- Bump version: 9.24.30 → 9.24.31
- Fix LABEL detection (#2112) When only "root=" is specified on the kernel command line the match is located in the first group. Loop through the groups upon mtach to find what we are looking for. - Preserve LABEL setting (#2108) Preserve the LABEL= setting when the grub config file is re-generated. the GRUB_ENABLE_LINUX_LABEL setting does not exists upstream and not in any SUSE distribution. Set the grub setting such that LABEL is preserved on SUSE distros. (bsc#1197616) - Fix test_setup_default_grub_empty_kernelcmdline The unit test exists to check that GRUB_CMDLINE_LINUX_DEFAULT is not set depending on the provided cmdline. The test exists for reasons explained in Issue #1650 - Don't compress .appx containers (#2106) The container is actually inside and already compressed. - Added new CloneDevice class Added CloneDevice class to the storage interface. The class allows to create clone(s) from a given source block device into a list of target block devices. The target block devices are clones of the source but prevents device naming conflicts for unique identifiers like the UUID. This is requires to still allow to boot from images containing device clones and needs to be handled by tools that might work on top of the cloned OBS-URL: https://build.opensuse.org/package/show/Virtualization:Appliances:Builder/python-kiwi?expand=0&rev=215
This commit is contained in:
parent
acd8e8f205
commit
b973cbbca4
4
PKGBUILD
4
PKGBUILD
@ -3,7 +3,7 @@
|
||||
|
||||
pkgname=('python-kiwi' 'kiwi-man-pages' 'dracut-kiwi-lib' 'dracut-kiwi-oem-repart' 'dracut-kiwi-oem-dump' 'dracut-kiwi-live' 'dracut-kiwi-overlay')
|
||||
arch=(x86_64)
|
||||
pkgver=9.24.29
|
||||
pkgver=9.24.31
|
||||
pkgrel=0
|
||||
pkgdesc="KIWI - Appliance Builder Next Generation"
|
||||
url="https://github.com/SUSE/kiwi/tarball/master"
|
||||
@ -12,7 +12,7 @@ makedepends=(python-setuptools gcc shadow grep)
|
||||
provides=(kiwi-ng kiwi)
|
||||
source=("${pkgname}.tar.gz")
|
||||
changelog="${pkgname}.changes"
|
||||
md5sums=('c51c42f644d65b25a421121a487feda7')
|
||||
md5sums=('e91a5ecdb06eea3ce9a4576fd9b8058c')
|
||||
|
||||
|
||||
build() {
|
||||
|
@ -1,3 +1,355 @@
|
||||
-------------------------------------------------------------------
|
||||
Wed Apr 06 16:39:44 CEST 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Bump version: 9.24.30 → 9.24.31
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Apr 06 08:30:38 CEST 2022 - Robert Schweikert <rjschwei@suse.com>
|
||||
|
||||
- Fix LABEL detection (#2112)
|
||||
|
||||
When only "root=" is specified on the kernel command line the match is
|
||||
located in the first group. Loop through the groups upon mtach to find
|
||||
what we are looking for.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Apr 05 17:22:31 CEST 2022 - Robert Schweikert <rjschwei@suse.com>
|
||||
|
||||
- Preserve LABEL setting (#2108)
|
||||
|
||||
Preserve the LABEL= setting when the grub config file is re-generated.
|
||||
the GRUB_ENABLE_LINUX_LABEL setting does not exists upstream and
|
||||
not in any SUSE distribution. Set the grub setting such that LABEL
|
||||
is preserved on SUSE distros. (bsc#1197616)
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Apr 05 15:57:23 CEST 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Fix test_setup_default_grub_empty_kernelcmdline
|
||||
|
||||
The unit test exists to check that GRUB_CMDLINE_LINUX_DEFAULT
|
||||
is not set depending on the provided cmdline. The test exists
|
||||
for reasons explained in Issue #1650
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Fri Apr 01 12:30:17 CEST 2022 - Fabian Vogt <fvogt@suse.de>
|
||||
|
||||
- Don't compress .appx containers (#2106)
|
||||
|
||||
The container is actually inside and already compressed.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Fri Apr 01 12:19:16 CEST 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Added new CloneDevice class
|
||||
|
||||
Added CloneDevice class to the storage interface.
|
||||
The class allows to create clone(s) from a given source
|
||||
block device into a list of target block devices.
