folkslinux
/
VMware-Photon-OS
mirror of https://github.com/vmware/photon.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
7,484 Commits 16 Branches 355 Tags 438 MiB
Commit Graph

7484 Commits

Author SHA1 Message Date
Shreenidhi Shedi 0b37ad6f1c mpc: remove check from install 
Change-Id: I9236b2064758c78a6347c5247162c6fae180a20d
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25737
Reviewed-by: Srinidhi Rao <srinidhi.rao@broadcom.com>
Reviewed-by: Harinadh Dommaraju <harinadh.dommaraju@broadcom.com>
Tested-by: Harinadh Dommaraju <harinadh.dommaraju@broadcom.com>
 2025-05-09 11:33:19 +00:00
Shreenidhi Shedi 522bb76329 netcat: make nc a symlink 
Change-Id: I2e165871e7acf55500bff7f0c6090b6f0172920d
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25713
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
 2025-05-06 07:23:39 +00:00
Shreenidhi Shedi 10cc7c33db dbxtool: spec removal 
Change-Id: I6bcfbc794de2aad5740ef8df1aa23e635c471c42
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25565
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
 2025-04-23 09:33:06 +00:00
Shreenidhi Shedi d79605a71c builder: add support to rebuild existing packages 
Usage example:

sudo make <package-name> REBUILD=1

Other changes:

support/package-builder:
- Cleanups
- Get rid of distutilsversion and introduce rpmversion
- Support epoch version comparision

Change-Id: I862ed5dbc7a28ae66ac44c508e35fca4292fdaf3
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25556
Reviewed-by: Srinidhi Rao <srinidhi.rao@broadcom.com>
Reviewed-by: Alexey Makhalov <alexey.makhalov@broadcom.com>
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
 2025-04-23 06:32:59 +00:00
Shreenidhi Shedi e0388f24d9 cairo: fix devel package requires 
Change-Id: I6b90e8ecf95c9b2a73c2d3a9c6cba192dc8f67d8
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25567
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
Reviewed-by: Harinadh Dommaraju <harinadh.dommaraju@broadcom.com>
 2025-04-22 08:14:27 +00:00
Shreenidhi Shedi 5288addafd treewide: build ruby gems properly 
- Remove rubygem-http-accept-2.2.0, none of the other gems need it and
  it can't be installed with other gems when they need http-accept < 2.0

- Remove rubygem-http-5.1.0, same reason as above

Change-Id: I7f6d83d8292534613a4eb36519ed794381956ce0
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25541
Reviewed-by: Michelle Wang <michelle.wang@broadcom.com>
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
 2025-04-22 04:34:30 +00:00
Shreenidhi Shedi c120737765 fakeroot: new addition 
Change-Id: I5545427c3baca439738b273d5ef5512dfd91671a
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25536
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
Reviewed-by: Srinidhi Rao <srinidhi.rao@broadcom.com>
 2025-04-21 06:46:25 +00:00
Shreenidhi Shedi ab0081ea27 build-config.json: use latest docker image 
glibc: upgrade to v2.41

Change-Id: I8b0166538871553e53bcfa10d8d757ba6d0a81ca
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25432
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
Reviewed-by: Srinidhi Rao <srinidhi.rao@broadcom.com>
 2025-04-21 05:49:04 +00:00
Shreenidhi Shedi 15a8c6fb05 isa-l: build for x86_64 only 
Change-Id: I0982a97d24498bef2e042724764be7a41c06eb71
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25516
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
Reviewed-by: Michelle Wang <michelle.wang@broadcom.com>
 2025-04-14 16:01:09 +00:00
Shreenidhi Shedi a5f94e727b pgbouncer: fix some spec mishaps 
Change-Id: Icb89341a36668010958953e2fd02175a073ec8b3
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25495
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
 2025-04-11 10:46:55 +00:00
Shreenidhi Shedi fa57f854a1 build.py: add support to build a bunch of packages at once 
How to use:
make pkgs=a,b,c

