Sync from SUSE:SLFO:Main google-osconfig-agent revision d5c18ec57e07c76a317ba1be4bf6e85b

2025-02-26 11:43:11 +01:00 · 2025-02-26 11:43:11 +01:00 · 3b42d8dfc4
commit 3b42d8dfc4
parent c914d66be5
8 changed files with 475 additions and 12 deletions
--- a/CVE-2024-45339.patch
+++ b/CVE-2024-45339.patch
@ -0,0 +1,105 @@
+diff -Nru vendor.orig/github.com/golang/glog/glog_file.go vendor/github.com/golang/glog/glog_file.go
+--- vendor.orig/github.com/golang/glog/glog_file.go	2025-01-27 09:02:41.000000000 +0100
+++ vendor/github.com/golang/glog/glog_file.go	2025-02-17 10:28:28.777320262 +0100
+@@ -116,32 +116,53 @@
+ // contains tag ("INFO", "FATAL", etc.) and t.  If the file is created
+ // successfully, create also attempts to update the symlink for that tag, ignoring
+ // errors.
+-func create(tag string, t time.Time) (f *os.File, filename string, err error) {
+func create(tag string, t time.Time, dir string) (f *os.File, filename string, err error) {
+	if dir != "" {
+		f, name, err := createInDir(dir, tag, t)
+		if err == nil {
+			return f, name, err
+		}
+		return nil, "", fmt.Errorf("log: cannot create log: %v", err)
+	}
+
+ 	onceLogDirs.Do(createLogDirs)
+ 	if len(logDirs) == 0 {
+ 		return nil, "", errors.New("log: no log dirs")
+ 	}
+-	name, link := logName(tag, t)
+ 	var lastErr error
+ 	for _, dir := range logDirs {
+-		fname := filepath.Join(dir, name)
+-		f, err := os.Create(fname)
+		f, name, err := createInDir(dir, tag, t)
+ 		if err == nil {
+-			symlink := filepath.Join(dir, link)
+-			os.Remove(symlink)        // ignore err
+-			os.Symlink(name, symlink) // ignore err
+-			if *logLink != "" {
+-				lsymlink := filepath.Join(*logLink, link)
+-				os.Remove(lsymlink)         // ignore err
+-				os.Symlink(fname, lsymlink) // ignore err
+-			}
+-			return f, fname, nil
+			return f, name, err
+ 		}
+ 		lastErr = err
+ 	}
+ 	return nil, "", fmt.Errorf("log: cannot create log: %v", lastErr)
+ }
+ 
+func createInDir(dir, tag string, t time.Time) (f *os.File, name string, err error) {
+	name, link := logName(tag, t)
+	fname := filepath.Join(dir, name)
+	// O_EXCL is important here, as it prevents a vulnerability. The general idea is that logs often
+	// live in an insecure directory (like /tmp), so an unprivileged attacker could create fname in
+	// advance as a symlink to a file the logging process can access, but the attacker cannot. O_EXCL
+	// fails the open if it already exists, thus prevent our this code from opening the existing file
+	// the attacker points us to.
+	f, err = os.OpenFile(fname, os.O_RDWR|os.O_CREATE|os.O_EXCL, 0666)
+	if err == nil {
+		symlink := filepath.Join(dir, link)
+		os.Remove(symlink)        // ignore err
+		os.Symlink(name, symlink) // ignore err
+		if *logLink != "" {
+			lsymlink := filepath.Join(*logLink, link)
+			os.Remove(lsymlink)         // ignore err
+			os.Symlink(fname, lsymlink) // ignore err
+		}
+		return f, fname, nil
+	}
+	return nil, "", err
+}
+
+ // flushSyncWriter is the interface satisfied by logging destinations.
+ type flushSyncWriter interface {
+ 	Flush() error
+@@ -248,6 +269,7 @@
+ 	names  []string
+ 	sev    logsink.Severity
+ 	nbytes uint64 // The number of bytes written to this file
+	madeAt time.Time
+ }
+ 
+ func (sb *syncBuffer) Sync() error {
+@@ -255,9 +277,14 @@
+ }
+ 
+ func (sb *syncBuffer) Write(p []byte) (n int, err error) {
+	// Rotate the file if it is too large, but ensure we only do so,
+	// if rotate doesn't create a conflicting filename.