|
||||
The target block devices are clones of the source but
|
||||
prevents device naming conflicts for unique identifiers
|
||||
like the UUID. This is requires to still allow to boot
|
||||
from images containing device clones and needs to be
|
||||
handled by tools that might work on top of the cloned
|
||||
devices.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Mar 31 22:04:52 CEST 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Improve readability of shell commands
|
||||
|
||||
The way the lsblk pipeline is constructed is improved
|
||||
to become easier to read by this commit
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Mar 31 17:05:59 CEST 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Added set_uuid() method to FileSystem API
|
||||
|
||||
Allow to set a custom UUID not only at creation time of
|
||||
a filesystem but also at a later point in time in an
|
||||
already existing filesystem
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Mar 29 19:19:56 CEST 2022 - David Cassany <dcassany@suse.com>
|
||||
|
||||
- Ensure BootloaderConfig resources are cleaned first
|
||||
|
||||
This commit wraps the manual BootloaderConfig instance cleanup in
|
||||
disk builder into a try/finally scope. This way if KIWI is aborted
|
||||
or fails within this scope the BootloaderConfig is cleaned up first.
|
||||
|
||||
Signed-off-by: David Cassany <dcassany@suse.com>
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Mar 29 16:37:13 CEST 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Fixed overlay root dracut module
|
||||
|
||||
make sure there is always only one selection for the
|
||||
readonly root partition
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Mar 29 14:39:53 CEST 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Update LUKS integration test for TW
|
||||
|
||||
Use cipher options to make cryptomount work again
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Mar 29 10:30:24 CEST 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Set LUKS(v1) for TW encryption integration test
|
||||
|
||||
In Tumbleweed LUKS2 became the default but the grub cryptomount
|
||||
tool is not able to work with the v2 LUKS header. Thus the test
|
||||
explicitly builds against the former luks version for now
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Mar 29 10:05:19 CEST 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Set LUKS2 for TW luks encryption integration test
|
||||
|
||||
In Tumbleweed LUKS2 became the default also for grub
|
||||
and cryptomount, which requires to create a LUKS2 header
|
||||
in the dm_crypt layer
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Mar 29 09:40:19 CEST 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Bump version: 9.24.29 → 9.24.30
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon Mar 28 10:18:27 CEST 2022 - Tim Serong <tserong@suse.com>
|
||||
|
||||
- Add ensure_empty_tmpdirs option for OCI containers (bsc#1197783)
|
||||
|
||||
Since #1759 was merged, the contents of /run/ and /tmp/ are excluded from
|
||||
built images. This causes problems for some containers, notably Ceph when
|
||||
deployed in a Rook/k8s environment, which needs to have certain directories
|
||||
present inside /run/. This commit adds the ability to return to the previous
|
||||
behaviour and *not* empty those temporary directories, if you specify
|
||||
<image><preferences><type [...] ensure_empty_tmpdirs="false">.
|
||||
|
||||
Fixes: https://github.com/OSInside/kiwi/issues/2093
|
||||
Signed-off-by: Tim Serong <tserong@suse.com>
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Fri Mar 25 08:55:26 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Fixed parsing of veritysetup output
|
||||
|
||||
veritysetup uses tabs to align values. The way kiwi parsed
|
||||
the values did not strip out the tabs and later on keeps
|
||||
them in the verification metadata block. The unit test
|
||||
did not catch this because the mock output used for
|
||||
veritysetup did not contain tabs. This commit fixes the
|
||||
test to catch this condition and also fixes the code to
|
||||
handle all space characters (tabs, space, newlines) in
|
||||
a safe way
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Mar 24 16:28:11 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Update contents of store_credentials result file
|
||||
|
||||
The method added information about the PARTUUID as useful
|
||||
information. However, PARTUUID's are not supported by all
|
||||
partition tables. The Linux generated artificial values
|
||||
from the disk identifier are not wanted in this scope.
|
||||
As the information is not mandatory it's better to not
|
||||
provide it at all and avoid confusion to users.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Mar 24 16:26:18 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Make blkid call more robust
|
||||
|
||||
Do not raise of blkid is not able to read the requested ID.
