MIRRORS/meta-virtualization
1
0
Fork 0
mirror of git://git.yoctoproject.org/meta-virtualization.git synced 2025-07-19 12:50:22 +02:00
Code Issues Actions Packages Projects Releases Wiki Activity
5216f0fc99
meta-virtualization/recipes-extended/rootlesskit/rootlesskit_git.bb
Bruce Ashfield 9f4d93e225 rootlesskit: update to v2.3.1 
Bumping rootlesskit to version v2.3.1-28-g0b4ed7b, which comprises the following commits:

    b4fe9a7 go fmt
    a1beb23 Build(deps): Bump golang.org/x/net from 0.28.0 to 0.33.0
    9546d0d Build(deps): Bump golang.org/x/sys from 0.28.0 to 0.29.0
    2363620 fix: allow to propagate the address specified in -p option
    a710d84 Build(deps): Bump golang.org/x/sys from 0.27.0 to 0.28.0
    7c52d16 Build(deps): Bump golang.org/x/sys from 0.25.0 to 0.27.0
    16c6608 Build(deps): Bump github.com/Masterminds/semver/v3 from 3.3.0 to 3.3.1
    19fab4c Build(deps): Bump github.com/urfave/cli/v2 from 2.27.4 to 2.27.5
    b26bc59 Build(deps): Bump golang.org/x/sys from 0.24.0 to 0.25.0
    f11b0e6 port/builtin: return proper error for sctp
    f98e27e Build(deps): Bump github.com/Masterminds/semver/v3 from 3.2.1 to 3.3.0
    3bb2efa docs/network: Mention that pasta won't work with some Ubuntu package versions
    baec6fd docs/network: Don't suggest removing AppArmor rules for pasta
    ae0c97d pasta: Update comment about issue with AppArmor and creation of user namespace
    3c35024 v2.3.1+dev
    fcc67fe v2.3.1
    56337e7 CI: attest-build-provenance: fix a subject-path issue (461)
    2c2a107 v2.3.0+dev
    5bf364f v2.3.0
    f3948fd Enable actions/attest-build-provenance
    e403655 CI: update Docker (27.1.2)
    169edeb CI: update pasta (2024_08_14.61c0b0d)
    d5a270f go.mod: golang.org/x/net v0.28.0
    5e81602 go.mod: github.com/insomniacslk/dhcp v0.0.0-20240812123929-b105c29bd1b5
    8751f26 Deprecate rootlesskit-docker-proxy (no longer needed since Docker v28)
    36ceb0e child, pasta: Allow drivers to configure their own interface, let pasta do that
    ade4c86 pasta: Let it run in background, and wait until it forks
    8cbb3ae CI: update Go to 1.23
    1139aed Build(deps): Bump github.com/urfave/cli/v2 from 2.27.3 to 2.27.4
    fba675b Build(deps): Bump golang.org/x/sys from 0.22.0 to 0.24.0
    926c6aa Build(deps): Bump github.com/urfave/cli/v2 from 2.27.2 to 2.27.3
    90ad956 Build(deps): Bump github.com/gofrs/flock from 0.12.0 to 0.12.1
    1899165 Build(deps): Bump github.com/moby/sys/mountinfo from 0.7.1 to 0.7.2
    c5a4fbf v2.2.0+dev
    17a2cd4 v2.2.0
    b8197ef go.mod: update
    d6a8962 CI: update dependencies
    a631a8c Build(deps): Bump github.com/gofrs/flock from 0.8.1 to 0.12.0
    ca26493 Add reexec branch for socket activation to correct LISTEN_PID
    c202896 Build(deps): Bump golang.org/x/sys from 0.21.0 to 0.22.0
    8ce63fd Build(deps): Bump github.com/containernetworking/plugins
    f68acb9 Build(deps): Bump golang.org/x/sys from 0.20.0 to 0.21.0
    c784875 Build(deps): Bump github.com/containernetworking/plugins

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
2025-01-17 19:17:09 +00:00

82 lines
2.4 KiB
BlitzBasic
Raw Blame History

HOMEPAGE = "https://github.com/rootless-containers/rootlesskit"
SUMMARY = "RootlessKit: Linux-native fakeroot using user namespaces"
DESCRIPTION = "RootlessKit is a Linux-native implementation of 'fake root' using user_namespaces(7). \
The purpose of RootlessKit is to run Docker and Kubernetes as an unprivileged user (known as 'Rootless mode'),\
so as to protect the real root on the host from potential container-breakout attacks. \
"
# generated with:
# scripts/oe-go-mod-autogen.py --repo https://github.com/rootless-containers/rootlesskit --rev c784875ba4ba4c5aaa256f98675fd543b087c900
DEPENDS = " \
go-md2man \
rsync-native \
"
# Specify the first two important SRCREVs as the format
SRCREV_FORMAT="rootless"
SRCREV_rootless = "0b4ed7b5ca2e6b7cd2b9fb003cc7f6913bd76abf"
SRC_URI = "git://github.com/rootless-containers/rootlesskit;name=rootless;branch=master;protocol=https;destsuffix=${GO_SRCURI_DESTSUFFIX}"
include src_uri.inc
# patches and config
SRC_URI += "file://modules.txt \
"
LICENSE = "Apache-2.0"
LIC_FILES_CHKSUM = "file://src/import/LICENSE;md5=3b83ef96387f14655fc854ddc3c6bd57"
GO_IMPORT = "import"
S = "${WORKDIR}/git"
PV = "v2.3.1+git"
ROOTLESS_PKG = "github.com/rootless-containers/rootlesskit"
inherit go goarch
inherit systemd pkgconfig
do_configure[noexec] = "1"
EXTRA_OEMAKE = " \
PREFIX=${prefix} BINDIR=${bindir} LIBEXECDIR=${libexecdir} \
ETCDIR=${sysconfdir} TMPFILESDIR=${nonarch_libdir}/tmpfiles.d \
SYSTEMDDIR=${systemd_unitdir}/system USERSYSTEMDDIR=${systemd_unitdir}/user \
"
PACKAGECONFIG ?= ""
include relocation.inc
do_compile() {
cd ${S}/src/import
export GOPATH="$GOPATH:${S}/src/import/.gopath"
# Pass the needed cflags/ldflags so that cgo
# can find the needed headers files and libraries
export GOARCH=${TARGET_GOARCH}
export CGO_ENABLED="1"
export CGO_CFLAGS="${CFLAGS} --sysroot=${STAGING_DIR_TARGET}"
export CGO_LDFLAGS="${LDFLAGS} --sysroot=${STAGING_DIR_TARGET}"
export GOFLAGS="-mod=vendor -trimpath ${PIEFLAG}"
# our copied .go files are to be used for the build
ln -sf vendor.copy vendor
# inform go that we know what we are doing
cp ${UNPACKDIR}/modules.txt vendor/
oe_runmake GO=${GO} BUILDTAGS="${BUILDTAGS}" all
}
do_install() {
install -d "${D}${BIN_PREFIX}${base_bindir}"
for b in rootlessctl rootlesskit rootlesskit-docker-proxy; do
install -m 755 "${S}/src/import/bin/$b" "${D}${BIN_PREFIX}${base_bindir}"
done
}
Reference in New Issue View Git Blame Copy Permalink