linux/meta-virtualization.git/recipes-containers/buildah, branch master

buildah: update to v1.43.0

2026-03-02T21:16:43+00:00

Bumping buildah to version v1.43.0-1-gbbc4bd12f, which comprises the following commits: 0158b5b31 [release-1.43] Bump Buildah to v1.43.0 f40d38a2f [release-1.43] fix source test 07b8495c8 [release-1.43] Bump common 0.67.0, image 5.39.1, storage 1.62.0 7178b10ac [release-1.43] Bump dest branch in cirrus to 1.43 acca15722 fix(build): make --tag oci-archive:xxx.tar work with simple images 40b5e371e test: do not untar archive into fs when checking file names 45b48af90 tests: use cached images instead of fedoraproject.org 662aa1598 chroot.bats(chroot with overlay root): ensure we can overlay 3877dc97d Run: don't try to encode SystemContext with json c0cc97255 [release-1.42] Bump Buildah to v1.42.2 307d1a3a4 [release-1.42] Bump runc to v1.3.4 de21106b6 [release-1.42] Bump Buildah to v1.42.1 f0700c546 [release-1.42] bump runc to v1.3.3 - CVE-2025-52881 22cd531e9 RPM: build with sequoia on F43+ 1ba41f035 Bump to Buildah v1.42.0 c23bf6bf1 Bump to storage v1.61.0, image v5.38.0, common v0.66.0 858a514ff fix(deps): update module github.com/openshift/imagebuilder to v1.2.19 a0bc52535 fix(deps): update module github.com/openshift/imagebuilder to v1.2.18 4caee77d1 copier: ignore user.overlay.* xattrs 5a849d176 commit: always return the config digest as the image ID 92b342392 fix(deps): update module golang.org/x/crypto to v0.43.0 114aa3d8c fix(deps): update module golang.org/x/sys to v0.37.0 58f0f862b fix(deps): update module github.com/docker/docker to v28.5.1+incompatible 65929b93a fix(deps): update module github.com/moby/buildkit to v0.25.1 31cb2af46 fix(deps): update module github.com/opencontainers/runc to v1.3.2 8efc91385 fix(deps): update module github.com/docker/docker to v28.5.0+incompatible ceff05295 fix(deps): update module github.com/moby/buildkit to v0.25.0 b7961ac34 fix(deps): update github.com/containers/luksy digest to 2cf5bc9 a654d3534 Make some test files different from each other 82702b493 Revert "fix(deps): update module github.com/cyphar/filepath-securejoin to v0.5.0" 3748cda03 Also run integration tests with the Sequoia backend c9c1d764c Allow users to build against podman-sequoia in non-default locations e3468665b fix(deps): update module github.com/cyphar/filepath-securejoin to v0.5.0 5bb6d9e48 .cirrus.yml: Test Vendoring bump golang e3f55fec6 vendor: bump go.podman.io/{common,image,storage} to main 6d0c9ed7e fix(deps): update module golang.org/x/crypto to v0.42.0 fbe61f730 fix(deps): update module github.com/docker/docker to v28.4.0+incompatible 881f14f01 fix(deps): update module github.com/moby/buildkit to v0.24.0 bea03a01d fix(deps): update module github.com/spf13/pflag to v1.0.10 dcb6da097 fix(deps): update module github.com/fsouza/go-dockerclient to v1.12.2 477dd3563 fix(deps): update module github.com/opencontainers/runc to v1.3.1 296a8f3eb fix(deps): update module github.com/opencontainers/cgroups to v0.0.5 1c384c959 fix(deps): update module golang.org/x/sync to v0.17.0 9cd4768bd tests/run.bats: "run masks" test: accept "unreadable" masked directories a18468f70 Run: create parent directories of mount targets with mode 0755 6e4d1ca83 tests/run.bats: "run masks" test: accept "unreadable" masked directories af18a2ea6 New VM images 42d6b68db Suppress a linter warning 7aedebdcc modernize: JSON doesn't do "omitempty" structs, so stop asking 802b06979 modernize: use maps.Copy() instead of iterating over a map to copy it 16680a4df modernize: use strings.CutPrefix/SplitSeq/FieldsSeq ebc9b4049 Update expected/minimum version of Go to 1.24 76c18c897 chroot: use $PATH when finding commands 02e42929f [skip-ci] Update actions/stale action to v10 95591dbc8 Update module github.com/ulikunitz/xz to v0.5.15 [SECURITY] dd4f9fcd6 Update go.sum 7c0c647d6 New VM images ac8573525 Update module github.com/openshift/imagebuilder to v1 3acceccf6 Update module github.com/spf13/cobra to v1.10.1 a0a9ac638 Switch common, storage and image to monorepo. c448438ef Update module github.com/stretchr/testify to v1.11.1 57c9d52c6 Update module go.etcd.io/bbolt to v1.4.3 c4cfbcda8 Handle tagged+digested references when processing --all-platforms fc8d43482 Update module github.com/stretchr/testify to v1.11.0 b436176d4 Add --transient-store global option fc748f85a Support "--imagestore" global flags a20e25136 Commit: don't depend on MountImage(), because .imagestore 13db28cdb Adding mohanboddu as community manager to MAINTAINERS.md 69a50588c Rework how we decide what to filter out of layer diffs bf2cbe164 Note that we have to build `true` first for the sake of its tests 473656b9d copier.Stat(): return owner UID and GID if available 738fa0d3c copier.Get(): ensure that directory entries end in "/" 9461dd61d copier.Get(): strip user and group names from entries fd498cbf5 imagebuildah.Executor/StageExecutor: check numeric --from= values fceb8d9ed Losen the dependency on go-connections/tlsconfig e78c0ad5a fix(deps): update module golang.org/x/crypto to v0.41.0 b49f0e2a5 fix(deps): update module golang.org/x/term to v0.34.0 494fd9dfa fix(deps): update module github.com/docker/go-connections to v0.6.0 4912cf45d fix(deps): update module golang.org/x/sys to v0.35.0 2ae2ec75b copy: assume a destination with basename "." is a directory e31b04729 generatePathChecksum: ignore ModTime, AccessTime and ChangeTime 3e92772f6 fix(deps): update module github.com/seccomp/libseccomp-golang to v0.11.1 11e32da8d fix(deps): update module github.com/containers/common to v0.64.1 70d0451b8 History should note unset-label, timestamp, and rewrite-timestamp 7cecaa79e pkg/cli.GenBuildOptions(): don't hardwire optional bools 7cf2b7fb7 fix(deps): update module github.com/containers/image/v5 to v5.36.1 fb6ce9d07 imagebuildah.StageExecutor.Execute: commit more "no instructions" cases 0d1d1a4df fix(deps): update module github.com/containers/storage to v1.59.1 87f60f60c Only suppress "noted" items when not squashing 27c40b3db Reap stray processes b271aecf4 fix(deps): update github.com/containers/luksy digest to 8fccf78 06207266f fix(deps): update module github.com/docker/docker to v28.3.3+incompatible f949a49ab Restore the default meaning of `--pull` (should be `always`). ff07ebc3e Test that pulled up parent directories are excluded at commit 7d302c38d Exclude pulled up parent directories at commit-time 95013b363 copier.Ensure(): also return parent directories 8807a0097 copier.MkdirOptions: add ModTimeNew e729f60d5 fix(deps): update module github.com/containers/common to v0.64.0 cce5f9c32 Bump to Buildah v1.42.0-dev 8b5354ee8 fix(deps): update module github.com/spf13/pflag to v1.0.7 7a986ebcf CI: make runc tests non-blocking 2df30a83c build,add: add support for corporate proxies Signed-off-by: Bruce Ashfield

