Bumping umoci to version v0.6.0-3-gd631328, which comprises the following commits:
d631328 deps: update github.com/AdaLogics/go-fuzz-headers to latest
35992ba VERSION: back to development
1c44d6f VERSION: release v0.6.0
7fb9b5a man: umoci-stat: update output examples
0242283 umoci new: include host ARM variant by default
74874af config: add support for platform variants
2ac8e55 oci: config: fix annotation precedence
a8b1c9a test: config: add umoci-stat verification checks
737f534 test: config: add tests for config.json annotation conversions
4a95896 test: check annotations for config --{os,architecture}
61f658e config: add "platform" prefix to "os" and "architecture" setting names
21806cb deps: update to runtime-spec v1.2.1
f7fb0ec test: disable oci-runtime-tool validation
8873e3a build(deps): bump golang.org/x/sys from 0.36.0 to 0.37.0
b3e5a6a build(deps): bump github/codeql-action from 3 to 4
bce0b02 mutate: only embed <=10kB blobs in embedded descriptor test
a058839 gha: reduce ClusterFuzzLite time limit
b7bb5d2 gha: use mode=min caching
94a7c04 gha: run rootless and rootful integration in parallel
b3f2eda gha: add 'complete' job
9726fba CHANGELOG: add image-spec v1.1.1 reference
fe8c448 stat: do not error out for "invalid" config blobs
3668aa9 casext: add handling for empty JSON media-type
b668139 casext: add basic support for embedded descriptor data
a41097f cas: dir: use image-spec-defined constants
cb23ce1 stat: pretty-print image-spec v1.1 fields
eb9098b deps: bump to image-spec v1.1.1
157f759 mutate: handle DescriptorPath rewriting more delicately
5aaf54e pprint: add tests for manifest and config pprint
de8512a casext: improve Blob.RawData sanity check
210b31f assert: move most panics to be in an assertion form
4d6497e build(deps): bump google.golang.org/protobuf from 1.36.9 to 1.36.10
f294007 oci: config: use generics more effectively
8b8f449 cmd: add more info to --version
bf94833 CHANGELOG: mention --created and SOURCE_DATE_EPOCH
5be7a47 pprint: add tests for struct pprint
38b2ebe pprint: quote-wrap strings that contain spaces
f8a27d2 pprint: add (empty) suffix when printing collections
97e33f2 pprint: add unit tests
0b3bab0 pprint: quote map keys as well
3856c27 pprint: copy value slice before quoting
1a963c5 make: add empty TESTS variable declaration
72fe818 pathtrie: add benchmarks for PathTrie operations
01fc37c README: move repology to install section
e224b24 test: add 'umoci raw mtree-validate' tests
31e611a tests: use --strict mode for gomtree validation
560465e gomtree: switch to umoci branch
3b97fab test: use "umoci raw mtree-validate" in tests
d207716 umoci: add raw-mtree-validate helper to replace "gomtree --rootless"
0b657e2 oci: layer: truncate mtime when generating archives
b7c5f9f build(deps): bump github.com/cyphar/filepath-securejoin
a5ade2f *: use personal email
a821fb8 build(deps): bump golang from 1.24 to 1.25
b431280 gha: switch to buildx-friendly caching
41a35b9 Dockerfile: migrate to multi-stage builds
7f961b3 test: add SOURCE_DATE_EPOCH tests
ad66eeb oci: add SOURCE_DATE_EPOCH support for reproducible builds
f11b243 CHANGELOG: mention new umoci-stat features
65a984b test: add 'golden output' tests for umoci-stat
fa4d5be stat: include manifest information
4bf1adc umoci stat: include image config information
0fce71a umoci stat: improve quoting of control characters
60e4744 test: only check for history subset of umoci-stat
4a02437 casext: provide raw blob data when fetching parsable blobs
33be2bc dockerfile: build with go1.24
a96b1bb build(deps): bump github.com/vbatts/go-mtree from 0.5.4 to 0.6.0
f87f803 build(deps): bump golang.org/x/sys from 0.35.0 to 0.36.0
52d147a *: apply go fix
6bf0ba1 *: apply gopls modernize
e3d8f81 go: update to Go 1.24
37a7b99 build(deps): bump google.golang.org/protobuf from 1.36.8 to 1.36.9
911252e gha: use registry.opensuse.org for openSUSE image
2cbd4c4 dockerfile: update to Leap 16.0
44f6ab8 oci: config: gracefully fallback if /etc/resolv.conf doesn't exist
fb3f860 VERSION: back to development
4ff26a3 VERSION: release v0.5.1
df3a23e tests: fix failures on SELinux-enabled systems
c5ac633 oci: casext: properly return errors for GetVerifiedBlob
38fc012 pkg: hardening: disallow negative ExpectedSize
3037f87 oci: casext: explicitly disallow negative-size descriptors
5f31a52 oci: cas: use blob file size as ExpectedSize
8438892 pkg: hardening: improve trailing data test
848aba9 build(deps): bump actions/setup-go from 5 to 6
a90680d build(deps): bump google.golang.org/protobuf from 1.36.7 to 1.36.8
88b22f2 dockerfile: install 'file' explicitly
8eaf1be build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1
bb31198 build(deps): bump golang.org/x/sys from 0.34.0 to 0.35.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Bumping umoci to version v0.5.0-49-g645eba4, which comprises the following commits:
bb31198 build(deps): bump golang.org/x/sys from 0.34.0 to 0.35.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
This commit updates the container recipes to the OE core UNPACKDIR
changes.