+ 	if sb.nbytes+uint64(len(p)) >= MaxSize {
+-		if err := sb.rotateFile(time.Now()); err != nil {
+-			return 0, err
+		now := timeNow()
+		if now.After(sb.madeAt.Add(1*time.Second)) || now.Second() != sb.madeAt.Second() {
+			if err := sb.rotateFile(now); err != nil {
+				return 0, err
+			}
+ 		}
+ 	}
+ 	n, err = sb.Writer.Write(p)
+@@ -275,7 +302,8 @@
+ func (sb *syncBuffer) rotateFile(now time.Time) error {
+ 	var err error
+ 	pn := "<none>"
+-	file, name, err := create(sb.sev.String(), now)
+	file, name, err := create(sb.sev.String(), now, "")
+	sb.madeAt = now
+ 
+ 	if sb.file != nil {
+ 		// The current log file becomes the previous log at the end of
--- a/6
+++ b/6
@ -3,8 +3,8 @@
    <param name="url">https://github.com/GoogleCloudPlatform/osconfig</param>
    <param name="scm">git</param>
    <param name="exclude">.git</param>
-    <param name="versionformat">20231219.00</param>
-    <param name="revision">20231219.00</param>
+    <param name="versionformat">20250115.01</param>
+    <param name="revision">20250115.01</param>
    <param name="changesgenerate">enable</param>
  </service>
  <service name="recompress" mode="disabled">
@ -15,6 +15,6 @@
    <param name="basename">osconfig</param>
  </service>
  <service name="go_modules" mode="disabled">
-    <param name="archive">osconfig-20231219.00.tar.gz</param>
+    <param name="archive">osconfig-20250115.01.tar.gz</param>
  </service>
 </services>
--- a/2
+++ b/2
@ -1,4 +1,4 @@
 <servicedata>
 <service name="tar_scm">
                <param name="url">https://github.com/GoogleCloudPlatform/osconfig</param>
-              <param name="changesrevision">629ffb2b12fa9a71c27dc3d0b9df4325060e9345</param></service></servicedata>
+              <param name="changesrevision">61118e25e4aa0e456a6b960d6e6f8bdcb4b678a2</param></service></servicedata>
--- a/google-osconfig-agent.changes
+++ b/google-osconfig-agent.changes
@ -1,3 +1,358 @@
+-------------------------------------------------------------------
+Mon Feb 17 09:40:07 UTC 2025 - John Paul Adrian Glaubitz <adrian.glaubitz@suse.com>
+
+- Add patch to fix vulnerability when creating log files
+  * CVE-2024-45339.patch (bsc#1236560, CVE-2024-45339)
+
+-------------------------------------------------------------------
+Mon Jan 27 16:54:33 UTC 2025 - John Paul Adrian Glaubitz <adrian.glaubitz@suse.com>
+
+- Update to version 20250115.01 (bsc#1236406, bsc#1236407)
+  * Bump cloud.google.com/go/osconfig from 1.14.2 to 1.14.3 (#772)
+- from version 20250115.00
+  * Bump cloud.google.com/go/auth from 0.10.2 to 0.14.0 (#767)
+  * Bump go.opentelemetry.io/otel from 1.32.0 to 1.33.0 (#771)
+  * Bump google.golang.org/protobuf from 1.35.1 to 1.36.2 (#763)
+- from version 20250114.00
+  * Bump golang.org/x/time from 0.8.0 to 0.9.0 (#770)
+- from version 20250113.01
+  * Bump cloud.google.com/go/auth/oauth2adapt from 0.2.5 to 0.2.7 (#766)
+- from version 20250113.00
+  * Bump golang.org/x/net from 0.31.0 to 0.34.0 (#769)
+- from version 20250110.00
+  * Bump golang.org/x/crypto from 0.29.0 to 0.31.0 in the go_modules group (#760)
+  * Bump cloud.google.com/go/longrunning from 0.6.2 to 0.6.3 (#744)
+- from version 20241218.00
+  * Scanners fixes (#720)
+  * Bump cloud.google.com/go/storage from 1.46.0 to 1.47.0 (#736)
+  * Bump go.opentelemetry.io/contrib/detectors/gcp from 1.29.0 to 1.32.0 (#730)
+  * Bump go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp (#738)