buildah: update to v1.41.5

2025-10-14T16:35:28+00:00

Bumping buildah to version v1.41.5-1-g0e4301a18, which comprises the following commits: 7d95c695c Tag v1.41.5 b7b5a915c tests/run.bats: "run masks" test: accept "unreadable" masked directories 913046ac2 Run: create parent directories of mount targets with mode 0755 4094f92e3 [release-1.41] Bump to Buildah v1.41.4 4acf2a549 [release-1.41] c/common to v0.64.2, ulikunitz/xv v0.5.12, docker/docker v28.3.3 b60c59c79 [release-1.41] Bump Buildah to v1.41.3 Signed-off-by: Bruce Ashfield

buildah: update to v1.41.3

2025-08-21T16:00:13+00:00

Bumping buildah to version v1.41.3-1-ga56e49701, which comprises the following commits: b60c59c79 [release-1.41] Bump Buildah to v1.41.3 1f7f1d285 Commit: don't depend on MountImage(), because .imagestore 5442721d4 [release-1.41] Bump to v1.41.2 72e680a9e Rework how we decide what to filter out of layer diffs 870c53c69 Note that we have to build `true` first for the sake of its tests 4fe68bc9b copier.Stat(): return owner UID and GID if available f42946075 copier.Get(): ensure that directory entries end in "/" 9933e7966 copier.Get(): strip user and group names from entries 4ae77145e imagebuildah.Executor/StageExecutor: check numeric --from= values 2de767f3a [release-1.41] Bump Buildah to v1.41.1 0d0c7340e [release-1.41] Bump c/* projects and Buildah to v1.41.1 540cec341 [release-1.41] generatePathChecksum: ignore ModTime, AccessTime f06ea2c5d History should note unset-label, timestamp, and rewrite-timestamp d2e9062ea pkg/cli.GenBuildOptions(): don't hardwire optional bools af12f7539 Only suppress "noted" items when not squashing dee9f3d19 Test that pulled up parent directories are excluded at commit 34b0bc031 Exclude pulled up parent directories at commit-time 4f2feb8f4 copier.Ensure(): also return parent directories 19041cde3 copier.MkdirOptions: add ModTimeNew ea7dfee85 Restore the default meaning of `--pull` (should be `always`). 9f185b777 Bump to Buildah v1.41.0 2b7cb35d0 Bump to c/storage v1.59.0, c/image v5.36.0, 9c525fd52 fix(deps): update module github.com/containers/image/v5 to v5.36.0 b8c6fcf21 fix(deps): update module github.com/containers/storage to v1.59.0 350288967 stage_executor: check platform of cache candidates 96588db2e fix(deps): update module golang.org/x/crypto to v0.40.0 d9443fe42 fix(deps): update module golang.org/x/term to v0.33.0 d6e5cbaf7 fix(deps): update module golang.org/x/sync to v0.16.0 c694e3c7a fix(deps): update module github.com/docker/docker to v28.3.2+incompatible eea4838d8 ADD/COPY --link support added 063ee7625 RPM/TMT: account for passwd binary moving to tests af210ea87 buildah: move passwd command to tests 16c0bdad5 Update "bud with --cpu-shares" test, and rename it 7a482aceb Remove BUILDTAG btrfs_noversion as no longer effective c0fdc9a05 fix(deps): update module github.com/docker/docker to v28.3.1+incompatible 513775f3f fix(deps): update module github.com/moby/buildkit to v0.23.2 34488b549 fix(deps): update github.com/containers/luksy digest to bc60f96 9f809a88f chore(typos): fix typos d95b2dad1 vendor: update c/{common,image,storage} to main b47791a93 chore(deps): update module github.com/go-viper/mapstructure/v2 to v2.3.0 [security] 46e814173 fix(deps): update module go.etcd.io/bbolt to v1.4.2 f172a9d1d Update Neil Smith's GitHub username in MAINTAINERS.md 149bf968f Accept SOURCE_DATE_EPOCH as a build-arg 5bb8d5ed4 fix(deps): update module github.com/docker/docker to v28.3.0+incompatible 0832c3e08 Add conditional release-checking system test 52bbc61e1 info,inspect: use the "formats" package to get some builtins 7944b4b2b Use containers/common's formats package instead of our own 5968d8204 build, commit: set the OCI ...created annotation on OCI images df36bb835 commit: exclude parents of mount targets, too a3bea818b run: clean up parents of mount targets, too 7d5f1e1ca tarFilterer: always flush after writing fce45b77d Builder: drop the TempVolumes field fe4c1b734 Update module github.com/moby/buildkit to v0.23.1 128153867 Update module github.com/opencontainers/cgroups to v0.0.3 5b1d3e666 Add CommitOptions.OmitLayerHistoryEntry, for skipping the new bits 5995db7af Update module github.com/fsouza/go-dockerclient to v1.12.1 c12808594 conformance: use mirrored frontend and base images ee5fd19c8 commit-with-extra-files test: use $TEST_SCRATCH_DIR c578786e5 fix(deps): update module github.com/moby/buildkit to v0.23.0 3e11fea02 "root fs only mounted once" test: accept root with only the rw