Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package velociraptor for openSUSE:Factory
checked in at 2023-02-11 21:56:34
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/velociraptor (Old)
and /work/SRC/openSUSE:Factory/.velociraptor.new.1848 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "velociraptor"
Sat Feb 11 21:56:34 2023 rev:3 rq:1064242 version:0.6.7.4~git63.4a1ed09d
Changes:
--------
--- /work/SRC/openSUSE:Factory/velociraptor/velociraptor-client.changes
2023-01-21 19:10:40.120992749 +0100
+++
/work/SRC/openSUSE:Factory/.velociraptor.new.1848/velociraptor-client.changes
2023-02-11 21:57:31.119695478 +0100
@@ -1,0 +2,22 @@
+Thu Jan 26 20:06:09 UTC 2023 - [email protected]
+
+- Update to version 0.6.7.4~git63.4a1ed09d:
+ * utils/time.js: fix handling of nanosecond-resolution timestamps
+- Added patches:
+ * velociraptor-reproducible-timestamp.diff
+
+-------------------------------------------------------------------
+Tue Jan 24 20:57:08 UTC 2023 - Jeff Mahoney <[email protected]>
+
+- Use obsinfo mtime to produce stable build timestamp (bsc#1207369).
+
+-------------------------------------------------------------------
+Tue Jan 24 15:07:09 UTC 2023 - [email protected]
+
+- Update to version 0.6.7.4~git60.8abed37a:
+ * http_comms: create ring buffer temporary file in the same directory
+ * cronsnoop: plumb in real scope logging
+ * cronsnoop: don't treat routine errors as fatal
+ * cronsnoop: fix typo
+
+-------------------------------------------------------------------
@@ -30,5 +51,0 @@
-Fri Jan 20 16:37:17 UTC 2023 - Dirk Müller <[email protected]>
-
-- add memory limit to systemd unit
-
----------------------------------------------------------------------
velociraptor.changes: same change
Old:
----
velociraptor-0.6.7.4~git53.0e85855.obscpio
New:
----
velociraptor-0.6.7.4~git63.4a1ed09d.obscpio
velociraptor-reproducible-timestamp.diff
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ velociraptor-client.spec ++++++
--- /var/tmp/diff_new_pack.YofiXb/_old 2023-02-11 21:57:31.635698691 +0100
+++ /var/tmp/diff_new_pack.YofiXb/_new 2023-02-11 21:57:31.639698716 +0100
@@ -40,7 +40,7 @@
%endif
Name: velociraptor-client
-Version: 0.6.7.4~git53.0e85855
+Version: 0.6.7.4~git63.4a1ed09d
Release: 0
Summary: Endpoint visibility and collection tool (endpoint only)
Group: System/Monitoring
@@ -53,10 +53,12 @@
Source4: vmlinux.h-%{vmlinux_h_version}.tar.xz
Source5: update-vendoring.sh
Source6: sysconfig.%{name}
+Source7: %{projname}.obsinfo
Patch1: velociraptor-golang-mage-vendoring.diff
Patch2: velociraptor-skip-git-submodule-import-for-OBS-build.patch
Patch3: vendor-build-fixes-for-SLE12.patch
Patch4: sdjournal-build-fix-for-SLE12.patch
+Patch5: velociraptor-reproducible-timestamp.diff
BuildRequires: fileb0x
BuildRequires: golang-packaging
BuildRequires: mage
@@ -107,6 +109,14 @@
# rm -rf artifacts/definitions/Windows
%build
+
+# Reproductible builds need stable timestamps
+timestamp=$(date -Iseconds --utc --date=@$(grep mtime: %{SOURCE7}|sed -e
's/mtime: //'))
+git_commit=$(grep commit: %{SOURCE7}|sed -e 's/commit: //g')
+
+export VELOCIRAPTOR_BUILD_TIME=$timestamp
+export VELOCIRAPTOR_GIT_HEAD=$git_commit
+
PATH=$PATH:/usr/sbin make linux_bare BUILD_LIBBPFGO=%{with bpf}
%install
++++++ velociraptor.spec ++++++
--- /var/tmp/diff_new_pack.YofiXb/_old 2023-02-11 21:57:31.683698990 +0100
+++ /var/tmp/diff_new_pack.YofiXb/_new 2023-02-11 21:57:31.691699039 +0100
@@ -40,7 +40,7 @@
%endif
Name: velociraptor
-Version: 0.6.7.4~git53.0e85855
+Version: 0.6.7.4~git63.4a1ed09d
Release: 0
Summary: Endpoint visibility and collection tool
Group: System/Monitoring
@@ -58,10 +58,12 @@
Source9: update-vendoring.sh
Source10: sysconfig.%{name}
Source11: sysconfig.%{name}-client
+Source12: %{projname}.obsinfo
Patch1: velociraptor-golang-mage-vendoring.diff
Patch2: velociraptor-skip-git-submodule-import-for-OBS-build.patch
Patch3: vendor-build-fixes-for-SLE12.patch
Patch4: sdjournal-build-fix-for-SLE12.patch
