Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package podman for openSUSE:Factory checked
in at 2024-04-04 22:24:49
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/podman (Old)
and /work/SRC/openSUSE:Factory/.podman.new.1905 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "podman"
Thu Apr 4 22:24:49 2024 rev:130 rq:1164498 version:5.0.1
Changes:
--------
--- /work/SRC/openSUSE:Factory/podman/podman.changes 2024-02-27
22:44:12.809542617 +0100
+++ /work/SRC/openSUSE:Factory/.podman.new.1905/podman.changes 2024-04-04
22:25:35.065821667 +0200
@@ -1,0 +2,721 @@
+Wed Apr 3 17:43:41 UTC 2024 - Johannes Kastl
<opensuse_buildserv...@ojkastl.de>
+
+- update to 5.0.1:
+ * Bugfixes
+ - Fixed a bug where rootless containers using the Pasta network
+ driver did not properly handle localhost DNS resolvers on the
+ host leading to DNS resolution issues (#22044).
+ - Fixed a bug where Podman would warn that cgroups v1 systems
+ were no longer supported on FreeBSD hosts.
+ - Fixed a bug where HyperV podman machine VMs required an SSH
+ client be installed on the system (#22075).
+ - Fixed a bug that prevented the remote Podman client's podman
+ build command from working properly when connecting from a
+ rootless client to a rootful server (#22109).
+ * Misc
+ - The HyperV driver to podman machine now fails immediately if
+ admin privileges are not available (previously, it would only
+ fail when it reached operations that required admin
+ privileges).
+
+-------------------------------------------------------------------
+Wed Mar 20 05:32:21 UTC 2024 - danish.prak...@suse.com
+
+- Refactor network backend dependencies:
+ * require either cni or netavark for SLE-15-SP5 and lower
+ * require netavark for all other streams and fresh installations
+ even on older SLE systems for podman >= 5.0.0
+- Drop slirp4netns, require passt instead for rootless networking
+- Update to version 5.0.0:
+ * New release: v5.0.0
+ * Update RELEASE_NOTES.md with CVE-2024-1753 (bsc#1221677)
+ * [v5.0] Bump Buildah to v1.35.1
+ * Adjust to the standard location of gvforwarder used in new images
+ * Switch to 5.x WSL machine os stream using new automation
+ * rpm: use macro supported vendoring
+ * Bump to v5.0.0-dev
+ * Bump to v5.0.0-RC7
+ * Add release notes for v5.0.0-rc7
+ * fix invalid HTTP header values when hijacking a connection
+ * Use faster gzip for compression for 3x speedup for sending large contexts
to remote
+ * pkg/machine: make checkExclusiveActiveVM race free
+ * pkg/machine/wsl: remove unused CheckExclusiveActiveVM()
+ * pkg/machine: CheckExclusiveActiveVM should also check for starting
+ * pkg/machine: refresh config after we hold lock
+ * rpm: update containers-common dep on f40+
+ * Change API socket to be machine name isolated
+ * Makefile: drop tests-included from validate target
+ * Add release notes for v5.0.0
+ * do not require policy.json
+ * Machine decompress.go refactoring follow-up
+ * Add target win-gvproxy in winmake.ps1
+ * Add final machine endpoint
+ * update API doc version to 5.0.0
+ * Bump to 5.0.0-dev
+ * Bump to 5.0.0-rc6
+ * docs: generate-systemd: add clarification statement
+ * docs: quadlet: improve docs on root/rootless dirs
+ * [CI:DOCS] performance: fix URL and kernel version requirement
+ * [CI:DOCS] Remove outdated references
+ * Add note for RHEL 8.5
+ * Update module gopkg.in/go-jose/go-jose.v2 to v2.6.3 [SECURITY]
+ * Update module github.com/go-jose/go-jose/v3 to v3.0.3 [SECURITY]
+ * Bump to v5.0.0-dev
+ * Bump to v5.0.0-rc5
+ * Fix Mac CI
+ * Complete policy.json inclusion
+ * Bump Buildah to v1.35.0
+ * podman compose: enable machine socket connection
+ * [CI:DOCS] Add farm command to commands list
+ * podman machine start/stop do not write config unlocked
+ * [CI:BUILD] Build universal Podman binary for Mac installer
+ * podman machine init: do not write config unlocked
+ * Fail on failures to close the file descriptors, and especially the
SparseWriter
+ * Avoid reliance on fs.ErrClosed in SparseWriter users
+ * Fix the logic for detecting an unexpected close error
+ * vendor libhvee-0.7.0
+ * podman machine set: change options only locked
+ * Remove copySparseFile
