MIRRORS/meta-virtualization
1
0
Fork 0
mirror of git://git.yoctoproject.org/meta-virtualization.git synced 2025-07-19 12:50:22 +02:00
Code Issues Actions Packages Projects Releases Wiki Activity
2,695 Commits 38 Branches 0 Tags 9.2 MiB
HTML 30.6%
BitBake 26.6%
C++ 17.6%
PHP 8.7%
Python 6.6%
Other 9.9%
d305fb05be
Go to file
Bruce Ashfield d305fb05be buildah: update to v1.39.1 
Bumping buildah to version v1.39.1-1-g1c4d85879, which comprises the following commits:

    9347a39c2 Tag v1.39.1
    717fb39c4 CI config: post-branch update
    7dbd71040 chore(deps): update module github.com/go-jose/go-jose/v4 to v4.0.5 [security]
    4c0c3f0b9 chroot createPlatformContainer: use MS_REMOUNT
    c15ab104a Bump to Buildah v1.39.0
    298a64106 Bump c/storage v1.57.1, c/image 5.34.0,  c/common v0.62.0
    3c7c611c7 Update module github.com/containers/storage to v1.57.0
    d11bd71f4 CI, .cirrus: parallelize containerized integration
    bd2d78e40 ed's comment: cleanup
    ea39556a6 use seperate blobinfocache for flaky test
    72161b3a1 bump CI VMs to 4 CPUs (was: 2) for integration tests
    56078ef2d cleanup, debug, and disable parallel in blobcache tests
    708fe0aff bats tests - parallelize
    670a7bec6 pkg/overlay: cleanups
    ca957c487 RPM: include check section to silence rpmlint
    6cee07f52 RPM: use default gobuild macro on RHEL
    2119c8da3 tests: remove masked /sys/dev/block check
    4887a4fb1 vendor to latest c/{common,image,storage}
    4383e34c0 build, run: record hash or digest in image history
    3541a3ce2 Accept image names as sources for cache mounts
    9e00b6b39 Run(): always clean up options.ExternalImageMounts
    59024c41a refactor: replace golang.org/x/exp with stdlib
    a67b07957 Update to c/image @main
    d694644ae fix broken doc link
    e40f62941 run_freebsd.go: only import runtime-spec once
    eca1c8e90 fix(deps): update module github.com/docker/docker to v27.5.1+incompatible
    678dca8fd bump github.com/vbatts/tar-split
    9b9c161ff Add more checks to the --mount flag parsing logic
    1ccc34515 chroot mount flags integration test: copy binaries
    80100ac44 fix(deps): update module github.com/moby/buildkit to v0.19.0
    e7f790296 relabel(): correct a misleading parameter name
    6e62bd083 Fix TOCTOU error when bind and cache mounts use "src" values
    c30f5784d define.TempDirForURL(): always use an intermediate subdirectory
    25a3b385a internal/volume.GetBindMount(): discard writes in bind mounts
    0f5c6fc50 pkg/overlay: add a MountLabel flag to Options
    c0efbe821 pkg/overlay: add a ForceMount flag to Options
    50210d51c Add internal/volumes.bindFromChroot()
    f7155c0ab Add an internal/open package
    9a9fa9607 fix(deps): update module github.com/containers/common to v0.61.1
    ccfd61bdd fix(deps): update module github.com/containers/image/v5 to v5.33.1
    9beaf1018 [CI:DOCS] Touch up changelogs
    9b55ec998 fix(deps): update module github.com/docker/docker to v27.5.0+incompatible
    65b634b7d copy-preserving-extended-attributes: use a different base image
    292ecfe0f fix(deps): update github.com/containers/luksy digest to a3a812d
    67991e0d5 chore(deps): update module golang.org/x/net to v0.33.0 [security]
    6b53330c3 fix(deps): update module golang.org/x/crypto to v0.32.0
    727f00bf4 New VM Images
    e2b33d252 fix(deps): update module github.com/opencontainers/runc to v1.2.4
    ac9815992 fix(deps): update module github.com/docker/docker to v27.4.1+incompatible
    5a336bf1a fix(deps): update module github.com/containers/ocicrypt to v1.2.1
    adf54cde0 Add support for --security-opt mask and unmask
    77e357020 Allow cache mounts to be stages or additional build contexts
    a1dede87e [skip-ci] RPM: cleanup changelog conditionals
    d18344416 fix(deps): update module github.com/cyphar/filepath-securejoin to v0.3.6
    d77314a7a fix(deps): update module github.com/moby/buildkit to v0.18.2
    62709d718 Fix an error message in the chroot unit test
    cfd98d782 copier: use .PAXRecords instead of .Xattrs
    4adca286f chroot: on Linux, try to pivot_root before falling back to chroot
    5f3975333 manifest add: add --artifact-annotation
    c41f02130 Add context to an error message
    f81b26560 Update module golang.org/x/crypto to v0.31.0
    e9932b7bb Update module github.com/opencontainers/runc to v1.2.3
    ad5b02cdc Update module github.com/docker/docker to v27.4.0+incompatible
    2b7e1e9be Update module github.com/cyphar/filepath-securejoin to v0.3.5
    a82826f56 CI: don't build a binary in the unit tests task
    8eb6b10b0 CI: use /tmp for $GOCACHE
