registry 2.8.0-beta.1 Welcome to the v2.8.0-beta.1 release of registry! The 2.8.0 registry release has been a long time overdue. This is the first step towards the last 2.x release. No further active development will continue on 2.x branch. Security vulnerability patches to 2.x might be considered, but all active development will be focussed on v3 release due in 2022. This beta release includes a security vulnerability fix along with a few minor bug fixes and improvemnts in documentation and CI. See changelog below for full list of changes. ### Bugfixes * Close the io.ReadCloser from storage driver [#3370](https://github.com/distribution/distribution/pull/3370) * Remove empty Content-Type header [#3297](https://github.com/distribution/distribution/pull/3297) * Make ipfilteredby not required in cloudfront storage middleware [#3088](https://github.com/distribution/distribution/pull/3088) ### Features * Add reference.ParseDockerRef utility function [#3002](https://github.com/distribution/distribution/pull/3002) ### CI build * First draft of actions based ci [#3347](https://github.com/distribution/distribution/pull/3347) * Fix vndr and check [#3001](https://github.com/distribution/distribution/pull/3001) * Improve code quality by adding linter checks [#3385](https://github.com/distribution/distribution/pull/3385) ### Documentation * Add redirect for old URL [#3197](https://github.com/distribution/distribution/pull/3197) * Fix broken table [#3073](https://github.com/distribution/distribution/pull/3073) * Adding deprecated schema v1 instructions [#2987](https://github.com/distribution/distribution/pull/2987) * Change should to must in v2 spec ([#3495](https://github.com/distribution/distribution/pull/3495)) ### Storage drivers * S3 Driver: add support for ceph radosgw [#3119](https://github.com/distribution/distribution/pull/3119) ### Security * Added flag for user configurable cipher suites [#3384](https://github.com/distribution/distribution/pull/3384) * Address [CVE-2020-26160](https://github.com/advisories/GHSA-w73w-5m7g-f7qc) by replacing vulnerable third-party depedency[#3466](https://github.com/distribution/distribution/pull/3466) * Replace math rand with crypto rand [#3531](https://github.com/distribution/distribution/pull/3531) * Address [CVE-2021-41190](https://github.com/advisories/GHSA-mc8v-mgrf-8f4m) by validating document type before unmarshal [GHSA-77vh-xpmg-72qh](https://github.com/distribution/distribution-ghsa-qq97-vm5h-rrhg/pull/2) ### Changes <details><summary>50 commits</summary> <p> * Prepare for v2.8.0 release ([#3552](https://github.com/distribution/distribution/pull/3552)) * [`d5d89a46`](https://github.com/distribution/distribution/commit/d5d89a46a388a1d35b3b9b9cd60515e45ac3a7d4) Make this releaes a beta release first. * [`1ddad0ba`](https://github.com/distribution/distribution/commit/1ddad0bad8c5e207904d9241ba2fb4557b27e1ed) Apply suggestions from code review * [`3960a560`](https://github.com/distribution/distribution/commit/3960a560bbb7a4e483da2d6f83158d18f9ab21f9) Prepare for v2.8.0 release * [2.8] Release artifacts ([#3568](https://github.com/distribution/distribution/pull/3568)) * [`6241e099`](https://github.com/distribution/distribution/commit/6241e099e14dff2dd85a3bcd31cfcf9942dadc49) [2.8] Release artifacts * [2.8] Release workflow ([#3565](https://github.com/distribution/distribution/pull/3565)) * [`65ca39e6`](https://github.com/distribution/distribution/commit/65ca39e60558bf526de2b1f00bf75b0fdd898071) release workflow * [`3b7b5345`](https://github.com/distribution/distribution/commit/3b7b534569220c840993aad03e3eafe54b923f4d) Merge pull request from GHSA-qq97-vm5h-rrhg * [`10ade61d`](https://github.com/distribution/distribution/commit/10ade61de947ac08c6d39d417c88bb5dd3cd2c89) manifest: validate document type before unmarshal * [release/2.7] github.com/golang-jwt/jwt v3.2.2 ([#3466](https://github.com/distribution/distribution/pull/3466)) * [`c5679da3`](https://github.com/distribution/distribution/commit/c5679da3a1ed17f43fa0462d7898a4f44f937b4e) [release/2.7] vendor: github.com/golang-jwt/jwt v3.2.1 * [release/2.7] vendor: github.com/opencontainers/image-spec v1.0.2 ([#3535](https://github.com/distribution/distribution/pull/3535)) * [`97f6dace`](https://github.com/distribution/distribution/commit/97f6daced47658ebd3428d41a40f202f3b97bce1) [release/2.7] vendor: github.com/opencontainers/image-spec v1.0.2 * [release/2.7]fix go check issues ([#3531](https://github.com/distribution/distribution/pull/3531)) * [`9a3ff113`](https://github.com/distribution/distribution/commit/9a3ff113300c1b324b750a5194a82e26ccf40a95) fix go check issues * [release/2.7 backport] Change should to must in v2 spec ([#3495](https://github.com/distribution/distribution/pull/3495)) * [`19b573a6`](https://github.com/distribution/distribution/commit/19b573a6f771ca074b6329ccc9ad323169af112e) Change should to must in v2 spec * [release/2.7] update to go1.16 ([#3472](https://github.com/distribution/distribution/pull/3472)) * [`d836b23f`](https://github.com/distribution/distribution/commit/d836b23fc2a4817e86546e33f74a8f4c882b6aa2) [release/2.7] update to go1.16 * [backport release/2.7]Added flag for user configurable cipher suites ([#3384](https://github.com/distribution/distribution/pull/3384)) * [`cc341b01`](https://github.com/distribution/distribution/commit/cc341b01108a81f7c92249456cae0b1c164fa8da) Added flag for user configurable cipher suites * enable ci for release/2.7 ([#3385](https://github.com/distribution/distribution/pull/3385)) * [`09109ab5`](https://github.com/distribution/distribution/commit/09109ab50a5269cdda37b32a36ae454a3d8c7296) Fix gosimple checks * [`89e6568e`](https://github.com/distribution/distribution/commit/89e6568e34ce56cd447558651e6d3e7fd96d0363) Remove err nil check * [`3c64ff10`](https://github.com/distribution/distribution/commit/3c64ff10bb01381e8cf6a9309d5b604e571106cf) Fix gometalint errors * [`f807afbf`](https://github.com/distribution/distribution/commit/f807afbf8559fe93875b19e9013ab7074f5dcb3b) Migrate to golangci-lint * [`9142de99`](https://github.com/distribution/distribution/commit/9142de99fa6df198303d2cb275d0db8f9b6398af) enable ci for release/2.7 * [cherry pick]close the io.ReadCloser from storage driver ([#3370](https://github.com/distribution/distribution/pull/3370)) * [`3fe1d67a`](https://github.com/distribution/distribution/commit/3fe1d67ace89292f7a8c4e3d8976dc48fb36b2e9) close the io.ReadCloser from storage driver * [backport release/2.7] First draft of actions based ci ([#3347](https://github.com/distribution/distribution/pull/3347)) * [`f1bd6551`](https://github.com/distribution/distribution/commit/f1bd6551199bf665e7d7085ec8b0a97041ac4ce0) First draft of actions based ci * [release/2.7 backport] Remove empty Content-Type header ([#3297](https://github.com/distribution/distribution/pull/3297)) * [`cf8615de`](https://github.com/distribution/distribution/commit/cf8615dedf37ca84cdbc1d71265bef3ff58a8013) Remove empty Content-Type header * [release/2.7 backport] docs: add redirect for old URL ([#3197](https://github.com/distribution/distribution/pull/3197)) * [`48eeac88`](https://github.com/distribution/distribution/commit/48eeac88e94655d0fe882ccf49cd4f74b9b03acc) docs: add redirect for old URL * [release/2.7] Fix s3 driver for supporting ceph radosgw ([#3119](https://github.com/distribution/distribution/pull/3119)) * [`e2f006ac`](https://github.com/distribution/distribution/commit/e2f006ac2b03d357d43053de5f9ed05b646482ac) S3 Driver: added comment for missing KeyCount workaround * [`0a1e4a57`](https://github.com/distribution/distribution/commit/0a1e4a57e241ac320b613a7d055ce166c9bb65f1) Fix s3 driver for supporting ceph radosgw * [release/2.7 backport] Bugfix: Make ipfilteredby not required ([#3088](https://github.com/distribution/distribution/pull/3088)) * [`afa91463`](https://github.com/distribution/distribution/commit/afa91463d668a0e1d110593a86df466b7425c82d) Bugfix: Make ipfilteredby not required * [release/2.7 backport] Add reference.ParseDockerRef utility function ([#3002](https://github.com/distribution/distribution/pull/3002)) * [`fad36ed1`](https://github.com/distribution/distribution/commit/fad36ed1a12fdaddba5aca34cc738d50d224e3fa) Add reference.ParseDockerRef utility function * [release/2.7 backport] fix markdown issues on configuration page ([#3073](https://github.com/distribution/distribution/pull/3073)) * [`f999f540`](https://github.com/distribution/distribution/commit/f999f540d32d55561ff3f5f88a991be15ece4bd3) Fixing broken table * [`c636ed78`](https://github.com/distribution/distribution/commit/c636ed788ae3d2cf2c355ba77bd5f7c18b3a70e7) Fix cloudfront documentation formatting * [release/2.7] Fix vndr and check ([#3001](https://github.com/distribution/distribution/pull/3001)) * [`5883e2d9`](https://github.com/distribution/distribution/commit/5883e2d9358b4761ab733e96915271397e8781f6) Fix vndr and check * [release/2.7] Adding deprecated schema v1 page ([#2987](https://github.com/distribution/distribution/pull/2987)) * [`a3c027e6`](https://github.com/distribution/distribution/commit/a3c027e626f4e4f4c76f06153a49dc2f1d5070cc) Adding deprecated schema instructions </p> </details> ### Dependency Changes * github.com/dgrijalva/jwt-go -> github.com/golang-jwt/jwt.git # v3.2.2 (a601269ab70c -> 4bbdd8ac624f) * github.com/opencontainers/image-spec -> github.com/opencontainers/image-spec # v1.0.2 (ab7389ef9f50 -> 67d2d5658fe0) Previous release can be found at [v2.7.1](https://github.com/distribution/distribution/releases/tag/v2.7.1)