CVS commit: pkgsrc/sysutils/podman

["Leonardo Taccari" <leot%netbsd.org@localhost>]

Module Name:    pkgsrc
Committed By:   leot
Date:           Sat Dec 18 18:11:48 UTC 2021

Modified Files:
        pkgsrc/sysutils/podman: Makefile distinfo
        pkgsrc/sysutils/podman/patches:
            patch-vendor_github.com_containers_common_pkg_config_config__netbsd.go
Added Files:
        pkgsrc/sysutils/podman/patches: patch-utils_utils__supported.go
            patch-vendor_github.com_containers_storage_pkg_system_syscall__unix.go
Removed Files:
        pkgsrc/sysutils/podman/patches: patch-cmd_podman_machine_init.go
            patch-cmd_podman_machine_list.go
            patch-cmd_podman_machine_machine.go patch-cmd_podman_machine_rm.go
            patch-cmd_podman_machine_ssh.go patch-cmd_podman_machine_start.go
            patch-cmd_podman_machine_stop.go patch-pkg_machine_config.go
            patch-pkg_machine_connection.go patch-pkg_machine_fcos.go
            patch-pkg_machine_ignition.go patch-pkg_machine_ignition__schema.go
            patch-pkg_machine_keys.go patch-pkg_machine_pull.go
            patch-pkg_machine_qemu_config.go patch-pkg_machine_qemu_machine.go
            patch-pkg_util_utils__supported.go
            patch-vendor_github.com_godbus_dbus_v5_transport__unixcred__netbsd.go

Log Message:
podman: Update to 3.4.4

Changes:
[Bugfixes, misc and API changes were omitted due taking too much space and
probably not so interesting]

3.4.4
=====
3.4.4 is a bugfixes release.

3.4.3
=====
Security
  * This release addresses CVE-2021-4024, where the podman machine command
    opened the gvproxy API (used to forward ports to podman machine VMs) to the
    public internet on port 7777.
  * This release addresses CVE-2021-41190, where incomplete specification of
    behavior regarding image manifests could lead to inconsistent decoding on
    different clients.

Features
--------
  * The --secret type=mount option to podman create and podman run supports a
    new option, target=, which specifies where in the container the secret will
    be mounted (#12287).

Several misc, bugfixes and API changes.

3.4.2
=====
3.4.2 is a bugfixes release.

3.4.1
=====
3.4.1 is a misc and bugfixes release.

3.4.0
=====
Features
--------
  * Pods now support init containers! Init containers are containers which run
    before the rest of the pod starts. There are two types of init containers:
    "always", which always run before the pod is started, and "once", which
    only run the first time the pod starts and are subsequently removed. They
    can be added using the podman create command's --init-ctr option.
  * Support for init containers has also been added to podman play kube and
    podman generate kube - init containers contained in Kubernetes YAML will be
    created as Podman init containers, and YAML generated by Podman will
    include any init containers created.
  * The podman play kube command now supports building images. If the --build
    option is given and a directory with the name of the specified image exists
    in the current working directory and contains a valid Containerfile or
    Dockerfile, the image will be built and used for the container.
  * The podman play kube command now supports a new option, --down, which
    removes any pods and containers created by the given Kubernetes YAML.
  * The podman generate kube command now generates annotations for SELinux
    mount options on volume (:z and :Z) that are respected by the podman play
    kube command.
  * A new command has been added, podman pod logs, to return logs for all
    containers in a pod at the same time.
  * Two new commands have been added, podman volume export (to export a volume
    to a tar file) and podman volume import) (to populate a volume from a given
    tar file).
  * The podman auto-update command now supports simple rollbacks. If a
    container fails to start after an automatic update, it will be rolled back
    to the previous image and restarted again.
  * Pods now share their user namespace by default, and the podman pod create
    command now supports the --userns option. This allows rootless pods to be
    created with the --userns=keep-id option.
  * The podman pod ps command now supports a new filter with its --filter
    option, until, which returns pods created before a given timestamp.
  * The podman image scp command has been added. This command allows images to
    be transferred between different hosts.
  * The podman stats command supports a new option, --interval, to specify the
    amount of time before the information is refreshed.
  * The podman inspect command now includes ports exposed (but not published)
    by containers (e.g. ports from --expose when --publish-all is not
    specified).
  * The podman inspect command now has a new boolean value, Checkpointed, which
    indicates that a container was stopped as a result of a podman container
    checkpoint operation.
  * Volumes created by podman volume create now support setting quotas when run
    atop XFS. The size and inode options allow the maximum size and maximum
    number of inodes consumed by a volume to be limited.
  * The podman info command now outputs information on what log drivers,
    network drivers, and volume plugins are available for use (#11265).
  * The podman info command now outputs the current log driver in use, and the
    variant and codename of the distribution in use.
  * The parameters of the VM created by podman machine init (amount of disk
    space, memory, CPUs) can now be set in containers.conf.
  * The podman machine ls command now shows additional information (CPUs,
    memory, disk size) about VMs managed by podman machine.
  * The podman ps command now includes healthcheck status in container state
    for containers that have healthchecks (#11527).

