Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package podman.15792 for openSUSE:Leap:15.2:Update checked in at 2021-02-19 12:05:40 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Leap:15.2:Update/podman.15792 (Old) and /work/SRC/openSUSE:Leap:15.2:Update/.podman.15792.new.28504 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "podman.15792" Fri Feb 19 12:05:40 2021 rev:1 rq:872742 version:2.2.1 Changes: -------- New Changes file: --- /dev/null 2021-01-11 18:20:20.070723563 +0100 +++ /work/SRC/openSUSE:Leap:15.2:Update/.podman.15792.new.28504/podman.changes 2021-02-19 12:05:41.525569325 +0100 @@ -0,0 +1,3089 @@ +------------------------------------------------------------------- +Tue Jan 5 18:14:52 UTC 2021 - Michael Str??der <[email protected]> + +- Update to v2.2.1 + * Changes + - Due to a conflict with a previously-removed field, we were forced to + modify the way image volumes (mounting images into containers using + --mount type=image) were handled in the database. + As a result, containers created in Podman 2.2.0 with image volume + will not have them in v2.2.1, and these containers will need to be re-created. + * Bugfixes + - Fixed a bug where rootless Podman would, on systems without the + XDG_RUNTIME_DIR environment variable defined, use an incorrect path + for the PID file of the Podman pause process, causing Podman to fail + to start (#8539). + - Fixed a bug where containers created using Podman v1.7 and earlier were + unusable in Podman due to JSON decode errors (#8613). + - Fixed a bug where Podman could retrieve invalid cgroup paths, instead + of erroring, for containers that were not running. + - Fixed a bug where the podman system reset command would print a warning + about a duplicate shutdown handler being registered. + - Fixed a bug where rootless Podman would attempt to mount sysfs in + circumstances where it was not allowed; some OCI runtimes (notably + crun) would fall back to alternatives and not fail, but others + (notably runc) would fail to run containers. + - Fixed a bug where the podman run and podman create commands would fail + to create containers from untagged images (#8558). + - Fixed a bug where remote Podman would prompt for a password even when + the server did not support password authentication (#8498). + - Fixed a bug where the podman exec command did not move the Conmon + process for the exec session into the correct cgroup. + - Fixed a bug where shell completion for the ancestor option to + podman ps --filter did not work correctly. + - Fixed a bug where detached containers would not properly clean themselves + up (or remove themselves if --rm was set) if the Podman command that + created them was invoked with --log-level=debug. + * API + - Fixed a bug where the Compat Create endpoint for Containers did not + properly handle the Binds and Mounts parameters in HostConfig. + - Fixed a bug where the Compat Create endpoint for Containers + ignored the Name query parameter. + - Fixed a bug where the Compat Create endpoint for Containers did not + properly handle the "default" value for NetworkMode (this value is + used extensively by docker-compose) (#8544). + - Fixed a bug where the Compat Build endpoint for Images would sometimes + incorrectly use the target query parameter as the image's tag. + * Misc + - Podman v2.2.0 vendored a non-released, custom version of the + github.com/spf13/cobra package; this has been reverted to the latest + upstream release to aid in packaging. + - Updated the containers/image library to v5.9.0 + +------------------------------------------------------------------- +Wed Dec 2 13:24:06 UTC 2020 - Richard Brown <[email protected]> + +- Update to v2.2.0 + * Features + - Experimental support for shortname aliasing has been added. This is not enabled by default, but can be turned on by setting the environment variable CONTAINERS_SHORT_NAME_ALIASING to on. Documentation is available here and here. + - Initial support has been added for the podman network connect and podman network disconnect commands, which allow existing containers to modify what networks they are connected to. At present, these commands can only be used on running containers that did not specify --network=none when they were created. + - The podman run command now supports the --network-alias option to set network aliases (additional names the container can be accessed at from other containers via DNS if the dnsname CNI plugin is in use). Aliases can also be added and removed using the new podman network connect and podman network disconnect commands. Please note that this requires a new release (v1.1.0) of the dnsname plugin, and will only work on newly-created CNI networks. + - The podman generate kube command now features support for