- We drop references to WORKDIR
- We adjust destsuffix fetches to use BB_GIT_DEFAULT_DESTSUFFIX
instead of 'git'
- Update our GOPATH references to use UNPACKDIR
- Drop S = assignemnts where possible
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
With:
https://lists.openembedded.org/g/bitbake-devel/message/17508
there are many WARNINGs from this layer will cover src_uri.inc files
in next commit.
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Bumping umoci to version v0.4.7-260-g8f807a3, which comprises the following commits:
e9fff47 pkg: fmtcompat: remove now that there are no users
63bbda0 errors: drop remaining errors.Wrap-like fmtcompat.Errorf users
73fffb3 errors: drop fmtcompat.Errorf for complicated err != nil checks
00a632e errors: drop fmtcompat.Errorf for explicit err != nil checks
5339feb errors: drop fmtcompat.Errorf for non-%w errors
1c67765 *: migrate to Go stdlib error wrapping
cd18171 pkg: fmtcompat: add a compatibility shim for fmt.Errorf
aaa6de8 fmt: use %q for quoting
97cbde3 *: fix new golint warnings
094e766 gha: enable CodeQL scanning
e597e6a idtools: return errors for >u32 specification
71d012d oci: casext: mediatype: switch to generics for parser functions
0a5d0dc build(deps): bump github.com/klauspost/pgzip from 1.2.5 to 1.2.6
3405ba8 Fixed typo in rootless.md
3cf87e0 build(deps): bump codecov/codecov-action from 4 to 5
7bc95ad build(deps): bump golang.org/x/sys from 0.22.0 to 0.25.0
a357a4e build(deps): bump github.com/moby/sys/user from 0.1.0 to 0.3.0
7e48118 build(deps): bump opensuse/leap from 15.5 to 15.6
3e5ade3 build(deps): bump actions/cache from 3 to 4
a59f5ba build(deps): bump google.golang.org/protobuf from 1.34.1 to 1.34.2
3078d6b build(deps): bump github.com/vbatts/go-mtree from 0.5.3 to 0.5.4
ce130df build(deps): bump github.com/stretchr/testify from 1.8.4 to 1.9.0
6fd54fc build(deps): bump codecov/codecov-action from 3 to 4
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Bumping umoci to version v0.4.7-224-gff684ba, which comprises the following commits:
3078d6b build(deps): bump github.com/vbatts/go-mtree from 0.5.3 to 0.5.4
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Since the runtime dependency skopeo has been marked incompatible with
mips, mark for umoci accordingly.
buildah and podman-tui rdepends on podman which has been marked
incompatible with mips, so mark for them too.
Signed-off-by: Kai Kang <kai.kang@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Pass -trimpath to the build to fix the below build path issue:
WARNING: umoci-v0.4.7+git-r0 do_package_qa: QA Issue: File /usr/sbin/umoci in package umoci contains reference to TMPDIR [buildpaths]
Signed-off-by: Mingli Yu <mingli.yu@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
bitbake has been enhanced such that SRCPV is no longer needed in
PV to handle updating git hashes and task signatures.
