MIRRORS/meta-virtualization
1
0
Fork 0
mirror of git://git.yoctoproject.org/meta-virtualization.git synced 2025-07-19 12:50:22 +02:00
Code Issues Actions Packages Projects Releases Wiki Activity
2,485 Commits 38 Branches 0 Tags 9.2 MiB
HTML 30.6%
BitBake 26.6%
C++ 17.6%
PHP 8.7%
Python 6.6%
Other 9.9%
7179de293c
Go to file
Bruce Ashfield 7179de293c buildah: update to 1.36 
Bumping buildah to version v1.36.0, which comprises the following commits:

    6ceba8838 Bump to v1.36.0
    c09e08b53 build: be more selective about specifying the default OS
    3fa5531ca Bump to c/common v0.59.0
    4d1690bc3 Fix buildah prune --help showing the same example twice
    208b7111e fix(deps): update module github.com/onsi/ginkgo/v2 to v2.18.0
    c7937cd1d fix(deps): update module github.com/containers/image/v5 to v5.31.0
    183582f03 bud tests: fix breakage when vendoring into podman
    de8510c9d Integration tests: fake up a replacement for nixery.dev/shell
    d9191e17c copierWithSubprocess(): try to capture stderr on io.ErrClosedPipe
    97382f928 Don't expand RUN heredocs ourselves, let the shell do it
    864a40cbd Don't leak temp files on failures
    97d44ab9c Add release note template to split dependency chores
    4a524737f fix CentOS/RHEL build - no BATS there
    420949a5a fix(deps): update module github.com/containers/luksy to v0.0.0-20240506205542-84b50f50f3ee
    bbab575ff Address CVE-2024-3727
    6a48ae700 chore(deps): update module github.com/opencontainers/runtime-spec to v1.2.0
    d5b2e3c41 Builder.cdiSetupDevicesInSpecdefConfig(): use configured CDI dirs
    da4e2d7ad Setting --arch should set the TARGETARCH build arg
    6f1f687c3 fix(deps): update module golang.org/x/exp to v0.0.0-20240416160154-fe59bbe5cc7f
    cd1960725 [CI:DOCS] Add link to Buildah image page to README.md
    f6d49125a Don't set GOTOOLCHAIN=local
    a04741d9f fix(deps): update module github.com/cyphar/filepath-securejoin to v0.2.5
    53f2dc231 Makefile: set GOTOOLCHAIN=local
    e0077e8c6 Integration tests: switch some base images
    fdfd2237d containerImageRef.NewImageSource: merge the tar filters
    f2825bf7b fix(deps): update module github.com/onsi/ginkgo/v2 to v2.17.2
    2c1c73169 fix(deps): update module github.com/containers/luksy to v0.0.0-20240408185936-afd8e7619947
    7688d880d Disable packit builds for centos-stream+epel-next-8
    7425f6f8f Makefile: add missing files to $(SOURCES)
    fbd2b7db4 CI VMs: bump to new versions with tmpfs /tmp
    89ee4f4b0 chore(deps): update module golang.org/x/net to v0.23.0 [security]
    c01061e47 integration test: handle new labels in "bud and test --unsetlabel"
    f86c2748e Switch packit configuration to use epel-9-$arch ...
    14d964d92 Give unit tests a bit more time
    8bb87aefa Integration tests: remove a couple of duplicated tests
    3e756d507 Integration tests: whitespace tweaks
    8ee7bebd7 Integration tests: don't remove images at start or end of test
    c7f088142 Integration tests: use cached images more
    b213c5e7a Integration tests _prefetch: use registry configs
    8bdd6a66d internal: use fileutils.(Le|E)xists
    441bdc927 pkg/parse: use fileutils.(Le|E)xists
    705338379 buildah: use fileutils.(Le|E)xists
    9dcd1cc9a chroot: use fileutils.(Le|E)xists
    358814f69 vendor: update containers/(common|storage)
    be74b733f Fix issue/pr lock workflow
    a99fe1513 [CI:DOCS] Add golang 1.21 update warning
    77400c4fc heredoc: honor inline COPY irrespective of ignorefiles
    ff13a08c9 Update install.md
    5b414ad08 source-push: add support for --digestfile
    d9129b463 Fix caching when mounting a cached stage with COPY/ADD
    58579ba65 fix(deps): update github.com/containers/luksy digest to 3d2cf0e
    2cd31a069 Makefile: softcode `strip`, use it from env var
    f812c8949 Man page updates
    5198af7d7 Add support for passing CDI specs to --device
    14bf3db27 Update comments on some API objects
    2a7ff9905 pkg/parse.DeviceFromPath(): dereference src symlinks
    c1b43b57b Makefile - instead of calling `as` directly, use it from env var
    23b8d9767 fix(deps): update module github.com/onsi/ginkgo/v2 to v2.17.1
    c1119f886 CI: bump VMs
    2c47fdccd fix(deps): update module github.com/docker/docker to v25.0.5+incompatible
    f95b7a188 fix(deps): update module github.com/onsi/ginkgo/v2 to v2.17.0
    9cf83d8f8 Change RUN to comment in bud.bats
    5808b9603 Stop rebasing renovate PRs automatically
    37994356f Update renovate validation image
    4304d618f CVE-2024-1753 container escape fix
    516f9e9a2 correctly configure /etc/hosts and resolv.conf when using network
    9db5a16f7 buildah: refactor resolv/hosts setup.
    8c1fee7e7 rename the hostFile var to reflect the value better
    f8a7841cc vendor latest c/common
    26da74d54 [skip-ci] rpm: use go-rpm-macros supported vendoring
    547d9bf0e Update docs/buildah-add.1.md
    80f9f7cb0 fix(deps): update module github.com/onsi/ginkgo/v2 to v2.16.0
    5cf05ac08 fix(deps): update module github.com/docker/docker to v25.0.4+incompatible
    c355679d3 fix(deps): update module github.com/containers/ocicrypt to v1.1.10
    550139916 chore(deps): update module gopkg.in/go-jose/go-jose.v2 to v2.6.3 [security]
    1a6d3513f chore(deps): update module github.com/go-jose/go-jose/v3 to v3.0.3 [security]
    bf3263ec1 Bump google.golang.org/protobuf to v1.33.0
    e635558d2 fix links to containerignore doc
    e53e50f7a [skip-ci] Makefile: update rpm target
    87ef84d3a pr-should-include-tests: use GitHub label, not commit text
    d50122aeb tests: enable pasta tests