exporting container's memory and CPU limits (#7855). + - The podman play kube command now features support for setting CPU and Memory limits for containers (#7742). + - The podman play kube command now supports persistent volumes claims using Podman named volumes. + - The podman play kube command now supports Kubernetes configmaps via the --configmap option (#7567). + - The podman play kube command now supports a --log-driver option to set the log driver for created containers. + - The podman play kube command now supports a --start option, enabled by default, to start the pod after creating it. This allows for podman play kube to be more easily used in systemd unitfiles. + - The podman network create command now supports the --ipv6 option to enable dual-stack IPv6 networking for created networks (#7302). + - The podman inspect command can now inspect pods, networks, and volumes, in addition to containers and images (#6757). + - The --mount option for podman run and podman create now supports a new type, image, to mount the contents of an image into the container at a given location. + - The Bash and ZSH completions have been completely reworked and have received significant enhancements! Additionally, support for Fish completions and completions for the podman-remote executable have been added. + - The --log-opt option for podman create and podman run now supports the max-size option to set the maximum size for a container's logs (#7434). + - The --network option to the podman pod create command now allows pods to be configured to use slirp4netns networking, even when run as root (#6097). + - The podman pod stop, podman pod pause, podman pod unpause, and podman pod kill commands now work on multiple containers in parallel and should be significantly faster. + - The podman search command now supports a --list-tags option to list all available tags for a single image in a single repository. + - The podman search command can now output JSON using the --format=json option. + - The podman diff and podman mount commands now work with all containers in the storage library, including those not created by Podman. This allows them to be used with Buildah and CRI-O containers. + - The podman container exists command now features a --external option to check if a container exists not just in Podman, but also in the storage library. This will allow Podman to identify Buildah and CRI-O containers. + - The --tls-verify and --authfile options have been enabled for use with remote Podman. + - The /etc/hosts file now includes the container's name and hostname (both pointing to localhost) when the container is run with --net=none (#8095). + - The podman events command now supports filtering events based on the labels of the container they occurred on using the --filter label=key=value option. + - The podman volume ls command now supports filtering volumes based on their labels using the --filter label=key=value option. + - The --volume and --mount options to podman run and podman create now support two new mount propagation options, unbindable and runbindable. + - The name and id filters for podman pod ps now match based on a regular expression, instead of requiring an exact match. + - The podman pod ps command now supports a new filter status, that matches pods in a certain state. + * Changes + - The podman network rm --force command will now also remove pods that are using the network (#7791). + - The podman volume rm, podman network rm, and podman pod rm commands now return exit code 1 if the object specified for removal does not exist, and exit code 2 if the object is in use and the --force option was not given. + - If /dev/fuse is passed into Podman containers as a device, Podman will open it before starting the container to ensure that the kernel module is loaded on the host and the device is usable in the container. + - Global Podman options that were not supported with remote operation have been removed from podman-remote (e.g. --cgroup-manager, --storage-driver). + - Many errors have been changed to remove repetition and be more clear as to what has gone wrong. + - The --storage option to podman rm is now enabled by default, with slightly changed semantics. If the given container does not exist in Podman but does exist in the storage library, it will be removed even without the --storage option. If the container exists in Podman it will be removed normally. The --storage option for podman rm is now deprecated and will be removed in a future release. + - The --storage option to podman ps has been renamed to --external. An alias has been added so the old form of the option will continue to work. + - Podman now delays the SIGTERM and SIGINT signals during container creation to ensure that Podman is