getacl is currently failing with a buffer overflow:
$ getfacl /
getfacl: Removing leading '/' from absolute path names
# file: .
# owner: root
# group: root
*** buffer overflow detected ***: terminated
Aborted (core dumped)
This has been addressed upstream in acl-2.3.1-r1 by lowering
FORTIFY_SOURCE level.
Upstream commit 6273f7c0c37bc0fae7071ec6237654796bdcca55.
Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
This change updates dispatching of SDK and OS image builds from changes
to a PR to an explicit comment. PRs will only be built if that comment
was added by a member of the Flatcar maintainers team.
Signed-off-by: Thilo Fromm <thilofromm@microsoft.com>
This change is a building block for PR builds triggered by PR commands.
It checks for membership of the commenter in the Flatcar Maintainers
team.
Note that the "issue comment" event (which is also triggered on PR
comments) is only emitted to workflows in the "main" branch. So in order
to test / trigger this workflow, a transient "PR update" event is used,
and the "commenter" user's login is hard-coded for testing.
This will be updated to using the actual commenter's login before merge.
Signed-off-by: Thilo Fromm <thilofromm@microsoft.com>
This change adds a github actions workflow to build a new SDK container
based on an existing SDK container. This can be used for CI testing
intrusive changes that also affect the SDK without bootstrapping a whole
new SDK.
Signed-off-by: Thilo Fromm <thilofromm@microsoft.com>
git show-ref in check_remote_branch is not working at all, because the
GitHub Actions checkout fetches a git repo with only depth 1 by default.
That means only main branch is available, not any other remote branches.
As a result, git show-ref always fails.
Fix that by checking for remote branches by git ls-remote.
- remove unecessary files
- drop `pkg_postint`
- create `/etc/ssl` with tmpfiles
- mark openssl as stable for arm64 and amd64
- continue shipping app-misc/c_rehash
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
Signed-off-by: Dongsu Park <dpark@linux.microsoft.com>
Changelog directory is now located under flatcar scripts, not under
coreos overlay. Fix the location to add correct changelog to the git
commit.
Also use a correct path SDK_OUTER_TOPDIR in cleanup_repo.
In case of a draft PR created first, no CI gets triggered at the time.
So we should trigger CI afterwards when it is being set to a
ready_for_review state.
