s390x: move genprotimg to s390utils-core.rpm to drop perl dependency
#1217
Comments
|
Thanks for filing this! @sharkcz Any thoughts on this one? How feasible is it to move |
|
|
|
Not just development. |
bgilbert
changed the title
genprotimg to s390utils-core.rpm to drop perl dependency
|
Any updates on this? If not in |
LakshmiRavichandran1
added a commit
to LakshmiRavichandran1/fedora-coreos-config
that referenced
this issue
Jun 28, 2022
some files added by s390utils base have write permission by default. we need to denylist now and later the package be skipped once we have coreos/fedora-coreos-tracker#1217.
jlebon
pushed a commit
to LakshmiRavichandran1/fedora-coreos-config
that referenced
this issue
Jun 29, 2022
some files added by s390utils base have write permission by default. we need to denylist now and later the package be skipped once we have coreos/fedora-coreos-tracker#1217.
jlebon
pushed a commit
to coreos/fedora-coreos-config
that referenced
this issue
Jun 29, 2022
some files added by s390utils base have write permission by default. we need to denylist now and later the package be skipped once we have coreos/fedora-coreos-tracker#1217.
nikita-dubrovskii
added a commit
to nikita-dubrovskii/fedora-coreos-config
that referenced
this issue
Jul 8, 2022
This package provides the `genprotimg` tool, but also depends on `perl-*` rpms, which we don't want to be part of the image. As long as IBM Secure Execution is targeted for RHCOS we can drop its support in FCOS for now. For custom builds it's easier to put `genprotimg` directly into `overrides/rootfs/usr/bin/`. RHCOS comes with a lot of `perl-*` rpms, so there `s390utils-base` wouldn't bring new unwanted dependencies. coreos/fedora-coreos-tracker#1217 Signed-off-by: Nikita Dubrovskii <[email protected]>
nikita-dubrovskii
added a commit
to nikita-dubrovskii/fedora-coreos-config
that referenced
this issue
Jul 8, 2022
This package provides the `genprotimg` tool, but also depends on `perl-*` rpms, which we don't want to be part of the image. As long as IBM Secure Execution is targeted for RHCOS we can drop its support in FCOS for now. For custom builds it's easier to put `genprotimg` directly into `overrides/rootfs/usr/bin/`. RHCOS comes with a lot of `perl-*` rpms, so there `s390utils-base` wouldn't bring new unwanted dependencies. coreos/fedora-coreos-tracker#1217 Signed-off-by: Nikita Dubrovskii <[email protected]>
nikita-dubrovskii
added a commit
to nikita-dubrovskii/fedora-coreos-config
that referenced
this issue
Jul 8, 2022
This package provides the `genprotimg` tool, but also depends on `perl-*` rpms, which we don't want to be part of the image. As long as IBM Secure Execution is targeted for RHCOS we can drop its support in FCOS for now. RHCOS comes with a lot of `perl-*` rpms, so there `s390utils-base` wouldn't bring new unwanted dependencies. coreos/fedora-coreos-tracker#1217 Signed-off-by: Nikita Dubrovskii <[email protected]>
nikita-dubrovskii
added a commit
to nikita-dubrovskii/os
that referenced
this issue
Jul 8, 2022
This tool is required for IBM Secure Execution. Now it comes with `s390utils-base` rpm, which depends on `perl-*` packages. Those are already part of RHCOS, but not FCOS. Once the tool moves to `s390utils-core` package, we can revert this patch. coreos/fedora-coreos-tracker#1217 Signed-off-by: Nikita Dubrovskii <[email protected]>
nikita-dubrovskii
added a commit
to nikita-dubrovskii/fedora-coreos-config
that referenced
this issue
Jul 8, 2022
This package provides the `genprotimg` tool, but also depends on `perl-*` rpms, which we don't want to be part of the image. As long as IBM Secure Execution is targeted for RHCOS we can drop its support in FCOS for now. RHCOS comes with a lot of `perl-*` rpms, so there `s390utils-base` wouldn't bring new unwanted dependencies. For custom FCOS builds it's easier to: ``` $ mkdir -p overrides/rootfs/usr/bin/ $ mkdir -p overrides/rootfs/usr/share/s390-tools/genprotimg $ cp /path/to/genprotimg overrides/rootfs/usr/bin/ $ cp /path/to/stage3a.bin overrides/rootfs/usr/share/s390-tools/genprotimg/ $ cp /path/to/stage3b_reloc.bin overrides/rootfs/usr/share/s390-tools/genprotimg/ ``` coreos/fedora-coreos-tracker#1217 Signed-off-by: Nikita Dubrovskii <[email protected]>
|
@sharkcz I guess, despite
|
dustymabe
pushed a commit
to coreos/fedora-coreos-config
that referenced
this issue
Jul 8, 2022
