nfs-utils' requires a newer version of 'libtirpc' due
to an API change to struct rpc_gsss_sec. Additionally,
'nfs-utils' 2.6.4 introduces new files "nfsrahead" due
to commit [f86c4c9065786bd9f08c923ff6a55621b9803f9c]
and "99-nfs.rules" due to commit
[6011418c3e4e37dd433a6d7560f220d442943f84].
Update the GitHub codeowners file to automatically add the cbl-mariner-kata-containers team as reviewers for kata-containers and confidential containers packages.
Update the GitHub codeowners file to automatically add tooling codeowners as reviewers to the toolkit code. Retain general dev reviewers for docs, imageconfigs, and package manifests.
Cherry-pick of 71792f5 and 7e792c1
Signed-off-by: Chris Co <chrco@microsoft.com>
Remove patches which were needed for older versions of the kernel based on the current toolchain. These are no longer needed as 6.6 contains the commits for these patches. They have already been removed from the prep phase. Clean-up the unused patches.
perf_bpf_test_add_nonnull_argument.patch: 01cbd4e --> not needed as of 6.6 upgrade
pthread_stack_min_int_cast.patch: #1623 --> not needed as of 6.1 upgrade
Nopatches are added to indicate that the Azure Linux LTS kernel is not affected by a listed CVE on NIST. Remove nopatches for CVEs addressed in 5.15. These should already be disputed in our tooling. Additionally, I checked if
-5.15 has the backported fix and therefore 6.6 should also be fixed
-6.6 has the original listed upstream fix
-CVEs which are over 10 years old and are reasonable to remove the nopatch for
Only 3 nopatches did not fall into these buckets. However, 6.6 still shouldn't be affected as we do not enable the configs impacted by these CVEs. Remove for now.
Currently, sudo package rpmbuild is not applying patches specified in the spec. So in %prep stage, change %setup macro to %autosetup macro which will automatically apply spec patch files to the source in patch number order.
Fixes: 834484e ("Sudo ldap netgroup_query bug fix patch (#7070)")
Signed-off-by: Chris Co <chrco@microsoft.com>
Align 3.0 with 2.0's kernel configs
Note that CONFIG_IOMMU_SVA_LIB was renamed CONFIG_IOMMU_SVA, the CONFIG_IOASID was removed, and I added the DEBUG option for QCOM
sudo backed by ldap is no longer working after moving to the new version of sudo. Patched the fix upstream to get ldap sudo to work with NETGROUP_QUERY
cherry-pick of a48d432
Co-authored-by: AZaugg <AZaugg@users.noreply.github.com>
usbutils latest release is 017. Upgrade to it.
Note that a commit was added which provides a pkconfig file for the build system (commit 2996e23d5866d5d692acdba1d68bcaea2808ef71 ). This is not needed for user systems. Therefore, do not package it.
There are no upstream tests that I could find hence why there is no added %check section.
New feature was added to 6.4 Linux kernel for user-based event tracing, which allows user processes to create events and trace data that can be viewed by tools such as ftrace and perf. To enable this feature, we set CONFIG_USER_EVENTS=y.
Andrew Phelps
bfjelds
Neha Agarwal
Alberto Perez
CBL-Mariner-Bot
nicolas guibourge
Muhammad Falak R Wani
rlmenge
Cameron E Baird
reuben olinsky
Christopher Co
David Daney
J Camposeco
Trung