|
||||
It is expected that the methods of the BlockID class either
|
||||
returns a value or none but do not raise and cause the
|
||||
complete process to terminate
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Mar 24 15:57:19 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Added embed_verity_metadata attribute
|
||||
|
||||
Specifies to write a binary block at the end of the
|
||||
partition serving the root filesystem, containing information
|
||||
for dm_verity verification and to construct the device map
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Mar 24 14:38:15 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Added create_verification_metadata method
|
||||
|
||||
Along with creating a filesystem including device mapper features
|
||||
like dm_verity (see verity_blocks) or dm_crypt/dm_integrity (see luks)
|
||||
there is always the question where to store the metadata information
|
||||
required to setup the device map. This can include information about
|
||||
blocksizes, offset addresses and more. The create_verification_metadata()
|
||||
method allows to write a signed custom data block of a documented
|
||||
format at the end of the given block special which stores this type
|
||||
of information such that tools at boot time gets the opportunity to
|
||||
read this information. In this commit only information connected
|
||||
to the dm_verity feature activated via the verity_blocks attribute
|
||||
will be part of the verification block. With future changes other
|
||||
data might be added
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Mar 23 16:38:20 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Added runtime check for by-partuuid use
|
||||
|
||||
Added check_partuuid_persistency_type_used_with_mbr(). Not
|
||||
every partition table type supports UUIDs. We don't want to
|
||||
make use of the artifical values created by Linux if the
|
||||
partition table doesn't support it natively
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Mar 23 11:21:59 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Support partuuid and label mounts in dracut module
|
||||
|
||||
The 90kiwi-overlay dracut module was not able to parse the
|
||||
device link if done with PARTUUID or LABEL
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Mar 23 09:46:05 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Added integration test for by-partuuid
|
||||
|
||||
The test hooks into the existing test-image-embedded integration
|
||||
test for leap. As I plan to extend the tests specific to features
|
||||
actually only useful for special embedded images, I thought this
|
||||
would be the right place to start
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon Mar 21 10:19:04 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- validate luksformat options
|
||||
|
||||
validate options against the cryptsetup help info
|
||||
in a runtime check
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon Mar 21 09:45:55 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Handle LUKS type in its own attribute
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Sun Mar 20 16:21:48 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Fixed attribute description
|
||||
|
||||
The overlayroot_verity_blocks attribute description
|
||||
contained outdated information
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Sat Mar 19 22:54:02 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Add support for verity setup on standard rootfs
|
||||
|
||||
So far the verity support was only available with the
|
||||
overlayroot layout and the read-only squashfs root. This
|
||||
commit adds a new attribute: verity_blocks="number|all"
|
||||
which allows to create the verity setup also on the
|
||||
standard root partition
|
||||
|
||||
In addition to the change it was needed to extend the
|
||||
Filesystem API with an additional optional paramter to
|
||||
allow setup of the filesystem UUID. Having the opportunity
|
||||
to set the UUID at filesystem creation is generally useful
|
||||
and with regards to this particular change it became also
|
||||
required
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Fri Mar 18 12:10:39 CET 2022 - Neal Gompa <ngompa13@gmail.com>
|
||||
|
||||
- Allow Btrfs and XFS as options for the boot partition filesystem
|
||||
|
||||
We already do this implicitly when we do not define this attribute
|
||||
and request a boot partition, so let us explicitly offer these as
|
||||
options too.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Fri Mar 18 11:39:33 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Fix grub defaults for PARTUUID use
|
||||
|
||||
Make sure to set GRUB_DISABLE_LINUX_PARTUUID to false
|
||||
when using by-partuuid
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Mar 17 21:36:40 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Allow luks format options
|
||||
|
||||
Added new luksformat element which allows to pass
|
||||
along options to the luksFormat call. This allows users to
|
||||
switch between LUKS and LUKS2 via e.g
|
||||
|
||||
<luksformat>
|
||||
<option name="--type" value="luks2"/>
|
||||
</luksformat>
|
||||
|
||||
It also allows to pass along a set of options only available
|
||||
to LUKS2, e.g
|
||||
|
||||
<luksformat>
|
||||