+  * Bump golang.org/x/net from 0.30.0 to 0.31.0 (#731)
+- from version 20241118.01
+  * Bump github.com/googleapis/gax-go/v2 from 2.13.0 to 2.14.0 (#737)
+- from version 20241118.00
+  * move example to appropriate directory (#740)
+- from version 20241115.00
+  * Replace sles-15-sp3-sap old deprecated image in e2e tests (#739)
+  * Bump golang.org/x/time from 0.7.0 to 0.8.0 (#734)
+- from version 20241114.03
+  * Bump github.com/GoogleCloudPlatform/opentelemetry-operations-go/detectors/gcp (#735)
+- from version 20241114.02
+  * Bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc (#729)
+- from version 20241114.01
+  * Remove SLES-15-SP2-SAP from e2e tests and add the new SLES-15-SP6 (#733)
+  * Bump golang.org/x/crypto from 0.28.0 to 0.29.0 (#728)
+  * Bump go.opentelemetry.io/otel/sdk/metric from 1.30.0 to 1.32.0 (#727)
+- from version 20241114.00
+  * Add example to run exec script from the gcs bucket (#732)
+  * Bump cel.dev/expr from 0.16.1 to 0.18.0 (#723)
+- from version 20241112.00
+  * Bump golang.org/x/oauth2 from 0.23.0 to 0.24.0 (#722)
+  * Bump github.com/GoogleCloudPlatform/opentelemetry-operations-go/exporter/metric (#721)
+  * Bump google.golang.org/grpc from 1.67.1 to 1.68.0 (#725)
+  * Bump github.com/golang/glog from 1.2.2 to 1.2.3 (#715)
+  * Bump google.golang.org/api from 0.203.0 to 0.205.0 (#716)
+- from version 20241107.01
+  * Bump github.com/envoyproxy/go-control-plane from 0.13.0 to 0.13.1 (#717)
+  * Bump github.com/GoogleCloudPlatform/opentelemetry-operations-go/internal/resourcemapping (#718)
+  * Bump cloud.google.com/go/auth from 0.10.0 to 0.10.1 (#719)
+- from version 20241107.00
+  * Bump cloud.google.com/go/logging from 1.11.0 to 1.12.0 (#709)
+  * Bump cloud.google.com/go/iam from 1.2.1 to 1.2.2 (#710)
+  * Bump cloud.google.com/go/storage from 1.43.0 to 1.46.0 (#713)
+  * Bump cloud.google.com/go/osconfig from 1.14.1 to 1.14.2 (#708)
+  * Bump cloud.google.com/go/auth/oauth2adapt from 0.2.4 to 0.2.5 (#712)
+- from version 20241106.00
+  * Update OWNERS (#714)
+- from version 20241029.01
+  * remove toolchain override (#706)
+  * Bump go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp (#701)
+- from version 20241029.00
+  * Bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc (#702)
+- from version 20241028.00
+  * Bump cloud.google.com/go/longrunning from 0.6.0 to 0.6.2 (#705)
+- from version 20241017.00
+  * Add a new CloudBuild trigger config-file for auto updating the
+    presubmit test container image on every new commit (#704)
+- from version 20241004.00
+  * Add new packagebuild presubmit that will use cloud-build (#694)
+- from version 20240927.00
+  * Third batch of dependencies upgrade (#690)
+- Bump the golang compiler version to 1.22.4 (bsc#1225974, CVE-2024-24790)
+
+-------------------------------------------------------------------
+Wed Oct 30 10:54:08 UTC 2024 - John Paul Adrian Glaubitz <adrian.glaubitz@suse.com>
+
+- Update to version 20240926.03 (bsc#1231775, bsc#1231776)
+  * Revert "Bump go.opentelemetry.io/otel from 1.24.0 to 1.30.0 (#679)" (#684)
+- from version 20240926.02
+  * Bump go.opentelemetry.io/otel from 1.24.0 to 1.30.0 (#679)
+  * another batch of depencies upgrade (#683)
+- from version 20240926.01
+  * aggregate dependabot changes to go.mod (#677)
+  * Revert back Source package info delivery to control-plane (#673)
