bombastictranz · bombastictranz · Mar 8, 2024 · Feb 15, 2024 · Feb 16, 2024 · Feb 16, 2024
diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
@@ -25,6 +25,7 @@
 /SPECS-SIGNED/kernel-hci-signed/* @microsoft/cbl-mariner-kernel
 /SPECS-SIGNED/kernel-azure-signed/* @microsoft/cbl-mariner-kernel
 /SPECS-SIGNED/kernel-mstflint-signed/* @microsoft/cbl-mariner-kernel
+/SPECS-SIGNED/kernel-mshv-signed/* @microsoft/cbl-mariner-kata-containers
 
 /SPECS/grub2/* @microsoft/cbl-mariner-bootloader
 /SPECS/grubby/* @microsoft/cbl-mariner-bootloader
@@ -68,6 +69,7 @@
 
 /SPECS/cloud-hypervisor/* @microsoft/cbl-mariner-virtualization
 /SPECS/hvloader/* @microsoft/cbl-mariner-kata-containers
+/SPECS-SIGNED/hvloader-signed/* @microsoft/cbl-mariner-kata-containers
 
 /SPECS/cloud-init/* @microsoft/cbl-mariner-provisioning
 /SPECS/walinuxagent/* @microsoft/cbl-mariner-provisioning

diff --git a/.pipelines/containerSourceData/Dockerfile-Initial b/.pipelines/containerSourceData/Dockerfile-Initial
@@ -7,7 +7,7 @@ RUN --mount=type=bind,source=./Stage/,target=/dockerStage/ \\\
     tdnf install -y createrepo; \\\
     cp -r ${RPMS_PATH} ${LOCAL_REPO_PATH}; \\\
     cat /dockerStage/marinerLocalRepo.repo >> /etc/yum.repos.d/local.repo; \\\
-    createrepo --database ${LOCAL_REPO_PATH} --workers 10; tdnf makecache \&\& tdnf makecache; \\\
+    createrepo --database ${LOCAL_REPO_PATH} --workers 10; tdnf makecache; \\\
     tdnf autoremove -y createrepo; \\\
     for rpm in "${RPMS_TO_INSTALL[@]}"; do \\\
        echo "RPM: $rpm"; \\\

diff --git a/.pipelines/containerSourceData/azurecli/Dockerfile-AzureCLI b/.pipelines/containerSourceData/azurecli/Dockerfile-AzureCLI
diff --git a/.pipelines/containerSourceData/azurecli/azurecli.pkg b/.pipelines/containerSourceData/azurecli/azurecli.pkg
diff --git a/.pipelines/containerSourceData/base/Dockerfile-Base-Nonroot-Template b/.pipelines/containerSourceData/base/Dockerfile-Base-Nonroot-Template
@@ -5,14 +5,14 @@ ARG BASE_IMAGE
 
 FROM $BASE_IMAGE AS BASE
 
-ARG MARINER_VERSION=2.0
+ARG AZL_VERSION=2.0
 ARG USERNAME=nonroot
 ARG USER_UID=65532
 ARG USER_GID=$USER_UID
 ARG SET_USER=$USERNAME
 
 RUN mkdir -p /staging/etc \
-    && tdnf install -y --releasever=$MARINER_VERSION shadow-utils \
+    && tdnf install -y --releasever=$AZL_VERSION shadow-utils \
     && groupadd --gid $USER_GID $USERNAME \
     && useradd --gid $USER_GID -g $USERNAME $USERNAME -u $USER_UID \
     && tdnf clean all \

diff --git a/...eData/busybox/Dockerfile-Busybox-Template → ...urceData/base/Dockerfile-Busybox-Template b/...eData/busybox/Dockerfile-Busybox-Template → ...urceData/base/Dockerfile-Busybox-Template
@@ -5,12 +5,32 @@ ARG BASE_IMAGE
 
 FROM $BASE_IMAGE AS BASE
 
-ARG MARINER_VERSION=2.0
+ARG AZL_VERSION=2.0
+
+ARG RPMS
+ARG LOCAL_REPO_FILE="local.repo"
+ARG LOCAL_REPO_PATH="/localrepo" 
+
+COPY ${RPMS} /WORKDIR/RPMS
+COPY ${LOCAL_REPO_FILE} /WORKDIR/REPO/local.repo
+
+# Create local repo if RPMS are provided
+# This will allow the user to install packages from the local repo
+# instead of fetching from PMC
+RUN if [ "${RPMS}" ]; then \
+    mkdir -p $LOCAL_REPO_PATH; \
+    tdnf install -y --releasever=$AZL_VERSION createrepo; \
+    cp -r /WORKDIR/RPMS ${LOCAL_REPO_PATH}; \
+    cp /WORKDIR/REPO/local.repo /etc/yum.repos.d/local.repo; \
+    createrepo --database ${LOCAL_REPO_PATH} --workers 10; \
+    tdnf makecache; \
+    tdnf autoremove -y createrepo; \
+fi
 