Example:
make pkgs=postgresql15,cloud-init

Change-Id: I0d38f61d49c3397c8ef2a0250e2e456add7eed2d
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25501
Reviewed-by: Srinidhi Rao <srinidhi.rao@broadcom.com>
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
 2025-04-11 10:24:50 +00:00
Shreenidhi Shedi 689d53d15e apr: fix devel package requires 
Change-Id: Id850d5adc21da419cfa56d4264ef49ec7c920a30
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25500
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
 2025-04-11 08:05:41 +00:00
Shreenidhi Shedi 15bf5e8da1 isa-l: new addition 
Change-Id: I605cfbe8d970b19dfa81dc925464db586dd2ea5b
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25485
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
 2025-04-10 10:27:19 +00:00
Shreenidhi Shedi 995911eae7 Linux-PAM: open tally log in O_CLOEXEC mode 
Change-Id: Iaa658a4b6d20ea987454b3729dde15f81424e7f7
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25422
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
Reviewed-by: Oliver Kurth <oliver.kurth@broadcom.com>
 2025-04-03 05:57:44 +00:00
Shreenidhi Shedi 00e3ea56d7 sudo: fix sudo password prompt 
Change-Id: I8cafbd5dba1b8f16246e7a93e83a492fd6a910f5
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25373
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
 2025-03-21 08:44:15 +00:00
Shreenidhi Shedi 9af0d0f9ed lldb, llvm: build option tweaks to make the build work 
Change-Id: Id2d85c2181a18508a7ebceed8b06c744657bbf1e
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25402
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
 2025-03-20 10:51:29 +00:00
Shreenidhi Shedi e0e4af84c0 kernels: remove xml-security-c from build requires 
Change-Id: Ia3c1fba91df8f068044313cd9f998970e73de036
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25355
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
Reviewed-by: Harinadh Dommaraju <harinadh.dommaraju@broadcom.com>
 2025-03-13 17:12:12 +00:00
Shreenidhi Shedi 651a4da865 haproxy-dataplaneapi: spec cleanups 
Change-Id: Ic888c226e75becb9bda11815da49b15a53c6337e
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25308
Reviewed-by: Harinadh Dommaraju <harinadh.dommaraju@broadcom.com>
 2025-03-06 05:04:58 +00:00
Shreenidhi Shedi ae0b176b9b photon-release: add combined short options support to lsb_release 
Example: `lsb_release -sd' works in Photon after this fix.

Change-Id: Ifc20e3ac6e912f8e791182f99b3c951cd55abb07
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25277
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
Reviewed-by: Alexey Makhalov <alexey.makhalov@broadcom.com>
 2025-03-05 04:17:16 +00:00
Shreenidhi Shedi dab76fa857 mdadm: new addition 
Change-Id: I141edb3b40727756ae192d43b1b241cb4becc1dc
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25247
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
 2025-02-21 10:14:07 +00:00
Shreenidhi Shedi 295804f387 httpd: spec cleanups 
- Use sources for systemd units.
- Fix post, postun

Change-Id: I83a80cc3b4d04a81176652bea573593a95572743
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25243
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
 2025-02-21 10:03:42 +00:00
Shreenidhi Shedi 75e43af93d clang, llvm, lldb: limit resources for concurrent build and linking 
Change-Id: I547e5234237a519c261b00ce882f98e7d01850a2
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25239
Reviewed-by: Srinidhi Rao <srinidhi.rao@broadcom.com>
 2025-02-21 10:03:24 +00:00
Shreenidhi Shedi 733b51d505 netcat: switch to BSD netcat 
Currently used GNU netcat is from 2004, let's switch to BSD netcat.

libmd, libbsd, libretls are requred by BSD netcat.