option f8f398bb3 Run with --device /dev/fuse and not just -v /dev/fuse:/dev/fuse a9a9a4396 CI: pass $BUILDAH_RUNTIME through to in-container test runs b97fd7d68 CI: ensure rootless groups aren't duplicates 47da2f29b build: add support for --inherit-annotations 9ecc98e58 CI: give the rootless test user some supplemental groups ab8fc6dee bud,run: runc does not support keep-groups 2eb666c22 Fix lint issue in TestCommitCompression 873e5458c Add a unit test for compression types in OCI images aa84d9c34 Support zstd compression in image commit 1aa6c1e35 fix(deps): update module go.etcd.io/bbolt to v1.4.1 03b980a3e rpm: build rpm with libsqlite3 tag e5b876571 Makefile: use libsqlite3 build when possible 962ab4bb1 commit,build: --source-date-epoch/--timestamp omit identity label b167073d5 docs: add --setopt "*.countme=false" to dnf examples 9f35e8a2a Builder.sbomScan(): don't break non-root scanners 2d0152e99 build: --source-date-epoch/--timestamp use static hostname/cid 87d9db82c fix(deps): update module golang.org/x/crypto to v0.39.0 5842593d2 fix(deps): update module golang.org/x/sync to v0.15.0 865daceeb build: add --source-date-epoch and --rewrite-timestamp flags 83acf720d build,config: add support for --unsetannotation 6c82e7eac commit: add --source-date-epoch and --rewrite-timestamp flags a4a30cf5e fix(deps): update module github.com/openshift/imagebuilder to v1.2.16 5b26b7922 vendor latest c/{common,image,storage} 9c2b43ccc Tweak our handling of variant values, again db336cef4 Don't BuildRequires: ostree-devel 56f3171ab parse, validateExtraHost: honor Hostgateway in format 56cfd2fdf remove static nix build 2717599f9 Ensure extendedGlob returns paths in lexical order 910933b33 CI: run integration tests on Fedora with both crun and runc b122c325f buildah-build(1): clarify that --cgroup-parent affects RUN instructions 8178c3a5d runUsingRuntime: use named constants for runtime states 4ea64c387 Add a dummy "runtime" that just dumps its config file d53d837e0 run: handle relabeling bind mounts ourselves 913e4d2d3 fix link to Maintainers file c0c4148fc Update to avoid deprecated types 285dcc914 fix(deps): update module github.com/docker/docker to v28.2.0+incompatible 1f6302a6e [skip-ci] Packit: cleanup redundant targets and unused anchors a99ad87af [skip-ci] Packit: set fedora-all after F40 EOL 26f4f3a02 Use Fedora 42 instead of 41 in that one conformance test eee1f2102 [CI:DOCS] README.md: add openssf passing badge 48a4a446e fix(deps): update module github.com/moby/buildkit to v0.22.0 dda8e65e8 copier: add Ensure and ConditionalRemove d568dda6c [CI:DOCS] update a couple of lists in the build man page 3a85df003 build: allow --output to be specified multiple times b9a65a9d8 add: add a new --timestamp flag a57e7f4b2 tests/helpers.bash: add some helpers for parsing images 5cfbf7241 pkg/parse.GetBuildOutput(): use strings.Cut() ca3271a15 [skip-ci] Packit: Disable osh_diff_scan ee0f750ea internal/util.SetHas(): handle maps of [generic]generic cf4635e86 Refactor NewImageSource to add a manifest type abstraction (#5743) 964ec24c1 [skip-ci] Packit: Ignore ELN and CentOS Stream jobs 8f885843d imagebuildah: select most recent layer for cache 7fbca08c0 [CI:DOCS] Add CNCF roadmap, touchup other CNCF files 168eef473 fix(deps): update module golang.org/x/crypto to v0.38.0 ada0ac0b8 Fix typo in comment (#6167) 081e9b308 Support label_users in buildah 27c2c3e4b fix(deps): update module golang.org/x/sync to v0.14.0 ffcbec7f7 fix(deps): update github.com/containers/luksy digest to 4bb4c3f cbe582395 test/serve: fix a descriptor leak, add preliminary directory support f97596adf fix(deps): update module github.com/opencontainers/cgroups to v0.0.2 fd8e85e83 fix(deps): update module github.com/moby/buildkit to v0.21.1 9ac03e6bf Update to avoid deprecated types 7ce7072f2 fix(deps): update module github.com/opencontainers/runc to v1.3.0 a59af89cd Only filter if containerImageRef.created != nil 2dae3b465 Drop superfluous cast 15278aa27 Remove UID/GID scrubbing. ef7ad851a fix(deps): update module github.com/seccomp/libseccomp-golang to v0.11.0 e4cf6cbb9 cirrus: turn prior fedora testing back on 5de286ca8 chore(deps): update dependency containers/automation_images to v20250422 97cf88f50 fix(deps): update module github.com/docker/docker to v28.1.1+incompatible 36adabb2d Bump to Buildah v1.41.0-dev 365ad53df CI vendor_task: pin to go 1.23.3 for now 522bc8ba5 fix(deps): update module github.com/containers/common to v0.63.0 Signed-off-by: Bruce Ashfield

buildah: update to v1.40.1

2025-06-26T16:05:20+00:00

Bumping buildah to version v1.40.0-14-ged56ef16d, which comprises the following commits: 08026ceb3 Builder.sbomScan(): don't break non-root scanners Signed-off-by: Bruce Ashfield

containers: adapt to UNPACKDIR changes

2025-06-26T02:40:08+00:00

This commit updates the container recipes to the OE core UNPACKDIR changes. - We drop references to WORKDIR - We adjust destsuffix fetches to use BB_GIT_DEFAULT_DESTSUFFIX instead of 'git' - Update our GOPATH references to use UNPACKDIR - Drop S = assignemnts where possible Signed-off-by: Bruce Ashfield

buildah: drop SRCREV_FORMAT

2025-03-11T06:06:33+00:00

The source comes from one repo, there's no need to use SRCREV_FORMAT any more. So drop it. Signed-off-by: Chen Qi Signed-off-by: Bruce Ashfield

buildah: update to v1.39.1

2025-03-06T17:17:59+00:00

Bumping buildah to version v1.39.1-1-g1c4d85879, which comprises the following commits: 9347a39c2 Tag v1.39.1 717fb39c4 CI config: post-branch update 7dbd71040 chore(deps): update module github.com/go-jose/go-jose/v4 to v4.0.5 [security] 4c0c3f0b9 chroot createPlatformContainer: use MS_REMOUNT c15ab104a Bump to Buildah v1.39.0 298a64106 Bump c/storage v1.57.1, c/image 5.34.0, c/common v0.62.0 3c7c611c7 Update module github.com/containers/storage to v1.57.0 d11bd71f4 CI, .cirrus: parallelize containerized integration bd2d78e40 ed's comment: cleanup ea39556a6 use seperate blobinfocache for flaky test 72161b3a1 bump CI VMs to 4 CPUs (was: 2) for integration tests 56078ef2d cleanup, debug, and disable parallel in blobcache tests 708fe0aff bats tests - parallelize 670a7bec6 pkg/overlay: cleanups ca957c487 RPM: include check section to silence rpmlint 6cee07f52 RPM: use default gobuild macro on RHEL 2119c8da3 tests: remove masked /sys/dev/block check 4887a4fb1 vendor to latest c/{common,image,storage} 4383e34c0 build, run: record hash or digest in image history 3541a3ce2 Accept image names as sources for cache mounts 9e00b6b39 Run(): always clean up options.ExternalImageMounts 59024c41a refactor: replace golang.org/x/exp with stdlib a67b07957 Update to c/image @main d694644ae fix broken doc link e40f62941 run_freebsd.go: only import runtime-spec once eca1c8e90 fix(deps): update module github.com/docker/docker to v27.5.1+incompatible 678dca8fd bump github.com/vbatts/tar-split 9b9c161ff Add more checks to the --mount flag parsing logic 1ccc34515 chroot mount flags integration test: copy binaries 80100ac44 fix(deps): update module github.com/moby/buildkit to v0.19.0 e7f790296 relabel(): correct a misleading parameter name 6e62bd083 Fix TOCTOU error when bind and cache mounts use "src" values c30f5784d define.TempDirForURL(): always use an intermediate subdirectory 25a3b385a internal/volume.GetBindMount(): discard writes in bind mounts 0f5c6fc50 pkg/overlay: add a MountLabel flag to Options c0efbe821 pkg/overlay: add a ForceMount flag to Options 50210d51c Add internal/volumes.bindFromChroot() f7155c0ab Add an internal/open package 9a9fa9607 fix(deps): update module github.com/containers/common to v0.61.1 ccfd61bdd fix(deps): update module github.com/containers/image/v5 to v5.33.1 9beaf1018 [CI:DOCS] Touch up changelogs 9b55ec998 fix(deps): update module github.com/docker/docker to v27.5.0+incompatible 65b634b7d copy-preserving-extended-attributes: use a different base image 292ecfe0f fix(deps): update github.com/containers/luksy digest to a3a812d 67991e0d5 chore(deps): update module golang.org/x/net to v0.33.0 [security] 6b53330c3 fix(deps): update module golang.org/x/crypto to v0.32.0 727f00bf4 New VM Images e2b33d252 fix(deps): update module github.com/opencontainers/runc to v1.2.4 ac9815992 fix(deps): update module github.com/docker/docker to v27.4.1+incompatible 5a336bf1a fix(deps): update module github.com/containers/ocicrypt to v1.2.1 adf54cde0 Add support for --security-opt mask and unmask 77e357020 Allow cache mounts to be stages or additional build contexts a1dede87e [skip-ci] RPM: cleanup changelog conditionals d18344416 fix(deps): update module github.com/cyphar/filepath-securejoin to v0.3.6 d77314a7a fix(deps): update module github.com/moby/buildkit to v0.18.2 62709d718 Fix an error message in the chroot unit test cfd98d782 copier: use .PAXRecords instead of .Xattrs 4adca286f chroot: on Linux, try to pivot_root before falling back to chroot 5f3975333 manifest add: add --artifact-annotation c41f02130 Add context to an error message f81b26560 Update module