We can simplify our PV by dropping SRCPV
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Bumping umoci to version v0.4.7-150-g33ec006, which comprises the following commits:
150b9e0 build(deps): bump github.com/stretchr/testify from 1.8.3 to 1.8.4
1c365a2 build(deps): bump github.com/stretchr/testify from 1.8.2 to 1.8.3
6e6027c build(deps): bump golang.org/x/sys from 0.7.0 to 0.8.0
b267d7b test: move 'go test' output to stderr for coverage binary
947f407 build(deps): bump github.com/opencontainers/runc from 1.1.6 to 1.1.7
e9394e8 CHANGELOG: update to include changes from v0.4.7
08672f5 vendor: bump several deps
b4f2258 go.mod: update Go version to go1.18
b285980 build(deps): bump github.com/vbatts/go-mtree from 0.5.2 to 0.5.3
61c566b build(deps): bump google.golang.org/protobuf from 1.28.1 to 1.30.0
a0bb45f build(deps): bump actions/setup-go from 3 to 4
bdfd50b build(deps): bump github.com/stretchr/testify from 1.8.1 to 1.8.2
37c828e gha: ci: make ci-image cache expire weekly
3e7ddbd dockerfile: update to leap 15.4
44a127b Makefile: pull image details from Dockerfile
c99bc38 dockerfile: fetch oci-*-tools with go install
701c194 test: update to gomtree 0.5.2
ac5e249 test: (raw-)config: only use export in sub-shell
c8183de oci: config: strip "-dev" from runtime-spec version
b1c2cdf oci: config: correctly handle runtime-spec versions
de9ad94 make: add -buildvcs=false to builds
6d52935 gha: bump Go version for validate to Go 1.20.x
3544ece build(deps): bump github.com/stretchr/testify from 1.8.0 to 1.8.1
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Bumping umoci to version v0.4.7-117-gfb2db51, which comprises the following commits:
3544ece build(deps): bump github.com/stretchr/testify from 1.8.0 to 1.8.1
5978bb9 build(deps): bump github.com/vbatts/go-mtree from 0.5.1 to 0.5.2
7c782c4 README: add dummy comment to start to make Hugo happy
777164a build(deps): bump github.com/opencontainers/runc from 1.1.2 to 1.1.4
1714399 build(deps): bump github.com/docker/go-units from 0.4.0 to 0.5.0
ed6b0f4 build(deps): bump google.golang.org/protobuf from 1.28.0 to 1.28.1
14756db build(deps): bump github.com/stretchr/testify from 1.7.1 to 1.8.0
2034a22 test: handle /etc/pki/ca-trust with Fedora images
2163223 *: improve io.Pipe CloseWithError usage
aab35e4 *: implement EINTR-retry logic for io.Copy users
We also switch BUILD_FLAGS to STATIC_BUILD_FLAGS, as the Makefile
variable has changed.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Bumping umoci to version v0.4.7-101-g4270d5b, which comprises the following commits:
d8f4f12 build(deps): bump github.com/opencontainers/runc from 1.1.1 to 1.1.2
2163223 *: improve io.Pipe CloseWithError usage
aab35e4 *: implement EINTR-retry logic for io.Copy users
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
The CGO_CFLAGS and CGO_LDFLAGS should use target flags instead
of the nativesdk ones.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Bumping umoci to version v0.4.7-98-gdb97609, which comprises the following commits:
d8f4f12 build(deps): bump github.com/opencontainers/runc from 1.1.1 to 1.1.2
9db1db9 dependabot: ignore github.com/klauspost/compress for now
c20d1ba build(deps): bump github.com/vbatts/go-mtree from 0.5.0 to 0.5.1
defa147 build(deps): bump actions/setup-go from 2 to 3
d7c6b89 build(deps): bump actions/cache from 2 to 3.0.1
e76ee78 build(deps): bump actions/checkout from 2 to 3
852bb73 build(deps): bump actions/download-artifact from 2 to 3
83706fc build(deps): bump actions/upload-artifact from 2 to 3
b93cb2a build(deps): bump codecov/codecov-action from 2 to 3
671fa10 build(deps): bump github.com/opencontainers/runc from 1.1.0 to 1.1.1
abd9d71 build(deps): bump google.golang.org/protobuf from 1.27.1 to 1.28.0
597a50e build(deps): bump github.com/stretchr/testify from 1.7.0 to 1.7.1
87f2e17 mutator: allow setting annotation data when generating a layer
e14c6d5 README: s/anuvu/project-stacker
c67586e build(deps): bump github.com/opencontainers/runc from 1.0.3 to 1.1.0
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Bumping umoci to version v0.4.7-70-gfa8e9f8, which comprises the following commits:
c67586e build(deps): bump github.com/opencontainers/runc from 1.0.3 to 1.1.0
88aaeca fuzz: always use golang:latest
37b9db4 build(deps): bump golang from 1.17.4 to 1.17.5
09ff9d5 build(deps): bump github.com/opencontainers/runc from 1.0.2 to 1.0.3
86eb281 build(deps): bump golang from 1.17.3 to 1.17.4
610dabf oci: protect against mediatype confusion attacks (CVE-2021-41190)
9b17e05 oci: gc: fix tests to correctly use the right media-types
38c20f1 ci: fix fresh builds
220b0c0 build(deps): bump github.com/opencontainers/image-spec