Changes
-------
  * The podman build command has a new alias, podman buildx, to improve
    compatibility with Docker. We have already added support for many docker
    buildx flags to podman build and aim to continue to do so.
  * Cases where Podman is run without a user session or a writable temporary
    files directory will now produce better error messages.
  * The default log driver has been changed from file to journald. The file
    driver did not properly support log rotation, so this should lead to a
    better experience. If journald is not available on the system, Podman will
    automatically revert to the file.
  * Podman no longer depends on ip for removing networks (#11403).
  * The deprecated --macvlan flag to podman network create now warns when it is
    used. It will be removed entirely in the Podman 4.0 release.
  * The podman machine start command now prints a message when the VM is
    successfully started.
  * The podman stats command can now be used on containers that are paused.
  * The podman unshare command will now return the exit code of the command
    that was run in the user namespace (assuming the command was successfully
    run).
  * Successful healthchecks will no longer add a healthy line to the system log
    to reduce log spam.
  * As a temporary workaround for a lack of shortname prompts in the Podman
    remote client, VMs created by podman machine now default to only using the
    docker.io registry.

Several misc, bugfixes and API changes.


To generate a diff of this commit:
cvs rdiff -u -r1.2 -r1.3 pkgsrc/sysutils/podman/Makefile
cvs rdiff -u -r1.4 -r1.5 pkgsrc/sysutils/podman/distinfo
cvs rdiff -u -r1.1 -r0 \
    pkgsrc/sysutils/podman/patches/patch-cmd_podman_machine_init.go \
    pkgsrc/sysutils/podman/patches/patch-cmd_podman_machine_list.go \
    pkgsrc/sysutils/podman/patches/patch-cmd_podman_machine_machine.go \
    pkgsrc/sysutils/podman/patches/patch-cmd_podman_machine_rm.go \
    pkgsrc/sysutils/podman/patches/patch-cmd_podman_machine_ssh.go \
    pkgsrc/sysutils/podman/patches/patch-cmd_podman_machine_start.go \
    pkgsrc/sysutils/podman/patches/patch-cmd_podman_machine_stop.go \
    pkgsrc/sysutils/podman/patches/patch-pkg_machine_config.go \
    pkgsrc/sysutils/podman/patches/patch-pkg_machine_connection.go \
    pkgsrc/sysutils/podman/patches/patch-pkg_machine_fcos.go \
    pkgsrc/sysutils/podman/patches/patch-pkg_machine_ignition.go \
    pkgsrc/sysutils/podman/patches/patch-pkg_machine_ignition__schema.go \
    pkgsrc/sysutils/podman/patches/patch-pkg_machine_keys.go \
    pkgsrc/sysutils/podman/patches/patch-pkg_machine_pull.go \
    pkgsrc/sysutils/podman/patches/patch-pkg_machine_qemu_config.go \
    pkgsrc/sysutils/podman/patches/patch-pkg_machine_qemu_machine.go \
    pkgsrc/sysutils/podman/patches/patch-pkg_util_utils__supported.go \
    pkgsrc/sysutils/podman/patches/patch-vendor_github.com_godbus_dbus_v5_transport__unixcred__netbsd.go
cvs rdiff -u -r0 -r1.1 \
    pkgsrc/sysutils/podman/patches/patch-utils_utils__supported.go \
    pkgsrc/sysutils/podman/patches/patch-vendor_github.com_containers_storage_pkg_system_syscall__unix.go
cvs rdiff -u -r1.1 -r1.2 \
    pkgsrc/sysutils/podman/patches/patch-vendor_github.com_containers_common_pkg_config_config__netbsd.go