golang.org/x/crypto to v0.31.0 e9932b7bb Update module github.com/opencontainers/runc to v1.2.3 ad5b02cdc Update module github.com/docker/docker to v27.4.0+incompatible 2b7e1e9be Update module github.com/cyphar/filepath-securejoin to v0.3.5 a82826f56 CI: don't build a binary in the unit tests task 8eb6b10b0 CI: use /tmp for $GOCACHE 36f6038d3 CI: remove dependencies on the cross-build task 83b280599 CI: run cross-compile task with make -j 2b6cf6452 Update module github.com/docker/docker to v27.4.0-rc.4+incompatible 4afa31d07 Update module github.com/moby/buildkit to v0.18.1 c35374f9c Update module golang.org/x/crypto to v0.30.0 041c1f26f Update golang.org/x/exp digest to 2d47ceb 058a2d37f Update github.com/opencontainers/runtime-tools digest to f7e3563 a34792457 [skip-ci] Packit: remove rhel copr build jobs 7a8312a61 [skip-ci] Packit: switch to fedora-all for copr 564f90f09 Update module github.com/stretchr/testify to v1.10.0 7b45052fd Update module github.com/moby/buildkit to v0.17.2 17ee51d75 Makefile: use `find` to detect source files 75c8852a8 Tests: make _prefetch() parallel-safe 8e525d445 Update module github.com/opencontainers/runc to v1.2.2 eb7a42217 executor: allow to specify --no-pivot-root 6cfd93424 Update module github.com/moby/sys/capability to v0.4.0 135431f8d Makefile: mv codespell config to .codespellrc c2b42c5e4 Fix some codespell errors f0361414d Makefile,install.md: rm gopath stuff c07a5eb56 Makefile: rm targets working on .. 5adb14cbf build: rm exclude_graphdriver_devicemapper tag 967fb5ec1 Makefile: rm unused var f4d4bb240 Finish updating to go 1.22 6832420b6 CI VMs: bump again 147765b45 Bump to Buidah v1.39.0-dev 7aa3b5ee0 Bump to Buildah v1.38.0 e911fe4a2 Bump to c/common v0.61.0, c/image v5.33.0, c/storage v1.56.0 356e4d41e fix(deps): update module golang.org/x/crypto to v0.29.0 6b1e4a58c fix(deps): update module github.com/moby/buildkit to v0.17.1 3a583bf04 fix(deps): update module github.com/containers/storage to v1.56.0 e3950407f tests: skip two ulimit tests 4703b5b0c CI VMs: bump f40 -> f41 2cba66285 tests/tools: rebuild tools when we change versions 3cf2ec21b tests/tools: update golangci-lint to v1.61.0 a7c316ab7 fix(deps): update module github.com/moby/buildkit to v0.17.0 701d6bbe9 Handle RUN --mount with relative targets and no configured workdir 9a5b88d3e tests: bud: make parallel-safe 953fb3259 fix(deps): update module github.com/opencontainers/runc to v1.2.1 d8d117534 fix(deps): update golang.org/x/exp digest to f66d83c fddd1be38 fix(deps): update github.com/opencontainers/runtime-tools digest to 6c9570a 3c4e552eb tests: blobcache: use unique image name 1cd6346b3 tests: sbom: never write to cwd 2797d22ab tests: mkcw: bug fixes, refactor aa7077164 deps: bump runc to v1.2.0 e213d65be deps: switch to moby/sys/userns 855ec0f0c tests/test_runner.sh: remove some redundancies 5abf038dd Integration tests: run git daemon on a random-but-bind()able port 27324c256 fix(deps): update module github.com/opencontainers/selinux to v1.11.1 8b7adfa2c go.mod: remove unnecessary replace 6c85740ba Document more buildah build --secret options aeb6ffeec Add support for COPY --exclude and ADD --exclude options 57bba3469 fix(deps): update github.com/containers/luksy digest to e2530d6 9cf613a2b chore(deps): update dependency containers/automation_images to v20241010 6349dc4a2 fix(deps): update module github.com/cyphar/filepath-securejoin to v0.3.4 873beddba Properly validate cache IDs and sources 0d27af46f [skip-ci] Packit: constrain koji job to fedora package to avoid dupes e0b7b10e6 Audit and tidy OWNERS 714a23c26 fix(deps): update module golang.org/x/crypto to v0.28.0 c7dd90dd7 tests: add quotes to names a018ec2b0 vendor: update c/common to latest 732f77064 CVE-2024-9407: validate "bind-propagation" flag settings 95f2e1020 vendor: switch to moby/sys/capability 37a6bde53 Don't set ambient capabilities 5193f21b0 Document that zstd:chunked is downgraded to zstd when encrypting 271093d51 fix(deps): update module github.com/cyphar/filepath-securejoin to v0.3.3 03ca93fb0 buildah-manifest-create.1: Fix manpage section fea5c3d49 chore(deps): update dependency ubuntu to v24 d0819591d Make `buildah manifest push --all` true by default 2ff91b8b0 chroot: add newlines at the end of printed error messages 5e82f27fb Do not error on trying to write IMA xattr as rootless c07ae2b4c fix: remove duplicate conditions 4bc98d54d fix(deps): update module github.com/moby/buildkit to v0.16.0 128117224 fix(deps): update module