17782](https://github.com/docker/docker/pull/17782) 131 * Add support for network connect/disconnect to stopped containers [#18906](https://github.com/docker/docker/pull/18906) 132 * Add network ID to container inspect [#19323](https://github.com/docker/docker/pull/19323) 133 - Fix MTU issue where Docker would not start with two or more default routes [#18108](https://github.com/docker/docker/pull/18108) 134 - Fix duplicate IP address for containers [#18106](https://github.com/docker/docker/pull/18106) 135 - Fix issue preventing sometimes docker from creating the bridge network [#19338](https://github.com/docker/docker/pull/19338) 136 - Do not substitute 127.0.0.1 name server when using `--net=host` [#19573](https://github.com/docker/docker/pull/19573) 137 138 ### Logging 139 140 + New logging driver for Splunk [#16488](https://github.com/docker/docker/pull/16488) 141 + Add support for syslog over TCP+TLS [#18998](https://github.com/docker/docker/pull/18998) 142 * Enhance `docker logs --since` and `--until` to support nanoseconds and time [#17495](https://github.com/docker/docker/pull/17495) 143 * Enhance AWS logs to auto-detect region [#16640](https://github.com/docker/docker/pull/16640) 144 145 ### Volumes 146 147 + Add support to set the mount propagation mode for a volume [#17034](https://github.com/docker/docker/pull/17034) 148 * Add `ls` and `inspect` endpoints to volume plugin API [#16534](https://github.com/docker/docker/pull/16534) 149 Existing plugins need to make use of these new APIs to satisfy users' expectation 150 For that, please use the new MIME type `application/vnd.docker.plugins.v1.2+json` [#19549](https://github.com/docker/docker/pull/19549) 151 - Fix data not being copied to named volumes [#19175](https://github.com/docker/docker/pull/19175) 152 - Fix issues preventing volume drivers from being containerized [#19500](https://github.com/docker/docker/pull/19500) 153 - Fix `docker volumes ls --dangling=false` to now show all non-dangling volumes [#19671](https://github.com/docker/docker/pull/19671) 154 - Do not remove named volumes on container removal [#19568](https://github.com/docker/docker/pull/19568) 155 - Allow external volume drivers to host anonymous volumes [#19190](https://github.com/docker/docker/pull/19190) 156 157 ### Builder 158 159 + Add support for `**` in `.dockerignore` to wildcard multiple levels of directories [#17090](https://github.com/docker/docker/pull/17090) 160 - Fix handling of UTF-8 characters in Dockerfiles [#17055](https://github.com/docker/docker/pull/17055) 161 - Fix permissions problem when reading from STDIN [#19283](https://github.com/docker/docker/pull/19283) 162 163 ### Client 164 165 + Add support for overriding the API version to use via an `DOCKER_API_VERSION` environment-variable [#15964](https://github.com/docker/docker/pull/15964) 166 - Fix a bug preventing Windows clients to log in to Docker Hub [#19891](https://github.com/docker/docker/pull/19891) 167 168 ### Misc 169 170 * systemd: Set TasksMax in addition to LimitNPROC in systemd service file [#19391](https://github.com/docker/docker/pull/19391) 171 172 ### Deprecations 173 174 * Remove LXC support. The LXC driver was deprecated in Docker 1.8, and has now been removed [#17700](https://github.com/docker/docker/pull/17700) 175 * Remove `--exec-driver` daemon flag, because it is no longer in use [#17700](https://github.com/docker/docker/pull/17700) 176 * Remove old deprecated single-dashed long CLI flags (such as `-rm`; use `--rm` instead) [#17724](https://github.com/docker/docker/pull/17724) 177 * Deprecate HostConfig at API container start [#17799](https://github.com/docker/docker/pull/17799) 178 * Deprecate docker packages for newly EOL'd Linux distributions: Fedora 21 and Ubuntu 15.04 (Vivid) [#18794](https://github.com/docker/docker/pull/18794), [#18809](https://github.com/docker/docker/pull/18809) 179 * Deprecate `-f` flag for docker tag [#18350](https://github.com/docker/docker/pull/18350) 180 181 ## 1.9.1 (2015-11-21) 182 183 ### Runtime 184 185 - Do not prevent daemon from booting if images could not be restored (#17695) 186 - Force IPC mount to unmount on daemon shutdown/init (#17539) 187 - Turn IPC unmount errors into warnings (#17554) 188 - Fix `docker stats` performance regression (#17638) 189 - Clarify cryptic error message upon `docker logs` if `--log-driver=none` (#17767) 190 - Fix seldom panics (#17639, #17634, #17703) 191 - Fix opq whiteouts problems for files with dot prefix (#17819) 192 - devicemapper: try defaulting to xfs instead of ext4 for performance reasons (#17903, #17918) 193 - devicemapper: fix displayed fs in docker info (#17974) 194 - selinux: only relabel if user requested so with the `z` option (#17450, #17834) 195 - Do not make network calls when normalizing names (#18014) 196 197 ### Client 198 199 - Fix `docker login` on windows (#17738) 200 - Fix bug with `docker inspect` output when not connected to daemon (#17715) 201 - Fix `docker inspect -f {{.HostConfig.Dns}} somecontainer` (#17680) 202 203 ### Builder 204 205 - Fix regression with symlink behavior in ADD/COPY (#17710) 206 207 ### Networking 208 209 - Allow passing a network ID as an argument for `--net` (#17558) 210 - Fix connect to host and prevent disconnect from host for `host` network (#17476) 211 - Fix `--fixed-cidr` issue when gateway ip falls in ip-range and ip-range is 212 not the first block in the network (#17853) 213 - Restore deterministic `IPv6` generation from `MAC` address on default `bridge` network (#17890) 214 - Allow port-mapping only for endpoints created on docker run (#17858) 215 - Fixed an endpoint delete issue with a possible stale sbox (#18102) 216 217 ### Distribution 218 219 - Correct parent chain in v2 push when v1Compatibility files on the disk are inconsistent (#18047) 220 221 ## 1.9.0 (2015-11-03) 222 223 ### Runtime 224 225 + `docker stats` now returns block IO metrics (#15005) 226 + `docker stats` now details network stats per interface (#15786) 227 + Add `ancestor=<image>` filter to `docker ps --filter` flag to filter 228 containers based on their ancestor images (#14570) 229 + Add `label=<somelabel>` filter to `docker ps --filter` to filter containers 230 based on label (#16530) 231 + Add `--kernel-memory` flag to `docker run` (#14006) 232 + Add `--message` flag to `docker import` allowing to specify an optional 233 message (#15711) 234 + Add `--privileged` flag to `docker exec` (#14113) 235 + Add `--stop-signal` flag to `docker run` allowing to replace the container 236 process stopping signal (#15307) 237 + Add a new `unless-stopped` restart policy (#15348) 238 + Inspecting an image now returns tags (#13185) 239 + Add container size information to `docker inspect` (#15796) 240 + Add `RepoTags` and `RepoDigests` field to `/images/{name:.*}/json` (#17275) 241 - Remove the deprecated `/container/ps` endpoint from the API (#15972) 242 - Send and document correct HTTP codes for `/exec/<name>/start` (#16250) 243 - Share shm and mqueue between containers sharing IPC namespace (#15862) 244 - Event stream now shows OOM status when `--oom-kill-disable` is set (#16235) 245 - Ensure special network files (/etc/hosts etc.) are read-only if bind-mounted 246 with `ro` option (#14965) 247 - Improve `rmi` performance (#16890) 248 - Do not update /etc/hosts for the default bridge network, except for links (#17325) 249 - Fix conflict with duplicate container names (#17389) 250 - Fix an issue with incorrect template execution in `docker inspect` (#17284) 251 - DEPRECATE `-c` short flag variant for `--cpu-shares` in docker run (#16271) 252 253 ### Client 254 255 + Allow `docker import` to import from local files (#11907) 256 257 ### Builder 258 259 + Add a `STOPSIGNAL` Dockerfile instruction allowing to set a different 260 stop-signal for the container process (#15307) 261 + Add an `ARG` Dockerfile instruction and a `--build-arg` flag to `docker build` 262 that allows to add build-time environment variables (#15182) 263 - Improve cache miss performance (#16890) 264 265 ### Storage 266 267 - devicemapper: Implement deferred deletion capability (#16381) 268 269 ## Networking 270 271 + `docker network` exits experimental and is part of standard release (#16645) 272 + New network top-level concept, with associated subcommands and API (#16645) 273 WARNING: the API is different from the experimental API 274 + Support for multiple isolated/micro-segmented networks (#16645) 275 + Built-in multihost networking using VXLAN based overlay driver (#14071) 276 + Support for third-party network plugins (#13424) 277 + Ability to dynamically connect containers to multiple networks (#16645) 278 + Support for user-defined IP address management via pluggable IPAM drivers (#16910) 279 + Add daemon flags `--cluster-store` and `--cluster-advertise` for built-in nodes discovery (#16229) 280 + Add `--cluster-store-opt` for setting up TLS settings (#16644) 281 + Add `--dns-opt` to the daemon (#16031) 282 - DEPRECATE following container `NetworkSettings` fields in API v1.21: `EndpointID`, `Gateway`, 283 `GlobalIPv6Address`, `GlobalIPv6PrefixLen`, `IPAddress`, `IPPrefixLen`, `IPv6Gateway` and `MacAddress`. 284 Those are now specific to the `bridge` network. Use `NetworkSettings.Networks` to inspect 285 the networking settings of a container per network. 286 287 ### Volumes 288 289 + New top-level `volume` subcommand and API (#14242) 290 - Move API volume driver settings to host-specific config (#15798) 291 - Print an error message if volume name is not unique (#16009) 292 - Ensure volumes created from Dockerfiles always use the local volume driver 293 (#15507) 294 - DEPRECATE auto-creating missing host paths for bind mounts (#16349) 295 296 ### Logging 297 298 + Add `awslogs` logging driver for Amazon CloudWatch (#15495) 299 + Add generic `tag` log option to allow customizing container/image 300 information passed to driver (e.g. show container names) (#15384) 301 - Implement the `docker logs` endpoint for the journald driver (#13707) 302 - DEPRECATE driver-specific log tags (e.g. `syslog-tag`, etc.) (#15384) 303 304 ### Distribution 305 306 + `docker search` now works with partial names (#16509) 307 - Push optimization: avoid buffering to file (#15493) 308 - The daemon will display progress for images that were already being pulled 309 by another client (#15489) 310 - Only permissions required for the current action being performed are requested (#) 311 + Renaming trust keys (and respective environment variables) from `offline` to 312 `root` and `tagging` to `repository` (#16894) 313 - DEPRECATE trust key environment variables 314 `DOCKER_CONTENT_TRUST_OFFLINE_PASSPHRASE` and 315 `DOCKER_CONTENT_TRUST_TAGGING_PASSPHRASE` (#16894) 316 317 ### Security 318 319 + Add SELinux profiles to the rpm package (#15832) 320 - Fix various issues with AppArmor profiles provided in the deb package 321 (#14609) 322 - Add AppArmor policy that prevents writing to /proc (#15571) 323 324 ## 1.8.3 (2015-10-12) 325 326 ### Distribution 327 328 - Fix layer IDs lead to local graph poisoning (CVE-2014-8178) 329 - Fix manifest validation and parsing logic errors allow pull-by-digest validation bypass (CVE-2014-8179) 330 + Add `--disable-legacy-registry` to prevent a daemon from using a v1 registry 331 332 ## 1.8.2 (2015-09-10) 333 334 ### Distribution 335 336 - Fixes rare edge case of handling GNU LongLink and LongName entries. 