Change-Id: Ic61e9005f002ccb9022c4d78ad9037d2fa49141a
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/24598
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
Reviewed-by: Srinidhi Rao <srinidhi.rao@broadcom.com>
 2025-02-20 06:36:38 +00:00
Shreenidhi Shedi 06f44e6160 rubygem-fluent-plugin-gcs: new addition 
All the other additions are needed fluent-plugin-gcs.

Change-Id: I170ce88462900a17ccc8721c37d3b23871c40c58
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25199
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
Reviewed-by: Shivani Agarwal <shivani.agarwal@broadcom.com>
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
(cherry picked from commit b91a0c794d)
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25212
Reviewed-by: Srinidhi Rao <srinidhi.rao@broadcom.com>
 2025-02-18 06:02:56 +00:00
Shreenidhi Shedi 51b78c6288 support/spec-checker: add a global ignore list to make room for config.yaml in spec dirs 
Change-Id: I6df77b95524c3f37aef5b41bb610f699ec289cef
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25158
Reviewed-by: Alexey Makhalov <alexey.makhalov@broadcom.com>
Tested-by: Vamsi Krishna Brahmajosyula <vamsi-krishna.brahmajosyula@broadcom.com>
Reviewed-by: Vamsi Krishna Brahmajosyula <vamsi-krishna.brahmajosyula@broadcom.com>
(cherry picked from commit d5b0b563dc)
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25215
Reviewed-by: Srinidhi Rao <srinidhi.rao@broadcom.com>
 2025-02-18 06:02:50 +00:00
Shreenidhi Shedi 50e943d155 motd: upgrade to v1.0 
tdnf: remove updateinfo timer and service.

Instead of inidividual applications shipping timers for populating motd
content, MOTD now has its own timer.

Change-Id: I08c237c18a88b26223b208a66fb5bfec56186ca7
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/24839
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
 2025-01-31 11:39:30 +00:00
Shreenidhi Shedi c32e25d90e tools/scripts/build_spec.sh: some tweaks and fixes 
- Fix the mkdir command
- Exec container in privileged mode

Change-Id: Icb3b033ccb9c1d0902ae8f75bd1592faf5f404f1
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25152
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
Reviewed-by: Srinidhi Rao <srinidhi.rao@broadcom.com>
 2025-01-31 05:39:11 +00:00
Shreenidhi Shedi db453719b8 chromium: upgrade to v131.0.6778.268 
This also fixes following CVEs: CVE-2024-10487, CVE-2024-10488

Change-Id: Id21b18631277af341fa97745bbd429a9183f52a0
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25151
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
 2025-01-30 04:54:54 +00:00
Shreenidhi Shedi 6730f78e7a nginx: convert http_webdav and steam_ssl_preread modules to dynamic 
This is a strict requirement for STIG compliance to prevent security
issues.

Change-Id: Ifb3f432d619a85aa3df3aa959e6c31978d2aaa12
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25149
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
 2025-01-30 04:54:48 +00:00
Shreenidhi Shedi da166cb8ef libtiff: fix CVE-2023-6288 
Change-Id: I5fadf0beeb3eec95c5ae679ad13e42d3974ade64
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25145
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
 2025-01-29 14:03:03 +00:00
Shreenidhi Shedi 259475ad71 bash: spec cleanups 
Cleanup spec by removing source files creation.

Change-Id: I58cfd63eb2c6bb0929d7738ef29bb4fa953dc26c
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25131
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
Reviewed-by: Alexey Makhalov <alexey.makhalov@broadcom.com>
 2025-01-25 10:21:26 +00:00
Shreenidhi Shedi 48470d5965 openjdk: version upgrades to fix CVEs 
Fixes: CVE-2024-21208, CVE-2024-21210, CVE-2024-21217, CVE-2024-21235

openjdk21: new addition.