 # Install busybox, glibc, and their dependencies into a staging location.
 # Staging directory is copied into the final scratch image.
 RUN mkdir /staging \
-    && tdnf install -y --releasever=$MARINER_VERSION --installroot /staging \
+    && tdnf install -y --releasever=$AZL_VERSION --installroot /staging \
     busybox glibc \
     && tdnf clean all \
     && pushd /staging \
@@ -37,5 +57,5 @@ FROM scratch
 
 # Copy dependencies into the scratch image.
 COPY --from=BASE /staging/ .
-
+COPY --from=BASE EULA-Container.txt /
 CMD [ "sh" ]
diff --git a/...ss/Dockerfile-Distroless-Nonroot-Template → ...se/Dockerfile-Distroless-Nonroot-Template b/...ss/Dockerfile-Distroless-Nonroot-Template → ...se/Dockerfile-Distroless-Nonroot-Template
@@ -6,14 +6,14 @@ ARG FINAL_IMAGE
 
 FROM $BASE_IMAGE AS BASE
 
-ARG MARINER_VERSION=2.0
+ARG AZL_VERSION=2.0
 ARG USERNAME=nonroot
 ARG USER_UID=65532
 ARG USER_GID=$USER_UID
 ARG SET_USER=$USERNAME
 
 RUN mkdir -p /staging/etc \
-    && tdnf install -y --releasever=$MARINER_VERSION shadow-utils \
+    && tdnf install -y --releasever=$AZL_VERSION shadow-utils \
     && groupadd --gid $USER_GID $USERNAME \
     && useradd --gid $USER_GID -g $USERNAME $USERNAME -u $USER_UID \
     && tdnf clean all \

diff --git a/...distroless/Dockerfile-Distroless-Template → ...eData/base/Dockerfile-Distroless-Template b/...distroless/Dockerfile-Distroless-Template → ...eData/base/Dockerfile-Distroless-Template
diff --git a/.pipelines/containerSourceData/nodejs/distroless/holdback-nodejs18.pkg b/.pipelines/containerSourceData/nodejs/distroless/holdback-nodejs18.pkg
@@ -0,0 +1,8 @@
+bash
+bzi
+coreutils
+gmp
+grep
+libselinux
+pcre
+pcre-libs
diff --git a/.pipelines/containerSourceData/nodejs/distroless/nodejs18.pkg b/.pipelines/containerSourceData/nodejs/distroless/nodejs18.pkg
@@ -0,0 +1,2 @@
+distroless-packages-base
+nodejs18
diff --git a/.pipelines/containerSourceData/prometheus/distroless/holdback-prometheus.pkg b/.pipelines/containerSourceData/prometheus/distroless/holdback-prometheus.pkg
@@ -0,0 +1,8 @@
+bash
+bzi
+coreutils
+gmp
+grep
+libselinux
+pcre
+pcre-libs
diff --git a/.pipelines/containerSourceData/prometheus/distroless/prometheus.pkg b/.pipelines/containerSourceData/prometheus/distroless/prometheus.pkg
@@ -0,0 +1,2 @@
+distroless-packages-base
+prometheus
diff --git a/.pipelines/containerSourceData/prometheusadapter/distroless/holdback-prometheusadapter.pkg b/.pipelines/containerSourceData/prometheusadapter/distroless/holdback-prometheusadapter.pkg
@@ -0,0 +1,8 @@
+bash
+bzi
+coreutils
+gmp
+grep
+libselinux
+pcre
+pcre-libs
diff --git a/.pipelines/containerSourceData/prometheusadapter/distroless/prometheusadapter.pkg b/.pipelines/containerSourceData/prometheusadapter/distroless/prometheusadapter.pkg
@@ -0,0 +1,2 @@
+distroless-packages-base
+prometheus-adapter
diff --git a/.pipelines/containerSourceData/python/distroless/holdback-python.pkg b/.pipelines/containerSourceData/python/distroless/holdback-python.pkg
@@ -0,0 +1,8 @@
+bash
+bzi
+coreutils
+gmp
+grep
+libselinux
+pcre
+pcre-libs
diff --git a/.pipelines/containerSourceData/python/distroless/python.pkg b/.pipelines/containerSourceData/python/distroless/python.pkg
@@ -0,0 +1,2 @@
+distroless-packages-base
+python3