337 - Fix ^C on docker pull. 338 - Fix docker pull issues on client disconnection. 339 - Fix issue that caused the daemon to panic when loggers weren't configured properly. 340 - Fix goroutine leak pulling images from registry V2. 341 342 ### Runtime 343 344 - Fix a bug mounting cgroups for docker daemons running inside docker containers. 345 - Initialize log configuration properly. 346 347 ### Client: 348 349 - Handle `-q` flag in `docker ps` properly when there is a default format. 350 351 ### Networking 352 353 - Fix several corner cases with netlink. 354 355 ### Contrib 356 357 - Fix several issues with bash completion. 358 359 ## 1.8.1 (2015-08-12) 360 361 ### Distribution 362 363 * Fix a bug where pushing multiple tags would result in invalid images 364 365 ## 1.8.0 (2015-08-11) 366 367 ### Distribution 368 369 + Trusted pull, push and build, disabled by default 370 * Make tar layers deterministic between registries 371 * Don't allow deleting the image of running containers 372 * Check if a tag name to load is a valid digest 373 * Allow one character repository names 374 * Add a more accurate error description for invalid tag name 375 * Make build cache ignore mtime 376 377 ### Cli 378 379 + Add support for DOCKER_CONFIG/--config to specify config file dir 380 + Add --type flag for docker inspect command 381 + Add formatting options to `docker ps` with `--format` 382 + Replace `docker -d` with new subcommand `docker daemon` 383 * Zsh completion updates and improvements 384 * Add some missing events to bash completion 385 * Support daemon urls with base paths in `docker -H` 386 * Validate status= filter to docker ps 387 * Display when a container is in --net=host in docker ps 388 * Extend docker inspect to export image metadata related to graph driver 389 * Restore --default-gateway{,-v6} daemon options 390 * Add missing unpublished ports in docker ps 391 * Allow duration strings in `docker events` as --since/--until 392 * Expose more mounts information in `docker inspect` 393 394 ### Runtime 395 396 + Add new Fluentd logging driver 397 + Allow `docker import` to load from local files 398 + Add logging driver for GELF via UDP 399 + Allow to copy files from host to containers with `docker cp` 400 + Promote volume drivers from experimental to master 401 + Add rollover options to json-file log driver, and --log-driver-opts flag 402 + Add memory swappiness tuning options 403 * Remove cgroup read-only flag when privileged 404 * Make /proc, /sys, & /dev readonly for readonly containers 405 * Add cgroup bind mount by default 406 * Overlay: Export metadata for container and image in `docker inspect` 407 * Devicemapper: external device activation 408 * Devicemapper: Compare uuid of base device on startup 409 * Remove RC4 from the list of registry cipher suites 410 * Add syslog-facility option 411 * LXC execdriver compatibility with recent LXC versions 412 * Mark LXC execriver as deprecated (to be removed with the migration to runc) 413 414 ### Plugins 415 416 * Separate plugin sockets and specs locations 417 * Allow TLS connections to plugins 418 419 ### Bug fixes 420 421 - Add missing 'Names' field to /containers/json API output 422 - Make `docker rmi` of dangling images safe while pulling 423 - Devicemapper: Change default basesize to 100G 424 - Go Scheduler issue with sync.Mutex and gcc 425 - Fix issue where Search API endpoint would panic due to empty AuthConfig 426 - Set image canonical names correctly 427 - Check dockerinit only if lxc driver is used 428 - Fix ulimit usage of nproc 429 - Always attach STDIN if -i,--interactive is specified 430 - Show error messages when saving container state fails 431 - Fixed incorrect assumption on --bridge=none treated as disable network 432 - Check for invalid port specifications in host configuration 433 - Fix endpoint leave failure for --net=host mode 434 - Fix goroutine leak in the stats API if the container is not running 435 - Check for apparmor file before reading it 436 - Fix DOCKER_TLS_VERIFY being ignored 437 - Set umask to the default on startup 438 - Correct the message of pause and unpause a non-running container 439 - Adjust disallowed CpuShares in container creation 440 - ZFS: correctly apply selinux context 441 - Display empty string instead of <nil> when IP opt is nil 442 - `docker kill` returns error when container is not running 443 - Fix COPY/ADD quoted/json form 444 - Fix goroutine leak on logs -f with no output 445 - Remove panic in nat package on invalid hostport 446 - Fix container linking in Fedora 22 447 - Fix error caused using default gateways outside of the allocated range 448 - Format times in inspect command with a template as RFC3339Nano 449 - Make registry client to accept 2xx and 3xx http status responses as successful 450 - Fix race issue that caused the daemon to crash with certain layer downloads failed in a specific order. 451 - Fix error when the docker ps format was not valid. 452 - Remove redundant ip forward check. 453 - Fix issue trying to push images to repository mirrors. 454 - Fix error cleaning up network entrypoints when there is an initialization issue. 455 456 ## 1.7.1 (2015-07-14) 457 458 #### Runtime 459 460 - Fix default user spawning exec process with `docker exec` 461 - Make `--bridge=none` not to configure the network bridge 462 - Publish networking stats properly 463 - Fix implicit devicemapper selection with static binaries 464 - Fix socket connections that hung intermittently 465 - Fix bridge interface creation on CentOS/RHEL 6.6 466 - Fix local dns lookups added to resolv.conf 467 - Fix copy command mounting volumes 468 - Fix read/write privileges in volumes mounted with --volumes-from 469 470 #### Remote API 471 472 - Fix unmarshalling of Command and Entrypoint 473 - Set limit for minimum client version supported 474 - Validate port specification 475 - Return proper errors when attach/reattach fail 476 477 #### Distribution 478 479 - Fix pulling private images 480 - Fix fallback between registry V2 and V1 481 482 ## 1.7.0 (2015-06-16) 483 484 #### Runtime 485 + Experimental feature: support for out-of-process volume plugins 486 * The userland proxy can be disabled in favor of hairpin NAT using the daemon’s `--userland-proxy=false` flag 487 * The `exec` command supports the `-u|--user` flag to specify the new process owner 488 + Default gateway for containers can be specified daemon-wide using the `--default-gateway` and `--default-gateway-v6` flags 489 + The CPU CFS (Completely Fair Scheduler) quota can be set in `docker run` using `--cpu-quota` 490 + Container block IO can be controlled in `docker run` using`--blkio-weight` 491 + ZFS support 492 + The `docker logs` command supports a `--since` argument 493 + UTS namespace can be shared with the host with `docker run --uts=host` 494 495 #### Quality 496 * Networking stack was entirely rewritten as part of the libnetwork effort 497 * Engine internals refactoring 498 * Volumes code was entirely rewritten to support the plugins effort 499 + Sending SIGUSR1 to a daemon will dump all goroutines stacks without exiting 500 501 #### Build 502 + Support ${variable:-value} and ${variable:+value} syntax for environment variables 503 + Support resource management flags `--cgroup-parent`, `--cpu-period`, `--cpu-quota`, `--cpuset-cpus`, `--cpuset-mems` 504 + git context changes with branches and directories 505 * The .dockerignore file support exclusion rules 506 507 #### Distribution 508 + Client support for v2 mirroring support for the official registry 509 510 #### Bugfixes 511 * Firewalld is now supported and will automatically be used when available 512 * mounting --device recursively 513 514 ## 1.6.2 (2015-05-13) 515 516 #### Runtime 517 - Revert change prohibiting mounting into /sys 518 519 ## 1.6.1 (2015-05-07) 520 521 #### Security 522 - Fix read/write /proc paths (CVE-2015-3630) 523 - Prohibit VOLUME /proc and VOLUME / (CVE-2015-3631) 524 - Fix opening of file-descriptor 1 (CVE-2015-3627) 525 - Fix symlink traversal on container respawn allowing local privilege escalation (CVE-2015-3629) 526 - Prohibit mount of /sys 527 528 #### Runtime 529 - Update AppArmor policy to not allow mounts 530 531 ## 1.6.0 (2015-04-07) 532 533 #### Builder 534 + Building images from an image ID 535 + Build containers with resource constraints, ie `docker build --cpu-shares=100 --memory=1024m...` 536 + `commit --change` to apply specified Dockerfile instructions while committing the image 537 + `import --change` to apply specified Dockerfile instructions while importing the image 538 + Builds no longer continue in the background when canceled with CTRL-C 539 540 #### Client 541 + Windows Support 542 543 #### Runtime 544 + Container and image Labels 545 + `--cgroup-parent` for specifying a parent cgroup to place container cgroup within 546 + Logging drivers, `json-file`, `syslog`, or `none` 547 + Pulling images by ID 548 + `--ulimit` to set the ulimit on a container 549 + `--default-ulimit` option on the daemon which applies to all created containers (and overwritten by `--ulimit` on run) 550 551 ## 1.5.0 (2015-02-10) 552 553 #### Builder 554 + Dockerfile to use for a given `docker build` can be specified with the `-f` flag 555 * Dockerfile and .dockerignore files can be themselves excluded as part of the .dockerignore file, thus preventing modifications to these files invalidating ADD or COPY instructions cache 556 * ADD and COPY instructions accept relative paths 557 * Dockerfile `FROM scratch` instruction is now interpreted as a no-base specifier 558 * Improve performance when exposing a large number of ports 559 560 #### Hack 561 + Allow client-side only integration tests for Windows 562 * Include docker-py integration tests against Docker daemon as part of our test suites 563 564 #### Packaging 565 + Support for the new version of the registry HTTP API 566 * Speed up `docker push` for images with a majority of already existing layers 567 - Fixed contacting a private registry through a proxy 568 569 #### Remote API 570 + A new endpoint will stream live container resource metrics and can be accessed with the `docker stats` command 571 + Containers can be renamed using the new `rename` endpoint and the associated `docker rename` command 572 * Container `inspect` endpoint show the ID of `exec` commands running in this container 573 * Container `inspect` endpoint show the number of times Docker auto-restarted the container 574 * New types of event can be streamed by the `events` endpoint: ‘OOM’ (container died with out of memory), ‘exec_create’, and ‘exec_start' 575 - Fixed returned string fields which hold numeric characters incorrectly omitting surrounding double quotes 576 577 #### Runtime 578 + Docker daemon has full IPv6 support 579 + The `docker run` command can take the `--pid=host` flag to use the host PID namespace, which makes it possible for example to debug host processes using containerized debugging tools 580 + The `docker run` command can take the `--read-only` flag to make the container’s root filesystem mounted as readonly, which can be used in combination with volumes to force a container’s processes to only write to locations that will be persisted 581 + Container total memory usage can be limited for `docker run` using the `--memory-swap` flag 582 * Major stability improvements for devicemapper storage driver 583 * Better integration with host system: containers will reflect changes to the host's `/etc/resolv.conf` file when restarted 584 * Better integration with host system: per-container iptable rules are moved to the DOCKER chain 585 - Fixed container exiting on out of memory to return an invalid exit code 586 587 #### Other 588 * The HTTP_PROXY, HTTPS_PROXY, and NO_PROXY environment variables are properly taken into account by the client when connecting to the Docker daemon 589 590 ## 1.4.1 (2014-12-15) 591 592 #### Runtime 593 - Fix issue with volumes-from and bind mounts not being honored after create 594 595 ## 1.4.0 (2014-12-11) 596 597 #### Notable Features since 1.3.0 598 + Set key=value labels to the daemon (displayed in `docker info`), applied with 599 new `-label` daemon flag 600 + Add support for `ENV` in Dockerfile of the form: 601 `ENV name=value name2=value2...