Change-Id: I330ad33e8ff4751d2a693d462648c2bdb53a9ef2
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25119
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
 2025-01-22 15:10:27 +00:00
Shreenidhi Shedi 88301c0729 rubygem-builder: remove shasum entry for local file 
Change-Id: I08a61f4914b737e92dcf8be4112b822397b8316f
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25116
Reviewed-by: Vamsi Krishna Brahmajosyula <vamsi-krishna.brahmajosyula@broadcom.com>
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
 2025-01-22 06:42:46 +00:00
Shreenidhi Shedi c86e201815 python3-setuptools: add findutils to requires 
Change-Id: I3880720da4a9803f14cd1131ebfa76d791f16e3f
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25090
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
 2025-01-21 10:02:03 +00:00
Shreenidhi Shedi 0fc5da7338 support/spec-checker: fix few flake8 reported issues 
Change-Id: I9a8dd53879ec1131a2b1f31e8db6dfd89d06b54d
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25098
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
 2025-01-21 08:50:01 +00:00
Shreenidhi Shedi 503bad674c rubygem-builder: bring rvm-installer to spec dir 
help2man: fix a typo

Change-Id: I8647ab1c23881ba72503a1d57080b762fc521755
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25081
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
Reviewed-by: Vamsi Krishna Brahmajosyula <vamsi-krishna.brahmajosyula@broadcom.com>
 2025-01-21 07:58:46 +00:00
Shreenidhi Shedi 1d8db72b7e syslog-ng: stop building example modules 
Change-Id: Ie0f91095155dbe19d1974aba9c59a304ffef3779
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25075
Reviewed-by: Alexey Makhalov <alexey.makhalov@broadcom.com>
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
 2025-01-20 05:03:22 +00:00
Shreenidhi Shedi 620e06982c cloud-init: upgrade to v24.4 
open-vm-tools: upgrade to v12.5.0

Change-Id: I71a5241faa02b3e85a469bf82fa11d8a52d590fd
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/24870
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
Reviewed-by: Srinidhi Rao <srinidhi.rao@broadcom.com>
 2025-01-17 07:25:07 +00:00
Shreenidhi Shedi 63a54407ee spec-checker: check week and month name case 
Change-Id: Iefe10cecaf16cff60f96554762de13aeedabe8eb
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/25067
Reviewed-by: <mukul.sikka@broadcom.com>
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
Reviewed-by: Srinidhi Rao <srinidhi.rao@broadcom.com>
 2025-01-17 05:52:25 +00:00
Shreenidhi Shedi 15ee78ed31 tdnf: upgrade to v3.5.10 
Change-Id: Ib9ba0993b3ddf21f061253e069fe7c38343d48db
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/24966
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
Reviewed-by: Oliver Kurth <oliver.kurth@broadcom.com>
 2025-01-17 04:24:50 +00:00
Brennan Lamoreaux d007e9845a cups: update to 2.4.11 
There are several CVEs targeting the CUPS software,
some of them for various subpackages such as cups-browsed,
or libppd. These subpackages often borrow lots of code
from the mainline CUPS package, causing CVEs to be
theoretically applicable in both places.

These CVEs can be combined and exploited for remote command execution
as described in
https://www.evilsocket.net/2024/09/26/Attacking-UNIX-systems-via-CUPS-Part-I/

These CVEs for CUPS and various CUPS related packages include:
 - CVE-2024-47176
 - CVE-2024-47076
 - CVE-2024-47175
 - CVE-2024-47177

While Photon is *NOT* at risk of this particular exploit chain,
because we don't have the cups-browsed service, CVEs
such as CVE-2024-47175 which applies to libppd also
affects the same code in mainline CUPS and should be patched.

There are 5 commits needed to remediate this exploit in mainline CUPS,
as described in
https://www.openwall.com/lists/oss-security/2024/09/27/3

Update to the latest subversion 2.4.11 in order to consume
these fixes.

