chore(deps): bump github.com/containerd/containerd/v2 from 2.0.5 to 2.1.0 in the containerd group

[dependabot]

Bumps the containerd group with 1 update: github.com/containerd/containerd/v2.

Updates github.com/containerd/containerd/v2 from 2.0.5 to 2.1.0

Release notes

Sourced from github.com/containerd/containerd/v2's releases.

containerd 2.1.0

Welcome to the v2.1.0 release of containerd!

The first minor release of containerd 2.x focuses on continued stability alongside new features and improvements. This is the first time-based released for containerd. Most the feature set and core functionality has long been stable and harderened in production environments, so now we transition to a balance of timely delivery of new functionality with the same high confidence in stability and performance.

Highlights

• Add no_sync option to boost boltDB performance on ephemeral environments (#10745)
• Add content create event (#11006)
• Erofs snapshotter and differ (#10705)

Container Runtime Interface (CRI)

• Update CRI to use transfer service for image pull by default (#8515)
• Support multiple cni plugin bin dirs (#11311)
• Support container restore through CRI/Kubernetes (#10365)
• Add OCI/Image Volume Source support (#10579)
• Enable Writable cgroups for unprivileged containers (#11131)
• Fix recursive RLock() mutex acquisition (containerd/go-cni#126)
• Support CNI STATUS Verb (containerd/go-cni#123)

Image Distribution

• Retry last registry host on 50x responses (#11484)
• Multipart layer fetch (#10177)
• Enable HTTP debug and trace for transfer based puller (#10762)
• Add support for unpacking custom media types (#11744)
• Add dial timeout field to hosts toml configuration (#11106)

Node Resource Interface (NRI)

• Expose Pod assigned IPs to NRI plugins (#10921)

Runtime

• Support multiple uid/gid mappings (#10722)
• Fix race between serve and immediate shutdown on the server (containerd/ttrpc#175)

Breaking

• Update FreeBSD defaults and re-organize platform defaults (#11017)

Deprecations

• Postpone cri config deprecations to v2.2 (#11684)
• Remove deprecated dynamic library plugins (#11683)

... (truncated)

Changelog

Sourced from github.com/containerd/containerd/v2's changelog.

Versioning and Release

This document details the versioning and release plan for containerd. Stability is a top goal for this project, and we hope that this document and the processes it entails will help to achieve that. It covers the release process, versioning numbering, backporting, API stability and support horizons.

If you rely on containerd, it would be good to spend time understanding the areas of the API that are and are not supported and how they impact your project in the future.

This document will be considered a living document. Supported timelines, backport targets and API stability guarantees will be updated here as they change.

If there is something that you require or this document leaves out, please reach out by filing an issue.

Releases

Releases of containerd will be versioned using dotted triples, similar to Semantic Version. For the purposes of this document, we will refer to the respective components of this triple as <major>.<minor>.<patch>. The version number may have additional information, such as alpha, beta and release candidate qualifications. Such releases will be considered "pre-releases".

Major and Minor Releases

Major and minor releases of containerd will be made from main. Releases of containerd will be marked with GPG signed tags and announced at https://github.com/containerd/containerd/releases. The tag will be of the format v<major>.<minor>.<patch> and should be made with the command git tag -s v<major>.<minor>.<patch>.

After a minor release, a branch will be created, with the format release/<major>.<minor> from the minor tag. All further patch releases will be done from that branch. For example, once we release v1.0.0, a branch release/1.0 will be created from that tag. All future patch releases will be done against that branch.

Release Cadence

Minor releases are provided on a time basis with an initial cadence of 6 months. The next two containerd releases should have a target release date scheduled based on the current release cadence. Changes to the release cadence will not impact releases which are already scheduled.

The maintainers will maintain a roadmap and milestones for each release, however, features may be pushed to accommodate the release timeline. If your issue or feature

... (truncated)

Commits

• 061792f Merge pull request #11819 from dmcgowan/prepare-v2.1.0
• 897f65c Prepare release notes for v2.1.0
• ca36be2 Update api to v1.9.0
• e51f9c1 Update release for 2.1 release and next to releases
• a6db1c4 Update mailmap
• 9033738 Merge pull request #11812 from dmcgowan/prepare-api-v1.9.0
• 145175b Prepare release notes for api/v1.9.0
• 5a3bbca Merge pull request #11724 from swagatbora90/cri-image-transfer-doc-update
• 3a1c2db Merge pull request #11793 from fuweid/carry-on-11761
• a806c0a Merge pull request #11796 from containerd/dependabot/go_modules/golang-x-c9f3...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dtrudg]

Needs a moby/buildkit update to apply.