732d36d build(deps): bump golang from 1.17.2 to 1.17.3
58f3a37 mutator: .Config() should return ispec.Image vs. ImageConfig
001bbd4 ci: update main branch name
7bebba6 ci: osx: only try to unlink parallel if installed
a0d54ce build(deps): bump golang from 1.17.1 to 1.17.2
72ec924 *: use new protobuf package
09d1d79 build(deps): bump github.com/golang/protobuf from 1.5.0 to 1.5.2
88243cd build(deps): bump github.com/rootless-containers/proto
12270d3 build(deps): bump github.com/opencontainers/runc
056236a *: make codecov slightly less annoying
18fdf79 build(deps): bump github.com/stretchr/testify from 1.6.1 to 1.7.0
6f84bbb build(deps): bump github.com/cyphar/filepath-securejoin
0b4d52f build(deps): bump github.com/apex/log from 1.4.0 to 1.9.0
ac6ba6c build(deps): bump github.com/klauspost/pgzip from 1.2.4 to 1.2.5
9cd570d build(deps): bump golang from 1.14 to 1.17.1
26e57a2 gha: enable dependabot
65932cd ci: hardcode Go version used for linting
17111a6 *: use go1.17-friendly go:build tags
f6c2e79 codecov: drop explicit env.CODECOV_TOKEN
f80d8e2 ci: use codecov-action
785ed73 fix(Makefile): avoid usage of which
97099f1 mutate: implement an AddExisting() API
5adbd99 oci: casext: walk: do not attempt to recurse into un-parseable blobs
aad89ed oci: cas: add StatBlob to CAS interface
7091cd1 ci: switch to GitHub Actions
3ceb144 Add 2 fuzzers
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
github is removing git:// access, and fetches will start experiencing
interruptions in service, and eventually will fail completely.
bitbake will also begin to warn on github src_uri's that don't use
https. So we convert the meta-virt instances to use protocol=https
(done using the oe-core contrib conversion script)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Like many other projects, umoci has switch to main instead of master.
(and then deleted master)
We change our branch specification to main, so the fetcher can once
again find our desired SRCREV.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
OEcore/bitbake are moving to use the clearer ":" as an overrides
separator.
This is pass one of updating the meta-virt recipes to use that
syntax.
This has only been minimally build/runtime tested, more changes
will be required for missed overrides, or incorrect conversions
Note: A recent bitbake is required:
commit 75fad23fc06c008a03414a1fc288a8614c6af9ca
Author: Richard Purdie <richard.purdie@linuxfoundation.org>
Date: Sun Jul 18 12:59:15 2021 +0100
bitbake: data_smart/parse: Allow ':' characters in variable/function names
It is becomming increasingly clear we need to find a way to show what
is/is not an override in our syntax. We need to do this in a way which
is clear to users, readable and in a way we can transition to.
The most effective way I've found to this is to use the ":" charater
to directly replace "_" where an override is being specified. This
includes "append", "prepend" and "remove" which are effectively special
override directives.
This patch simply adds the character to the parser so bitbake accepts
the value but maps it back to "_" internally so there is no behaviour
change.
This change is simple enough it could potentially be backported to older
version of bitbake meaning layers using the new syntax/markup could
work with older releases. Even if other no other changes are accepted
at this time and we don't backport, it does set us on a path where at
some point in future we could
require a more explict syntax.
I've tested this patch by converting oe-core/meta-yocto to the new
syntax for overrides (9000+ changes) and then seeing that builds
continue to work with this patch.
(Bitbake rev: 0dbbb4547cb2570d2ce607e9a53459df3c0ac284)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
We need to use different build architecture and flags for the
native variant, so add a specific do_compile for it. The settings
are taken from the kubernetes recipes native go build.
We also switch to the umoci.static for -native, since patchelf is
breaking our executable if we leave it dynamic.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
In preparation for using umoci along side of sloci as to
construct multi later oci images, we need a -native variant.
For now, we don't need skopeo on the host side, so we clear
it from the class-native RDEPENDS. Skopeo has significant
dependencies, so we'd rather avoid ever needing it as a
-native tool.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Updating to the latest 0.4.7 release and updating the build
and fetch directories to the opencontainers github.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