    1bc5dd692 [CI:DOCS] Migrate buildah container image
    7c88bb372 Update .gitignore
    da81d2e2b Bump to v1.36.0-dev
    fedbd7967 Bump v1.35.0
    3164076e2 Bump c/common v0.58.0, c/image v5.30.0, c/storage v1.53.0
    b2504c263 conformance tests: don't break on trailing zeroes in layer blobs
    a2f0ebef6 Add a conformance test for copying to a mounted prior stage
    e504df188 fix(deps): update module github.com/stretchr/testify to v1.9.0
    951dccd3f cgroups: reuse version check from c/common
    bbea3eb54 Update vendor of containers/(common,image)
    6474279ed fix(deps): update github.com/containers/storage digest to eadc620
    f9d603608 fix(deps): update github.com/containers/luksy digest to ceb12d4
    53f230e2b fix(deps): update github.com/containers/image/v5 digest to cdc6802
    8a1bcd51c manifest add: complain if we get artifact flags without --artifact
    d0ffb9d37 Use retry logic from containers/common
    e9c3c1666 Vendor in containers/(storage,image,common)
    5047a3566 Update module golang.org/x/crypto to v0.20.0
    26d5b84b1 Add comment re: Total Success task name
    4853c0042 tests: skip_if_no_unshare(): check for --setuid
    63975b541 Properly handle build --pull=false
    836b9384d [skip-ci] Update tim-actions/get-pr-commits action to v1.3.1
    5748595ae Update module go.etcd.io/bbolt to v1.3.9
    fee705081 Revert "Reduce official image size"
    aee02318a Update module github.com/opencontainers/image-spec to v1.1.0
    cdb1a4ff8 Reduce official image size
    eb6269d8c Build with CNI support on FreeBSD
    98f870753 build --all-platforms: skip some base "image" platforms
    d73e21120 Bump main to v1.35.0-dev
    90c0d9794 Vendor in latest containers/(storage,image,common)
    1def7d6de Split up error messages for missing --sbom related flags
    aca884a89 `buildah manifest`: add artifact-related options
    07057917d cmd/buildah/manifest.go: lock lists before adding/annotating/pushing
    a0852e994 cmd/buildah/manifest.go: don't make struct declarations aliases
    4f0b619dd Use golang.org/x/exp/slices.Contains
    e202d62cc Disable loong64 again
    e99960085 Fix a couple of typos in one-line comments
    302a798ad egrep is obsolescent; use grep -E
    e6d179476 Try Cirrus with a newer VM version
    04847f57f Set CONTAINERS_CONF in the chroot-mount-flags integration test
    56e6ef854 Update to match dependency API update
    5d58b88c7 Update github.com/openshift/imagebuilder and containers/common
    a20d5b2a5 docs: correct default authfile path
    9d58d1382 fix(deps): update module github.com/containerd/containerd to v1.7.13
    533aac2d4 tests: retrofit test for heredoc summary
    1bfd3336f build, heredoc: show heredoc summary in build output
    811ee6797 manifest, push: add support for --retry and --retry-delay
    1a8cbc185 fix(deps): update github.com/openshift/imagebuilder digest to b767bc3
    9d516e22e imagebuildah: fix crash with empty RUN
    e14f46f2e fix(deps): update github.com/containers/luksy digest to b62d551
    a7aec1941 fix(deps): update module github.com/opencontainers/runc to v1.1.12 [security]
    f1f0d9d4d fix(deps): update module github.com/moby/buildkit to v0.12.5 [security]
    79fb3c213 Make buildah match podman for handling of ulimits
    13fd5bd2c docs: move footnotes to where they're applicable
    011736e12 Allow users to specify no-dereference
    34dff20da Run codespell on code
    86afc1ffd Fix FreeBSD version parsing
    32b8ceeb6 Fix a build break on FreeBSD
    e3d043ebf Remove a bad FROM line
    f6f6da8f0 fix(deps): update module github.com/onsi/gomega to v1.31.1
    4b5caebd7 fix(deps): update module github.com/opencontainers/image-spec to v1.1.0-rc6
    f157be843 docs: use reversed logo for dark theme in README
    cf69e8a18 build,commit: add --sbom to scan and produce SBOMs when committing
    b3af07dab commit: force omitHistory if the parent has layers but no history
    de7c1e1f7 docs: fix a couple of typos
    89f50af21 internal/mkcw.Archive(): handle extra image content
    4cc811f4f stage_executor,heredoc: honor interpreter in heredoc
    339839d4b stage_executor,layers: burst cache if heredoc content is changed
    dd186ee0f fix(deps): update module golang.org/x/crypto to v0.18.0
    a42bfd019 Replace map[K]bool with map[K]struct{} where it makes sense
    905551f51 fix(deps): update module golang.org/x/sync to v0.6.0
    efe76552b fix(deps): update module golang.org/x/term to v0.16.0
    d371fc7b9 Bump CI VMs
    53c65dd36 Replace strings.SplitN with strings.Cut
    b5ee4fb34 fix(deps): update github.com/containers/storage digest to ef81e9b
    114bb6f0c fix(deps): update github.com/containers/image/v5 digest to 1b221d4
    fd0899f1f fix(deps): update module github.com/fsouza/go-dockerclient to v1.10.1
    59ea8af1b Document use of containers-transports values in buildah
    b2c80f9a3 fix(deps): update module golang.org/x/crypto to v0.17.0 [security]
    b283c48db chore(deps): update dependency containers/automation_images to v20231208
    4a9dba647 manifest: addCompression use default from containers.conf
    041388f87 commit: add a --add-file flag
    81435aadc mkcw: populate the rootfs using an overlay
    5b9141887 chore(deps): update dependency containers/automation_images to v20230517
    de0c3cdaf [skip-ci] Update actions/stale action to v9
    2ab21c666 fix(deps): update module github.com/containernetworking/plugins to v1.4.0
    29d945f38 fix(deps): update github.com/containers/image/v5 digest to 7a40fee
    4276a735b Bump to v1.34.1-dev
    471460018 Ignore errors if label.Relabel returns ENOSUP

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
2024-05-29 13:23:51 +00:00
classes classes: add depreciated warning bbclass 2024-03-15 17:17:19 +00:00
conf layer: set compatibility to styhead 2024-05-29 13:16:56 +00:00
docs podman: Add support for rootless mode 2022-07-15 17:11:58 -04:00
dynamic-layers xen-boot-cmd.inc: Fix initrd boot issue with 6.6 kernel 2024-02-22 17:15:22 +00:00
files fs-perms-nagios.txt: add perms conf file 2018-09-06 12:45:17 -04:00
lib/oeqa/runtime/cases xtf: add testimage integration to run XTF test cases in OEQA 2021-09-02 16:36:23 -04:00
recipes-containers buildah: update to 1.36 2024-05-29 13:23:51 +00:00
recipes-core sysvinit-inittab: Use UNPACKDIR instead of WORKDIR 2024-05-13 22:31:52 -04:00
recipes-demo helloworkd-flask: convert WORKDIR references to UNPACKDIR 2024-05-29 13:16:56 +00:00
recipes-devtools yq: adapt SRC_URI to include destsuffix=${GO_SRCURI_DESTSUFFIX} 2024-05-29 13:16:56 +00:00
recipes-extended uxen: convert WORKDIR references to UNPACKDIR 2024-05-29 13:23:51 +00:00
recipes-graphics/xorg-xserver global: overrides syntax conversion 2021-08-02 17:17:53 -04:00
recipes-kernel kernel: fix fragment path 2024-05-29 13:16:56 +00:00
recipes-networking ovs: convert WORKDIR references to UNPACKDIR 2024-05-29 13:23:51 +00:00
scripts oe-go-mod-autogen: clarify need to update main SRCREV 2023-11-06 16:21:12 +00:00
wic xen: use bzImage for boot (instead of vmlinux) 2024-03-21 23:15:13 +00:00
.gitignore buildah: add seccomp and ipv6 to REQUIRED_DISTRO_FEATURES 2023-04-12 13:10:11 -04:00
COPYING.MIT Initial meta-xen layer documentation. 2012-06-21 15:51:11 -06:00
MAINTAINERS MAINTAINERS: add xtf and the raspberry pi dynamic layer for Xen 2021-12-16 21:45:00 -05:00
meta-virt-roadmap.txt docs: roadmap: add missing workflow items 2019-10-28 11:56:10 -04:00
README.md docs/README: drop meta-oe priority recommendation 2024-04-04 19:57:46 +00:00
SECURITY.md docs: add SECURITY.md and rename README.md 2023-11-06 16:21:12 +00:00