<option name="--type" value="luks2"/>
|
||||
<option name="--cipher" value="aes-gcm-random"/>
|
||||
<option name="--integrity" value="aead"/>
|
||||
</luksformat>
|
||||
|
||||
In addition to the new attribute the existing luks attribute
|
||||
can also be specified to read credentials from a keyfile by
|
||||
using the file:// source locator, e.g
|
||||
|
||||
<type ... luks="file:///path/to/a/keyfile"/>
|
||||
|
||||
This Fixes #1898
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Sat Mar 12 18:11:01 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Fixed funny build_status.sh bug
|
||||
|
||||
If the name of the repository starts with an 'F' like
|
||||
in Fedora, the 'F' is turned into a red escape sequence
|
||||
because it is assumed to be a failed status indicator :)
|
||||
The path here is probably also dumb as it just assumes
|
||||
there is a space after the status indicator. Well the
|
||||
complete script is not really a good one, but still
|
||||
helpful
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Sat Mar 12 17:59:03 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Update Fedora arm integration test
|
||||
|
||||
Move test to Fedora 34
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Sat Mar 12 17:12:12 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Added container build test for Fedora
|
||||
|
||||
Fedora systems uses buildah to create containers. There is
|
||||
no integration test for kiwi which tests building containers
|
||||
with buildah. This commit adds a build test to cover this
|
||||
path. Related to Issue #2020
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Fri Mar 11 11:16:38 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Fixed test-image-docker-derived for leap
|
||||
|
||||
The test still used the additionaltags attribute with the
|
||||
latest schema (v7.5) which fails to validate because the
|
||||
attribute was moved to additionalnames
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Mar 10 23:19:33 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
@ -28,6 +380,21 @@ Thu Mar 10 08:49:11 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
action comes with a curl version that does not support the
|
||||
option. Thus this commit removes the use of the option
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Mar 09 21:54:05 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Move scope of veritysetup
|
||||
|
||||
veritysetup was called as part of the disk builder. However,
|
||||
the veritysetup should be a responsibility of the classes which
|
||||
implements the sync_data method. This allows to use the creation
|
||||
of a verity hash format right after sync as a feature to these
|
||||
classes and in a broader scope. In addition to that change the
|
||||
VeritySetup::format method now returns the metadata from the
|
||||
format call and stores it as debug information to the log file.
|
||||
A concept to persistently store the verification metadata as part
|
||||
of the partition(s) will be a next step.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Mar 09 18:14:29 CET 2022 - Dan Čermák <45594031+dcermak@users.noreply.github.com>
|
||||
|
||||
@ -35,6 +402,17 @@ Wed Mar 09 18:14:29 CET 2022 - Dan Čermák <45594031+dcermak@users.noreply.gith
|
||||
|
||||
Reformulate the container building guide a bit
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Mar 09 18:07:24 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Add support for custom size in filesystem classes
|
||||
|
||||
Allow to create filesystems with an optional size parameter.
|
||||
If no size is provided the filesystem gets as big as the device
|
||||
which is the default and unchanged behavior. In addition a
|
||||
size counting from the beginning (>0) as well as a size
|
||||
counting from the end (<=0) can be provided.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Mar 09 09:17:14 CET 2022 - David Cassany <dcassany@suse.com>
|
||||
|
||||
@ -52,6 +430,19 @@ Tue Mar 08 20:10:22 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Update descriptions to schema v7.5
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Sun Mar 06 18:22:10 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
- Support mount by PARTUUID
|
||||
|
||||
In addition to by-label and by-uuid also support mounting
|
||||
by PARTUUID. Please note kiwi also makes sure that the grub
|
||||
generated config file uses the root=PARTUUID= notation and it's
|
||||
not clear if grub-mkconfig will persist making use of it.
|
||||
Nevertheless there are also systems which uses different
|
||||
methods to boot and it makes sense to support partuuid
|
||||
mappings as well
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Sun Mar 06 16:03:13 CET 2022 - Marcus Schäfer <marcus.schaefer@gmail.com>
|
||||
|
||||
|
@ -43,7 +43,7 @@
|
||||
%endif
|
||||
|
||||
Name: python-kiwi
|
||||
Version: 9.24.29
|
||||
Version: 9.24.31
|
||||
Provides: kiwi-schema = 7.5
|
||||
Release: 0
|
||||
Url: https://github.com/OSInside/kiwi
|
||||
|
@ -1,3 +1,3 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:45561ae5c24753021db295670bf2d52a3973bae6414f68b8d7dffbfb344df5e1
|
||||
size 2128939
|
||||
oid sha256:9e2e337a9bed3009deef79cc9055126ce09afbcd07eb81cbcb54962782456fa3
|
||||
size 2153767
|
||||
|
Loading…
Reference in New Issue
Block a user