Release v2021.6: Release 2021.6 · cgwalters/rpm-ostree

v2021.6
58c2090
Verified

This tag was signed with the committer’s verified signature.

cgwalters Colin Walters

GPG key ID: DC45FD5921C13F0B

Verified
Learn about vigilant mode
Compare

Choose a tag to compare

Loading

View all tags
v2021.6: Release 2021.6
v2021.6
58c2090
Compare

Choose a tag to compare

Loading

View all tags
Verified

This tag was signed with the committer’s verified signature.

cgwalters Colin Walters

GPG key ID: DC45FD5921C13F0B

Verified
Learn about vigilant mode
cgwalters tagged this 22 Jun 17:59
Any reboots initiated by rpm-ostree now opt-in by default to respecting systemd reboot blocking inhibitors.  For example, an administrator can now run `systemd-inhibit bash` on a login shell on a Fedora CoreOS system and know that zincati's attempt to reboot (via rpm-ostree) will be blocked until the shell exits.
PR: https://github.com/coreos/rpm-ostree/pull/2862

`rpm-ostree override replace` now supports directly replacing existing overrides.
PR: https://github.com/coreos/rpm-ostree/pull/2863

`rpm-ostree override replace` with Fedora Bodhi/Koji URLs now directly speaks XML-RPC to Koji instead of using a redirector service that was intended to be temporary (and is no longer accessible).

There is experimental support for `rpm-ostree deploy --ex-cliwrap=true` which opts-in to having rpm-ostree intercept some other command line tools such as `rpm`, `yum/dnf`, and `dracut`.  Use `rpm-ostree ex apply-live` to apply the change live, and `rpm-ostree deploy --ex-cliwrap=false` to disable again.

There is a new experimental `rpm-ostree ex-container` CLI that uses the new [ostree-rs-ext](https://github.com/ostreedev/ostree-rs-ext) code to bidirectionally map between ostree commits and containers.

The `/usr/sbin/sss_cache` binary is temporarily removed (if present) at build time to avoid a spam of errors from `sssd`.

Current rpm-ostree now compiles again on RHEL8.4.

libdnf is updated, and several fixes to the RPM `%_dbpath` handling were made to ensure that [osbuild](https://github.com/osbuild/osbuild-composer/) correctly generates an rpmdb in `/usr/share/rpm`.

The [rojig code](https://github.com/coreos/rpm-ostree/issues/1081) has been removed.  On the balance, the future direction of rpm-ostree will be more oriented towards the image side (particularly with containers).  But, it's possible that the idea of rojig (and some of the code) may come back too.