README.md

meta-virtualization

This layer provides support for building Xen, KVM, Libvirt, and associated packages necessary for constructing OE-based virtualized solutions.

The bbappend files for some recipes (e.g. linux-yocto) in this layer need to have 'virtualization' in DISTRO_FEATURES to have effect. To enable them, add in configuration file the following line.

DISTRO_FEATURES:append = " virtualization"

If meta-virtualization is included, but virtualization is not enabled as a distro feature a warning is printed at parse time:

You have included the meta-virtualization layer, but
'virtualization' has not been enabled in your DISTRO_FEATURES. Some bbappend files
may not take effect. See the meta-virtualization README for details on enabling
virtualization support.

If you know what you are doing, this warning can be disabled by setting the following variable in your configuration:

SKIP_META_VIRT_SANITY_CHECK = 1

Depending on your use case, there are other distro features in meta-virtualization that may also be enabled:

  • xen: enables xen functionality in various packages (kernel, libvirt, etc)
  • kvm: enables KVM configurations in the kernel and autoloads modules
  • k8s: enables kubernets configurations in the kernel, tools and configuration
  • aufs: enables aufs support in docker and linux-yocto
  • x11: enable xen and libvirt functionality related to x11
  • selinux: enables functionality in libvirt and lxc
  • systemd: enable systemd services and unit files (for recipes for support)
  • sysvinit: enable sysvinit scripts (for recipes with support)
  • seccomp: enable seccomp support for packages that have the capability.

Dependencies

This layer depends on:

URI: git://github.com/openembedded/openembedded-core.git branch: master revision: HEAD prio: default

URI: git://github.com/openembedded/meta-openembedded.git branch: master revision: HEAD layers: meta-oe meta-networking meta-filesystems meta-python

Required for Xen XSM policy: URI: git://git.yoctoproject.org/meta-selinux branch: master revision: HEAD prio: default

Required for Ceph: URI: git://git.yoctoproject.org/meta-cloud-services branch: master revision: HEAD prio: default

Required for cri-o: URI: git://git.yoctoproject.org/meta-selinux branch: master revision: HEAD prio: default

Community / Colaboration

Repository: https://git.yoctoproject.org/cgit/cgit.cgi/meta-virtualization/ Mailing list: https://lists.yoctoproject.org/g/meta-virtualization IRC: libera.chat #meta-virt channel

Maintenance

Send pull requests, patches, comments or questions to meta-virtualization@lists.yoctoproject.org

Maintainer: Bruce Ashfield bruce.ashfield@gmail.com see MAINTAINERS for more specific information

When sending single patches, please using something like: $ git send-email -1 -M --to meta-virtualization@lists.yoctoproject.org --subject-prefix='meta-virtualization][PATCH'

License

All metadata is MIT licensed unless otherwise stated. Source code included in tree for individual recipes is under the LICENSE stated in each recipe (.bb file) unless otherwise stated.