` 602 + New Overlayfs Storage Driver 603 + `docker info` now returns an `ID` and `Name` field 604 + Filter events by event name, container, or image 605 + `docker cp` now supports copying from container volumes 606 - Fixed `docker tag`, so it honors `--force` when overriding a tag for existing 607 image. 608 609 ## 1.3.3 (2014-12-11) 610 611 #### Security 612 - Fix path traversal vulnerability in processing of absolute symbolic links (CVE-2014-9356) 613 - Fix decompression of xz image archives, preventing privilege escalation (CVE-2014-9357) 614 - Validate image IDs (CVE-2014-9358) 615 616 #### Runtime 617 - Fix an issue when image archives are being read slowly 618 619 #### Client 620 - Fix a regression related to stdin redirection 621 - Fix a regression with `docker cp` when destination is the current directory 622 623 ## 1.3.2 (2014-11-20) 624 625 #### Security 626 - Fix tar breakout vulnerability 627 * Extractions are now sandboxed chroot 628 - Security options are no longer committed to images 629 630 #### Runtime 631 - Fix deadlock in `docker ps -f exited=1` 632 - Fix a bug when `--volumes-from` references a container that failed to start 633 634 #### Registry 635 + `--insecure-registry` now accepts CIDR notation such as 10.1.0.0/16 636 * Private registries whose IPs fall in the 127.0.0.0/8 range do no need the `--insecure-registry` flag 637 - Skip the experimental registry v2 API when mirroring is enabled 638 639 ## 1.3.1 (2014-10-28) 640 641 #### Security 642 * Prevent fallback to SSL protocols < TLS 1.0 for client, daemon and registry 643 + Secure HTTPS connection to registries with certificate verification and without HTTP fallback unless `--insecure-registry` is specified 644 645 #### Runtime 646 - Fix issue where volumes would not be shared 647 648 #### Client 649 - Fix issue with `--iptables=false` not automatically setting `--ip-masq=false` 650 - Fix docker run output to non-TTY stdout 651 652 #### Builder 653 - Fix escaping `$` for environment variables 654 - Fix issue with lowercase `onbuild` Dockerfile instruction 655 - Restrict environment variable expansion to `ENV`, `ADD`, `COPY`, `WORKDIR`, `EXPOSE`, `VOLUME` and `USER` 656 657 ## 1.3.0 (2014-10-14) 658 659 #### Notable features since 1.2.0 660 + Docker `exec` allows you to run additional processes inside existing containers 661 + Docker `create` gives you the ability to create a container via the CLI without executing a process 662 + `--security-opts` options to allow user to customize container labels and apparmor profiles 663 + Docker `ps` filters 664 - Wildcard support to COPY/ADD 665 + Move production URLs to get.docker.com from get.docker.io 666 + Allocate IP address on the bridge inside a valid CIDR 667 + Use drone.io for PR and CI testing 668 + Ability to setup an official registry mirror 669 + Ability to save multiple images with docker `save` 670 671 ## 1.2.0 (2014-08-20) 672 673 #### Runtime 674 + Make /etc/hosts /etc/resolv.conf and /etc/hostname editable at runtime 675 + Auto-restart containers using policies 676 + Use /var/lib/docker/tmp for large temporary files 677 + `--cap-add` and `--cap-drop` to tweak what linux capability you want 678 + `--device` to use devices in containers 679 680 #### Client 681 + `docker search` on private registries 682 + Add `exited` filter to `docker ps --filter` 683 * `docker rm -f` now kills instead of stop 684 + Support for IPv6 addresses in `--dns` flag 685 686 #### Proxy 687 + Proxy instances in separate processes 688 * Small bug fix on UDP proxy 689 690 ## 1.1.2 (2014-07-23) 691 692 #### Runtime 693 + Fix port allocation for existing containers 694 + Fix containers restart on daemon restart 695 696 #### Packaging 697 + Fix /etc/init.d/docker issue on Debian 698 699 ## 1.1.1 (2014-07-09) 700 701 #### Builder 702 * Fix issue with ADD 703 704 ## 1.1.0 (2014-07-03) 705 706 #### Notable features since 1.0.1 707 + Add `.dockerignore` support 708 + Pause containers during `docker commit` 709 + Add `--tail` to `docker logs` 710 711 #### Builder 712 + Allow a tar file as context for `docker build` 713 * Fix issue with white-spaces and multi-lines in `Dockerfiles` 714 715 #### Runtime 716 * Overall performance improvements 717 * Allow `/` as source of `docker run -v` 718 * Fix port allocation 719 * Fix bug in `docker save` 720 * Add links information to `docker inspect` 721 722 #### Client 723 * Improve command line parsing for `docker commit` 724 725 #### Remote API 726 * Improve status code for the `start` and `stop` endpoints 727 728 ## 1.0.1 (2014-06-19) 729 730 #### Notable features since 1.0.0 731 * Enhance security for the LXC driver 732 733 #### Builder 734 * Fix `ONBUILD` instruction passed to grandchildren 735 736 #### Runtime 737 * Fix events subscription 738 * Fix /etc/hostname file with host networking 739 * Allow `-h` and `--net=none` 740 * Fix issue with hotplug devices in `--privileged` 741 742 #### Client 743 * Fix artifacts with events 744 * Fix a panic with empty flags 745 * Fix `docker cp` on Mac OS X 746 747 #### Miscellaneous 748 * Fix compilation on Mac OS X 749 * Fix several races 750 751 ## 1.0.0 (2014-06-09) 752 753 #### Notable features since 0.12.0 754 * Production support 755 756 ## 0.12.0 (2014-06-05) 757 758 #### Notable features since 0.11.0 759 * 40+ various improvements to stability, performance and usability 760 * New `COPY` Dockerfile instruction to allow copying a local file from the context into the container without ever extracting if the file is a tar file 761 * Inherit file permissions from the host on `ADD` 762 * New `pause` and `unpause` commands to allow pausing and unpausing of containers using cgroup freezer 763 * The `images` command has a `-f`/`--filter` option to filter the list of images 764 * Add `--force-rm` to clean up after a failed build 765 * Standardize JSON keys in Remote API to CamelCase 766 * Pull from a docker run now assumes `latest` tag if not specified 767 * Enhance security on Linux capabilities and device nodes 768 769 ## 0.11.1 (2014-05-07) 770 771 #### Registry 772 - Fix push and pull to private registry 773 774 ## 0.11.0 (2014-05-07) 775 776 #### Notable features since 0.10.0 777 778 * SELinux support for mount and process labels 779 * Linked containers can be accessed by hostname 780 * Use the net `--net` flag to allow advanced network configuration such as host networking so that containers can use the host's network interfaces 781 * Add a ping endpoint to the Remote API to do healthchecks of your docker daemon 782 * Logs can now be returned with an optional timestamp 783 * Docker now works with registries that support SHA-512 784 * Multiple registry endpoints are supported to allow registry mirrors 785 786 ## 0.10.0 (2014-04-08) 787 788 #### Builder 789 - Fix printing multiple messages on a single line. Fixes broken output during builds. 790 - Follow symlinks inside container's root for ADD build instructions. 791 - Fix EXPOSE caching. 792 793 #### Documentation 794 - Add the new options of `docker ps` to the documentation. 795 - Add the options of `docker restart` to the documentation. 796 - Update daemon docs and help messages for --iptables and --ip-forward. 797 - Updated apt-cacher-ng docs example. 798 - Remove duplicate description of --mtu from docs. 799 - Add missing -t and -v for `docker images` to the docs. 800 - Add fixes to the cli docs. 801 - Update libcontainer docs. 802 - Update images in docs to remove references to AUFS and LXC. 803 - Update the nodejs_web_app in the docs to use the new epel RPM address. 804 - Fix external link on security of containers. 805 - Update remote API docs. 806 - Add image size to history docs. 807 - Be explicit about binding to all interfaces in redis example. 808 - Document DisableNetwork flag in the 1.10 remote api. 809 - Document that `--lxc-conf` is lxc only. 810 - Add chef usage documentation. 811 - Add example for an image with multiple for `docker load`. 812 - Explain what `docker run -a` does in the docs. 813 814 #### Contrib 815 - Add variable for DOCKER_LOGFILE to sysvinit and use append instead of overwrite in opening the logfile. 816 - Fix init script cgroup mounting workarounds to be more similar to cgroupfs-mount and thus work properly. 817 - Remove inotifywait hack from the upstart host-integration example because it's not necessary any more. 818 - Add check-config script to contrib. 819 - Fix fish shell completion. 820 821 #### Hack 822 * Clean up "go test" output from "make test" to be much more readable/scannable. 823 * Exclude more "definitely not unit tested Go source code" directories from hack/make/test. 824 + Generate md5 and sha256 hashes when building, and upload them via hack/release.sh. 825 - Include contributed completions in Ubuntu PPA. 826 + Add cli integration tests. 827 * Add tweaks to the hack scripts to make them simpler. 828 829 #### Remote API 830 + Add TLS auth support for API. 831 * Move git clone from daemon to client. 832 - Fix content-type detection in docker cp. 833 * Split API into 2 go packages. 834 835 #### Runtime 836 * Support hairpin NAT without going through Docker server. 837 - devicemapper: succeed immediately when removing non-existing devices. 838 - devicemapper: improve handling of devicemapper devices (add per device lock, increase sleep time and unlock while sleeping). 839 - devicemapper: increase timeout in waitClose to 10 seconds. 840 - devicemapper: ensure we shut down thin pool cleanly. 841 - devicemapper: pass info, rather than hash to activateDeviceIfNeeded, deactivateDevice, setInitialized, deleteDevice. 842 - devicemapper: avoid AB-BA deadlock. 843 - devicemapper: make shutdown better/faster. 844 - improve alpha sorting in mflag. 845 - Remove manual http cookie management because the cookiejar is being used. 846 - Use BSD raw mode on Darwin. Fixes nano, tmux and others. 847 - Add FreeBSD support for the client. 848 - Merge auth package into registry. 849 - Add deprecation warning for -t on `docker pull`. 