+Patch5: velociraptor-reproducible-timestamp.diff
BuildRequires: fileb0x
BuildRequires: golang-packaging
BuildRequires: mage
@@ -96,7 +98,7 @@
%package kafka-humio-gateway
Summary: Gateway between Kafka and Humio for Velociraptor Artifacts
-Version: 0.6.7.4~git53.0e85855
+Version: 0.6.7.4~git63.4a1ed09d
%description kafka-humio-gateway
This tool is used to consume events generated by the Kafka Velociraptor plugin
@@ -122,6 +124,14 @@
# rm -rf artifacts/definitions/Windows
%build
+
+# Reproductible builds need stable timestamps
+timestamp=$(date -Iseconds --utc --date=@$(grep mtime: %{SOURCE12}|sed -e
's/mtime: //'))
+git_commit=$(grep commit: %{SOURCE12}|sed -e 's/commit: //g')
+
+export VELOCIRAPTOR_BUILD_TIME=$timestamp
+export VELOCIRAPTOR_GIT_HEAD=$git_commit
+
(cd gui/velociraptor ; npm run build)
PATH=$PATH:/usr/sbin make linux BUILD_LIBBPFGO=%{with bpf}
++++++ _service ++++++
--- /var/tmp/diff_new_pack.YofiXb/_old 2023-02-11 21:57:31.763699488 +0100
+++ /var/tmp/diff_new_pack.YofiXb/_new 2023-02-11 21:57:31.767699512 +0100
@@ -1,6 +1,6 @@
<services>
<service mode="manual" name="obs_scm">
- <param
name="url">https://github.com/jeffmahoney/linux-security-sensor</param>
+ <param name="url">https://github.com/SUSE/linux-security-sensor</param>
<param name="filename">velociraptor</param>
<param name="versionformat">@PARENT_TAG@~git@TAG_OFFSET@.%h</param>
<param name="revision">sensor-base-0.6.7</param>
++++++ _servicedata ++++++
--- /var/tmp/diff_new_pack.YofiXb/_old 2023-02-11 21:57:31.799699712 +0100
+++ /var/tmp/diff_new_pack.YofiXb/_new 2023-02-11 21:57:31.799699712 +0100
@@ -3,6 +3,6 @@
<param
name="url">https://github.com/jeffmahoney/linux-security-sensor</param>
<param
name="changesrevision">0e858552af3d6ab57bae796cc3e50ccef36b4aff</param></service><service
name="tar_scm">
<param
name="url">https://github.com/SUSE/linux-security-sensor</param>
- <param
name="changesrevision">b5931f73eb6c171a558d09d4ef8b3d4d7292d519</param></service></servicedata>
+ <param
name="changesrevision">4a1ed09d50339b902c6446686bd16deedbb23804</param></service></servicedata>
(No newline at EOF)
++++++ velociraptor-0.6.7.4~git53.0e85855.obscpio ->
velociraptor-0.6.7.4~git63.4a1ed09d.obscpio ++++++
/work/SRC/openSUSE:Factory/velociraptor/velociraptor-0.6.7.4~git53.0e85855.obscpio
/work/SRC/openSUSE:Factory/.velociraptor.new.1848/velociraptor-0.6.7.4~git63.4a1ed09d.obscpio
differ: char 49, line 1
++++++ velociraptor-reproducible-timestamp.diff ++++++
From: Jeff Mahoney <[email protected]>
Subject: magefile: use stable timestamps for build
In order to create reprodicible builds, we can't have timestamps that vary
without anything else changing.
diff --git a/magefile.go b/magefile.go
index 16badc2b..76011657 100644
--- a/magefile.go
+++ b/magefile.go
@@ -428,10 +428,18 @@ func build_gui_files() error {
}
func flags() string {
- timestamp := time.Now().Format(time.RFC3339)
+ timestamp := os.Getenv("VELOCIRAPTOR_BUILD_TIME")
+ if timestamp == "" {
+ timestamp = time.Now().Format(time.RFC3339)
+ }
flags := fmt.Sprintf(` -X
"www.velocidex.com/golang/velociraptor/config.build_time=%s"`, timestamp)
- flags += fmt.Sprintf(` -X
"www.velocidex.com/golang/velociraptor/config.commit_hash=%s"`, hash())
+ head := os.Getenv("VELOCIRAPTOR_GIT_HEAD")
+ if head == "" {
+ head = hash()
+ }
+
+ flags += fmt.Sprintf(` -X
"www.velocidex.com/golang/velociraptor/config.commit_hash=%s"`, head)
// If we are running on the CI pipeline we need to know the run
// number and URL so we can report them.
++++++ velociraptor.obsinfo ++++++
--- /var/tmp/diff_new_pack.YofiXb/_old 2023-02-11 21:57:31.963700732 +0100
+++ /var/tmp/diff_new_pack.YofiXb/_new 2023-02-11 21:57:31.967700758 +0100
@@ -1,5 +1,5 @@
name: velociraptor
-version: 0.6.7.4~git53.0e85855
-mtime: 1674098741
-commit: 0e858552af3d6ab57bae796cc3e50ccef36b4aff
+version: 0.6.7.4~git63.4a1ed09d
+mtime: 1674763484
+commit: 4a1ed09d50339b902c6446686bd16deedbb23804