github.com/cyphar/filepath-securejoin to v0.3.2 1f02b65c6 Document how entrypoint is configured in buildah config baf91f2b0 In a container, try to register binfmt_misc 81d1256bd imagebuildah.StageExecutor: clean up volumes/volumeCache 80e15584c build: fall back to parsing a TARGETPLATFORM build-arg edc43c4e6 `manifest add --artifact`: handle multiple values b2defd39e Packit: split out ELN jobs and reuse fedora downstream targets 0494df68b Packit: Enable sidetags for bodhi updates 81b357e36 fix(deps): update module github.com/docker/docker to v27.2.1+incompatible 71fc845d0 tests/bud.bats: add git source 47297b3d5 add: add support for git source 5184bf161 Add support for the new c/common pasta options 7bf7da57a vendor latest c/common 8d7286762 fix(deps): update module golang.org/x/term to v0.24.0 e08437000 fix(deps): update module github.com/fsouza/go-dockerclient to v1.12.0 a35380059 packit: update fedora and epel targets 909cca8b1 cirrus: disable f39 testing db2a666dd cirrus: fix fedora names 3f047d49b update to go 1.22 ed881abfe Vendor c/common:9d025e4cb348 9e374f9fd copier: handle globbing with "**" path components cee3c1311 fix(deps): update golang.org/x/exp digest to 9b4947d 9ab093138 fix(deps): update github.com/containers/luksy digest to 2e7307c f88579d1f imagebuildah: make scratch config handling toggleable 01a58991c fix(deps): update module github.com/docker/docker to v27.2.0+incompatible 09c231f83 Add a validation script for Makefile $(SOURCES) 510dd75f6 fix(deps): update module github.com/openshift/imagebuilder to v1.2.15 344366935 New VMs e8e83bb8b Update some godocs, use 0o to prefix an octal in a comment a2629f528 buildah-build.1.md: expand the --layer-label description b695098b0 fix(deps): update module github.com/containers/common to v0.60.2 d0988936b stage_executor: set avoidLookingCache only if mounting stage f1cd5ae4a imagebuildah: additionalContext is not a local built stage 0ade01048 run: fix a nil pointer dereference on FreeBSD ca3b80eb0 CI: enable the whitespace linter 0ad0ffaad Fix some govet linter warnings 662abee0b Commit(): retry committing to local storage on storage.LayerUnknown 8ae99121c CI: enable the gofumpt linter d07c3dfb0 conformance: move weirdly-named files out of the repository a60788c56 fix(deps): update module github.com/docker/docker to v27.1.2+incompatible ec87847c9 fix(deps): update module github.com/containers/common to v0.60.1 fd3aba991 *: use gofmt -s, add gofmt linter 24da18800 *: fix build tags 57d820d37 fix(deps): update module github.com/containers/image/v5 to v5.32.1 3ea43566a Add(): re-escape any globbed items that included escapes 05da9a745 conformance tests: use mirror.gcr.io for most images c39f622d0 unit tests: use test-specific policy.json and registries.conf a1ce1c1ee fix(deps): update module golang.org/x/sys to v0.24.0 c7b7f1272 Update to spun-out "github.com/containerd/platforms" 832ff6cb8 Bump github.com/containerd/containerd ed6dd4227 test/tools/Makefile: duplicate the vendor-in-container target f52158f0e linters: unchecked error abea603df linters: don't end loop iterations with "else" when "then" would fdf1c75cd linters: unused arguments shouldn't have names 6224e9a44 linters: rename checkIdsGreaterThan5() to checkIDsGreaterThan5() ae0d9d002 linters: don't name variables "cap" 282cc38c3 `make lint`: use --timeout instead of --deadline d01e4ede3 Drop the e2e test suite c65328683 fix(deps): update module golang.org/x/crypto to v0.26.0 23f241e6f fix(deps): update module github.com/onsi/gomega to v1.34.1 277d40a2e `make vendor-in-container`: use the caller's Go cache if it exists aac50f661 fix(deps): fix test/tools ginkgo typo dd8715976 fix(deps): update module github.com/onsi/ginkgo/v2 to v2.19.1 34a7ce99b Update to keep up with API changes in storage 00d67a48f fix(deps): update github.com/containers/luksy digest to 1f482a9 987e63a2d install: On Debian/Ubuntu, add installation of libbtrfs-dev e3c1953f7 fix(deps): update module golang.org/x/sys to v0.23.0 5f96e0392 fix(deps): update golang.org/x/exp digest to 8a7402a 9254e5ca8 fix(deps): update module github.com/fsouza/go-dockerclient to v1.11.2 edc1b7752 Use Epoch: 2 and respect the epoch in dependencies. 4e78b5723 Bump to Buildah v1.38.0-dev 5f18ba259 AddAndCopyOptions: add CertPath, InsecureSkipTLSVerify, Retry fields c467bd139 Add PrependedLinkedLayers/AppendedLinkedLayers to CommitOptions 8aa9a1c22 integration tests: teach starthttpd() about TLS and pid files Signed-off-by: Bruce Ashfield