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/sysutils/podman/Makefile
diff -u pkgsrc/sysutils/podman/Makefile:1.2 pkgsrc/sysutils/podman/Makefile:1.3
--- pkgsrc/sysutils/podman/Makefile:1.2 Sat Sep  4 21:14:15 2021
+++ pkgsrc/sysutils/podman/Makefile     Sat Dec 18 18:11:48 2021
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.2 2021/09/04 21:14:15 leot Exp $
+# $NetBSD: Makefile,v 1.3 2021/12/18 18:11:48 leot Exp $
 
-DISTNAME=      podman-3.3.1
+DISTNAME=      podman-3.4.4
 GITHUB_TAG=    v${PKGVERSION_NOREV}
 CATEGORIES=    sysutils
 MASTER_SITES=  ${MASTER_SITE_GITHUB:=containers/}
@@ -20,7 +20,7 @@ DEPENDS+=     qemu-[0-9]*:../../emulators/qe
 DEPENDS+=      gvproxy-[0-9]*:../../net/gvproxy
 
 SUBST_CLASSES+=                gvproxy
-SUBST_FILES.gvproxy=   pkg/machine/qemu/machine.go
+SUBST_FILES.gvproxy=   vendor/github.com/containers/common/pkg/config/config_netbsd.go
 SUBST_STAGE.gvproxy=   pre-configure
 SUBST_MESSAGE.gvproxy= fix PREFIX inside patch
 SUBST_VARS.gvproxy=    PREFIX

Index: pkgsrc/sysutils/podman/distinfo
diff -u pkgsrc/sysutils/podman/distinfo:1.4 pkgsrc/sysutils/podman/distinfo:1.5
--- pkgsrc/sysutils/podman/distinfo:1.4 Tue Oct 26 11:20:01 2021
+++ pkgsrc/sysutils/podman/distinfo     Sat Dec 18 18:11:48 2021
@@ -1,38 +1,22 @@
-$NetBSD: distinfo,v 1.4 2021/10/26 11:20:01 nia Exp $
+$NetBSD: distinfo,v 1.5 2021/12/18 18:11:48 leot Exp $
 