+- from version 20240926.00
+  * Update OWNERS (#676)
+- from version 20240924.02
+  * Upgrade grpc and it's dependencies to latest version (#672)
+- from version 20240924.01
+  * Implement keepalive config (#671)
+- from version 20240924.00
+  * Set new version of gRPC for test (#669)
+- from version 20240920.00
+  * Revert "bump version of the gRPC" (#667)
+- from version 20240919.00
+  * bump version of the gRPC (#666)
+- from version 20240917.00
+  * Merge pull request #665 from GoogleCloudPlatform/revert-664-update_grpc_dependency
+  * Revert "Update grpc library and other dependencies. (#664)"
+- from version 20240916.00
+  * Update grpc library and other dependencies. (#664)
+- from version 20240913.00
+  * Move packagebuild presubmit to osconfig (#662)
+- from version 20240912.00
+  * Revert "update osconfig api to v1.13.0 & indirect dependency update" (#659)
+- from version 20240822.00
+  * Revert "Source package info delivery to control-plane (#639)" (#656)
+- from version 20240821.00
+  * Fix golang version format to fix builds. (#655)
+- from version 20240814.01
+  * Use gcsfuse pkg in guest-policies e2e in pkg
+    update tests instead of old pkgs (#653)
+  * Replace osconfig-agent-test pkg by gcsfuse in ospolicies
+    tests and inventory-report tests (#652)
+- from version 20240806.00
+  * Disable Repository Resource test for SLES-12 (#650)
+
+-------------------------------------------------------------------
+Mon Aug  5 10:43:39 UTC 2024 - John Paul Adrian Glaubitz <adrian.glaubitz@suse.com>
+
+- Update to version 20240801.00
+  * Fix Debian-12 failing test by using gcsfuse pkg
+  * Fix fetching gpg key unit tests (#649)
+- from version 20240729.00
+  * Fix for old state file on Windows (#648)
+- from version 20240723.00
+  * Add debugging logs for repository resource config (#646)
+- from version 20240718.00
+  * Fix SLES-12 SP5 RPM package-resource e2e test (#645)
+- from version 20240715.01
+  * Fix OSPolicies e2e tests for SLES-15 SP5 by removing
+    zypper update from VMs startup script (#644)
+- from version 20240715.00
+  * Fix GuestPolicies e2e tests for SLES-15 SP5 by removing
+    zypper update from VMs startup script (#643)
+- from version 20240709.01
+  * Source package info delivery to control-plane (#639)
+- from version 20240709.00
+  * Enable gpgcheck flag for RPM e2e tests (#638)
+- from version 20240708.00
+  * Update osconfig api to v1.13.0
+  * Indirect dependency update (#637)
+- from version 20240705.01
+  * Updating Windows & Linux Chrome packages
+    to fix failing e2e tests (#636)
+- from version 20240705.00
+  * Merge pull request #635 from Gulio/patch-1
+  * Update OWNERS
+- from version 20240702.02
+  * Remove RHEL-7 and CentOS-7 images from e2e tests (#634)
+
+-------------------------------------------------------------------
+Tue Jul  2 14:09:01 UTC 2024 - John Paul Adrian Glaubitz <adrian.glaubitz@suse.com>
+
+- Update to version 20240702.01
+  * Use Debian-11 img in googet pkg build workflow (#632)
+- from version 20240702.00
+  * Pipeline testing 00 (#631)
+- from version 20240701.00
+  * update readme file (#628)
+- from version 20240625.01
+  * Updating yum install to support multi architecture based packages
+  * Revert "Adding Architecture to the packages being installed/updated in yum repo"
+- from version 20240625.00
+  * Update old SLES images urls (#627)
+- from version 20240620.00
+  * Merge pull request #626 from GoogleCloudPlatform/yum-multiarch-fix
+  * Adding Architecture to the packages being installed/updated in yum repo
+- from version 20240618.01
+  * Extract source_name(source_rpm) for rpm packages (#624)
+- from version 20240618.00
+  * update README.md file (#625)
+- from version 20240615.00
+  * Fix(dpkg) return onlt installed items as inventory (#623)
+  * Extract source name and version for dpkg packages. (#622)
+
+-------------------------------------------------------------------
+Fri Jun 14 10:12:06 UTC 2024 - John Paul Adrian Glaubitz <adrian.glaubitz@suse.com>
+
+- Update to version 20240607.00
+  * Update e2e tests to use VMM team's GCP project for pkgs testing version (#621)
+- from version 20240606.00
+  * Disable SUSE tests to run with testing agent repo (#619)
+- from version 20240604.00
+  * Fix the logic of pick region for Artifact Registry function (#618)
+- from version 20240603.00
+  * Disable centos-stream-8 tests as it reached EOL in May 31 (#617)
+- from version 20240529.00
+  * Merge pull request #610 from savijatv/patch-3
+  * Update cis-level1-once-a-day-policy.yaml
+- from version 20240528.00
+  * Merge pull request #616 from MahmoudOuka/allow-windows-e2e-tests-to-\
+    install-testing-version-of-agent-from-private-artifact-registry-repos
+  * Allow Windows e2e tests to pull osconfig-agent pkg from testing (private)
+    repos from Artifact registry
+- from version 20240527.01
+  * Merge pull request #615 from MahmoudOuka/fix-SUSE-e2e-tests
+  * fix SUSE e2e tests
+- from version 20240527.00
+  * Merge pull request #614 from MahmoudOuka/allow-apt-and-yum-\
+    e2e-tests-to-pull-osconfig-agent-pkg-from-testing-repos
+  * fix golint comments
+  * Allow Apt & Yum e2e tests to pull osconfig-agent pkg from testing repos
+- from version 20240524.03
+  * Merge pull request #611 from savijatv/patch-ospolicy-samples
+  * Update to the CIS OS policy samples
+- from version 20240524.00
+  * Merge pull request #612 from MahmoudOuka/update-apt-e2e-tests-\
+    to-pull-osconfig-agent-pkg-from-new-ar-repos
+  * fix golint comment
+  * Update Apt e2e tests to pull osconfig-agent pkg from new AR repos instead of rapture
+- from version 20240523.02
+  * bump golang.org/x/crypto version (#613)
+- from version 20240523.00
+  * update go-cmp dependency (#604)
+- from version 20240522.00
+  * rollback masive dependency update (#603)
+  * Bump google.golang.org/api from 0.180.0 to 0.181.0 (#596)
+
+-------------------------------------------------------------------
+Wed May 22 11:04:41 UTC 2024 - John Paul Adrian Glaubitz <adrian.glaubitz@suse.com>
+
+- Update to version 20240517.00
+  * Bump cloud.google.com/go/auth from 0.4.1 to 0.4.2 (#597)
+- from version 20240516.01
+  * Bump cloud.google.com/go/logging from 1.9.0 to 1.10.0 (#595)
+  * Bump cloud.google.com/go/storage from 1.40.0 to 1.41.0 (#594)
+- from version 20240516.00
+  * Bump google.golang.org/grpc from 1.63.2 to 1.64.0 (#593)
+
+-------------------------------------------------------------------
+Thu May 16 12:33:50 UTC 2024 - John Paul Adrian Glaubitz <adrian.glaubitz@suse.com>
+
+- Update to version 20240513.02
+  * E2e tests: allow passing spesific EL version
+    number to InstallOSConfigEL func (#592)
+- from version 20240513.01
+  * Bump google.golang.org/api from 0.179.0 to 0.180.0 (#591)
+- from version 20240513.00
