Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package podman for openSUSE:Factory checked in at 2025-10-04 18:50:26 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/podman (Old) and /work/SRC/openSUSE:Factory/.podman.new.11973 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "podman" Sat Oct 4 18:50:26 2025 rev:165 rq:1308752 version:5.6.2 Changes: -------- --- /work/SRC/openSUSE:Factory/podman/podman.changes 2025-09-26 22:23:54.164446267 +0200 +++ /work/SRC/openSUSE:Factory/.podman.new.11973/podman.changes 2025-10-04 18:50:48.628675336 +0200 @@ -1,0 +2,15 @@ +Fri Oct 03 05:26:38 UTC 2025 - Danish Prakash <[email protected]> + +- Update to version 5.6.2: + * Bump to v5.6.2 + * Release notes for v5.6.2 + * Vendor [email protected] + * Handle SIGPIPE to prevent machine stuck in Starting state + * Bump Podman to v5.6.2-dev + +------------------------------------------------------------------- +Mon Sep 29 12:48:31 UTC 2025 - Madhankumar Chellamuthu <[email protected]> + +- Add symlink to catatonit in /usr/libexec/podman (bsc#1248988) + +------------------------------------------------------------------- @@ -11 +26 @@ - * kube play: don't follow volume symlinks onto the host + * kube play: don't follow volume symlinks onto the host (bsc#1249154) Old: ---- podman-5.6.1.obscpio New: ---- podman-5.6.2.obscpio ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ podman.spec ++++++ --- /var/tmp/diff_new_pack.Un3FIf/_old 2025-10-04 18:50:50.128738021 +0200 +++ /var/tmp/diff_new_pack.Un3FIf/_new 2025-10-04 18:50:50.132738188 +0200 @@ -22,7 +22,7 @@ %bcond_without apparmor Name: podman -Version: 5.6.1 +Version: 5.6.2 Release: 0 Summary: Daemon-less container engine for managing containers, pods and images License: Apache-2.0 @@ -52,6 +52,7 @@ BuildRequires: pkgconfig(libselinux) BuildRequires: pkgconfig(libsystemd) BuildRequires: pkgconfig(systemd) +BuildRequires: catatonit # requirement for `podman machine` Recommends: gvisor-tap-vsock Requires: catatonit >= 0.1.7 @@ -168,6 +169,9 @@ mkdir -p %{buildroot}%{_prefix}/lib/modules-load.d install -m 0644 -t %{buildroot}%{_prefix}/lib/modules-load.d/ %{SOURCE1} +# create a softlink to catatonit and add it to buildroot +ln -s %{_bindir}/catatonit %{buildroot}%{_libexecdir}/podman/catatonit + %fdupes %{buildroot}/%{_datadir} %fdupes %{buildroot}/%{_systemd_util_dir} @@ -188,6 +192,7 @@ %dir %{_libexecdir}/podman %{_libexecdir}/podman/rootlessport %{_libexecdir}/podman/quadlet +%{_libexecdir}/podman/catatonit # Completion %{_datadir}/bash-completion/completions/podman %{_datadir}/zsh/site-functions/_podman ++++++ _service ++++++ --- /var/tmp/diff_new_pack.Un3FIf/_old 2025-10-04 18:50:50.168739693 +0200 +++ /var/tmp/diff_new_pack.Un3FIf/_new 2025-10-04 18:50:50.172739859 +0200 @@ -2,7 +2,7 @@ <service name="obs_scm" mode="manual"> <param name="url">https://github.com/containers/podman.git</param> <param name="scm">git</param> - <param name="revision">v5.6.1</param> + <param name="revision">v5.6.2</param> <param name="versionformat">@PARENT_TAG@</param> <param name="changesgenerate">enable</param> <param name="versionrewrite-pattern">v(.*)</param> ++++++ _servicedata ++++++ --- /var/tmp/diff_new_pack.Un3FIf/_old 2025-10-04 18:50:50.196740863 +0200 +++ /var/tmp/diff_new_pack.Un3FIf/_new 2025-10-04 18:50:50.200741030 +0200 @@ -1,6 +1,6 @@ <servicedata> <service name="tar_scm"> <param name="url">https://github.com/containers/podman.git</param> - <param name="changesrevision">1e2b2315150b2ffa0971596fb5da8cd83f3ce0e1</param></service></servicedata> + <param name="changesrevision">9dd5e1ed33830612bc200d7a13db00af6ab865a4</param></service></servicedata> (No newline at EOF) ++++++ podman-5.6.1.obscpio -> podman-5.6.2.obscpio ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/podman-5.6.1/RELEASE_NOTES.md new/podman-5.6.2/RELEASE_NOTES.md --- old/podman-5.6.1/RELEASE_NOTES.md 2025-09-04 21:23:56.000000000 +0200 +++ new/podman-5.6.2/RELEASE_NOTES.md 2025-09-30 16:50:46.000000000 +0200 @@ -1,5 +1,13 @@ # Release Notes +## 5.6.2 +### Bugfixes +- Fixed a bug where stopping the `podman machine start` command with SIGPIPE could result in machine state being stuck as "Starting" ([#26949](https://github.com/containers/podman/issues/26949)). +- Fixed a bug where `podman build` would fail with a permissions error when building Containerfiles using a non-root user and cache mounts ([#27044](https://github.com/containers/podman/issues/27044)). + +### Misc +- Updated Buildah to v1.41.5 + ## 5.6.1 ### Security - This release addresses CVE-2025-9566, where Kubernetes YAML run by `podman play kube` containing `ConfigMap` and `Secret` volumes can use crafted symlinks to overwrite content on the host. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/podman-5.6.1/go.mod new/podman-5.6.2/go.mod --- old/podman-5.6.1/go.mod 2025-09-04 21:23:56.000000000 +0200 +++ new/podman-5.6.2/go.mod 2025-09-30 16:50:46.000000000 +0200 @@ -11,7 +11,7 @@ github.com/checkpoint-restore/checkpointctl v1.3.0 github.com/checkpoint-restore/go-criu/v7 v7.2.0 github.com/containernetworking/plugins v1.7.1 - github.com/containers/buildah v1.41.4 + github.com/containers/buildah v1.41.5 github.com/containers/common v0.64.2 github.com/containers/conmon v2.0.20+incompatible github.com/containers/gvisor-tap-vsock v0.8.6 diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/podman-5.6.1/go.sum new/podman-5.6.2/go.sum --- old/podman-5.6.1/go.sum 2025-09-04 21:23:56.000000000 +0200 +++ new/podman-5.6.2/go.sum 2025-09-30 16:50:46.000000000 +0200 @@ -62,8 +62,8 @@ github.com/containernetworking/cni v1.3.0/go.mod h1:Bs8glZjjFfGPHMw6hQu82RUgEPNGEaBb9KS5KtNMnJ4= github.com/containernetworking/plugins v1.7.1 h1:CNAR0jviDj6FS5Vg85NTgKWLDzZPfi/lj+VJfhMDTIs= github.com/containernetworking/plugins v1.7.1/go.mod h1:xuMdjuio+a1oVQsHKjr/mgzuZ24leAsqUYRnzGoXHy0= -github.com/containers/buildah v1.41.4 h1:IHYWex7rwhsOwtRXQ+VMEQr96gUbSbSvxJcX6AoiDeA= -github.com/containers/buildah v1.41.4/go.mod h1:IFW8MbAgXYiUBCcAFExlHkPfE41DJWVBCbDZWZ9WEng= +github.com/containers/buildah v1.41.5 h1:tdxtsb+SctAQ0/vdAJg5AMArVypeN2DmIjHV1bkoMO4= +github.com/containers/buildah v1.41.5/go.mod h1:IFW8MbAgXYiUBCcAFExlHkPfE41DJWVBCbDZWZ9WEng= github.com/containers/common v0.64.2 h1:1xepE7QwQggUXxmyQ1Dbh6Cn0yd7ktk14sN3McSWf5I= github.com/containers/common v0.64.2/go.mod h1:o29GfYy4tefUuShm8mOn2AiL5Mpzdio+viHI7n24KJ4= github.com/containers/conmon v2.0.20+incompatible h1:YbCVSFSCqFjjVwHTPINGdMX1F6JXHGTUje2ZYobNrkg= diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/podman-5.6.1/pkg/machine/shim/host.go new/podman-5.6.2/pkg/machine/shim/host.go --- old/podman-5.6.1/pkg/machine/shim/host.go 2025-09-04 21:23:56.000000000 +0200 +++ new/podman-5.6.2/pkg/machine/shim/host.go 2025-09-30 16:50:46.000000000 +0200 @@ -483,7 +483,7 @@ // if the machine cannot continue starting due to a signal, ensure the state // reflects the machine is no longer starting signalChan := make(chan os.Signal, 1) - signal.Notify(signalChan, os.Interrupt, syscall.SIGTERM) + signal.Notify(signalChan, os.Interrupt, syscall.SIGTERM, syscall.SIGPIPE) go func() { sig, ok := <-signalChan if ok { diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/podman-5.6.1/vendor/github.com/containers/buildah/CHANGELOG.md new/podman-5.6.2/vendor/github.com/containers/buildah/CHANGELOG.md --- old/podman-5.6.1/vendor/github.com/containers/buildah/CHANGELOG.md 2025-09-04 21:23:56.000000000 +0200 +++ new/podman-5.6.2/vendor/github.com/containers/buildah/CHANGELOG.md 2025-09-30 16:50:46.000000000 +0200 @@ -2,6 +2,11 @@ # Changelog +## v1.41.5 (2025-09-29) + + [release-1.41] Run: create parent directories of mount targets