850 - Remove goroutine leak on error. 851 - Update parseLxcInfo to comply with new lxc1.0 format. 852 - Fix attach exit on darwin. 853 - Improve deprecation message. 854 - Retry to retrieve the layer metadata up to 5 times for `docker pull`. 855 - Only unshare the mount namespace for execin. 856 - Merge existing config when committing. 857 - Disable daemon startup timeout. 858 - Fix issue #4681: add loopback interface when networking is disabled. 859 - Add failing test case for issue #4681. 860 - Send SIGTERM to child, instead of SIGKILL. 861 - Show the driver and the kernel version in `docker info` even when not in debug mode. 862 - Always symlink /dev/ptmx for libcontainer. This fixes console related problems. 863 - Fix issue caused by the absence of /etc/apparmor.d. 864 - Don't leave empty cidFile behind when failing to create the container. 865 - Mount cgroups automatically if they're not mounted already. 866 - Use mock for search tests. 867 - Update to double-dash everywhere. 868 - Move .dockerenv parsing to lxc driver. 869 - Move all bind-mounts in the container inside the namespace. 870 - Don't use separate bind mount for container. 871 - Always symlink /dev/ptmx for libcontainer. 872 - Don't kill by pid for other drivers. 873 - Add initial logging to libcontainer. 874 * Sort by port in `docker ps`. 875 - Move networking drivers into runtime top level package. 876 + Add --no-prune to `docker rmi`. 877 + Add time since exit in `docker ps`. 878 - graphdriver: add build tags. 879 - Prevent allocation of previously allocated ports & prevent improve port allocation. 880 * Add support for --since/--before in `docker ps`. 881 - Clean up container stop. 882 + Add support for configurable dns search domains. 883 - Add support for relative WORKDIR instructions. 884 - Add --output flag for docker save. 885 - Remove duplication of DNS entries in config merging. 886 - Add cpuset.cpus to cgroups and native driver options. 887 - Remove docker-ci. 888 - Promote btrfs. btrfs is no longer considered experimental. 889 - Add --input flag to `docker load`. 890 - Return error when existing bridge doesn't match IP address. 891 - Strip comments before parsing line continuations to avoid interpreting instructions as comments. 892 - Fix TestOnlyLoopbackExistsWhenUsingDisableNetworkOption to ignore "DOWN" interfaces. 893 - Add systemd implementation of cgroups and make containers show up as systemd units. 894 - Fix commit and import when no repository is specified. 895 - Remount /var/lib/docker as --private to fix scaling issue. 896 - Use the environment's proxy when pinging the remote registry. 897 - Reduce error level from harmless errors. 898 * Allow --volumes-from to be individual files. 899 - Fix expanding buffer in StdCopy. 900 - Set error regardless of attach or stdin. This fixes #3364. 901 - Add support for --env-file to load environment variables from files. 902 - Symlink /etc/mtab and /proc/mounts. 903 - Allow pushing a single tag. 904 - Shut down containers cleanly at shutdown and wait forever for the containers to shut down. This makes container shutdown on daemon shutdown work properly via SIGTERM. 905 - Don't throw error when starting an already running container. 906 - Fix dynamic port allocation limit. 907 - remove setupDev from libcontainer. 908 - Add API version to `docker version`. 909 - Return correct exit code when receiving signal and make SIGQUIT quit without cleanup. 910 - Fix --volumes-from mount failure. 911 - Allow non-privileged containers to create device nodes. 912 - Skip login tests because of external dependency on a hosted service. 913 - Deprecate `docker images --tree` and `docker images --viz`. 914 - Deprecate `docker insert`. 915 - Include base abstraction for apparmor. This fixes some apparmor related problems on Ubuntu 14.04. 916 - Add specific error message when hitting 401 over HTTP on push. 917 - Fix absolute volume check. 918 - Remove volumes-from from the config. 919 - Move DNS options to hostconfig. 920 - Update the apparmor profile for libcontainer. 921 - Add deprecation notice for `docker commit -run`. 922 923 ## 0.9.1 (2014-03-24) 924 925 #### Builder 926 - Fix printing multiple messages on a single line. Fixes broken output during builds. 927 928 #### Documentation 929 - Fix external link on security of containers. 930 931 #### Contrib 932 - Fix init script cgroup mounting workarounds to be more similar to cgroupfs-mount and thus work properly. 933 - Add variable for DOCKER_LOGFILE to sysvinit and use append instead of overwrite in opening the logfile. 934 935 #### Hack 936 - Generate md5 and sha256 hashes when building, and upload them via hack/release.sh. 937 938 #### Remote API 939 - Fix content-type detection in `docker cp`. 940 941 #### Runtime 942 - Use BSD raw mode on Darwin. Fixes nano, tmux and others. 943 - Only unshare the mount namespace for execin. 944 - Retry to retrieve the layer metadata up to 5 times for `docker pull`. 945 - Merge existing config when committing. 946 - Fix panic in monitor. 947 - Disable daemon startup timeout. 948 - Fix issue #4681: add loopback interface when networking is disabled. 949 - Add failing test case for issue #4681. 950 - Send SIGTERM to child, instead of SIGKILL. 951 - Show the driver and the kernel version in `docker info` even when not in debug mode. 952 - Always symlink /dev/ptmx for libcontainer. This fixes console related problems. 953 - Fix issue caused by the absence of /etc/apparmor.d. 954 - Don't leave empty cidFile behind when failing to create the container. 955 - Improve deprecation message. 956 - Fix attach exit on darwin. 957 - devicemapper: improve handling of devicemapper devices (add per device lock, increase sleep time, unlock while sleeping). 958 - devicemapper: succeed immediately when removing non-existing devices. 959 - devicemapper: increase timeout in waitClose to 10 seconds. 960 - Remove goroutine leak on error. 961 - Update parseLxcInfo to comply with new lxc1.0 format. 962 963 ## 0.9.0 (2014-03-10) 964 965 #### Builder 966 - Avoid extra mount/unmount during build. This fixes mount/unmount related errors during build. 967 - Add error to docker build --rm. This adds missing error handling. 968 - Forbid chained onbuild, `onbuild from` and `onbuild maintainer` triggers. 969 - Make `--rm` the default for `docker build`. 970 971 #### Documentation 972 - Download the docker client binary for Mac over https. 973 - Update the titles of the install instructions & descriptions. 974 * Add instructions for upgrading boot2docker. 975 * Add port forwarding example in OS X install docs. 976 - Attempt to disentangle repository and registry. 977 - Update docs to explain more about `docker ps`. 978 - Update sshd example to use a Dockerfile. 979 - Rework some examples, including the Python examples. 980 - Update docs to include instructions for a container's lifecycle. 981 - Update docs documentation to discuss the docs branch. 982 - Don't skip cert check for an example & use HTTPS. 983 - Bring back the memory and swap accounting section which was lost when the kernel page was removed. 984 - Explain DNS warnings and how to fix them on systems running and using a local nameserver. 985 986 #### Contrib 987 - Add Tanglu support for mkimage-debootstrap. 988 - Add SteamOS support for mkimage-debootstrap. 989 990 #### Hack 991 - Get package coverage when running integration tests. 992 - Remove the Vagrantfile. This is being replaced with boot2docker. 993 - Fix tests on systems where aufs isn't available. 994 - Update packaging instructions and remove the dependency on lxc. 995 996 #### Remote API 997 * Move code specific to the API to the api package. 998 - Fix header content type for the API. Makes all endpoints use proper content type. 999 - Fix registry auth & remove ping calls from CmdPush and CmdPull. 1000 - Add newlines to the JSON stream functions. 1001 1002 #### Runtime 1003 * Do not ping the registry from the CLI. All requests to registries flow through the daemon. 1004 - Check for nil information return in the lxc driver. This fixes panics with older lxc versions. 1005 - Devicemapper: cleanups and fix for unmount. Fixes two problems which were causing unmount to fail intermittently. 1006 - Devicemapper: remove directory when removing device. Directories don't get left behind when removing the device. 1007 * Devicemapper: enable skip_block_zeroing. Improves performance by not zeroing blocks. 1008 - Devicemapper: fix shutdown warnings. Fixes shutdown warnings concerning pool device removal. 1009 - Ensure docker cp stream is closed properly. Fixes problems with files not being copied by `docker cp`. 1010 - Stop making `tcp://` default to `127.0.0.1:4243` and remove the default port for tcp. 1011 - Fix `--run` in `docker commit`. This makes `docker commit --run` work again. 1012 - Fix custom bridge related options. This makes custom bridges work again. 1013 + Mount-bind the PTY as container console. This allows tmux/screen to run. 1014 + Add the pure Go libcontainer library to make it possible to run containers using only features of the Linux kernel. 1015 + Add native exec driver which uses libcontainer and make it the default exec driver. 1016 - Add support for handling extended attributes in archives. 1017 * Set the container MTU to be the same as the host MTU. 1018 + Add simple sha256 checksums for layers to speed up `docker push`. 1019 * Improve kernel version parsing. 1020 * Allow flag grouping (`docker run -it`). 1021 - Remove chroot exec driver. 1022 - Fix divide by zero to fix panic. 1023 - Rewrite `docker rmi`. 1024 - Fix docker info with lxc 1.0.0. 1025 - Fix fedora tty with apparmor. 1026 * Don't always append env vars, replace defaults with vars from config. 1027 * Fix a goroutine leak. 1028 * Switch to Go 1.2.1. 1029 - Fix unique constraint error checks. 1030 * Handle symlinks for Docker's data directory and for TMPDIR. 1031 - Add deprecation warnings for flags (-flag is deprecated in favor of --flag) 1032 - Add apparmor profile for the native execution driver. 1033 * Move system specific code from archive to pkg/system. 1034 - Fix duplicate signal for `docker run -i -t` (issue #3336). 1035 - Return correct process pid for lxc. 1036 - Add a -G option to specify the group which unix sockets belong to. 1037 + Add `-f` flag to `docker rm` to force removal of running containers. 1038 + Kill ghost containers and restart all ghost containers when the docker daemon restarts. 1039 + Add `DOCKER_RAMDISK` environment variable to make Docker work when the root is on a ramdisk. 