+ * pkg/machine: fix relative DefaultPolicyJSONPath
+ * Don't read full VM File before decompressing
+ * [CI:DOCS] Fix windows installer action
+ * machine: make more use of strongunits
+ * Fix wrong units size return
+ * fix(deps): update github.com/containers/libhvee digest to 7cee23c
+ * [CI:DOCS] Migrate podman container image
+ * fix(deps): update module google.golang.org/protobuf to v1.33.0
+ * CI: try to fix more flakes
+ * [CI:BUILD] rpm: Put the podmansh(1) manual in the podmansh sub-package
+ * e2e: fix potential race in file-locks test
+ * Makefile: podman should have correct selinux label
+ * properly implement pull-error event status
+ * fix(deps): update module golang.org/x/tools to v0.19.0
+ * Resurrect auto-port reassignment, but for all providers
+ * Refactor env dir and port functions into new leaf pkgs
+ * fix(deps): update module golang.org/x/net to v0.22.0
+ * Revert "Expose as-tested Mac/Windows repository state"
+ * fix(deps): update module golang.org/x/term to v0.18.0
+ * Update podman-for-windows.md
+ * fix(deps): update github.com/containers/libhvee digest to 0ff33af
+ * machine init: print output to improve UX
+ * logformatter: fixes for Macintosh
+ * test/e2e: check for stderr errors in cleanup()
+ * Bump to FreeBSD 13.3 (13.2 vanished)
+ * Bump to v5.0.0-dev
+ * fix(deps): update module github.com/stretchr/testify to v1.9.0
+ * Bump to v5.0.0-RC4
+ * Use stop timeout of zero for system reset
+ * chore(deps): update dependency python-dateutil to ~=2.9.0
+ * CI: must-add-tests check: use GH label, not text
+ * fix(deps): update module github.com/shirou/gopsutil/v3 to v3.24.2
+ * Vendor in containers/(buildah, common)
+ * Run codespell on code
+ * Fix events by fully adding the new PullError event
+ * Update dependency pytest to v7.4.4
+ * Change image-path to image for tests
+ * Use machine image as specified in containers.conf
+ * Vendor latest c/common and fix tests
+ * test: fix manifest e2e test assumption
+ * podman manifest add: support creating artifact manifest on the fly
+ * Add man page content for artifacts
+ * pkg/env.Join(): don't modify passed-in maps
+ * add --retry --retry-delay to podman run/create
+ * Add support for podman push --retry --retry-delay
+ * pullImage does not need to be exported
+ * Vendor in latest containers/common
+ * test/system: fix mount external container test
+ * Move locks to shim layer
+ * CI: run logformatter on mac
+ * Move ignition functions into Containerfiles
+ * machine/ociartifact: Include image name in error
+ * Reenable boltdb upgrade tests
+ * fix: split string Entrypoint by space
+ * refacto: unknown signal return signal number without prefix
+ * ci: fix module not found
+ * feat: allow compatibility with podman v4 machine
+ * tests: fix after make podman inspect cmd return compatible with Docker API
v1.44
+ * chore: rename var host hostIP
+ * tests: add docker api compatibility test
+ * feat: make inspect compatible with docker v1.44
+ * logging: new mode -l passthrough-tty
+ * podman network inspect: include running containers
+ * Remove xz unit tests as they are flaky
+ * machine config: make write atomic
+ * Ensure HyperV 9p mounts work when a dir doesn't exist
+ * Clean up gvproxy if machine start fails
+ * systests: kube play URL: workaround for ECONNREFUSED
+ * Vendor in latest containers/(image,storage)
+ * Expose as-tested Mac/Windows repository state
+ * macos installer: Add vfkit entitlement
+ * macos-installer: Remove hvf.entitlements
+ * macos installer: Default to using ad-hoc signing
+ * new vms, with rc6 rawhide kernel
+ * Fixup: avoid overriding io.Copy error
+ * Avoid overriding io.Copy error
+ * Move code for sparse optimized copy to a dedicated method
+ * [CI:BUILD] rpm: Add fallback for $SOURCE_DATE_EPOCH not being set
+ * Makefile: add machine policy.json to podman-remote.zip
+ * macos installer: install default policy.json file
+ * pkg/machine/ocipull: add default policy.json file
+ * Makefile: add MACHINE_POLICY_JSON_DIR option
+ * pkg/machine/ocipull: add custom policy.json location
+ * test/compose: add test for default connection
+ * podman compose: only trim path suffix when ssh protocol