with mode 0755 + [release-1.41] tests/run.bats: "run masks" test: accept "unreadable" masked directories + ## v1.41.4 (2025-09-03) [release-1.41] c/common to v0.64.2, ulikunitz/xv v0.5.12, docker/docker v28.3.3 diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/podman-5.6.1/vendor/github.com/containers/buildah/changelog.txt new/podman-5.6.2/vendor/github.com/containers/buildah/changelog.txt --- old/podman-5.6.1/vendor/github.com/containers/buildah/changelog.txt 2025-09-04 21:23:56.000000000 +0200 +++ new/podman-5.6.2/vendor/github.com/containers/buildah/changelog.txt 2025-09-30 16:50:46.000000000 +0200 @@ -1,3 +1,8 @@ +- Changelog for v1.41.5 (2025-09-29) + + [release-1.41] Run: create parent directories of mount targets with mode 0755 + [release-1.41] tests/run.bats: "run masks" test: accept "unreadable" masked directories + - Changelog for v1.41.4 (2025-09-03) * [release-1.41] c/common to v0.64.2, ulikunitz/xv v0.5.12, docker/docker v28.3.3 diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/podman-5.6.1/vendor/github.com/containers/buildah/define/types.go new/podman-5.6.2/vendor/github.com/containers/buildah/define/types.go --- old/podman-5.6.1/vendor/github.com/containers/buildah/define/types.go 2025-09-04 21:23:56.000000000 +0200 +++ new/podman-5.6.2/vendor/github.com/containers/buildah/define/types.go 2025-09-30 16:50:46.000000000 +0200 @@ -29,7 +29,7 @@ // identify working containers. Package = "buildah" // Version for the Package. Also used by .packit.sh for Packit builds. - Version = "1.41.4" + Version = "1.41.5" // DefaultRuntime if containers.conf fails. DefaultRuntime = "runc" diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/podman-5.6.1/vendor/github.com/containers/buildah/run_common.go new/podman-5.6.2/vendor/github.com/containers/buildah/run_common.go --- old/podman-5.6.1/vendor/github.com/containers/buildah/run_common.go 2025-09-04 21:23:56.000000000 +0200 +++ new/podman-5.6.2/vendor/github.com/containers/buildah/run_common.go 2025-09-30 16:50:46.000000000 +0200 @@ -2102,6 +2102,12 @@ // forced permissions mode = &perms } + if mode == nil && destination != cleanedDestination { + // parent directories default to 0o755, for + // the sake of commands running as UID != 0 + perms := os.FileMode(0o755) + mode = &perms + } targets.Paths = append(targets.Paths, copier.EnsurePath{ Path: destination, Typeflag: typeFlag, diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/podman-5.6.1/vendor/modules.txt new/podman-5.6.2/vendor/modules.txt --- old/podman-5.6.1/vendor/modules.txt 2025-09-04 21:23:56.000000000 +0200 +++ new/podman-5.6.2/vendor/modules.txt 2025-09-30 16:50:46.000000000 +0200 @@ -108,7 +108,7 @@ # github.com/containernetworking/plugins v1.7.1 ## explicit; go 1.23.0 github.com/containernetworking/plugins/pkg/ns -# github.com/containers/buildah v1.41.4 +# github.com/containers/buildah v1.41.5 ## explicit; go 1.23.3 github.com/containers/buildah github.com/containers/buildah/bind diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/podman-5.6.1/version/rawversion/version.go new/podman-5.6.2/version/rawversion/version.go --- old/podman-5.6.1/version/rawversion/version.go 2025-09-04 21:23:56.000000000 +0200 +++ new/podman-5.6.2/version/rawversion/version.go 2025-09-30 16:50:46.000000000 +0200 @@ -4,4 +4,4 @@ // // This indirection is needed to prevent semver packages from bloating // Quadlet's binary size. -const RawVersion = "5.6.1" +const RawVersion = "5.6.2" ++++++ podman.obsinfo ++++++ --- /var/tmp/diff_new_pack.Un3FIf/_old 2025-10-04 18:51:02.173241342 +0200 +++ /var/tmp/diff_new_pack.Un3FIf/_new 2025-10-04 18:51:02.193242177 +0200 @@ -1,5 +1,5 @@ name: podman -version: 5.6.1 -mtime: 1757013836 -commit: 1e2b2315150b2ffa0971596fb5da8cd83f3ce0e1 +version: 5.6.2 +mtime: 1759243846 +commit: 9dd5e1ed33830612bc200d7a13db00af6ab865a4