1040 1041 ## 0.8.1 (2014-02-18) 1042 1043 #### Builder 1044 1045 - Avoid extra mount/unmount during build. This removes an unneeded mount/unmount operation which was causing problems with devicemapper 1046 - Fix regression with ADD of tar files. This stops Docker from decompressing tarballs added via ADD from the local file system 1047 - Add error to `docker build --rm`. This adds a missing error check to ensure failures to remove containers are detected and reported 1048 1049 #### Documentation 1050 1051 * Update issue filing instructions 1052 * Warn against the use of symlinks for Docker's storage folder 1053 * Replace the Firefox example with an IceWeasel example 1054 * Rewrite the PostgresSQL example using a Dockerfile and add more details to it 1055 * Improve the OS X documentation 1056 1057 #### Remote API 1058 1059 - Fix broken images API for version less than 1.7 1060 - Use the right encoding for all API endpoints which return JSON 1061 - Move remote api client to api/ 1062 - Queue calls to the API using generic socket wait 1063 1064 #### Runtime 1065 1066 - Fix the use of custom settings for bridges and custom bridges 1067 - Refactor the devicemapper code to avoid many mount/unmount race conditions and failures 1068 - Remove two panics which could make Docker crash in some situations 1069 - Don't ping registry from the CLI client 1070 - Enable skip_block_zeroing for devicemapper. This stops devicemapper from always zeroing entire blocks 1071 - Fix --run in `docker commit`. This makes docker commit store `--run` in the image configuration 1072 - Remove directory when removing devicemapper device. This cleans up leftover mount directories 1073 - Drop NET_ADMIN capability for non-privileged containers. Unprivileged containers can't change their network configuration 1074 - Ensure `docker cp` stream is closed properly 1075 - Avoid extra mount/unmount during container registration. This removes an unneeded mount/unmount operation which was causing problems with devicemapper 1076 - Stop allowing tcp:// as a default tcp bin address which binds to 127.0.0.1:4243 and remove the default port 1077 + Mount-bind the PTY as container console. This allows tmux and screen to run in a container 1078 - Clean up archive closing. This fixes and improves archive handling 1079 - Fix engine tests on systems where temp directories are symlinked 1080 - Add test methods for save and load 1081 - Avoid temporarily unmounting the container when restarting it. This fixes a race for devicemapper during restart 1082 - Support submodules when building from a GitHub repository 1083 - Quote volume path to allow spaces 1084 - Fix remote tar ADD behavior. This fixes a regression which was causing Docker to extract tarballs 1085 1086 ## 0.8.0 (2014-02-04) 1087 1088 #### Notable features since 0.7.0 1089 1090 * Images and containers can be removed much faster 1091 * Building an image from source with docker build is now much faster 1092 * The Docker daemon starts and stops much faster 1093 * The memory footprint of many common operations has been reduced, by streaming files instead of buffering them in memory, fixing memory leaks, and fixing various suboptimal memory allocations 1094 * Several race conditions were fixed, making Docker more stable under very high concurrency load. This makes Docker more stable and less likely to crash and reduces the memory footprint of many common operations 1095 * All packaging operations are now built on the Go language’s standard tar implementation, which is bundled with Docker itself. This makes packaging more portable across host distributions, and solves several issues caused by quirks and incompatibilities between different distributions of tar 1096 * Docker can now create, remove and modify larger numbers of containers and images graciously thanks to more aggressive releasing of system resources. For example the storage driver API now allows Docker to do reference counting on mounts created by the drivers 1097 With the ongoing changes to the networking and execution subsystems of docker testing these areas have been a focus of the refactoring. By moving these subsystems into separate packages we can test, analyze, and monitor coverage and quality of these packages 1098 * Many components have been separated into smaller sub-packages, each with a dedicated test suite. As a result the code is better-tested, more readable and easier to change 1099 1100 * The ADD instruction now supports caching, which avoids unnecessarily re-uploading the same source content again and again when it hasn’t changed 1101 * The new ONBUILD instruction adds to your image a “trigger” instruction to be executed at a later time, when the image is used as the base for another build 1102 * Docker now ships with an experimental storage driver which uses the BTRFS filesystem for copy-on-write 1103 * Docker is officially supported on Mac OS X 1104 * The Docker daemon supports systemd socket activation 1105 1106 ## 0.7.6 (2014-01-14) 1107 1108 #### Builder 1109 1110 * Do not follow symlink outside of build context 1111 1112 #### Runtime 1113 1114 - Remount bind mounts when ro is specified 1115 * Use https for fetching docker version 1116 1117 #### Other 1118 1119 * Inline the test.docker.io fingerprint 1120 * Add ca-certificates to packaging documentation 1121 1122 ## 0.7.5 (2014-01-09) 1123 1124 #### Builder 1125 1126 * Disable compression for build. More space usage but a much faster upload 1127 - Fix ADD caching for certain paths 1128 - Do not compress archive from git build 1129 1130 #### Documentation 1131 1132 - Fix error in GROUP add example 1133 * Make sure the GPG fingerprint is inline in the documentation 1134 * Give more specific advice on setting up signing of commits for DCO 1135 1136 #### Runtime 1137 1138 - Fix misspelled container names 1139 - Do not add hostname when networking is disabled 1140 * Return most recent image from the cache by date 1141 - Return all errors from docker wait 1142 * Add Content-Type Header "application/json" to GET /version and /info responses 1143 1144 #### Other 1145 1146 * Update DCO to version 1.1 1147 + Update Makefile to use "docker:GIT_BRANCH" as the generated image name 1148 * Update Travis to check for new 1.1 DCO version 1149 1150 ## 0.7.4 (2014-01-07) 1151 1152 #### Builder 1153 1154 - Fix ADD caching issue with . prefixed path 1155 - Fix docker build on devicemapper by reverting sparse file tar option 1156 - Fix issue with file caching and prevent wrong cache hit 1157 * Use same error handling while unmarshalling CMD and ENTRYPOINT 1158 1159 #### Documentation 1160 1161 * Simplify and streamline Amazon Quickstart 1162 * Install instructions use unprefixed Fedora image 1163 * Update instructions for mtu flag for Docker on GCE 1164 + Add Ubuntu Saucy to installation 1165 - Fix for wrong version warning on master instead of latest 1166 1167 #### Runtime 1168 1169 - Only get the image's rootfs when we need to calculate the image size 1170 - Correctly handle unmapping UDP ports 1171 * Make CopyFileWithTar use a pipe instead of a buffer to save memory on docker build 1172 - Fix login message to say pull instead of push 1173 - Fix "docker load" help by removing "SOURCE" prompt and mentioning STDIN 1174 * Make blank -H option default to the same as no -H was sent 1175 * Extract cgroups utilities to own submodule 1176 1177 #### Other 1178 1179 + Add Travis CI configuration to validate DCO and gofmt requirements 1180 + Add Developer Certificate of Origin Text 1181 * Upgrade VBox Guest Additions 1182 * Check standalone header when pinging a registry server 1183 1184 ## 0.7.3 (2014-01-02) 1185 1186 #### Builder 1187 1188 + Update ADD to use the image cache, based on a hash of the added content 1189 * Add error message for empty Dockerfile 1190 1191 #### Documentation 1192 1193 - Fix outdated link to the "Introduction" on www.docker.io 1194 + Update the docs to get wider when the screen does 1195 - Add information about needing to install LXC when using raw binaries 1196 * Update Fedora documentation to disentangle the docker and docker.io conflict 1197 * Add a note about using the new `-mtu` flag in several GCE zones 1198 + Add FrugalWare installation instructions 1199 + Add a more complete example of `docker run` 1200 - Fix API documentation for creating and starting Privileged containers 1201 - Add missing "name" parameter documentation on "/containers/create" 1202 * Add a mention of `lxc-checkconfig` as a way to check for some of the necessary kernel configuration 1203 - Update the 1.8 API documentation with some additions that were added to the docs for 1.7 1204 1205 #### Hack 1206 1207 - Add missing libdevmapper dependency to the packagers documentation 1208 * Update minimum Go requirement to a hard line at Go 1.2+ 1209 * Many minor improvements to the Vagrantfile 1210 + Add ability to customize dockerinit search locations when compiling (to be used very sparingly only by packagers of platforms who require a nonstandard location) 1211 + Add coverprofile generation reporting 1212 - Add `-a` to our Go build flags, removing the need for recompiling the stdlib manually 1213 * Update Dockerfile to be more canonical and have less spurious warnings during build 1214 - Fix some miscellaneous `docker pull` progress bar display issues 1215 * Migrate more miscellaneous packages under the "pkg" folder 1216 * Update TextMate highlighting to automatically be enabled for files named "Dockerfile" 1217 * Reorganize syntax highlighting files under a common "contrib/syntax" directory 1218 * Update install.sh script (https://get.docker.io/) to not fail if busybox fails to download or run at the end of the Ubuntu/Debian installation 1219 * Add support for container names in bash completion 1220 1221 #### Packaging 1222 1223 + Add an official Docker client binary for Darwin (Mac OS X) 1224 * Remove empty "Vendor" string and added "License" on deb package 1225 + Add a stubbed version of "/etc/default/docker" in the deb package 1226 1227 #### Runtime 1228 1229 * Update layer application to extract tars in place, avoiding file churn while handling whiteouts 1230 - Fix permissiveness of mtime comparisons in tar handling (since GNU tar and Go tar do not yet support sub-second mtime precision) 1231 * Reimplement `docker top` in pure Go to work more consistently, and even inside Docker-in-Docker (thus removing the shell injection vulnerability present in some versions of `lxc-ps`) 1232 + Update `-H unix://` to work similarly to `-H tcp://` by inserting the default values for missing portions 1233 - Fix more edge cases regarding dockerinit and deleted or replaced docker or dockerinit files 1234 * Update container name validation to include '.' 