+  * E2e tests: Fix EL version detection logic in E2E tests (#590)
+  * Bump google.golang.org/api from 0.178.0 to 0.179.0 (#589)
+- from version 20240510.02
+  * Bump cloud.google.com/go/auth from 0.4.0 to 0.4.1 (#588)
+- from version 20240510.01
+  * E2e tests: use family url format instead of specific
+    version URL for head test images (#587)
+- from version 20240510.00
+  * Fix for lock location (#586)
+- from version 20240509.03
+  * Bump cloud.google.com/go from 0.112.2 to 0.113.0 (#584)
+- from version 20240509.02
+  * Remove dependabot not needed label (#576)
+- from version 20240509.01
+  * Write inventory to attributes only if enabled (#486)
+- from version 20240509.00
+  * E2e tests: install gnupg2 and run apt update in VMs startup-scripts (#583)
+  * Add a temporary e2e test image for Ubuntu to test
+    the latest osconfig-agent stable version (#582)
+  * Bump google.golang.org/api from 0.177.0 to 0.178.0 (#578)
+  * Bump github.com/googleapis/gax-go/v2 from 2.12.3 to 2.12.4 (#579)
+  * Bump cloud.google.com/go/iam from 1.1.7 to 1.1.8 (#577)
+  * Bump cloud.google.com/go/auth from 0.3.0 to 0.4.0 (#580)
+  * Bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc (#581)
+  * Bump golang.org/x/net from 0.24.0 to 0.25.0 (#575)
+  * Bump cloud.google.com/go/osconfig from 1.12.6 to 1.12.7 (#573)
+  * Bump go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp (#574)
+  * Bump cloud.google.com/go/longrunning from 0.5.6 to 0.5.7 (#571)
+- from version 20240508.08
+  * Bump github.com/golang/glog from 1.2.0 to 1.2.1 (#572)
+- from version 20240508.07
+  * Bump golang.org/x/text from 0.14.0 to 0.15.0 (#565)
+- from version 20240508.06
+  * Bump golang.org/x/oauth2 from 0.19.0 to 0.20.0 (#566)
+  * Bump golang.org/x/sys from 0.19.0 to 0.20.0 (#564)
+- from version 20240508.05
+  * Bump go.opentelemetry.io/otel/trace from 1.24.0 to 1.26.0 (#563)
+- from version 20240508.04
+  * Bump google.golang.org/protobuf from 1.34.0 to 1.34.1 (#567)
+  * Using the default reviewer set for PR approvals (#570)
+- from version 20240508.03
+  * Adding advanced CodeQL settings to scan on PRs (#569)
+- from version 20240508.02
+  * Update Debian-12 package build workflow to use debian-cloud project (#568)
+- from version 20240508.01
+  * Dependabot dependency updates (#562)
+- from version 20240508.00
+  * Revert "Initial configuration of the dependabot
+    for the direct and indirect d…" (#561)
+  * Initial configuration of the dependabot for the
+    direct and indirect dependency scanning (#560)
+- from version 20240507.00
+  * Fix Debian-12 package build workflow typo (#559)
+- from version 20240506.00
+  * Use signed-by keyring approach for apt repos in Debian 12+ and Ubuntu 24+ (#558)
+- from version 20240501.03
+  * Logrus dependency update (#557)
+- from version 20240501.02
+  * Updating dependencies and respective checksums (#556)
+- from version 20240501.01
+  * Update go.mod (#554)
+- from version 20240501.00
+  * Bump golang.org/x/net from 0.17.0 to 0.23.0 (#542)
+- from version 20240430.01
+  * Remove SBOM generation logic from package build workflows (#553)
+- from version 20240425.00
+  * Fix e2e tests for exec-output size limit (#552)
+- from version 20240424.00
+  * Disabled some images which are either past EoL or broken (#549)
+- from version 20240423.01
+  * Copy packagebuild folder from guest-test-infra repo to osconfig repo (#545)
