Update the GitHub codeowners file to automatically add tooling codeowners as reviewers to the toolkit code. Retain general dev reviewers for docs, imageconfigs, and package manifests.
Signed-off-by: Chris Co <chrco@microsoft.com>
Update the GitHub codeowners file to automatically add the cbl-mariner-kata-containers team as reviewers for kata-containers and confidential containers packages.
Signed-off-by: Chris Co <chrco@microsoft.com>
sudo backed by ldap is no longer working after moving to the new version of sudo. Patched the fix upstream to get ldap sudo to work with NETGROUP_QUERY
Today, if a user updates the yum backend by editing the /usr/bin/yum symlink, a tdnf package update will reset the symlink back to pointing to /usr/bin/tdnf, thus resetting the user's desired configuration. This is because tdnf RPM packaging indicates /usr/bin/yum is owned by tdnf and so package update operation will always stomp /usr/bin/yum with the symlink pointing to /usr/bin/tdnf.
To address this, remove /usr/bin/yum ownership from tdnf package. To maintain backwards compatibility with users who rely on this behavior, generate the default yum -> tdnf symlink in the final stage of the transaction (%posttrans scriptlet). Also for clean package uninstallation, update the %preun scriptlet to remove the default yum -> tdnf symlink if this specific link is present.
Note: upgrade operation from a prior tdnf package version to this one (or beyond) will overwrite any custom yum symlink to point to tdnf, which is the same behavior as before. However future upgrade/reinstall operations will preserve the user's custom yum symlink
Signed-off-by: Chris Co <chrco@microsoft.com>
Co-authored-by: Andy Zaugg <azaugg@linkedin.com>
Prior to filesystem-1.1-16, /media used to be a symlink to /run/media but this was
replaced with a directory. The RPM upgrade operation generally worked when the /media
symlink is a dangling link, which is commonly the case, however not always the case.
And when the /media symlink is indeed properly pointing to a real /run/media, RPM has a
known limitation where it is not possible to replace an active symlink with a directory,
and thus the RPM transation fails.
To workaround this, a %pretrans scriptlet must run to test and remove the symlink
before RPM attempts to install the new directory.
https://docs.fedoraproject.org/en-US/packaging-guidelines/Directory_Replacement
Fixes: e2d3d55ce1 ("fix: make /media a directory")
Signed-off-by: Chris Co <chrco@microsoft.com>
If config file lies outside the imageconfig/ directory, makefile errors out with '*** multiple target patterns. Stop'. This change modifies makefile to extract all .json and .sh filenames from config_name, fixes their paths relative to the makefile, and watches them to set imageconfigvalidator flag.
sindhu-karri
suresh-thelkar
Christopher Co
CBL-Mariner-Bot
Lanze Liu
Gary Swalling
Mandeep Plaha
Dmytro Chasovskykh
amritakohli
Mitch Zhu
Rohit Rawat
AZaugg
rlmenge
Chris Gunn
sharath-srikanth-chellappa
Sam Meluch
Neha Agarwal
Andrew Phelps
joejoew
Pawel Winogrodzki
osamaesmailmsft
Olivia Crain