not stopped midway through creating a container resulting in potential resource leakage (#7941). + - The podman save command now strips signatures from images it is exporting, as the formats we export to do not support signatures (#7659). + - A new Degraded state has been added to pods. Pods that have some, but not all, of their containers running are now considered to be Degraded instead of Running. + - Podman will now print a warning when conflicting network options related to port forwarding (e.g. --publish and --net=host) are specified when creating a container. + - The --restart on-failure and --rm options for containers no longer conflict. When both are specified, the container will be restarted if it exits with a non-zero error code, and removed if it exits cleanly (#7906). + - Remote Podman will no longer use settings from the client's containers.conf; defaults will instead be provided by the server's containers.conf (#7657). + - The podman network rm command now has a new alias, podman network remove (#8402). + * Bugfixes + - Fixed a bug where podman load on the remote client did not error when attempting to load a directory, which is not yet supported for remote use. + - Fixed a bug where rootless Podman could hang when the newuidmap binary was not installed (#7776). + - Fixed a bug where the --pull option to podman run, podman create, and podman build did not match Docker's behavior. + - Fixed a bug where sysctl settings from the containers.conf configuration file were applied, even if the container did not join the namespace associated with a sysctl. + - Fixed a bug where Podman would not return the text of errors encounted when trying to run a healthcheck for a container. + - Fixed a bug where Podman was accidentally setting the containers environment variable in addition to the expected container environment variable. + - Fixed a bug where rootless Podman using CNI networking did not properly clean up DNS entries for removed containers (#7789). + - Fixed a bug where the podman untag --all command was not supported with remote Podman. + - Fixed a bug where the podman system service command could time out even if active attach connections were present (#7826). + - Fixed a bug where the podman system service command would sometimes never time out despite no active connections being present. + - Fixed a bug where Podman's handling of capabilities, specifically inheritable, did not match Docker's. + - Fixed a bug where podman run would fail if the image specified was a manifest list and had already been pulled (#7798). + - Fixed a bug where Podman did not take search registries into account when looking up images locally (#6381). + - Fixed a bug where the podman manifest inspect command would fail for images that had already been pulled (#7726). + - Fixed a bug where rootless Podman would not add supplemental GIDs to containers when when a user, but not a group, was set via the --user option to podman create and podman run and sufficient GIDs were available to add the groups (#7782). + - Fixed a bug where remote Podman commands did not properly handle cases where the user gave a name that could also be a short ID for a pod or container (#7837). + - Fixed a bug where podman image prune could leave images ready to be pruned after podman image prune was run (#7872). + - Fixed a bug where the podman logs command with the journald log driver would not read all available logs (#7476). + - Fixed a bug where the --rm and --restart options to podman create and podman run did not conflict when a restart policy that is not on-failure was chosen (#7878). + - Fixed a bug where the --format "table {{ .Field }}" option to numerous Podman commands ceased to function on Podman v2.0 and up. + - Fixed a bug where pods did not properly share an SELinux label between their containers, resulting in containers being unable to see the processes of other containers when the pod shared a PID namespace (#7886). + - Fixed a bug where the --namespace option to podman ps did not work with the remote client (#7903). + - Fixed a bug where rootless Podman incorrectly calculated the number of UIDs available in the container if multiple different ranges of UIDs were specified. + - Fixed a bug where the /etc/hosts file would not be correctly populated for containers in a user namespace (#7490). + - Fixed a bug where the podman network create and podman network remove commands could race when run in parallel, with unpredictable results (#7807). + - Fixed a bug where the -p option to podman run, podman create, and podman pod create would, when given only a single number (e.g. -p 80), assign the same port for both host and container, instead of generating a random host port (#7947). + - Fixed a bug where Podman