Change-Id: Ieff8b832dfeb1004c1dcd3b7dd93b0c834a88ffd
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/24932
Reviewed-by: Harinadh Dommaraju <harinadh.dommaraju@broadcom.com>
Reviewed-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
 2024-12-17 17:57:04 +00:00
Shreenidhi Shedi af3c100642 postgresql: version upgrades to fix CVEs 
Change-Id: I6006d9109cc960cf90eda5df670cbe1243ac36fc
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/24866
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
 2024-12-06 10:02:24 +00:00
Shreenidhi Shedi 4dec0c61e4 bash-completion: upgrade to v2.15.0 
Change-Id: Ic3ec1d453bc7f15912ed78e2f54e273c746677ae
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/24879
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
 2024-12-06 09:04:23 +00:00
Shreenidhi Shedi 3d4f6af540 glibc: remove an obsolete comment 
Change-Id: Ibf7688878867c05f240bb4b209c539f7161c60e8
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/24872
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
 2024-12-04 09:15:32 +00:00
Shreenidhi Shedi 23d6b4d65d libxcrypt: devel package should conflict with man-pages 
man-pages: remove conflicting man page

Change-Id: I665f9d7c932366634b0fd926b6b9a9eaed83d4d6
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/24854
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
Reviewed-by: <mukul.sikka@broadcom.com>
 2024-12-02 14:59:27 +00:00
Shreenidhi Shedi 35bdf0edc0 build.py: refactor clean-stage-rpms code 
- Move clean-stage-rpms target to cleanup
- Don't check for prerequistes for any cleanup targets
- No need to check for PyOpenSSL now, installer brings it implicitly
- No need of having kpartx, makeinfo in host after POI

Change-Id: I7df5db8fb6c95b58e72d831c7ac04e8adf9654fd
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/24858
Reviewed-by: Guruswamy Basavaiah <guruswamy.basavaiah@broadcom.com>
 2024-12-02 13:44:38 +00:00
Shreenidhi Shedi 230b0982b5 ca-certificates: add a bash script equivalent for make-cert.pl 
make-ca.sh: script cleanups

Change-Id: I1962b89a6c378f6ae80ebd9ff0159b8dd16e3d71
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/24836
Reviewed-by: Alexey Makhalov <alexey.makhalov@broadcom.com>
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
 2024-11-27 08:34:39 +00:00
Shreenidhi Shedi cd0680d49c libxcrypt: conflict with glibc-devel 
Change-Id: I028abe87a18ec91168fc6aaeef3a2a53304841b6
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/24837
Reviewed-by: Srinidhi Rao <srinidhi.rao@broadcom.com>
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
 2024-11-26 05:01:05 +00:00
Shreenidhi Shedi a666e42f92 kernels: change file signing and compress logic. 
This commit also includes port of following commit from 5.0:
d0bb90b615

Change-Id: If197cace3b6def3e4062c32acbac7746aed39096
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/21743
Reviewed-by: Ankit Jain <ankit-aj.jain@broadcom.com>
Reviewed-by: Srinidhi Rao <srinidhi.rao@broadcom.com>
Tested-by: gerrit-photon <svc.photon-ci@broadcom.com>
 2024-11-25 10:12:34 +00:00
Shreenidhi Shedi c92ab65675 treewide: remove coreutils 
Rename coreutils-selinux to coreutils for user friendliness.
coreutils-selinux provides coreutils and libselinux is a dependency of
systemd, so most of the deployments are using coreutils-selinux by now.

Change-Id: I2608c84b324483115d23a64aa1ee021b2584ebc4
Signed-off-by: Shreenidhi Shedi <shreenidhi.shedi@broadcom.com>
Reviewed-on: http://photon-gerrit.lvn.broadcom.net/c/photon/+/24699
Tested-by: Michelle Wang <michelle.wang@broadcom.com>
Reviewed-by: Alexey Makhalov <alexey.makhalov@broadcom.com>
 2024-11-23 10:56:25 +00:00