+ * podman compose: correctly accept --connection/--url
+ * podman compose: build for all arches
+ * CI: e2e: use distinct ports, not just 5000
+ * [CI:BUILD] rpm: Use $SOURCE_DATE_EPOCH instead of the current date
+ * vendor update gopkg.in/yaml.v2 to v3
+ * [CI:BUILD] rpm: Make BuildRequires independent of the environment
+ * Fix podman stop -t -1 CID
+ * Change QEMU netdev to Unix domain socket
+ * Enable lint for Darwin and fix identified issues
+ * Fix nightly cron checks
+ * systests: enable ipv6 tests
+ * Update github.com/containers/libhvee digest to c1bda9d
+ * Better file close and err handling
+ * integrating changes from #21768
+ * renamed testfiles as testdata
+ * Use faster gzip reader
+ * Remove duplication and make consistent usage of the progress bar
+ * Add a comment to explain why we look at file name for zip files
+ * Use github.com/stretchr/testify assert in compression_test.go
+ * Refactor machine decompress.go
+ * Update module go.etcd.io/bbolt to v1.3.9
+ * Update module golang.org/x/tools to v0.18.0
+ * Update module github.com/openshift/imagebuilder to v1.2.6
+ * Adds example for secret creation from environment variable
+ * Fix race conditions in hyperv readiness checking
+ * Ignore docker's end point config when the final network mode isn't bridge.
+ * Reformulate sparseWriter to deal with starting/ending zeroes explicitly
+ * Expand sparseWriter tests
+ * Bump to v5.0.0-dev
+ * Bump to v5.0.0-RC3
+ * Fix assumptions in 'push with --add-compression and --force-compression'
+ * Fix assumptions in 'push test --force-compression"'
+ * Update module golang.org/x/net to v0.21.0
+ * Bump VMs. New pasta, gvisor
+ * Update module github.com/klauspost/compress to v1.17.7
+ * Stop using rm'd inspect format templates in tests
+ * Remove image provenance from `machine inspect`
+ * Update machine files rm order and add QEMU rm
+ * libpod/events: remove duplicated Details ID field
+ * pkg/machine: ignore gvproxy pidfile not exists error
+ * cmd/podman: remove duplicated event ToHumanReadable()
+ * libpod/events: Update event time format and add timeNano
+ * machine: implement http proxy logic for all providers
+ * Cirrus: Reuse shared clone script on Mac
+ * Vendor vfkit v0.5.1 and gopsutil v3.24.1
+ * Rearrange CI tasks for safety + efficiency
+ * Comply to Kubernetes specifications for annotation size.
+ * zstd now default compression for podman machine
+ * CI: fix search-test flakes
+ * machine: add sparse file writer
+ * systests: auto-update: minor cleanup
+ * machine: Add `ConnectionInfo` to `MachineConfig`
+ * Fix up example description of podman-system commands
+ * Fix Lint on Windows and enable the job
+ * cirrus logcollector: update package list
+ * Build with CNI support on FreeBSD
+ * Apply suggestions from code review
+ * Apply suggestions from code review
+ * Apply suggestions from code review
+ * Fix up example description of podman-inspect.1.md.in
+ * Apply suggestions from code review
+ * Apply suggestions from code review
+ * machine: Remove unnecessary TODOs
+ * Apply suggestions from code review
+ * Apply suggestions from code review
+ * Apply suggestions from code review
+ * Codespell code
+ * Fix up example description of podman-mount.1.md.in
+ * Update docs/source/markdown/podman-cp.1.md
+ * Fix up example description of podman-container commands
+ * Fix up example description of podman-stats.1.md.in
+ * System tests: enable debugging for parallel-rm test
+ * Extract waitForGvProxy into shared utility function
+ * Fix up example description of podman-volume commands
+ * Fix up example description of podman-kill.1.md.in
+ * Fix up example description of podman-pod commands
+ * [skip-ci] Packit: Update downstream task targets
+ * Fix up example description of podman-build.1.md.in
+ * Fix up example description of podman-commit.1.md
+ * Copy past golang/expansion form ks8.io/kubernetes
+ * Fix up example description of podman-logout.1.md.in
+ * Fix up example description of podman-images.1.md.in
+ * Apply suggestions from code review
+ * Fix up example description of podman-export/export commands
+ * Fix running container from docker client with rootful in rootless podman.
+ * Introduce Podman machine reset
+ * Fix up example description of podman-create.1.md.in
+ * Fix up example description of podman-diff.1.md.in
+ * Fix up example description of podman-events.1.md
+ * Fix up example description of podman-farm commands
+ * Fix up example description of podman-network commands
+ * Fix up example description of podman-image commands
+ * Fix up example description of podman-port.1.md.in
+ * Fix up example description of podman-push.1.md.in
+ * Fix up example description of podman-unshare.1.md
+ * Fix up example description of podman-pause.1.md.in
+ * Fix up example description of podman-start.1.md.in
+ * Fix up example description of podman-rm.1.md.in
+ * Fix up example description of podman-info.1.md
+ * Fix up example description of podman-history.1.md
+ * Fix up example description of podman-healthcheck-run.1.md
+ * Fix up example description of podman-exec.1.md.in
+ * Fix up example description of podman-cp.1.md
+ * Fix up example description of podman-manifest commands
+ * Allow podman pull to specify --retry and --retry-delay
+ * fix usermode test
+ * fix(deps): update module github.com/opencontainers/image-spec to v1.1.0
+ * machine init: validate machine name and username
+ * [CI:DOCS] Update dependency golangci/golangci-lint to v1.56.2
+ * pkg/machine: make only one AddConnection() call
+ * Bump to v5.0.0-dev
+ * Bump to v5.0.0-rc2
+ * pkg/machine: cleanup MakeSSHURL
+ * Improve cross platform support in QEMU machine sources
+ * Fix remove docker.sock symlink
+ * Prune FCOS related code
+ * Manually discover wsl.exe location
+ * Turn WSL machine tests back on
+ * Build tag out QEMU for Darwin
+ * man-page xref: make nested-structure warnings fatal
+ * Remove log-level from runSystemCommand since wsl does not support it
+ * machine/qemu: use extra gvproxy socket
+ * Add a helper for stopping pods and containers in E2E
+ * machine: ocipull do not error if downloaddir exists
+ * More test tweaks to avoid "StopSignal ... 10 seconds" warning
+ * Add testcase for WSL dist conflicts
+ * Correct VM existance check on WSL
+ * Test PR, add a inconsequential period to docs
+ * Fix small bug in ocipull
+ * Add volumes-from support using annotation in kube yaml
+ * Allow CI user to cleanup own files
+ * chore(deps): update docker.io/library/golang docker tag to v1.22
+ * machine: Re-enable USBs check for wsl machine set
+ * machine: `machine set` only when machine's stopped
++++ 424 more lines (skipped)
++++ between /work/SRC/openSUSE:Factory/podman/podman.changes
++++ and /work/SRC/openSUSE:Factory/.podman.new.1905/podman.changes
Old:
----
podman-4.9.3.tar.xz
New:
----
podman-5.0.1.tar.xz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ podman.spec ++++++
--- /var/tmp/diff_new_pack.via9ma/_old 2024-04-04 22:25:37.073895597 +0200
+++ /var/tmp/diff_new_pack.via9ma/_new 2024-04-04 22:25:37.081895891 +0200
@@ -22,7 +22,7 @@
%bcond_without apparmor
Name: podman
-Version: 4.9.3
+Version: 5.0.1
Release: 0
Summary: Daemon-less container engine for managing containers, pods and
images
License: Apache-2.0
@@ -59,19 +59,20 @@
# requirement for `podman machine`
Recommends: gvisor-tap-vsock
Requires: catatonit >= 0.1.7
-# Needs a network backend
-Requires: (netavark or cni-plugins)
-# Force netavark on ALP
-%if 0%{suse_version} >= 1600 && !0%{?is_opensuse}
-Requires: netavark
-%else
-# Prefer netavark for fresh installations (bsc#1217828)
-Suggests: netavark
-%endif
Requires: conmon >= 2.0.24
Requires: fuse-overlayfs
Requires: iptables
Requires: libcontainers-common >= 20230214
+%if 0%{?sle_version} <= 150500
+# Build podman with CNI support for SLE-15-SP5 and lower
+Requires: (netavark or cni-plugins)
+# We still want users with fresh installation to start off
+# with Netavark but if they already have cni-plugins installed
+# and are attempting a migration, it's better to continue with cni
+Suggests: netavark
+%else
+Requires: netavark
+%endif
# use crun on Tumbleweed & ALP for WASM support
%if 0%{suse_version} >= 1600
# crun is only available for selected archs (because of criu)
@@ -83,7 +84,7 @@
%else
Requires: runc >= 1.0.1
%endif
-Requires: slirp4netns >= 0.4.0
+Requires: passt
Requires: timezone
Suggests: katacontainers
@@ -142,7 +143,22 @@
%build
# Build podman
-BUILDFLAGS="-buildmode=pie" PREFIX=%{_prefix} %make_build
+BUILDTAGS="$(hack/apparmor_tag.sh) \
+ $(hack/btrfs_installed_tag.sh) \
+ $(hack/btrfs_tag.sh) \
+ $(hack/systemd_tag.sh) \
+ $(hack/libsubid_tag.sh) \
+ exclude_graphdriver_devicemapper \
+ seccomp"
+
+%if 0%{?sle_version} <= 150500
+# Podman >= 5.0.0 disables CNI support by default,
+# update buildtags to build podman with CNI support
+# for SLE-15-SP5 and lower.
+BUILDTAGS="cni $BUILDTAGS"
+%endif
+
+BUILDFLAGS="-buildmode=pie" BUILDTAGS="$BUILDTAGS" PREFIX=%{_prefix}
%make_build
# Build manpages
%make_build docs
@@ -152,7 +168,9 @@
# Updates must be tested manually.
%install
-%make_install PREFIX=%{_prefix} LIBEXECDIR=%{_libexecdir} install.completions
install.docker
+%make_install PREFIX=%{_prefix} LIBEXECDIR=%{_libexecdir}
ETCDIR=%{_sysconfdir} \
+ install.completions \
+ install.docker
# remove the user tmpfile on SLE/Leap as it cannot handle them
%if 0%{?suse_version} == 1500
@@ -219,6 +237,7 @@
%files docker
%{_bindir}/docker
%{_tmpfilesdir}/podman-docker.conf
+%{_sysconfdir}/profile.d/%{name}-docker.*
%if 0%{?suse_version} > 1500
%{_user_tmpfilesdir}/podman-docker.conf
%dir %{_user_tmpfilesdir}
++++++ _service ++++++
--- /var/tmp/diff_new_pack.via9ma/_old 2024-04-04 22:25:37.361906200 +0200
+++ /var/tmp/diff_new_pack.via9ma/_new 2024-04-04 22:25:37.393907378 +0200
@@ -2,7 +2,7 @@
<service name="tar_scm" mode="manual">
<param name="url">https://github.com/containers/podman.git</param>
<param name="scm">git</param>
- <param name="revision">v4.9.3</param>
+ <param name="revision">v5.0.1</param>
<param name="versionformat">@PARENT_TAG@</param>
<param name="changesgenerate">enable</param>
<param name="versionrewrite-pattern">v(.*)</param>
++++++ _servicedata ++++++
--- /var/tmp/diff_new_pack.via9ma/_old 2024-04-04 22:25:37.561913565 +0200
+++ /var/tmp/diff_new_pack.via9ma/_new 2024-04-04 22:25:37.593914742 +0200
@@ -1,6 +1,6 @@
<servicedata>
<service name="tar_scm">
<param
name="url">https://github.com/containers/podman.git</param>
- <param
name="changesrevision">8d2b55ddde1bc81f43d018dfc1ac027c06b26a7f</param></service></servicedata>
+ <param
name="changesrevision">946d055df324e4ed6c1e806b561af4740db4fea9</param></service></servicedata>
(No newline at EOF)
++++++ podman-4.9.3.tar.xz -> podman-5.0.1.tar.xz ++++++
/work/SRC/openSUSE:Factory/podman/podman-4.9.3.tar.xz
/work/SRC/openSUSE:Factory/.podman.new.1905/podman-5.0.1.tar.xz differ: char
15, line 1