This package provides the `genprotimg` tool, but also depends on `perl-*` rpms, which we don't want to be part of the image. As long as IBM Secure Execution is targeted for RHCOS we can drop its support in FCOS for now. RHCOS comes with a lot of `perl-*` rpms, so there `s390utils-base` wouldn't bring new unwanted dependencies. For custom FCOS builds it's easier to: ``` $ mkdir -p overrides/rootfs/usr/bin/ $ mkdir -p overrides/rootfs/usr/share/s390-tools/genprotimg $ cp /path/to/genprotimg overrides/rootfs/usr/bin/ $ cp /path/to/stage3a.bin overrides/rootfs/usr/share/s390-tools/genprotimg/ $ cp /path/to/stage3b_reloc.bin overrides/rootfs/usr/share/s390-tools/genprotimg/ ``` coreos/fedora-coreos-tracker#1217 Signed-off-by: Nikita Dubrovskii <[email protected]>
jlebon
added a commit
to jlebon/fedora-coreos-config
that referenced
this issue
Jul 18, 2022
We were excluding `perl`, but that's just a metapackage. The actual interpreter is in `perl-interpreter`. Let's add that to the list to make sure no package can pull it in. Related: coreos/fedora-coreos-tracker#1217
jlebon
added a commit
to coreos/fedora-coreos-config
that referenced
this issue
Jul 18, 2022
We were excluding `perl`, but that's just a metapackage. The actual interpreter is in `perl-interpreter`. Let's add that to the list to make sure no package can pull it in. Related: coreos/fedora-coreos-tracker#1217
|
Where did we land on this? |
|
from the |
|
Thanks @sharkcz for the update! |
HuijingHei
pushed a commit
to HuijingHei/fedora-coreos-config
that referenced
this issue
Oct 10, 2023
some files added by s390utils base have write permission by default. we need to denylist now and later the package be skipped once we have coreos/fedora-coreos-tracker#1217.
HuijingHei
pushed a commit
to HuijingHei/fedora-coreos-config
that referenced
this issue
Oct 10, 2023
This package provides the `genprotimg` tool, but also depends on `perl-*` rpms, which we don't want to be part of the image. As long as IBM Secure Execution is targeted for RHCOS we can drop its support in FCOS for now. RHCOS comes with a lot of `perl-*` rpms, so there `s390utils-base` wouldn't bring new unwanted dependencies. For custom FCOS builds it's easier to: ``` $ mkdir -p overrides/rootfs/usr/bin/ $ mkdir -p overrides/rootfs/usr/share/s390-tools/genprotimg $ cp /path/to/genprotimg overrides/rootfs/usr/bin/ $ cp /path/to/stage3a.bin overrides/rootfs/usr/share/s390-tools/genprotimg/ $ cp /path/to/stage3b_reloc.bin overrides/rootfs/usr/share/s390-tools/genprotimg/ ``` coreos/fedora-coreos-tracker#1217 Signed-off-by: Nikita Dubrovskii <[email protected]>
HuijingHei
pushed a commit
to HuijingHei/fedora-coreos-config
that referenced
this issue
Oct 10, 2023
We were excluding `perl`, but that's just a metapackage. The actual interpreter is in `perl-interpreter`. Let's add that to the list to make sure no package can pull it in. Related: coreos/fedora-coreos-tracker#1217
HuijingHei
pushed a commit
to HuijingHei/fedora-coreos-config
that referenced
this issue
Oct 10, 2023
some files added by s390utils base have write permission by default. we need to denylist now and later the package be skipped once we have coreos/fedora-coreos-tracker#1217.
HuijingHei
pushed a commit
to HuijingHei/fedora-coreos-config
that referenced
this issue
Oct 10, 2023
This package provides the `genprotimg` tool, but also depends on `perl-*` rpms, which we don't want to be part of the image. As long as IBM Secure Execution is targeted for RHCOS we can drop its support in FCOS for now. RHCOS comes with a lot of `perl-*` rpms, so there `s390utils-base` wouldn't bring new unwanted dependencies. For custom FCOS builds it's easier to: ``` $ mkdir -p overrides/rootfs/usr/bin/ $ mkdir -p overrides/rootfs/usr/share/s390-tools/genprotimg $ cp /path/to/genprotimg overrides/rootfs/usr/bin/ $ cp /path/to/stage3a.bin overrides/rootfs/usr/share/s390-tools/genprotimg/ $ cp /path/to/stage3b_reloc.bin overrides/rootfs/usr/share/s390-tools/genprotimg/ ``` coreos/fedora-coreos-tracker#1217 Signed-off-by: Nikita Dubrovskii <[email protected]>
HuijingHei
pushed a commit
to HuijingHei/fedora-coreos-config
that referenced
this issue
Oct 10, 2023
We were excluding `perl`, but that's just a metapackage. The actual interpreter is in `perl-interpreter`. Let's add that to the list to make sure no package can pull it in. Related: coreos/fedora-coreos-tracker#1217
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
To build SecureExecution
qemu-secex.s390x.qcow2image we usegenprotimgtool, which comes withs390utils-base.rpmdependent on/usr/bin/perl.genprotimgitself doesn't requireperland better to be part ofs390utils-core.rpm(aszipl).The text was updated successfully, but these errors were encountered: