v2.0 planning

[AkihiroSuda]

Planning to release v2.0 or v1.8 after merging:

• [Carry 2535] rootless: support detach-netns mode #2723

I'm leaning toward to bump up the major version (ahead of containerd v2), as this PR significantly changes the design of the rootless mode

Note

Rootless containerd recognizes the following environment variables to configure the behavior of RootlessKit:

• ...
• CONTAINERD_ROOTLESS_ROOTLESSKIT_DETACH_NETNS=(auto|true|false): whether to launch rootlesskit with the "detach-netns" mode.
  Defaults to "auto", which is resolved to "true" if RootlessKit >= 2.0 is installed.
  The "detached-netns" mode accelerates nerdctl (pull|push|build) and enables nerdctl run --net=host,
  however, there is a relatively minor drawback with the current version of BuildKit:
  the host loopback IP address (127.0.0.1) is exposed to Dockerfile's "RUN" instructions during nerdctl build (not nerdctl run).
  If you want to hide 127.0.0.1 from "RUN" instructions, you should set CONTAINERD_ROOTLESS_ROOTLESSKIT_DETACH_NETNS to "false".

To set these variables, create ~/.config/systemd/user/containerd.service.d/override.conf as follows:

[Service]
Environment=CONTAINERD_ROOTLESS_ROOTLESSKIT_DETACH_NETNS="false"

And then run the following commands:

systemctl --user daemon-reload
systemctl --user restart containerd

cc @containerd/nerdctl-maintainers

[AkihiroSuda]

Released beta.0 yesterday
https://github.com/containerd/nerdctl/releases/tag/v2.0.0-beta.0

[apostasie]

List of needed PR on dependencies to use go mod containerd v2

• zdfs:
  • PR: Update dependencies (containerd v2) data-accelerator/zdfs#3
    • fork: https://github.com/apostasie/zdfs
• stargz-snapshotter:
  • PR: Containerd v2.0.0-rc.3 stargz-snapshotter#1722
    • previous, stale PR: build(deps): bump docker/build-push-action from 6.2.0 to 6.4.1 stargz-snapshotter#1745
    • fork: https://github.com/apostasie/stargz-snapshotter/tree/containerd-v2
• accelerated-container-image (pending merge):
  • PR: Update dependencies (containerd v2) accelerated-container-image#290
    • fork: https://github.com/apostasie/accelerated-container-image/tree/containerd-v2
• hcsshim (discussion ongoing on stale PR):
  • stale? PR: Vendor containerd 2.0 microsoft/hcsshim#1958
    • fork with working PR: https://github.com/apostasie/hcsshim
• soci (conditionally approved - merge to happen when ctdv2 is out):
  • PR: Update to containerd v2 awslabs/soci-snapshotter#1305
    • fork: https://github.com/apostasie/soci-snapshotter
• nydus:
  • PR: to be done
    • fork https://github.com/apostasie/nydus-snapshotter

Nerdctl PRs:

• Akihiro work in progress: [WIP] go.mod: github.com/containerd/containerd/v2 v2.0.0-rc.0 #2902
• PR using forks from above: go.mod update to containerd v2 #3173

[AkihiroSuda]

Released v2.0.0-rc.0: https://github.com/containerd/nerdctl/releases/tag/v2.0.0-rc.0
Thanks to more than 25 contributors !

[apostasie]

Update:

• soci team gave positive feedback on the PR (Update to containerd v2 awslabs/soci-snapshotter#1305), although they want to wait for containerd v2 to be officially out
• stargz PR got merged
• zdfs PR got merged

[AkihiroSuda]

Released v2.0.0-rc.1 https://github.com/containerd/nerdctl/releases/tag/v2.0.0-rc.1

• go.mod update to containerd v2 #3173
• fix: relax identifier limits #3279

And more, thanks to all the contributors
v2.0.0-rc.0...v2.0.0-rc.1

[AkihiroSuda]

Released https://github.com/containerd/nerdctl/releases/tag/v2.0.0-rc.2 .

Thanks to all the contributors, especially to @apostasie for the huge refactoring and stability improvements
v2.0.0-rc.1...v2.0.0-rc.2

[AkihiroSuda]

RC.3: https://github.com/containerd/nerdctl/releases/tag/v2.0.0-rc.3
v2.0.0-rc.2...v2.0.0-rc.3

This is likely to be the last RC.

[AkihiroSuda]

https://github.com/containerd/nerdctl/releases/tag/v2.0.0
🎉