containers did not properly store the cgroup manager they were created with, causing them to stop functioning after the cgroup manager was changed in containers.conf or with the --cgroup-manager option (#7830). + - Fixed a bug where the podman inspect command did not include information on the CNI networks a container was connected to if it was not running. + - Fixed a bug where the podman attach command would not print a newline after detaching from the container (#7751). + - Fixed a bug where the HOME environment variable was not set properly in containers when the --userns=keep-id option was set (#8004). + - Fixed a bug where the podman container restore command could panic when the container in question was in a pod (#8026). + - Fixed a bug where the output of the podman image trust show --raw command was not properly formatted. + - Fixed a bug where the podman runlabel command could panic if a label to run was not given (#8038). + - Fixed a bug where the podman run and podman start --attach commands would exit with an error when the user detached manually using the detach keys on remote Podman (#7979). + - Fixed a bug where rootless CNI networking did not use the dnsname CNI plugin if it was not available on the host, despite it always being available in the container used for rootless networking (#8040). + - Fixed a bug where Podman did not properly handle cases where an OCI runtime is specified by its full path, and could revert to using another OCI runtime with the same binary path that existed in the system $PATH on subsequent invocations. + - Fixed a bug where the --net=host option to podman create and podman run would cause the /etc/hosts file to be incorrectly populated (#8054). + - Fixed a bug where the podman inspect command did not include container network information when the container shared its network namespace (IE, joined a pod or another container's network namespace via --net=container:...) (#8073). + - Fixed a bug where the podman ps command did not include information on all ports a container was publishing. + - Fixed a bug where the podman build command incorrectly forwarded STDIN into build containers from RUN instructions. + - Fixed a bug where the podman wait command's --interval option did not work when units were not specified for the duration (#8088). + - Fixed a bug where the --detach-keys and --detach options could be passed to podman create despite having no effect (and not making sense in that context). + - Fixed a bug where Podman could not start containers if running on a system without a /etc/resolv.conf file (which occurs on some WSL2 images) (#8089). + - Fixed a bug where the --extract option to podman cp was nonfunctional. + - Fixed a bug where the --cidfile option to podman run would, when the container was not run with --detach, only create the file after the container exited (#8091). + - Fixed a bug where the podman images and podman images -a commands could panic and not list any images when certain improperly-formatted images were present in storage (#8148). + - Fixed a bug where the podman events command could, when the journald events backend was in use, become nonfunctional when a badly-formatted event or a log message that container certain string was present in the journal (#8125). + - Fixed a bug where remote Podman would, when using SSH transport, not authenticate to the server using hostkeys when connecting on a port other than 22 (#8139). + - Fixed a bug where the podman attach command would not exit when containers stopped (#8154). + - Fixed a bug where Podman did not properly clean paths before verifying them, resulting in Podman refusing to start if the root or temporary directories were specified with extra trailing / characters (#8160). + - Fixed a bug where remote Podman did not support hashed hostnames in the known_hosts file on the host for establishing connections (#8159). + - Fixed a bug where the podman image exists command would return non-zero (false) when multiple potential matches for the given name existed. + - Fixed a bug where the podman manifest inspect command on images that are not manifest lists would error instead of inspecting the image (#8023). + - Fixed a bug where the podman system service command would fail if the directory the Unix socket was to be created inside did not exist (#8184). + - Fixed a bug where pods that shared the IPC namespace (which is done by default) did not share a /dev/shm filesystem between all containers in the pod (#8181). + - Fixed a bug where filters passed to podman volume list were not inclusive (#6765). + - Fixed a bug where the podman volume create command would fail when the volume's data directory already existed (as might occur when a volume was not completely