Weekly Update Templates960×540 53.6 KB

Introduction

This past week some of the LXD team were at Linux Plumbers in Dublin.
The most prominent change was in LXD where the MinIO processes providing local object storage via an S3 API are now run as an unprivileged user rather than root for enhanced security.

Additionally @stgraber has created a new video, this time covering the LXD instance facing API:
https://www.youtube.com/watch?v=xZSnqqWykmo

LXD

Improvements:

• Added new validators.
• Changed local storage bucket MinIO processes to run as unprivileged user rather than as root user.

Bug fixes:

• Fixed handling of 32bit ARM handling.
• Fixed project name in device logger.

LXC

Bug fixes:

• Allow cross-device symlinks.

Dqlite (database)

Bug fixes:

• Avoids memory corruption in SQLITE_FCNTL_PRAGMA.

YouTube videos

The LXD team is running a YouTube channel with live streams covering LXD releases and weekly videos on different aspects of LXD. You may want to give it a watch and/or subscribe for more content in the coming weeks.

https://www.youtube.com/lxd-videos

Contribute to LXD

Ever wanted to contribute to LXD but not sure where to start?
We’ve recently gone through some effort to properly tag issues suitable for new contributors on Github: Easy issues for new contributors

Upcoming events

• Nothing planned currently.

Ongoing projects

The list below is feature or refactoring work which will span several weeks/months and can’t be tied directly to a single Github issue or pull request.

• Stable release work for LXC, LXCFS and LXD
• [LXD] ACME support for server certificate
• [LXD] Stream lifecycle and log events to Loki
• Infiniband support for VMs
• Dqlite disk-only operation mode

Upstream changes

The items listed below are highlights of the work which happened upstream over the past week and which will be included in the next release.

LXD

• build(deps): bump actions/checkout from 2 to 3
• build(deps): bump actions/setup-go from 2 to 3
• Add new validators
• shared/osarch: Improve 32bit arm handling
• Remove -List validators
• Network: Fix ipv4.routes validation in physical network driver
• Storage: Run local bucket minio process as LXD’s unprivileged user
• doc: update footer to display correctly
• test: Adds LXD_REQUIRED_TESTS support
• Device: Fix project name in device logger

LXC

• build(deps): bump actions/checkout from 2 to 3
• conf: allow cross-device links

LXCFS

• Nothing to report this week

Distrobuilder

• Nothing to report this week

Dqlite (RAFT library)

• heap: Add raft_heap_get

Dqlite (database)

• utils: Define DBG macro
• vfs fnctl fix

Dqlite (Go bindings)

• Nothing to report this week

LXD Charm

• Nothing to report this week

Distribution work

This section is used to track the work done in downstream Linux distributions to ship the latest LXC, LXD and LXCFS as well as work to get various software to work properly inside containers.

Ubuntu

• Nothing to report this week

Snap

• Nothing to report this week