Changes
- Podman now recognizes
traceas a valid argument to the--log-levelcommand. Trace logging is now the most verbose level of logging available. - The
:zand:Zoptions for volume mounts are now ignored when the container is privileged or is run with SELinux isolation disabled (--security-opt label=disable). This matches better matches Docker's behavior in this case.
Bugfixes
- Fixed a bug where pruning images with the
podman image pruneorpodman system prunecommands could cause Podman to panic. - Fixed a bug where the
podman savecommand did not properly error when the--compressflag was used with incompatible format types. - Fixed a bug where the
--security-optand--ulimitoptions to the remote Podman client'spodman buildcommand were nonfunctional. - Fixed a bug where the
--log-rusageoption to the remote Podman client'spodman buildcommand was nonfunctional (#9489). - Fixed a bug where the
podman buildcommand could, in some circumstances, use the wrong OCI runtime (#9459). - Fixed a bug where the remote Podman client's
podman buildcommand could return 0 despite failing (#10029). - Fixed a bug where the
podman container runlabelcommand did not properly expand theIMAGEandNAMEvariables in the label (#9405). - Fixed a bug where poststop OCI hooks would be executed twice on containers started with the
--rmargument (#9983). - Fixed a bug where rootless Podman could fail to launch containers on cgroups v2 systems when the
cgroupfscgroup manager was in use. - Fixed a bug where the
podman statscommand could error when statistics tracked exceeded the maximum size of a 32-bit signed integer (#9979). - Fixed a bug where rootless Podman containers run with
--userns=keepid(without a--userflag in addition) would grant exec sessions run in them too many capabilities (#9919). - Fixed a bug where the
--authfileoption topodman builddid not validate that the path given existed (#9572). - Fixed a bug where the
--storage-optoption to Podman was appending to, instead of overriding (as is documented), the default storage options. - Fixed a bug where the
podman system serviceconnection did not function properly when run in a socket-activated systemd unit file as a non-root user. - Fixed a bug where the
--networkoption to thepodman play kubecommand of the remote Podman client was being ignored (#9698). - Fixed a bug where the
--log-driveroption to thepodman play kubecommand was nonfunctional (#10015).
API
- Fixed a bug where the Libpod Create endpoint for Manifests did not properly validate the image the manifest was being created with.
- Fixed a bug where the Libpod DF endpoint could, in error cases, append an extra null to the JSON response, causing decode errors.
- Fixed a bug where the Libpod and Compat Top endpoint for Containers would return process names that included extra whitespace.
- Fixed a bug where the Compat Prune endpoint for Containers accepted too many types of filter.
Misc
- Updated Buildah to v1.20.1
- Updated the containers/storage library to v1.29.0
- Updated the containers/image library to v5.11.0
- Updated the containers/common library to v0.36.0