1235 - Fix use of a symlink or non-absolute path as the argument to `-g` to work as expected 1236 * Update to handle external mounts outside of LXC, fixing many small mounting quirks and making future execution backends and other features simpler 1237 * Update to use proper box-drawing characters everywhere in `docker images -tree` 1238 * Move MTU setting from LXC configuration to directly use netlink 1239 * Add `-S` option to external tar invocation for more efficient spare file handling 1240 + Add arch/os info to User-Agent string, especially for registry requests 1241 + Add `-mtu` option to Docker daemon for configuring MTU 1242 - Fix `docker build` to exit with a non-zero exit code on error 1243 + Add `DOCKER_HOST` environment variable to configure the client `-H` flag without specifying it manually for every invocation 1244 1245 ## 0.7.2 (2013-12-16) 1246 1247 #### Runtime 1248 1249 + Validate container names on creation with standard regex 1250 * Increase maximum image depth to 127 from 42 1251 * Continue to move api endpoints to the job api 1252 + Add -bip flag to allow specification of dynamic bridge IP via CIDR 1253 - Allow bridge creation when ipv6 is not enabled on certain systems 1254 * Set hostname and IP address from within dockerinit 1255 * Drop capabilities from within dockerinit 1256 - Fix volumes on host when symlink is present the image 1257 - Prevent deletion of image if ANY container is depending on it even if the container is not running 1258 * Update docker push to use new progress display 1259 * Use os.Lstat to allow mounting unix sockets when inspecting volumes 1260 - Adjust handling of inactive user login 1261 - Add missing defines in devicemapper for older kernels 1262 - Allow untag operations with no container validation 1263 - Add auth config to docker build 1264 1265 #### Documentation 1266 1267 * Add more information about Docker logging 1268 + Add RHEL documentation 1269 * Add a direct example for changing the CMD that is run in a container 1270 * Update Arch installation documentation 1271 + Add section on Trusted Builds 1272 + Add Network documentation page 1273 1274 #### Other 1275 1276 + Add new cover bundle for providing code coverage reporting 1277 * Separate integration tests in bundles 1278 * Make Tianon the hack maintainer 1279 * Update mkimage-debootstrap with more tweaks for keeping images small 1280 * Use https to get the install script 1281 * Remove vendored dotcloud/tar now that Go 1.2 has been released 1282 1283 ## 0.7.1 (2013-12-05) 1284 1285 #### Documentation 1286 1287 + Add @SvenDowideit as documentation maintainer 1288 + Add links example 1289 + Add documentation regarding ambassador pattern 1290 + Add Google Cloud Platform docs 1291 + Add dockerfile best practices 1292 * Update doc for RHEL 1293 * Update doc for registry 1294 * Update Postgres examples 1295 * Update doc for Ubuntu install 1296 * Improve remote api doc 1297 1298 #### Runtime 1299 1300 + Add hostconfig to docker inspect 1301 + Implement `docker log -f` to stream logs 1302 + Add env variable to disable kernel version warning 1303 + Add -format to `docker inspect` 1304 + Support bind-mount for files 1305 - Fix bridge creation on RHEL 1306 - Fix image size calculation 1307 - Make sure iptables are called even if the bridge already exists 1308 - Fix issue with stderr only attach 1309 - Remove init layer when destroying a container 1310 - Fix same port binding on different interfaces 1311 - `docker build` now returns the correct exit code 1312 - Fix `docker port` to display correct port 1313 - `docker build` now check that the dockerfile exists client side 1314 - `docker attach` now returns the correct exit code 1315 - Remove the name entry when the container does not exist 1316 1317 #### Registry 1318 1319 * Improve progress bars, add ETA for downloads 1320 * Simultaneous pulls now waits for the first to finish instead of failing 1321 - Tag only the top-layer image when pushing to registry 1322 - Fix issue with offline image transfer 1323 - Fix issue preventing using ':' in password for registry 1324 1325 #### Other 1326 1327 + Add pprof handler for debug 1328 + Create a Makefile 1329 * Use stdlib tar that now includes fix 1330 * Improve make.sh test script 1331 * Handle SIGQUIT on the daemon 1332 * Disable verbose during tests 1333 * Upgrade to go1.2 for official build 1334 * Improve unit tests 1335 * The test suite now runs all tests even if one fails 1336 * Refactor C in Go (Devmapper) 1337 - Fix OS X compilation 1338 1339 ## 0.7.0 (2013-11-25) 1340 1341 #### Notable features since 0.6.0 1342 1343 * Storage drivers: choose from aufs, device-mapper, or vfs. 1344 * Standard Linux support: docker now runs on unmodified Linux kernels and all major distributions. 1345 * Links: compose complex software stacks by connecting containers to each other. 1346 * Container naming: organize your containers by giving them memorable names. 1347 * Advanced port redirects: specify port redirects per interface, or keep sensitive ports private. 1348 * Offline transfer: push and pull images to the filesystem without losing information. 1349 * Quality: numerous bugfixes and small usability improvements. Significant increase in test coverage. 1350 1351 ## 0.6.7 (2013-11-21) 1352 1353 #### Runtime 1354 1355 * Improve stability, fixes some race conditions 1356 * Skip the volumes mounted when deleting the volumes of container. 1357 * Fix layer size computation: handle hard links correctly 1358 * Use the work Path for docker cp CONTAINER:PATH 1359 * Fix tmp dir never cleanup 1360 * Speedup docker ps 1361 * More informative error message on name collisions 1362 * Fix nameserver regex 1363 * Always return long id's 1364 * Fix container restart race condition 1365 * Keep published ports on docker stop;docker start 1366 * Fix container networking on Fedora 1367 * Correctly express "any address" to iptables 1368 * Fix network setup when reconnecting to ghost container 1369 * Prevent deletion if image is used by a running container 1370 * Lock around read operations in graph 1371 1372 #### RemoteAPI 1373 1374 * Return full ID on docker rmi 1375 1376 #### Client 1377 1378 + Add -tree option to images 1379 + Offline image transfer 1380 * Exit with status 2 on usage error and display usage on stderr 1381 * Do not forward SIGCHLD to container 1382 * Use string timestamp for docker events -since 1383 1384 #### Other 1385 1386 * Update to go 1.2rc5 1387 + Add /etc/default/docker support to upstart 1388 1389 ## 0.6.6 (2013-11-06) 1390 1391 #### Runtime 1392 1393 * Ensure container name on register 1394 * Fix regression in /etc/hosts 1395 + Add lock around write operations in graph 1396 * Check if port is valid 1397 * Fix restart runtime error with ghost container networking 1398 + Add some more colors and animals to increase the pool of generated names 1399 * Fix issues in docker inspect 1400 + Escape apparmor confinement 1401 + Set environment variables using a file. 1402 * Prevent docker insert to erase something 1403 + Prevent DNS server conflicts in CreateBridgeIface 1404 + Validate bind mounts on the server side 1405 + Use parent image config in docker build 1406 * Fix regression in /etc/hosts 1407 1408 #### Client 1409 1410 + Add -P flag to publish all exposed ports 1411 + Add -notrunc and -q flags to docker history 1412 * Fix docker commit, tag and import usage 1413 + Add stars, trusted builds and library flags in docker search 1414 * Fix docker logs with tty 1415 1416 #### RemoteAPI 1417 1418 * Make /events API send headers immediately 1419 * Do not split last column docker top 1420 + Add size to history 1421 1422 #### Other 1423 1424 + Contrib: Desktop integration. Firefox usecase. 1425 + Dockerfile: bump to go1.2rc3 1426 1427 ## 0.6.5 (2013-10-29) 1428 1429 #### Runtime 1430 1431 + Containers can now be named 1432 + Containers can now be linked together for service discovery 1433 + 'run -a', 'start -a' and 'attach' can forward signals to the container for better integration with process supervisors 1434 + Automatically start crashed containers after a reboot 1435 + Expose IP, port, and proto as separate environment vars for container links 1436 * Allow ports to be published to specific ips 1437 * Prohibit inter-container communication by default 1438 - Ignore ErrClosedPipe for stdin in Container.Attach 1439 - Remove unused field kernelVersion 1440 * Fix issue when mounting subdirectories of /mnt in container 1441 - Fix untag during removal of images 1442 * Check return value of syscall.Chdir when changing working directory inside dockerinit 1443 1444 #### Client 1445 1446 - Only pass stdin to hijack when needed to avoid closed pipe errors 1447 * Use less reflection in command-line method invocation 1448 - Monitor the tty size after starting the container, not prior 1449 - Remove useless os.Exit() calls after log.Fatal 1450 1451 #### Hack 1452 1453 + Add initial init scripts library and a safer Ubuntu packaging script that works for Debian 1454 * Add -p option to invoke debootstrap with http_proxy 1455 - Update install.sh with $sh_c to get sudo/su for modprobe 1456 * Update all the mkimage scripts to use --numeric-owner as a tar argument 1457 * Update hack/release.sh process to automatically invoke hack/make.sh and bail on build and test issues 1458 1459 #### Other 1460 1461 * Documentation: Fix the flags for nc in example 1462 * Testing: Remove warnings and prevent mount issues 1463 - Testing: Change logic for tty resize to avoid warning in tests 1464 - Builder: Fix race condition in docker build with verbose output 1465 - Registry: Fix content-type for PushImageJSONIndex method 1466 * Contrib: Improve helper tools to generate debian and Arch linux server images 1467 1468 ## 0.6.4 (2013-10-16) 1469 1470 #### Runtime 1471 1472 - Add cleanup of container when Start() fails 1473 * Add better comments to utils/stdcopy.go 1474 * Add utils.Errorf for error logging 1475 + Add -rm to docker run for removing a container on exit 1476 - Remove error messages which are not actually errors 1477 - Fix `docker rm` with volumes 1478 - Fix some error cases where a HTTP body might not be closed 1479 - Fix panic with wrong dockercfg file 1480 - Fix the attach behavior with -i 1481 * Record termination time in state. 1482 - Use empty string so TempDir uses the OS's temp dir automatically 1483 - Make sure to close the network allocators 1484 + Autorestart containers by default 1485 * Bump vendor kr/pty to commit 3b1f6487b `(syscall.O_NOCTTY)` 1486 * lxc: Allow set_file_cap capability in container 1487 - Move run -rm to the cli only 1488 * Split stdout stderr 1489 * Always create a new session for the container 1490 1491 #### Testing 1492 1493 - Add aggregated docker-ci email report 1494 - Add cleanup to remove leftover containers 1495 * Add nightly release to docker-ci 1496 * Add more tests around auth.ResolveAuthConfig 1497 - Remove a few errors in tests 1498 - Catch errClosing error when TCP and UDP proxies are terminated 1499 * Only run certain tests with TESTFLAGS='-run TestName' make.sh 1500 * Prevent docker-ci to test closing PRs 1501 * Replace panic by log.Fatal in tests 1502 - Increase TestRunDetach timeout 1503 1504 #### Documentation 1505 1506 * Add initial draft of the Docker infrastructure doc 1507 * Add devenvironment link to CONTRIBUTING.md 1508 * Add `apt-get install curl` to Ubuntu docs 1509 * Add explanation for export restrictions 1510 * Add .dockercfg doc 1511 * Remove Gentoo install notes about #1422 workaround 1512 * Fix help text for -v option 1513 * Fix Ping endpoint documentation 1514 - Fix parameter names in docs for ADD command 1515 - Fix ironic typo in changelog 1516 * Various command fixes in postgres example 1517 * Document how to edit and release docs 1518 - Minor updates to `postgresql_service.rst` 1519 * Clarify LGTM process to contributors 1520 - Corrected error in the package name 1521 * Document what `vagrant up` is actually doing 1522 + improve doc search results 1523 * Cleanup whitespace in API 1.5 docs 1524 * use angle brackets in MAINTAINER example email 1525 * Update archlinux.rst 1526 + Changes to a new style for the docs. Includes version switcher. 