buildah: update to v1.37.5

2025-01-17T19:17:09+00:00

Bumping buildah to version v1.37.5-4-gc0602013a, which comprises the following commits: e4deb56f6 [release-1.37][CI:DOCS] touchup changelog f31d99d24 Update CHANGELOG.md 5fd40b989 [release-1.37] Bump Buildah to v1.37.5 b949f6572 Bump the containers/storage library to v1.55.1 cffa820dc Properly validate cache IDs and sources 93986b888 Packit: constrain koji job to fedora package to avoid dupes 9dfacbb47 Tag v1.37.4 b55cbb8eb vendor: update c/common to v0.60.4 e289e285d CVE-2024-9407: validate "bind-propagation" flag settings 956095ee1 [release-1.37] Bump to Buildah v1.37.3 8165aae9e Do not error on trying to write IMA xattr as rootless a47261ec1 imagebuildah.StageExecutor: clean up volumes/volumeCache 7b28b9e4e `manifest add --artifact`: handle multiple values 8fb01fbc9 Packit: split out ELN jobs and reuse fedora downstream targets a8f37392f Packit: Enable sidetags for bodhi updates 1c0e94ec6 Use Epoch: 2 and respect the epoch in dependencies. eadda3bc0 [release-1.37] Bump Buildah to v1.37.2 a18969dea [release-1.37] Bump c/common to v0.60.2, c/image to v5.32.2 67cc51e90 [release-1.37] Bump to Buildah v1.37.1 02313cf69 [release-1.37] Bump c/common v0.60.1, c/image v5.32.1 Signed-off-by: Bruce Ashfield