-BLAKE2s (podman-3.3.1.tar.gz) = 5662528235798eefb2d22391602ddaeb9596dfd52e1ea93dd7b4441356c3c099
-SHA512 (podman-3.3.1.tar.gz) = 19003f63c17c1c5788f34d0d6426a366035fc76aa2312e6355464d204d6536e5f78652abaf01643d4be7c2ee5224c25717b41760a4be4f6de8031cca9b06efaa
-Size (podman-3.3.1.tar.gz) = 10917305 bytes
+BLAKE2s (podman-3.4.4.tar.gz) = d9923d89d2c36269696e7e8a873cc789988b586121e53d9d8fcd32e156464501
+SHA512 (podman-3.4.4.tar.gz) = cfd295bf50ce86ea70741c3e663b409ed47b1e560c962bc579f319151a0fe2b24cdd3045667660083cce89449a9c5de1508c94a9a02375165a72ce7c16166666
+Size (podman-3.4.4.tar.gz) = 10945990 bytes
 SHA1 (patch-Makefile) = 5671f5452430d4b94af924defbb473eb91732281
-SHA1 (patch-cmd_podman_machine_init.go) = 391b486723fc63120235e108b078e475c328dd15
-SHA1 (patch-cmd_podman_machine_list.go) = 96007836194c66ed2e3e2bc271af7acf8e72fd9b
-SHA1 (patch-cmd_podman_machine_machine.go) = 749fdc292f9a425d0ca0fc1cec5aac90cb7f2a66
-SHA1 (patch-cmd_podman_machine_rm.go) = 0cbb65a1f2330185be6210936b7f1d0e82f26e2b
-SHA1 (patch-cmd_podman_machine_ssh.go) = 1c6d996b1e996c9a0fbb973e785b88bc19651519
-SHA1 (patch-cmd_podman_machine_start.go) = 9c4ae7fc106faab0d6e6ade73d0b07c2c024527e
-SHA1 (patch-cmd_podman_machine_stop.go) = a5a17b271e78617caecd15e19ddb2094c17f95c0
 SHA1 (patch-cmd_podman_registry_config.go) = 6d32a7526cad5728a385de0029b2bbe5474e7f1b
-SHA1 (patch-pkg_machine_config.go) = 9432c84ac70623c209723705b472912fde55ba84
-SHA1 (patch-pkg_machine_connection.go) = fac7ad8ec1110a0242f080201d5f3fbd683d0aa3
-SHA1 (patch-pkg_machine_fcos.go) = 1f50d437689f664b1f5bc196e6dbd16f10710747
-SHA1 (patch-pkg_machine_ignition.go) = 31cbf4b07aa2505317bfdb90a8157442e0fd68bb
-SHA1 (patch-pkg_machine_ignition__schema.go) = 82b8ff2f06efd98fc0af4203de77b30fa5ede735
-SHA1 (patch-pkg_machine_keys.go) = 8754a3bf3911dc30ce4c4a860062fefcee3e9c0a
-SHA1 (patch-pkg_machine_pull.go) = 77aa437282992a6eac6c2472bc76f149c0dcb5a7
-SHA1 (patch-pkg_machine_qemu_config.go) = aba88962e13027ec620a9a60326619a159c402d1
-SHA1 (patch-pkg_machine_qemu_machine.go) = 4524c385e209179243df834388244e9d5ea219b8
 SHA1 (patch-pkg_machine_qemu_options__netbsd.go) = a256dcafceb70f29b4f7a1ed013b52b5d6b0f4ba
 SHA1 (patch-pkg_machine_qemu_options__netbsd__amd64.go) = 7f5e4fe206e6e1d8f8e2cd33c8ac18b614c2dd61
 SHA1 (patch-pkg_util_utils__netbsd.go) = 452c7ca070a945cbcc3e703105c1fe0a65eaedc7
-SHA1 (patch-pkg_util_utils__supported.go) = 61d8aa0987049dd212cc354429bb7086b2ba3e80
+SHA1 (patch-utils_utils__supported.go) = 37c999dbf55ff98017d1a4d017d20d576e28d42d
 SHA1 (patch-vendor_github.com_containers_buildah_util_util__uint64.go) = 3e8b233c63224e5c2785760342bb42ec064a81a1
 SHA1 (patch-vendor_github.com_containers_buildah_util_util__unix.go) = 2073a132dc3bf63436ff29bcd228d960ab3c90d0
-SHA1 (patch-vendor_github.com_containers_common_pkg_config_config__netbsd.go) = 0f045546a9d51f5f64c84392107429e627c3674a
+SHA1 (patch-vendor_github.com_containers_common_pkg_config_config__netbsd.go) = 0da82c8c514630fe6afed3041c51869915c3fda8
 SHA1 (patch-vendor_github.com_containers_common_pkg_config_util__supported.go) = 3e02f5ee7d0855d46d8318792f620e18f722d259
 SHA1 (patch-vendor_github.com_containers_storage_drivers_chroot__unix.go) = c2c625898c7651d24ba842a6654d57dd4a0e4428
 SHA1 (patch-vendor_github.com_containers_storage_pkg_directory_directory__unix.go) = c65adf43eca0ff10a289ae8f1fa09376164dc89e
 SHA1 (patch-vendor_github.com_containers_storage_pkg_homedir_homedir__others.go) = afe76698c46e8ae015e7128958336a80016a53b7
 SHA1 (patch-vendor_github.com_containers_storage_pkg_lockfile_lockfile__unix.go) = 0d143dd2aaa21470bc31e260dc3413b2533208f9
 SHA1 (patch-vendor_github.com_containers_storage_pkg_system_stat__netbsd.go) = 37bae90c1b3d97f8b4166fca2c59d144c41f81f8
-SHA1 (patch-vendor_github.com_godbus_dbus_v5_transport__unixcred__netbsd.go) = ff256cc59025a279c613ad91d3d483cabfbbf8c8
+SHA1 (patch-vendor_github.com_containers_storage_pkg_system_syscall__unix.go) = aaca8d584c5f98b7493e165726b304af0c5a341b
 SHA1 (patch-vendor_github.com_moby_sys_mount_flags__bsd.go) = 7261a1aee3334b7da676851851678a49a22559ae