1527 * Formatting, add information about multiline json 1528 * Improve registry and index REST API documentation 1529 - Replace deprecated upgrading reference to docker-latest.tgz, which hasn't been updated since 0.5.3 1530 * Update Gentoo installation documentation now that we're in the portage tree proper 1531 * Cleanup and reorganize docs and tooling for contributors and maintainers 1532 - Minor spelling correction of protocoll -> protocol 1533 1534 #### Contrib 1535 1536 * Add vim syntax highlighting for Dockerfiles from @honza 1537 * Add mkimage-arch.sh 1538 * Reorganize contributed completion scripts to add zsh completion 1539 1540 #### Hack 1541 1542 * Add vagrant user to the docker group 1543 * Add proper bash completion for "docker push" 1544 * Add xz utils as a runtime dep 1545 * Add cleanup/refactor portion of #2010 for hack and Dockerfile updates 1546 + Add contrib/mkimage-centos.sh back (from #1621), and associated documentation link 1547 * Add several of the small make.sh fixes from #1920, and make the output more consistent and contributor-friendly 1548 + Add @tianon to hack/MAINTAINERS 1549 * Improve network performance for VirtualBox 1550 * Revamp install.sh to be usable by more people, and to use official install methods whenever possible (apt repo, portage tree, etc.) 1551 - Fix contrib/mkimage-debian.sh apt caching prevention 1552 + Add Dockerfile.tmLanguage to contrib 1553 * Configured FPM to make /etc/init/docker.conf a config file 1554 * Enable SSH Agent forwarding in Vagrant VM 1555 * Several small tweaks/fixes for contrib/mkimage-debian.sh 1556 1557 #### Other 1558 1559 - Builder: Abort build if mergeConfig returns an error and fix duplicate error message 1560 - Packaging: Remove deprecated packaging directory 1561 - Registry: Use correct auth config when logging in. 1562 - Registry: Fix the error message so it is the same as the regex 1563 1564 ## 0.6.3 (2013-09-23) 1565 1566 #### Packaging 1567 1568 * Add 'docker' group on install for ubuntu package 1569 * Update tar vendor dependency 1570 * Download apt key over HTTPS 1571 1572 #### Runtime 1573 1574 - Only copy and change permissions on non-bindmount volumes 1575 * Allow multiple volumes-from 1576 - Fix HTTP imports from STDIN 1577 1578 #### Documentation 1579 1580 * Update section on extracting the docker binary after build 1581 * Update development environment docs for new build process 1582 * Remove 'base' image from documentation 1583 1584 #### Other 1585 1586 - Client: Fix detach issue 1587 - Registry: Update regular expression to match index 1588 1589 ## 0.6.2 (2013-09-17) 1590 1591 #### Runtime 1592 1593 + Add domainname support 1594 + Implement image filtering with path.Match 1595 * Remove unnecessary warnings 1596 * Remove os/user dependency 1597 * Only mount the hostname file when the config exists 1598 * Handle signals within the `docker login` command 1599 - UID and GID are now also applied to volumes 1600 - `docker start` set error code upon error 1601 - `docker run` set the same error code as the process started 1602 1603 #### Builder 1604 1605 + Add -rm option in order to remove intermediate containers 1606 * Allow multiline for the RUN instruction 1607 1608 #### Registry 1609 1610 * Implement login with private registry 1611 - Fix push issues 1612 1613 #### Other 1614 1615 + Hack: Vendor all dependencies 1616 * Remote API: Bump to v1.5 1617 * Packaging: Break down hack/make.sh into small scripts, one per 'bundle': test, binary, ubuntu etc. 1618 * Documentation: General improvements 1619 1620 ## 0.6.1 (2013-08-23) 1621 1622 #### Registry 1623 1624 * Pass "meta" headers in API calls to the registry 1625 1626 #### Packaging 1627 1628 - Use correct upstart script with new build tool 1629 - Use libffi-dev, don`t build it from sources 1630 - Remove duplicate mercurial install command 1631 1632 ## 0.6.0 (2013-08-22) 1633 1634 #### Runtime 1635 1636 + Add lxc-conf flag to allow custom lxc options 1637 + Add an option to set the working directory 1638 * Add Image name to LogEvent tests 1639 + Add -privileged flag and relevant tests, docs, and examples 1640 * Add websocket support to /container/<name>/attach/ws 1641 * Add warning when net.ipv4.ip_forwarding = 0 1642 * Add hostname to environment 1643 * Add last stable version in `docker version` 1644 - Fix race conditions in parallel pull 1645 - Fix Graph ByParent() to generate list of child images per parent image. 1646 - Fix typo: fmt.Sprint -> fmt.Sprintf 1647 - Fix small \n error un docker build 1648 * Fix to "Inject dockerinit at /.dockerinit" 1649 * Fix #910. print user name to docker info output 1650 * Use Go 1.1.2 for dockerbuilder 1651 * Use ranged for loop on channels 1652 - Use utils.ParseRepositoryTag instead of strings.Split(name, ":") in server.ImageDelete 1653 - Improve CMD, ENTRYPOINT, and attach docs. 1654 - Improve connect message with socket error 1655 - Load authConfig only when needed and fix useless WARNING 1656 - Show tag used when image is missing 1657 * Apply volumes-from before creating volumes 1658 - Make docker run handle SIGINT/SIGTERM 1659 - Prevent crash when .dockercfg not readable 1660 - Install script should be fetched over https, not http. 1661 * API, issue 1471: Use groups for socket permissions 1662 - Correctly detect IPv4 forwarding 1663 * Mount /dev/shm as a tmpfs 1664 - Switch from http to https for get.docker.io 1665 * Let userland proxy handle container-bound traffic 1666 * Update the Docker CLI to specify a value for the "Host" header. 1667 - Change network range to avoid conflict with EC2 DNS 1668 - Reduce connect and read timeout when pinging the registry 1669 * Parallel pull 1670 - Handle ip route showing mask-less IP addresses 1671 * Allow ENTRYPOINT without CMD 1672 - Always consider localhost as a domain name when parsing the FQN repos name 1673 * Refactor checksum 1674 1675 #### Documentation 1676 1677 * Add MongoDB image example 1678 * Add instructions for creating and using the docker group 1679 * Add sudo to examples and installation to documentation 1680 * Add ufw doc 1681 * Add a reference to ps -a 1682 * Add information about Docker`s high level tools over LXC. 1683 * Fix typo in docs for docker run -dns 1684 * Fix a typo in the ubuntu installation guide 1685 * Fix to docs regarding adding docker groups 1686 * Update default -H docs 1687 * Update readme with dependencies for building 1688 * Update amazon.rst to explain that Vagrant is not necessary for running Docker on ec2 1689 * PostgreSQL service example in documentation 1690 * Suggest installing linux-headers by default. 1691 * Change the twitter handle 1692 * Clarify Amazon EC2 installation 1693 * 'Base' image is deprecated and should no longer be referenced in the docs. 1694 * Move note about officially supported kernel 1695 - Solved the logo being squished in Safari 1696 1697 #### Builder 1698 1699 + Add USER instruction do Dockerfile 1700 + Add workdir support for the Buildfile 1701 * Add no cache for docker build 1702 - Fix docker build and docker events output 1703 - Only count known instructions as build steps 1704 - Make sure ENV instruction within build perform a commit each time 1705 - Forbid certain paths within docker build ADD 1706 - Repository name (and optionally a tag) in build usage 1707 - Make sure ADD will create everything in 0755 1708 1709 #### Remote API 1710 1711 * Sort Images by most recent creation date. 1712 * Reworking opaque requests in registry module 1713 * Add image name in /events 1714 * Use mime pkg to parse Content-Type 1715 * 650 http utils and user agent field 1716 1717 #### Hack 1718 1719 + Bash Completion: Limit commands to containers of a relevant state 1720 * Add docker dependencies coverage testing into docker-ci 1721 1722 #### Packaging 1723 1724 + Docker-brew 0.5.2 support and memory footprint reduction 1725 * Add new docker dependencies into docker-ci 1726 - Revert "docker.upstart: avoid spawning a `sh` process" 1727 + Docker-brew and Docker standard library 1728 + Release docker with docker 1729 * Fix the upstart script generated by get.docker.io 1730 * Enabled the docs to generate manpages. 1731 * Revert Bind daemon to 0.0.0.0 in Vagrant. 1732 1733 #### Register 1734 1735 * Improve auth push 1736 * Registry unit tests + mock registry 1737 1738 #### Tests 1739 1740 * Improve TestKillDifferentUser to prevent timeout on buildbot 1741 - Fix typo in TestBindMounts (runContainer called without image) 1742 * Improve TestGetContainersTop so it does not rely on sleep 1743 * Relax the lo interface test to allow iface index != 1 1744 * Add registry functional test to docker-ci 1745 * Add some tests in server and utils 1746 1747 #### Other 1748 1749 * Contrib: bash completion script 1750 * Client: Add docker cp command and copy api endpoint to copy container files/folders to the host 1751 * Don`t read from stdout when only attached to stdin 1752 1753 ## 0.5.3 (2013-08-13) 1754 1755 #### Runtime 1756 1757 * Use docker group for socket permissions 1758 - Spawn shell within upstart script 1759 - Handle ip route showing mask-less IP addresses 1760 - Add hostname to environment 1761 1762 #### Builder 1763 1764 - Make sure ENV instruction within build perform a commit each time 1765 1766 ## 0.5.2 (2013-08-08) 1767 1768 * Builder: Forbid certain paths within docker build ADD 1769 - Runtime: Change network range to avoid conflict with EC2 DNS 1770 * API: Change daemon to listen on unix socket by default 1771 1772 ## 0.5.1 (2013-07-30) 1773 1774 #### Runtime 1775 1776 + Add `ps` args to `docker top` 1777 + Add support for container ID files (pidfile like) 1778 + Add container=lxc in default env 1779 + Support networkless containers with `docker run -n` and `docker -d -b=none` 1780 * Stdout/stderr logs are now stored in the same file as JSON 1781 * Allocate a /16 IP range by default, with fallback to /24. Try 12 ranges instead of 3. 1782 * Change .dockercfg format to json and support multiple auth remote 1783 - Do not override volumes from config 1784 - Fix issue with EXPOSE override 1785 1786 #### API 1787 1788 + Docker client now sets useragent (RFC 2616) 1789 + Add /events endpoint 1790 1791 #### Builder 1792 1793 + ADD command now understands URLs 1794 + CmdAdd and CmdEnv now respect Dockerfile-set ENV variables 1795 - Create directories with 755 instead of 700 within ADD instruction 1796 1797 #### Hack 1798 1799 * Simplify unit tests with helpers 1800 * Improve docker.upstart event 1801 * Add coverage testing into docker-ci 1802 1803 ## 0.5.0 (2013-07-17) 1804 1805 #### Runtime 1806 1807 + List all processes running inside a container with 'docker top' 1808 + Host directories can be mounted as volumes with 'docker run -v' 1809 + Containers can expose public UDP ports (eg, '-p 123/udp') 1810 + Optionally specify an exact public port (eg. '-p 80:4500') 1811 * 'docker login' supports additional options 1812 - Dont save a container`s hostname when committing an image. 