removed) (#8253). + - Fixed a bug where the podman run and podman create commands would deadlock when trying to create a container that mounted the same named volume at multiple locations (e.g. podman run -v testvol:/test1 -v testvol:/test2) (#8221). + - Fixed a bug where the parsing of the --net option to podman build was incorrect (#8322). + - Fixed a bug where the podman build command would print the ID of the built image twice when using remote Podman (#8332). + - Fixed a bug where the podman stats command did not show memory limits for containers (#8265). + - Fixed a bug where the podman pod inspect command printed the static MAC address of the pod in a non-human-readable format (#8386). + - Fixed a bug where the --tls-verify option of the podman play kube command had its logic inverted (false would enforce the use of TLS, true would disable it). + - Fixed a bug where the podman network rm command would error when trying to remove macvlan networks and rootless CNI networks (#8491). + - Fixed a bug where Podman was not setting sane defaults for missing XDG_ environment variables. + - Fixed a bug where remote Podman would check if volume paths to be mounted in the container existed on the host, not the server (#8473). + - Fixed a bug where the podman manifest create and podman manifest add commands on local images would drop any images in the manifest not pulled by the host. + - Fixed a bug where networks made by podman network create did not include the tuning plugin, and as such did not support setting custom MAC addresses (#8385). + - Fixed a bug where container healthchecks did not use $PATH when searching for the Podman executable to run the healthcheck. + - Fixed a bug where the --ip-range option to podman network create did not properly handle non-classful subnets when calculating the last usable IP for DHCP assignment (#8448). + - Fixed a bug where the podman container ps alias for podman ps was missing (#8445). + * API + - The Compat Create endpoint for Container has received a major refactor to share more code with the Libpod Create endpoint, and should be significantly more stable. + - A Compat endpoint for exporting multiple images at once, GET /images/get, has been added (#7950). + - The Compat Network Connect and Network Disconnect endpoints have been added. + - Endpoints that deal with image registries now support a X-Registry-Config header to specify registry authentication configuration. + - The Compat Create endpoint for images now properly supports specifying images by digest. + - The Libpod Build endpoint for images now supports an httpproxy query parameter which, if set to true, will forward the server's HTTP proxy settings into the build container for RUN instructions. + - The Libpod Untag endpoint for images will now remove all tags for the given image if no repository and tag are specified for removal. + - Fixed a bug where the Ping endpoint misspelled a header name (Libpod-Buildha-Version instead of Libpod-Buildah-Version). + - Fixed a bug where the Ping endpoint sent an extra newline at the end of its response where Docker did not. + - Fixed a bug where the Compat Logs endpoint for containers did not send a newline character after each log line. + - Fixed a bug where the Compat Logs endpoint for containers would mangle line endings to change newline characters to add a preceding carriage return (#7942). + - Fixed a bug where the Compat Inspect endpoint for Containers did not properly list the container's stop signal (#7917). + - Fixed a bug where the Compat Inspect endpoint for Containers formatted the container's create time incorrectly (#7860). + - Fixed a bug where the Compat Inspect endpoint for Containers did not include the container's Path, Args, and Restart Count. + - Fixed a bug where the Compat Inspect endpoint for Containers prefixed added and dropped capabilities with CAP_ (Docker does not do so). + - Fixed a bug where the Compat Info endpoint for the Engine did not include configured registries. + - Fixed a bug where the server could panic if a client closed a connection midway through an image pull (#7896). + - Fixed a bug where the Compat Create endpoint for volumes returned an error when a volume with the same name already existed, instead of succeeding with a 201 code (#7740). + - Fixed a bug where a client disconnecting from the Libpod or Compat events endpoints could result in the server using 100% CPU (#7946). + - Fixed a bug where the "no such image" error message sent by the Compat Inspect endpoint for Images returned a 404 status code with an error that was improperly formatted for Docker compatibility. + - Fixed a bug where the Compat Create endpoint for networks did not properly set a default for the driver parameter if it was not provided by the client. + - Fixed a bug where the Compat Inspect endpoint for images did not populate the RootFS field of the response. + - Fixed a bug where the Compat Inspect endpoint for images would omit the ParentId field if the image had no parent, and the Created field if the image did not have a creation time. + - Fixed a bug where the Compat Remove endpoint for Networks did not support the Force query parameter. + ++++ 2892 more lines (skipped) ++++ between /dev/null ++++ and /work/SRC/openSUSE:Leap:15.2:Update/.podman.15792.new.28504/podman.changes New: ---- README.SUSE.SLES _service podman-2.2.1.tar.xz podman-rpmlintrc podman.changes podman.conf podman.spec varlink.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ podman.spec ++++++ # # spec file for package podman # # Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed # upon. The license for this file, and modifications and additions to the # file, is the same license as for the pristine package itself (unless the # license for the pristine package is not an Open Source License, in which # case the license is the MIT License). An "Open Source License" is a # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. # Please submit bugfixes or comments via http://bugs.opensuse.org/ # %define project github.com/containers/podman # Build with libostree-devel in Tumbleweed, Leap 15 and SLES 15 %if 0%{?suse_version} >= 1500 %define with_libostree 1 %endif Name: podman Version: 2.2.1 Release: 0 Summary: Daemon-less container engine for managing containers, pods and images License: Apache-2.0 Group: System/Management Url: https://github.com/containers/libpod Source0: %{name}-%{version}.tar.xz Source1: podman.conf Source3: %{name}-rpmlintrc Source4: README.SUSE.SLES Patch0: varlink.patch BuildRequires: bash-completion BuildRequires: cni BuildRequires: device-mapper-devel BuildRequires: fdupes BuildRequires: git-core BuildRequires: glib2-devel-static BuildRequires: glibc-devel-static BuildRequires: go-go-md2man BuildRequires: golang-packaging BuildRequires: libapparmor-devel BuildRequires: libassuan-devel BuildRequires: libbtrfs-devel BuildRequires: libcontainers-common BuildRequires: libgpgme-devel BuildRequires: libseccomp-devel BuildRequires: pkgconfig(libselinux) BuildRequires: pkgconfig(libsystemd) BuildRequires: golang(API) = 1.13 # Build fails with PIE enabled on ppc64le due to boo#1098017 %ifarch ppc64le #!BuildIgnore: gcc-PIE %endif Recommends: apparmor-parser Recommends: apparmor-abstractions Requires: cni Requires: cni-plugins Requires: conmon Requires: iptables Requires: libcontainers-common >= 20200727 Requires: runc >= 1.0.0~rc4 Requires: slirp4netns >= 0.4.0 Requires: catatonit Requires: fuse-overlayfs Requires: timezone Recommends: %{name}-cni-config = %{version} Suggests: katacontainers %{go_nostrip} %if 0%{?with_libostree} BuildRequires: libostree-devel %endif %description Podman is a container engine for managing pods, containers, and container images. It is a standalone tool and it directly manipulates containers without the need of a container engine daemon. Podman is able to interact with container images create in buildah, cri-o, and skopeo, as they all share the same datastore backend. %prep %setup -q %patch0 %package cni-config Summary: Basic CNI configuration for podman Group: System/Management Requires: %{name} = %{version} # iproute2 is needed by the %triggerun scriplet Requires: iproute2 BuildArch: noarch %description cni-config A "basic" CNI configuration for podman that makes networking usable for basic setups. In more complicated setups, users are recommended to write their own CNI configurations. %build # Build podman BUILDFLAGS="-buildmode=pie" make # Build manpages make %{?_smp_mflags} docs %check # Too many tests fail due to the restricted permissions in the build enviroment. # Updates must be tested manually. %install make DESTDIR=%{buildroot} PREFIX=/usr install make DESTDIR=%{buildroot} PREFIX=/usr install.completions # packaged in libcontainers-common rm %{buildroot}/usr/share/man/man5/containers-mounts.conf.* %{buildroot}/usr/share/man/man5/oci-hooks.* # Add podman modprobe.d drop-in config mkdir -p %{buildroot}%{_prefix}/lib/modules-load.d install -m 0644 -t %{buildroot}%{_prefix}/lib/modules-load.d/ %{SOURCE1} # README.SUSE is SLES specifc currently %if !0%{?is_opensuse} install -D -m 0644 %{SOURCE4} %{buildroot}%{_docdir}/%{name}/README.SUSE %endif %fdupes %{buildroot}/%{_prefix} %files %if !0%{?is_opensuse} %doc %{_docdir}/%{name} %endif # Binaries %{_bindir}/podman %{_bindir}/podman-remote # Manpages %{_mandir}/man1/podman*.1* # Configs %dir %{_prefix}/lib/modules-load.d %{_prefix}/lib/modules-load.d/podman.conf %{_tmpfilesdir}/podman.conf # Completion %{_datadir}/bash-completion/completions/podman %{_datadir}/bash-completion/completions/podman-remote %{_datadir}/zsh/site-functions/_podman %{_datadir}/zsh/site-functions/_podman-remote %{_datadir}/fish/ %{_datadir}/fish/vendor_completions.d/podman.fish %{_datadir}/fish/vendor_completions.d/podman-remote.fish %{_unitdir}/podman.service %{_unitdir}/podman.socket %{_unitdir}/podman-auto-update.service %{_unitdir}/podman-auto-update.timer %{_userunitdir}/podman.service %{_userunitdir}/podman.socket %{_userunitdir}/podman-auto-update.service %{_userunitdir}/podman-auto-update.timer %ghost /run/podman %ghost %{_localstatedir}/adm/update-messages/%{name}-%{version}-%{release}-libpodconf %license LICENSE %files cni-config %config %{_sysconfdir}/cni/net.d/87-podman-bridge.conflist %license LICENSE %pre %service_add_pre podman.service podman.socket # move away any old rpmsave config file to avoid having it re-activated again in # %posttrans test -f /etc/containers/libpod.conf.rpmsave && mv -v /etc/containers/libpod.conf.rpmsave /etc/containers/libpod.conf.rpmsave.old ||: %post %service_add_post podman.service podman.socket %tmpfiles_create %{_tmpfilesdir}/podman.conf %preun %service_del_preun podman.service podman.socket %postun %service_del_postun podman.service podman.socket %posttrans # if libpod.conf.rpmsave was created move it back into place and set an update # message informing about the libpod.conf -> containers.conf change if test -f /etc/containers/libpod.conf.rpmsave ; then mv -v /etc/containers/libpod.conf.rpmsave /etc/containers/libpod.conf ||: cat >> %{_localstatedir}/adm/update-messages/%{name}-%{version}-%{release}-libpodconf << EOF WARNING: Podman configuration file changes With version 2.0 Podman changed to a slightly different configuration file format. Also the name of default configuration file has been changed. The new format is documented in the containers.conf(5) man-page and changes should usually be straight-forward. The new default configuration is located in /usr/share/containers/containers.conf. In order to override setting from that file you can create /etc/containers/containers.conf with your changed settings. For backwards compatibility Podman 2.0 is still able to read libpod.conf. The support for this will go away in future releases. Please migrate your configuration to the new format as soon as possible. EOF fi %triggerun cni-config -- %{name}-cni-config < 1.6.0 # The name of the network bridge changed from cni0 to podman-cni0 with # podman 1.6. We need to rename the existing bridge to the new name to # to avoid network issues after upgrade if ip link show dev cni0 > /dev/null 2>&1; then ip link set dev cni0 down ip link set dev cni0 name cni-podman0 ip link set dev cni-podman0 up fi %changelog ++++++ README.SUSE.SLES ++++++ Support Status of podman on SUSE Linux Enterprise ================================================= Starting with SLE15-SP2, podman is a supported container engine for SUSE Linux Enterprise Server. There are however a few selected features of podman that are currently excluded from support. These are: * The varlink remote API * rootless containers * support for cgroups v2 * any CNI plugin other than default bridge plugin * The automatic generation of systemd units via "podman generate systemd" * pod management via "podman pod ..." and "podman play" * The "podman container diff" command ++++++ _service ++++++ <services> <service name="tar_scm" mode="disabled"> <param name="url">https://github.com/containers/podman.git</param> <param name="scm">git</param> <param name="filename">podman</param> <param name="versionformat">2.2.1</param> <param name="revision">v2.2.1</param> </service> <service name="set_version" mode="disabled"> <param name="basename">podman</param> </service> <service name="recompress" mode="disabled"> <param name="file">*.tar</param> <param name="compression">xz</param> </service> </services> ++++++ podman-rpmlintrc ++++++ addFilter (".* W: explicit-lib-dependency libcontainers-common") addFilter (".* W: explicit-lib-dependency libcontainers-image") addFilter (".* W: explicit-lib-dependency libcontainers-storage") addFilter (".* W: missing-call-to-setgroups-before-setuid") addFilter (".* W: non-conffile-in-etc .*zsh_completion.d.*") ++++++ podman.conf ++++++ # Load br_netfilter module at boot br_netfilter ++++++ varlink.patch ++++++ --- ./Makefile 2020/09/30 15:55:41 1.1 +++ ./Makefile 2020/09/30 17:59:12 @@ -615,7 +615,7 @@ # $BUILD_TAGS variable is used in hack/golangci-lint.sh .PHONY: varlink_generate -ifneq (or $(findstring varlink,$(BUILDTAGS)),$(findstring varlink,$(BUILD_TAGS))) +ifneq (,$(or $(findstring varlink,$(BUILDTAGS)),$(findstring varlink,$(BUILD_TAGS)))) varlink_generate: .gopathok pkg/varlink/iopodman.go ## Generate varlink else varlink_generate:
