Releases: openwrt/asu
v0.8.0 - Containers only
Containers only
To improve the sysupgrade security and reproducibility I decided to use containers instead of running the ImageBuilders bare-metal. The advantage is that broken or malicious packages have a harder time breaking the server itself. Previously package post-install script could modify anything on the server.
With this approach I also added the possibility to add external package feeds that are trusted. To do so a client may request extra repositories by supplying repositories and repository_keys in a request. Details are available in the OpenAPI specifications.
With all the great stuff of containers and Podman, whenever Podman acts up the server is broken so I spent quite some time restarting dead Podman sockets or cleaning left-over containers which wouldn't be cleaned up (contrary the API docs).
All in all I'm happy with the change and suggest everyone to use this release instead of the old one.
What's Changed
- build: use podman for image creation by @aparcar in #478
- minor fixups of podman-compose by @aparcar in #510
- api: use generic images for armsr target by @mcbridematt in #519
- Multiple fixes to make Podman work and simplify the setup by @aparcar in #577
- fix: correctly handle rc container names by @aparcar in #578
- build: store request in job for easier debugging by @aparcar in #580
- drop flask-cors package by @aparcar in #582
- poetry: update by @aparcar in #583
- sign created images after build by @aparcar in #587
- janitor: don't delete old images by @aparcar in #589
- workarounds for next release by @aparcar in #602
- Add 23.05.0 stable release by @vincejv in #606
- fix package adding with diff_packages: False by @aparcar in #627
- add package_changes.py by @aparcar in #637
- branches: add 23.05.2 by @dgilman in #657
- openapi.yml: fix "defaults" maxLength documentation by @bam80 in #693
- Update README.md by @UltraHKR in #721
New Contributors
- @mcbridematt made their first contribution in #519
- @vincejv made their first contribution in #606
- @dgilman made their first contribution in #657
- @bam80 made their first contribution in #693
- @UltraHKR made their first contribution in #721
Full Changelog: v0.7.20...v0.8.0
Contributors
Assets 2
v0.7.20 - Last non-container release plus one
What's Changed
Full Changelog: v0.7.19...v0.7.20
Contributors
Assets 2
v0.7.19 - last containerless release
This is the last releases running the ImageBuilders outside containers. In the future every build will happen inside a container to improve security, let's see how this goes.
What's Changed
- build: use regex instead of hardcoding distribution name by @1715173329 in #418
- api: better handling of defaults by @aparcar in #420
- fixed release_date in janitor.py by @onemarcfifty in #428
- branches: replace procd-ujail-console with uxc by @aparcar in #482
- api: allow to prefix packages with a + by @aparcar in #460
- Updated branches.yml to contain the latest service releases
- Allow to specify the rootfs_size_mb parameter
New Contributors
- @1715173329 made their first contribution in #418
- @onemarcfifty made their first contribution in #428
Full Changelog: v0.7.18...v0.7.19
Contributors
Assets 2
v0.7.18
v0.7.17
What's Changed
- api: drop server side handling of package_changes by @aparcar in #402
- branches: add revision and mandatory to changes by @aparcar in #404
- branches: add 22.03.1 and 21.02.4 by @aparcar in #407
- gitignore: add venv by @aparcar in #408
- add branch-off-revision for each stable branch by @dangowrt in #410
Full Changelog: v0.7.16...v0.7.17
Contributors
Assets 2
v0.7.16
v0.7.15
v0.7.14
v0.7.13
v0.7.12
What's Changed
- Update Python version to 3.10 and use
slimimage by @magneticflux- in #373 - Allow to use an empty string as filesystem, this may happen on some devices with outdated LuCI app versions
New Contributors
- @magneticflux- made their first contribution in #373
Full Changelog: v0.7.11...v0.7.12