    36f6038d3 CI: remove dependencies on the cross-build task
    83b280599 CI: run cross-compile task with make -j
    2b6cf6452 Update module github.com/docker/docker to v27.4.0-rc.4+incompatible
    4afa31d07 Update module github.com/moby/buildkit to v0.18.1
    c35374f9c Update module golang.org/x/crypto to v0.30.0
    041c1f26f Update golang.org/x/exp digest to 2d47ceb
    058a2d37f Update github.com/opencontainers/runtime-tools digest to f7e3563
    a34792457 [skip-ci] Packit: remove rhel copr build jobs
    7a8312a61 [skip-ci] Packit: switch to fedora-all for copr
    564f90f09 Update module github.com/stretchr/testify to v1.10.0
    7b45052fd Update module github.com/moby/buildkit to v0.17.2
    17ee51d75 Makefile: use `find` to detect source files
    75c8852a8 Tests: make _prefetch() parallel-safe
    8e525d445 Update module github.com/opencontainers/runc to v1.2.2
    eb7a42217 executor: allow to specify --no-pivot-root
    6cfd93424 Update module github.com/moby/sys/capability to v0.4.0
    135431f8d Makefile: mv codespell config to .codespellrc
    c2b42c5e4 Fix some codespell errors
    f0361414d Makefile,install.md: rm gopath stuff
    c07a5eb56 Makefile: rm targets working on ..
    5adb14cbf build: rm exclude_graphdriver_devicemapper tag
    967fb5ec1 Makefile: rm unused var
    f4d4bb240 Finish updating to go 1.22
    6832420b6 CI VMs: bump again
    147765b45 Bump to Buidah v1.39.0-dev
    7aa3b5ee0 Bump to Buildah v1.38.0
    e911fe4a2 Bump to c/common v0.61.0, c/image v5.33.0, c/storage v1.56.0
    356e4d41e fix(deps): update module golang.org/x/crypto to v0.29.0
    6b1e4a58c fix(deps): update module github.com/moby/buildkit to v0.17.1
    3a583bf04 fix(deps): update module github.com/containers/storage to v1.56.0
    e3950407f tests: skip two ulimit tests
    4703b5b0c CI VMs: bump f40 -> f41
    2cba66285 tests/tools: rebuild tools when we change versions
    3cf2ec21b tests/tools: update golangci-lint to v1.61.0
    a7c316ab7 fix(deps): update module github.com/moby/buildkit to v0.17.0
    701d6bbe9 Handle RUN --mount with relative targets and no configured workdir
    9a5b88d3e tests: bud: make parallel-safe
    953fb3259 fix(deps): update module github.com/opencontainers/runc to v1.2.1
    d8d117534 fix(deps): update golang.org/x/exp digest to f66d83c
    fddd1be38 fix(deps): update github.com/opencontainers/runtime-tools digest to 6c9570a
    3c4e552eb tests: blobcache: use unique image name
    1cd6346b3 tests: sbom: never write to cwd
    2797d22ab tests: mkcw: bug fixes, refactor
    aa7077164 deps: bump runc to v1.2.0
    e213d65be deps: switch to moby/sys/userns
    855ec0f0c tests/test_runner.sh: remove some redundancies
    5abf038dd Integration tests: run git daemon on a random-but-bind()able port
    27324c256 fix(deps): update module github.com/opencontainers/selinux to v1.11.1
    8b7adfa2c go.mod: remove unnecessary replace
    6c85740ba Document more buildah build --secret options
    aeb6ffeec Add support for COPY --exclude and ADD --exclude options
    57bba3469 fix(deps): update github.com/containers/luksy digest to e2530d6
    9cf613a2b chore(deps): update dependency containers/automation_images to v20241010
    6349dc4a2 fix(deps): update module github.com/cyphar/filepath-securejoin to v0.3.4
    873beddba Properly validate cache IDs and sources
    0d27af46f [skip-ci] Packit: constrain koji job to fedora package to avoid dupes
    e0b7b10e6 Audit and tidy OWNERS
    714a23c26 fix(deps): update module golang.org/x/crypto to v0.28.0
    c7dd90dd7 tests: add quotes to names
    a018ec2b0 vendor: update c/common to latest
    732f77064 CVE-2024-9407: validate "bind-propagation" flag settings
    95f2e1020 vendor: switch to moby/sys/capability
    37a6bde53 Don't set ambient capabilities
    5193f21b0 Document that zstd:chunked is downgraded to zstd when encrypting
    271093d51 fix(deps): update module github.com/cyphar/filepath-securejoin to v0.3.3
    03ca93fb0 buildah-manifest-create.1: Fix manpage section
    fea5c3d49 chore(deps): update dependency ubuntu to v24
    d0819591d Make `buildah manifest push --all` true by default
    2ff91b8b0 chroot: add newlines at the end of printed error messages
    5e82f27fb Do not error on trying to write IMA xattr as rootless
    c07ae2b4c fix: remove duplicate conditions
    4bc98d54d fix(deps): update module github.com/moby/buildkit to v0.16.0
    128117224 fix(deps): update module github.com/cyphar/filepath-securejoin to v0.3.2
    1f02b65c6 Document how entrypoint is configured in buildah config
    baf91f2b0 In a container, try to register binfmt_misc
    81d1256bd imagebuildah.StageExecutor: clean up volumes/volumeCache
    80e15584c build: fall back to parsing a TARGETPLATFORM build-arg
    edc43c4e6 `manifest add --artifact`: handle multiple values
    b2defd39e Packit: split out ELN jobs and reuse fedora downstream targets
    0494df68b Packit: Enable sidetags for bodhi updates
    81b357e36 fix(deps): update module github.com/docker/docker to v27.2.1+incompatible
    71fc845d0 tests/bud.bats: add git source
    47297b3d5 add: add support for git source
    5184bf161 Add support for the new c/common pasta options
    7bf7da57a vendor latest c/common
    8d7286762 fix(deps): update module golang.org/x/term to v0.24.0
    e08437000 fix(deps): update module github.com/fsouza/go-dockerclient to v1.12.0
    a35380059 packit: update fedora and epel targets
    909cca8b1 cirrus: disable f39 testing
    db2a666dd cirrus: fix fedora names
    3f047d49b update to go 1.22
    ed881abfe Vendor c/common:9d025e4cb348
    9e374f9fd copier: handle globbing with "**" path components
    cee3c1311 fix(deps): update golang.org/x/exp digest to 9b4947d
    9ab093138 fix(deps): update github.com/containers/luksy digest to 2e7307c
    f88579d1f imagebuildah: make scratch config handling toggleable
    01a58991c fix(deps): update module github.com/docker/docker to v27.2.0+incompatible
    09c231f83 Add a validation script for Makefile $(SOURCES)
    510dd75f6 fix(deps): update module github.com/openshift/imagebuilder to v1.2.15
    344366935 New VMs
    e8e83bb8b Update some godocs, use 0o to prefix an octal in a comment
    a2629f528 buildah-build.1.md: expand the --layer-label description
    b695098b0 fix(deps): update module github.com/containers/common to v0.60.2
    d0988936b stage_executor: set avoidLookingCache only if mounting stage
    f1cd5ae4a imagebuildah: additionalContext is not a local built stage
    0ade01048 run: fix a nil pointer dereference on FreeBSD
    ca3b80eb0 CI: enable the whitespace linter
    0ad0ffaad Fix some govet linter warnings
    662abee0b Commit(): retry committing to local storage on storage.LayerUnknown
    8ae99121c CI: enable the gofumpt linter
    d07c3dfb0 conformance: move weirdly-named files out of the repository
    a60788c56 fix(deps): update module github.com/docker/docker to v27.1.2+incompatible
    ec87847c9 fix(deps): update module github.com/containers/common to v0.60.1
    fd3aba991 *: use gofmt -s, add gofmt linter
    24da18800 *: fix build tags
    57d820d37 fix(deps): update module github.com/containers/image/v5 to v5.32.1
    3ea43566a Add(): re-escape any globbed items that included escapes
    05da9a745 conformance tests: use mirror.gcr.io for most images
    c39f622d0 unit tests: use test-specific policy.json and registries.conf
    a1ce1c1ee fix(deps): update module golang.org/x/sys to v0.24.0
    c7b7f1272 Update to spun-out "github.com/containerd/platforms"
    832ff6cb8 Bump github.com/containerd/containerd
    ed6dd4227 test/tools/Makefile: duplicate the vendor-in-container target
    f52158f0e linters: unchecked error
    abea603df linters: don't end loop iterations with "else" when "then" would
    fdf1c75cd linters: unused arguments shouldn't have names
    6224e9a44 linters: rename checkIdsGreaterThan5() to checkIDsGreaterThan5()
    ae0d9d002 linters: don't name variables "cap"
    282cc38c3 `make lint`: use --timeout instead of --deadline
    d01e4ede3 Drop the e2e test suite
    c65328683 fix(deps): update module golang.org/x/crypto to v0.26.0
    23f241e6f fix(deps): update module github.com/onsi/gomega to v1.34.1
    277d40a2e `make vendor-in-container`: use the caller's Go cache if it exists
    aac50f661 fix(deps): fix test/tools ginkgo typo
    dd8715976 fix(deps): update module github.com/onsi/ginkgo/v2 to v2.19.1
    34a7ce99b Update to keep up with API changes in storage
    00d67a48f fix(deps): update github.com/containers/luksy digest to 1f482a9
    987e63a2d install: On Debian/Ubuntu, add installation of libbtrfs-dev
    e3c1953f7 fix(deps): update module golang.org/x/sys to v0.23.0
    5f96e0392 fix(deps): update golang.org/x/exp digest to 8a7402a
    9254e5ca8 fix(deps): update module github.com/fsouza/go-dockerclient to v1.11.2
    edc1b7752 Use Epoch: 2 and respect the epoch in dependencies.
    4e78b5723 Bump to Buildah v1.38.0-dev
    5f18ba259 AddAndCopyOptions: add CertPath, InsecureSkipTLSVerify, Retry fields
    c467bd139 Add PrependedLinkedLayers/AppendedLinkedLayers to CommitOptions
    8aa9a1c22 integration tests: teach starthttpd() about TLS and pid files

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
2025-03-06 17:17:59 +00:00
classes image-oci-unmoci: preserve file modes 2025-01-17 19:17:10 +00:00
conf conf: containerd: add networking configuration 2024-11-15 19:50:00 +00:00
docs podman: Add support for rootless mode 2022-07-15 17:11:58 -04:00
dynamic-layers kernel: drop 6.6 support 2025-02-11 23:19:51 +00:00
files fs-perms-nagios.txt: add perms conf file 2018-09-06 12:45:17 -04:00
lib/oeqa/runtime/cases xtf: add testimage integration to run XTF test cases in OEQA 2021-09-02 16:36:23 -04:00
recipes-containers buildah: update to v1.39.1 2025-03-06 17:17:59 +00:00
recipes-core packagegroup-container: respect seccomp in DISTRO_FEATURES 2024-11-21 04:28:51 +00:00
recipes-demo demos/helloworld: fix S and UNPACKDIR 2024-11-15 19:50:00 +00:00
recipes-devtools python3-cached-property: drop recipe 2025-01-17 19:16:26 +00:00
recipes-extended libvirt: add json-c for driver_qemu 2025-02-18 19:29:47 +00:00
recipes-graphics/xorg-xserver global: overrides syntax conversion 2021-08-02 17:17:53 -04:00
recipes-kernel kernel: drop 6.6 support 2025-02-11 23:19:51 +00:00
recipes-networking slirp4netns: update to v1.3.1 2025-01-17 19:17:09 +00:00
scripts scripts/oe-go-mod-autogen: allow repository mapping 2024-07-15 14:12:53 +00:00
wic xen: use bzImage for boot (instead of vmlinux) 2024-03-21 23:15:13 +00:00
.gitignore buildah: add seccomp and ipv6 to REQUIRED_DISTRO_FEATURES 2023-04-12 13:10:11 -04:00
COPYING.MIT Initial meta-xen layer documentation. 2012-06-21 15:51:11 -06:00
MAINTAINERS MAINTAINERS: add xtf and the raspberry pi dynamic layer for Xen 2021-12-16 21:45:00 -05:00
meta-virt-roadmap.txt docs: roadmap: add missing workflow items 2019-10-28 11:56:10 -04:00
README.md docs/README: drop meta-oe priority recommendation 2024-04-04 19:57:46 +00:00
SECURITY.md docs: add SECURITY.md and rename README.md 2023-11-06 16:21:12 +00:00