Many dependent crates were updated; most notably `openssl` which now supports OpenSSL 3.0 as will be used soon by several distributions.

```
Colin Walters (40):
      passwd: Make default perms 0644
      Update to ostree-ext v0.1.2, add new `ex-container` command
      Remove large chunks of rojig code
      daemon: If we can't figure out auth rule, use override
      Add support for `rpm-ostree deploy --ex-cliwrap=true`
      importer: Remove rojig bits
      core: Remove rojig bits
      daemon/sysroot: Replace some rojig code with g_assert_not_reached()
      origin: Remove rojig bits
      rust/origin: Remove rojig bits
      util: Remove rojig cache branch mapping functions
      rust/treefile: Remove rojig spec writing
      tree-wide: Remove (almost) all remaining rojig bits
      rust: Port some bits to new ostree_ext::variant_utils
      daemon: Make actually initiating reboot asynchronous
      daemon: Remove support for session bus
      importer: Remove traces of unprivileged import
      Use new `ostree_commit_metadata_for_bootable()` API
      daemon: Remove even more session bus code
      Update to ostree-ext 0.1.3
      daemon/isolation: Clean up failed units too
      util: Fix missing error in decompose_sha256_nevra
      rust/utils: Fix ordering of decompose_sha256_nevra
      Drop use of koji redirector, use XML-RPC API
      daemon: Die if /var/lib/rpm exists and is not a symlink
      cliwrap: Add initial yum/dnf wrapper
      core: Neuter /usr/sbin/sss_cache during compose/layering
      origin: Switch baserefspec → refspec when de-layering
      core: Add error prefixing when applying rpmfi overrides
      test-installroot: Validate we don't have /var/lib/rpm
      core: Fix comment and link to SSSD issue
      docs: Minor admin-handbook tweaks
      cliwrap/yumdnf: Indent rpm-ostree install info
      cliwrap: Unify yum/dnf+rpm message about ostree
      cliwrap/yumdnf: Remove duplicated print of IMAGEBASED
      cliwrap/yumdnf: Fix up indentation
      core: Move systemctl interception into Rust, fix wrapping only for scripts
      rust: Fix misc clippy lints
      builtin/tree: explicitly set _dbpath macro in global libdnf initialization
      Release 2021.6

Jonathan Lebon (5):
      man/rpm-ostree: Document `install --idempotent`
      HACKING: Add section about using GDB with rpm-ostree
      daemon/deploy: Handle resetting inactive replacement overrides by name
      tests/kolainst: Copy to rpm-repos/ last
      tests/kolainst: Add `make localinstall`

Kelvin Fan (1):
      daemon: Respect systemd inhibitor locks

Luca BRUNO (18):
      docs: update release step
      importer: align /var/lib/rpm handling
      packaging/spec: require rpm >= 4.16.0
      packaging/spec: misc cleanups
      lib: temporarily fork rpmver logic
      lib/rpmver: replace tabs with spaces
      packaging/spec: relax minimum librpm version
      makefile/lib: filter out private sources from gir list
      libdnf-sys/build: gracefully handle older gpgme versions
      libdnf-sys/build: auto-enable zchunk if present
      daemon/transaction: perform upfront null check on upgrader
      app/clientlib: initialize bus_name
      builtin/tree: inject _dbpath macro file in postprocessing step
      libpriv/core: set _dbpath macro in dnf context
      builtin/compose: move commit-id write logic to Rust
      passwd: reduce the amount of log messages for new entries
      composepost: minor cleanups and tests for dbpath macro injection
      lockfile: bump openssl crate to latest version

Rafael G. Ruiz (1):
      daemon/deploy: Allow replacing existing overrides without first resetting

Timothée Ravier (3):
      *: rename master branch to main
      *: rename master branch to main (external repos)
      docs: Split pages into three main categories

dependabot[bot] (20):
      build(deps): bump subprocess from 0.2.6 to 0.2.7
      build(deps): bump ostree-ext from 0.1.0 to 0.1.2
      build(deps): bump curl from 0.4.36 to 0.4.37
      build(deps): bump serde from 1.0.125 to 1.0.126
      build(deps): bump libdnf from `fefe0b6` to `1b9efdc`
      build(deps): bump rayon from 1.5.0 to 1.5.1
      build(deps): bump libdnf from `1b9efdc` to `6c2ac67`
      build(deps): bump curl from 0.4.37 to 0.4.38
      build(deps): bump tokio from 1.6.0 to 1.6.1
      build(deps): bump libc from 0.2.94 to 0.2.95
      build(deps): bump systemd from 0.8.2 to 0.9.0
      build(deps): bump libdnf from `6c2ac67` to `1ecfa6a`
      build(deps): bump libdnf from `1ecfa6a` to `8e4d199`
      build(deps): bump env_logger from 0.8.3 to 0.8.4
      build(deps): bump libc from 0.2.95 to 0.2.97
      build(deps): bump anyhow from 1.0.40 to 1.0.41
      build(deps): bump libdnf from `8e4d199` to `99b6bcf`
      build(deps): bump tokio from 1.6.1 to 1.7.1
      build(deps): bump rand from 0.8.3 to 0.8.4
      build(deps): bump phf from 0.8.0 to 0.9.0
```

Git-EVTag-v0-SHA512: cbab7e64868436d3d53d4daf8ed7d00591df91c801d22e9f432e92a7e0e08a8df2a2054c8558a48d8706860af204571c2fdc84b5deb0f1924a717a931865095c
Assets 2
Provide feedback

Saved searches

Use saved searches to filter your results more quickly