1813 1814 #### Registry 1815 1816 + New image naming scheme inspired by Go packaging convention allows arbitrary combinations of registries 1817 - Fix issues when uploading images to a private registry 1818 1819 #### Builder 1820 1821 + ENTRYPOINT instruction sets a default binary entry point to a container 1822 + VOLUME instruction marks a part of the container as persistent data 1823 * 'docker build' displays the full output of a build by default 1824 1825 ## 0.4.8 (2013-07-01) 1826 1827 + Builder: New build operation ENTRYPOINT adds an executable entry point to the container. - Runtime: Fix a bug which caused 'docker run -d' to no longer print the container ID. 1828 - Tests: Fix issues in the test suite 1829 1830 ## 0.4.7 (2013-06-28) 1831 1832 #### Remote API 1833 1834 * The progress bar updates faster when downloading and uploading large files 1835 - Fix a bug in the optional unix socket transport 1836 1837 #### Runtime 1838 1839 * Improve detection of kernel version 1840 + Host directories can be mounted as volumes with 'docker run -b' 1841 - fix an issue when only attaching to stdin 1842 * Use 'tar --numeric-owner' to avoid uid mismatch across multiple hosts 1843 1844 #### Hack 1845 1846 * Improve test suite and dev environment 1847 * Remove dependency on unit tests on 'os/user' 1848 1849 #### Other 1850 1851 * Registry: easier push/pull to a custom registry 1852 + Documentation: add terminology section 1853 1854 ## 0.4.6 (2013-06-22) 1855 1856 - Runtime: fix a bug which caused creation of empty images (and volumes) to crash. 1857 1858 ## 0.4.5 (2013-06-21) 1859 1860 + Builder: 'docker build git://URL' fetches and builds a remote git repository 1861 * Runtime: 'docker ps -s' optionally prints container size 1862 * Tests: improved and simplified 1863 - Runtime: fix a regression introduced in 0.4.3 which caused the logs command to fail. 1864 - Builder: fix a regression when using ADD with single regular file. 1865 1866 ## 0.4.4 (2013-06-19) 1867 1868 - Builder: fix a regression introduced in 0.4.3 which caused builds to fail on new clients. 1869 1870 ## 0.4.3 (2013-06-19) 1871 1872 #### Builder 1873 1874 + ADD of a local file will detect tar archives and unpack them 1875 * ADD improvements: use tar for copy + automatically unpack local archives 1876 * ADD uses tar/untar for copies instead of calling 'cp -ar' 1877 * Fix the behavior of ADD to be (mostly) reverse-compatible, predictable and well-documented. 1878 - Fix a bug which caused builds to fail if ADD was the first command 1879 * Nicer output for 'docker build' 1880 1881 #### Runtime 1882 1883 * Remove bsdtar dependency 1884 * Add unix socket and multiple -H support 1885 * Prevent rm of running containers 1886 * Use go1.1 cookiejar 1887 - Fix issue detaching from running TTY container 1888 - Forbid parallel push/pull for a single image/repo. Fixes #311 1889 - Fix race condition within Run command when attaching. 1890 1891 #### Client 1892 1893 * HumanReadable ProgressBar sizes in pull 1894 * Fix docker version`s git commit output 1895 1896 #### API 1897 1898 * Send all tags on History API call 1899 * Add tag lookup to history command. Fixes #882 1900 1901 #### Documentation 1902 1903 - Fix missing command in irc bouncer example 1904 1905 ## 0.4.2 (2013-06-17) 1906 1907 - Packaging: Bumped version to work around an Ubuntu bug 1908 1909 ## 0.4.1 (2013-06-17) 1910 1911 #### Remote Api 1912 1913 + Add flag to enable cross domain requests 1914 + Add images and containers sizes in docker ps and docker images 1915 1916 #### Runtime 1917 1918 + Configure dns configuration host-wide with 'docker -d -dns' 1919 + Detect faulty DNS configuration and replace it with a public default 1920 + Allow docker run <name>:<id> 1921 + You can now specify public port (ex: -p 80:4500) 1922 * Improve image removal to garbage-collect unreferenced parents 1923 1924 #### Client 1925 1926 * Allow multiple params in inspect 1927 * Print the container id before the hijack in `docker run` 1928 1929 #### Registry 1930 1931 * Add regexp check on repo`s name 1932 * Move auth to the client 1933 - Remove login check on pull 1934 1935 #### Other 1936 1937 * Vagrantfile: Add the rest api port to vagrantfile`s port_forward 1938 * Upgrade to Go 1.1 1939 - Builder: don`t ignore last line in Dockerfile when it doesn`t end with \n 1940 1941 ## 0.4.0 (2013-06-03) 1942 1943 #### Builder 1944 1945 + Introducing Builder 1946 + 'docker build' builds a container, layer by layer, from a source repository containing a Dockerfile 1947 1948 #### Remote API 1949 1950 + Introducing Remote API 1951 + control Docker programmatically using a simple HTTP/json API 1952 1953 #### Runtime 1954 1955 * Various reliability and usability improvements 1956 1957 ## 0.3.4 (2013-05-30) 1958 1959 #### Builder 1960 1961 + 'docker build' builds a container, layer by layer, from a source repository containing a Dockerfile 1962 + 'docker build -t FOO' applies the tag FOO to the newly built container. 1963 1964 #### Runtime 1965 1966 + Interactive TTYs correctly handle window resize 1967 * Fix how configuration is merged between layers 1968 1969 #### Remote API 1970 1971 + Split stdout and stderr on 'docker run' 1972 + Optionally listen on a different IP and port (use at your own risk) 1973 1974 #### Documentation 1975 1976 * Improve install instructions. 1977 1978 ## 0.3.3 (2013-05-23) 1979 1980 - Registry: Fix push regression 1981 - Various bugfixes 1982 1983 ## 0.3.2 (2013-05-09) 1984 1985 #### Registry 1986 1987 * Improve the checksum process 1988 * Use the size to have a good progress bar while pushing 1989 * Use the actual archive if it exists in order to speed up the push 1990 - Fix error 400 on push 1991 1992 #### Runtime 1993 1994 * Store the actual archive on commit 1995 1996 ## 0.3.1 (2013-05-08) 1997 1998 #### Builder 1999 2000 + Implement the autorun capability within docker builder 2001 + Add caching to docker builder 2002 + Add support for docker builder with native API as top level command 2003 + Implement ENV within docker builder 2004 - Check the command existence prior create and add Unit tests for the case 2005 * use any whitespaces instead of tabs 2006 2007 #### Runtime 2008 2009 + Add go version to debug infos 2010 * Kernel version - don`t show the dash if flavor is empty 2011 2012 #### Registry 2013 2014 + Add docker search top level command in order to search a repository 2015 - Fix pull for official images with specific tag 2016 - Fix issue when login in with a different user and trying to push 2017 * Improve checksum - async calculation 2018 2019 #### Images 2020 2021 + Output graph of images to dot (graphviz) 2022 - Fix ByParent function 2023 2024 #### Documentation 2025 2026 + New introduction and high-level overview 2027 + Add the documentation for docker builder 2028 - CSS fix for docker documentation to make REST API docs look better. 2029 - Fix CouchDB example page header mistake 2030 - Fix README formatting 2031 * Update www.docker.io website. 2032 2033 #### Other 2034 2035 + Website: new high-level overview 2036 - Makefile: Swap "go get" for "go get -d", especially to compile on go1.1rc 2037 * Packaging: packaging ubuntu; issue #510: Use goland-stable PPA package to build docker 2038 2039 ## 0.3.0 (2013-05-06) 2040 2041 #### Runtime 2042 2043 - Fix the command existence check 2044 - strings.Split may return an empty string on no match 2045 - Fix an index out of range crash if cgroup memory is not 2046 2047 #### Documentation 2048 2049 * Various improvements 2050 + New example: sharing data between 2 couchdb databases 2051 2052 #### Other 2053 2054 * Vagrant: Use only one deb line in /etc/apt 2055 + Registry: Implement the new registry 2056 2057 ## 0.2.2 (2013-05-03) 2058 2059 + Support for data volumes ('docker run -v=PATH') 2060 + Share data volumes between containers ('docker run -volumes-from') 2061 + Improve documentation 2062 * Upgrade to Go 1.0.3 2063 * Various upgrades to the dev environment for contributors 2064 2065 ## 0.2.1 (2013-05-01) 2066 2067 + 'docker commit -run' bundles a layer with default runtime options: command, ports etc. 2068 * Improve install process on Vagrant 2069 + New Dockerfile operation: "maintainer" 2070 + New Dockerfile operation: "expose" 2071 + New Dockerfile operation: "cmd" 2072 + Contrib script to build a Debian base layer 2073 + 'docker -d -r': restart crashed containers at daemon startup 2074 * Runtime: improve test coverage 2075 2076 ## 0.2.0 (2013-04-23) 2077 2078 - Runtime: ghost containers can be killed and waited for 2079 * Documentation: update install instructions 2080 - Packaging: fix Vagrantfile 2081 - Development: automate releasing binaries and ubuntu packages 2082 + Add a changelog 2083 - Various bugfixes 2084 2085 ## 0.1.8 (2013-04-22) 2086 2087 - Dynamically detect cgroup capabilities 2088 - Issue stability warning on kernels <3.8 2089 - 'docker push' buffers on disk instead of memory 2090 - Fix 'docker diff' for removed files 2091 - Fix 'docker stop' for ghost containers 2092 - Fix handling of pidfile 2093 - Various bugfixes and stability improvements 2094 2095 ## 0.1.7 (2013-04-18) 2096 2097 - Container ports are available on localhost 2098 - 'docker ps' shows allocated TCP ports 2099 - Contributors can run 'make hack' to start a continuous integration VM 2100 - Streamline ubuntu packaging & uploading 2101 - Various bugfixes and stability improvements 2102 2103 ## 0.1.6 (2013-04-17) 2104 2105 - Record the author an image with 'docker commit -author' 2106 2107 ## 0.1.5 (2013-04-17) 2108 2109 - Disable standalone mode 2110 - Use a custom DNS resolver with 'docker -d -dns' 2111 - Detect ghost containers 2112 - Improve diagnosis of missing system capabilities 2113 - Allow disabling memory limits at compile time 2114 - Add debian packaging 2115 - Documentation: installing on Arch Linux 2116 - Documentation: running Redis on docker 2117 - Fix lxc 0.9 compatibility 2118 - Automatically load aufs module 2119 - Various bugfixes and stability improvements 2120 2121 ## 0.1.4 (2013-04-09) 2122 2123 - Full support for TTY emulation 2124 - Detach from a TTY session with the escape sequence `C-p C-q` 2125 - Various bugfixes and stability improvements 2126 - Minor UI improvements 2127 - Automatically create our own bridge interface 'docker0' 2128 2129 ## 0.1.3 (2013-04-04) 2130 2131 - Choose TCP frontend port with '-p :PORT' 2132 - Layer format is versioned 2133 - Major reliability improvements to the process manager 2134 - Various bugfixes and stability improvements 2135 2136 ## 0.1.2 (2013-04-03) 2137 2138 - Set container hostname with 'docker run -h' 2139 - Selective attach at run with 'docker run -a [stdin[,stdout[,stderr]]]' 2140 - Various bugfixes and stability improvements 2141 - UI polish 2142 - Progress bar on push/pull 2143 - Use XZ compression by default 2144 - Make IP allocator lazy 2145 2146 ## 0.1.1 (2013-03-31) 2147 2148 - Display shorthand IDs for convenience 2149 - Stabilize process management 2150 - Layers can include a commit message 2151 - Simplified 'docker attach' 2152 - Fix support for re-attaching 2153 - Various bugfixes and stability improvements 2154 - Auto-download at run 2155 - Auto-login on push 2156 - Beefed up documentation 2157 2158 ## 0.1.0 (2013-03-23) 2159 2160 Initial public release 2161 2162 - Implement registry in order to push/pull images 2163 - TCP port allocation 2164 - Fix termcaps on Linux 2165 - Add documentation 2166 - Add Vagrant support with Vagrantfile 2167 - Add unit tests 2168 - Add repository/tags to ease image management 2169 - Improve the layer implementation