Index: pkgsrc/sysutils/podman/patches/patch-vendor_github.com_containers_common_pkg_config_config__netbsd.go
diff -u pkgsrc/sysutils/podman/patches/patch-vendor_github.com_containers_common_pkg_config_config__netbsd.go:1.1 
pkgsrc/sysutils/podman/patches/patch-vendor_github.com_containers_common_pkg_config_config__netbsd.go:1.2
--- pkgsrc/sysutils/podman/patches/patch-vendor_github.com_containers_common_pkg_config_config__netbsd.go:1.1   Sat Sep  4 20:28:42 2021
+++ pkgsrc/sysutils/podman/patches/patch-vendor_github.com_containers_common_pkg_config_config__netbsd.go       Sat Dec 18 18:11:48 2021
@@ -1,10 +1,10 @@
-$NetBSD: patch-vendor_github.com_containers_common_pkg_config_config__netbsd.go,v 1.1 2021/09/04 20:28:42 maya Exp $
+$NetBSD: patch-vendor_github.com_containers_common_pkg_config_config__netbsd.go,v 1.2 2021/12/18 18:11:48 leot Exp $
 
 Add netbsd support (vendor code)
 
---- vendor/github.com/containers/common/pkg/config/config_netbsd.go.orig       2021-09-04 12:43:05.851513218 +0000
+--- vendor/github.com/containers/common/pkg/config/config_netbsd.go.orig       2021-10-01 19:59:28.975404283 +0000
 +++ vendor/github.com/containers/common/pkg/config/config_netbsd.go
-@@ -0,0 +1,17 @@
+@@ -0,0 +1,22 @@
 +package config
 +
 +import (
@@ -22,3 +22,8 @@ Add netbsd support (vendor code)
 +func ifRootlessConfigPath() (string, error) {
 +      return rootlessConfigPath()
 +}
++
++var defaultHelperBinariesDir = []string{
++      // pkgsrc paths
++      "@PREFIX@/bin",
++}

Added files:

Index: pkgsrc/sysutils/podman/patches/patch-utils_utils__supported.go
diff -u /dev/null pkgsrc/sysutils/podman/patches/patch-utils_utils__supported.go:1.1
--- /dev/null   Sat Dec 18 18:11:48 2021
+++ pkgsrc/sysutils/podman/patches/patch-utils_utils__supported.go      Sat Dec 18 18:11:48 2021
@@ -0,0 +1,12 @@
+$NetBSD: patch-utils_utils__supported.go,v 1.1 2021/12/18 18:11:48 leot Exp $
+
+Add NetBSD support
+
+--- utils/utils_supported.go.orig      2021-09-30 18:44:31.000000000 +0000
++++ utils/utils_supported.go
+@@ -1,4 +1,4 @@
+-// +build linux darwin
++// +build linux darwin netbsd
+ 
+ package utils
+ 
Index: pkgsrc/sysutils/podman/patches/patch-vendor_github.com_containers_storage_pkg_system_syscall__unix.go
diff -u /dev/null pkgsrc/sysutils/podman/patches/patch-vendor_github.com_containers_storage_pkg_system_syscall__unix.go:1.1
--- /dev/null   Sat Dec 18 18:11:48 2021
+++ pkgsrc/sysutils/podman/patches/patch-vendor_github.com_containers_storage_pkg_system_syscall__unix.go       Sat Dec 18 18:11:48 2021
@@ -0,0 +1,12 @@
+$NetBSD: patch-vendor_github.com_containers_storage_pkg_system_syscall__unix.go,v 1.1 2021/12/18 18:11:48 leot Exp $
+
+Add NetBSD support.
+
+--- vendor/github.com/containers/storage/pkg/system/syscall_unix.go.orig       2021-12-08 18:41:11.000000000 +0000
++++ vendor/github.com/containers/storage/pkg/system/syscall_unix.go
+@@ -1,4 +1,4 @@
+-// +build linux freebsd darwin
++// +build linux freebsd darwin netbsd
+ 
+ package system
+