+  * OS Config windows state file location changed (#544)
+- from version 20240423.00
+  * Removed debian-10 from e2e tests (#548)
+- from version 20240422.00
+  * Merge pull request #541 from GoogleCloudPlatform/michaljankowiak-patch-1
+  * Update OWNERS
+- from version 20240409.00
+  * Bump output size limit to 500KB (#538)
+
+-------------------------------------------------------------------
+Fri Mar 22 13:36:36 UTC 2024 - John Paul Adrian Glaubitz <adrian.glaubitz@suse.com>
+
+- Update to version 20240320.00 (bsc#1221900, bsc#1221901)
+  * Enable OSConfig agent to read GPG keys files with multiple entities (#537)
+- from version 20240314.00
+  * Update OWNERS file to replace mahmoudn GitHub
+    username by personal email GitHub username (#534)
+- from version 20240313.01
+  * Bump google.golang.org/protobuf from 1.30.0 to 1.33.0 in /e2e_tests (#535)
+- from version 20240313.00
+  * Adds a console and gcloud example policies (#533)
+- from version 20240228.00
+  * GuestPolicies e2e: Remove ed package if exist for zypper
+    startup_script in recipe-steps tests (#532)
+- from version 20240126.00
+  * Fix Enterprise Linux Recipe-Steps tests to install
+    info dependency package in the startup-script (#530)
+- from version 20240125.01
+  * Fix SUSE pkg-update and pkg-no-update e2e tests (#529)
+- from version 20240125.00
+  * Fix zypper patch info parser to consider conflicts-pkgs float versions (#528)
+- from version 20240123.01
+  * Fix SUSE package update e2e tests to use another existing package (#527)
+- from version 20240123.00
+  * Update cis-exclude-check-once-a-day.yaml (#526)
+
 -------------------------------------------------------------------
 Thu Jan  4 12:24:10 UTC 2024 - John Paul Adrian Glaubitz <adrian.glaubitz@suse.com>

@ -93,7 +448,7 @@ Thu Aug 31 12:31:38 UTC 2023 - John Paul Adrian Glaubitz <adrian.glaubitz@suse.c
  * Added burov, dowgird, paulinakania and Gulio to OWNERS (#482)

 -------------------------------------------------------------------
->>>>>>> ./google-osconfig-agent.changes.new
+
 Fri Jul  7 09:33:36 UTC 2023 - John Paul Adrian Glaubitz <adrian.glaubitz@suse.com>

 - Update to version 20230706.02 (bsc#1212418, bsc#1212759)
--- a/google-osconfig-agent.spec
+++ b/google-osconfig-agent.spec
@ -24,7 +24,7 @@
 %global import_path     %{provider_prefix}

 Name:           google-osconfig-agent
-Version:        20231219.00
+Version:        20250115.01
 Release:        0
 Summary:        Google Cloud Guest Agent
 License:        Apache-2.0
@ -33,7 +33,9 @@ URL:            https://%{provider_prefix}
 Source0:        %{repo}-%{version}.tar.gz
 Source1:        vendor.tar.gz
 Source2:        rpmlintrc
-BuildRequires:  golang(API) = 1.21
+# PATCH-FIX-UPSTREAM - gh/golang/glog#74 - Fix vulnerability when creating log files (CVE-2024-45339)
+Patch0:         CVE-2024-45339.patch
+BuildRequires:  golang(API) >= 1.22.4
 BuildRequires:  golang-packaging
 Requires:       google-guest-configs
 BuildRoot:      %{_tmppath}/%{name}-%{version}-build
@ -49,6 +51,7 @@ Google Cloud OSConfig Agent
 %prep
 %setup -q -n %{repo}-%{version}
 %setup -q -D -T -a 1 -n %{repo}-%{version}
+%patch -P0 -p0

 %build
 %goprep %{import_path}
--- a/osconfig-20231219.00.tar.gz
+++ b/osconfig-20231219.00.tar.gz
--- a/osconfig-20250115.01.tar.gz
+++ b/osconfig-20250115.01.tar.gz
--- a/vendor.tar.gz
+++ b/vendor.tar.gz