buildah: update to v1.37.1

2024-08-20T20:31:31+00:00

Bumping buildah to version v1.37.1-1-g0117c423e, which comprises the following commits: 67cc51e90 [release-1.37] Bump to Buildah v1.37.1 02313cf69 [release-1.37] Bump c/common v0.60.1, c/image v5.32.1 f9de1bbd1 Buildah v1.37.0 7de5d5d6e Bump c/storage, c/image, c/common for v1.37.0 6373be5a1 "build with basename resolving user arg" tests: correct ARG use dcf3ea5fd bud-multiple-platform-no-run test: correct ARG use 3e38e5e13 imagebuildah: always have default values for $TARGET... args ready 7f1fe46fc bump github.com/openshift/imagebuilder to v1.2.14 f6f2da76d fix(deps): update module github.com/docker/docker to v27.1.1+incompatible 5e20b928c fix(deps): update module github.com/cyphar/filepath-securejoin to v0.3.1 54d84483a fix(deps): update module github.com/docker/docker to v27.1.0+incompatible 3ad0fd1ed CI: use local registry, part 2 of 2 52df6e0e0 CI: use local registry, part 1 of 2 2a99f9bcd fix(deps): update module github.com/fsouza/go-dockerclient to v1.11.1 b756a3d00 Revert "fix(deps): update github.com/containers/image/v5 to v5.31.1" b1dff416b Replace libimage.LookupReferenceFunc with the manifests version 9bb25a6da conformance tests: enable testing CompatVolumes 1861c1320 conformance tests: add a test that tries to chown a volume a7098c776 imagebuildah: make traditional volume handling not the default b5eafdf55 StageExecutor.prepare(): mark base image volumes for preservation 5940e721c fix(deps): update module github.com/containers/image/v5 to v5.31.1 e2f080554 Vendor in latest containers/(common, storage, image) 5d8b53910 fix(deps): update module golang.org/x/term to v0.22.0 b08c9cf1c fix(deps): update module golang.org/x/sys to v0.22.0 2d172d50e fix(deps): update golang.org/x/exp digest to 7f521ea aa6f75225 fix(deps): update github.com/containers/luksy digest to a8846e2 d6771f81a imagebuildah.StageExecutor.Copy(): reject new flags for now a63fbba3f bump github.com/openshift/imagebuilder to v1.2.11 21fb5ea4f Rework parsing of --pull flags feb17a95c fix(deps): update module github.com/containers/image/v5 to v5.31.1 d79a36fae imagebuildah.StageExecutor.prepare(): log the --platform flag 3a35d2fd6 CI VMs: bump 14f19e980 buildah copy: preserve owner info with --from= a container or image bfa84dfcb conformance tests: enable testing CompatSetParent bfaee577d containerImageRef.NewImageSource(): move the FROM comment to first 66957cc05 commit: set "parent" for docker format only when requested a7224d167 Update godoc for Builder.EnsureContainerPathAs 75ae17c0f fix(deps): update module github.com/spf13/cobra to v1.8.1 a4cdb7879 fix(deps): update module github.com/containernetworking/cni to v1.2.0 6bef4b71c fix(deps): update module github.com/opencontainers/runc to v1.1.13 fe2fd8620 Change default for podman build to --pull missing b9c43961a fix(deps): update module github.com/containers/common to v0.59.1 5afd52fd9 Clarify definition of --pull options 1480f147f buildah: fix a nil pointer reference on FreeBSD 8b0ecd787 Use /var/tmp for $TMPDIR for vfs conformance jobs 0569f3728 Cirrus: run `df` during job setup 5891afffe conformance: use quay.io/libpod/centos:7 instead of centos:8 56fb08092 Stop setting "parent" in docker format ba0947a3d conformance: check if workdir trims path separator suffixes 9565585a6 push integration test: pass password to docker login via stdin afe1a5dd5 Re-enable the "copy with chown" conformance test f552bd57f healthcheck: Add support for `--start-interval` 420beb248 fix(deps): update module github.com/docker/docker to v26.1.4+incompatible a4f32a142 fix(deps): update module github.com/containerd/containerd to v1.7.18 04e5423ae tests: set _CONTAINERS_USERNS_CONFIGURED=done for libnetwork a9e5a1496 Cross-build on Fedora a42019d61 Drop copyStringSlice() and copyStringStringMap() b8c3530cb fix(deps): update module golang.org/x/crypto to v0.24.0 cb302075b fix(deps): update module github.com/openshift/imagebuilder to v1.2.10 e591844e9 Provide an uptime_netbsd.go 30c2e31d8 Spell unix as "!windows" e47ffc831 Add netbsd to lists-of-OSes 159425c45 fix(deps): update golang.org/x/exp digest to fd00a4e bf33b9291 [skip-ci] Packit: enable c10s downstream sync 7602e9e1d CI VMs: bump, to debian with cgroups v2 9521672fd Document when BlobDirectory is overridden 939a58b96 fix secret mounts for env vars when using chroot isolation 7ff83d505 Change to take a types.ImageReference arg e6c7949aa imagebuildah: Support custom image reference lookup for cache push/pull a33fda67a fix(deps): update module github.com/onsi/ginkgo/v2 to v2.19.0 f39d5fba2 Bump to v1.37.0-dev 671f29870 CI: Clarify Debian use for conformance tests Signed-off-by: Bruce Ashfield

buildah: update to 1.36-tip

2024-07-11T14:07:17+00:00

Bumping buildah to version v1.36.0-2-g0d08edeed, which comprises the following commits: 34518c5fa Packit: enable c10s downstream sync 6ceba8838 Bump to v1.36.0 Signed-off-by: Bruce Ashfield