README.md

meta-virtualization

This layer provides support for building Xen, KVM, Libvirt, and associated packages necessary for constructing OE-based virtualized solutions.

The bbappend files for some recipes (e.g. linux-yocto) in this layer need to have 'virtualization' in DISTRO_FEATURES to have effect. To enable them, add in configuration file the following line.

DISTRO_FEATURES:append = " virtualization"

If meta-virtualization is included, but virtualization is not enabled as a distro feature a warning is printed at parse time:

You have included the meta-virtualization layer, but
'virtualization' has not been enabled in your DISTRO_FEATURES. Some bbappend files
may not take effect. See the meta-virtualization README for details on enabling
virtualization support.

If you know what you are doing, this warning can be disabled by setting the following variable in your configuration:

SKIP_META_VIRT_SANITY_CHECK = 1

Depending on your use case, there are other distro features in meta-virtualization that may also be enabled:

  • xen: enables xen functionality in various packages (kernel, libvirt, etc)
  • kvm: enables KVM configurations in the kernel and autoloads modules
  • k8s: enables kubernets configurations in the kernel, tools and configuration
  • aufs: enables aufs support in docker and linux-yocto
  • x11: enable xen and libvirt functionality related to x11
  • selinux: enables functionality in libvirt and lxc
  • systemd: enable systemd services and unit files (for recipes for support)
  • sysvinit: enable sysvinit scripts (for recipes with support)
  • seccomp: enable seccomp support for packages that have the capability.

Dependencies

This layer depends on:

URI: git://github.com/openembedded/openembedded-core.git branch: master revision: HEAD prio: default

URI: git://github.com/openembedded/meta-openembedded.git branch: master revision: HEAD layers: meta-oe meta-networking meta-filesystems meta-python

Required for Xen XSM policy: URI: git://git.yoctoproject.org/meta-selinux branch: master revision: HEAD prio: default

Required for Ceph: URI: git://git.yoctoproject.org/meta-cloud-services branch: master revision: HEAD prio: default

Required for cri-o: URI: git://git.yoctoproject.org/meta-selinux branch: master revision: HEAD prio: default

Community / Colaboration

Repository: https://git.yoctoproject.org/cgit/cgit.cgi/meta-virtualization/ Mailing list: https://lists.yoctoproject.org/g/meta-virtualization IRC: libera.chat #meta-virt channel

Maintenance

Send pull requests, patches, comments or questions to meta-virtualization@lists.yoctoproject.org

Maintainer: Bruce Ashfield bruce.ashfield@gmail.com see MAINTAINERS for more specific information

When sending single patches, please using something like: $ git send-email -1 -M --to meta-virtualization@lists.yoctoproject.org --subject-prefix='meta-virtualization][PATCH'

License

All metadata is MIT licensed unless otherwise stated. Source code included in tree for individual recipes is under the LICENSE stated in each recipe (.bb file) unless otherwise stated.