diff --git a/packages/by-name/microsoft/genpolicy/0001-genpolicy-add-rules-and-types-for-volumeDevices.patch b/packages/by-name/microsoft/genpolicy/0001-genpolicy-add-rules-and-types-for-volumeDevices.patch index 9cafb0e877..b3362ce8d0 100644 --- a/packages/by-name/microsoft/genpolicy/0001-genpolicy-add-rules-and-types-for-volumeDevices.patch +++ b/packages/by-name/microsoft/genpolicy/0001-genpolicy-add-rules-and-types-for-volumeDevices.patch @@ -1,7 +1,7 @@ From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001 From: Markus Rudy Date: Thu, 23 May 2024 09:20:20 +0200 -Subject: [PATCH] genpolicy: add rules and types for volumeDevices +Subject: [PATCH 1/7] genpolicy: add rules and types for volumeDevices Signed-off-by: Markus Rudy --- diff --git a/packages/by-name/microsoft/genpolicy/0002-genpolicy-add-ability-to-filter-for-runtimeClassName.patch b/packages/by-name/microsoft/genpolicy/0002-genpolicy-add-ability-to-filter-for-runtimeClassName.patch index 18b6c3b0ae..b16877a8e0 100644 --- a/packages/by-name/microsoft/genpolicy/0002-genpolicy-add-ability-to-filter-for-runtimeClassName.patch +++ b/packages/by-name/microsoft/genpolicy/0002-genpolicy-add-ability-to-filter-for-runtimeClassName.patch @@ -1,7 +1,7 @@ From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001 From: Paul Meyer <49727155+katexochen@users.noreply.github.com> Date: Tue, 9 Jul 2024 16:07:09 +0200 -Subject: [PATCH] genpolicy: add ability to filter for runtimeClassName +Subject: [PATCH 2/7] genpolicy: add ability to filter for runtimeClassName Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com> --- diff --git a/packages/by-name/microsoft/genpolicy/0003-genpolicy-allow-specifying-layer-cache-file.patch b/packages/by-name/microsoft/genpolicy/0003-genpolicy-allow-specifying-layer-cache-file.patch index 35accfdf71..a936193c3c 100644 --- a/packages/by-name/microsoft/genpolicy/0003-genpolicy-allow-specifying-layer-cache-file.patch +++ b/packages/by-name/microsoft/genpolicy/0003-genpolicy-allow-specifying-layer-cache-file.patch @@ -1,7 +1,7 @@ From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001 From: Paul Meyer <49727155+katexochen@users.noreply.github.com> Date: Tue, 9 Jul 2024 16:14:46 +0200 -Subject: [PATCH] genpolicy: allow specifying layer cache file +Subject: [PATCH 3/7] genpolicy: allow specifying layer cache file Add --layers-cache-file-path flag to allow the user to specify where the cache file for the container layers diff --git a/packages/by-name/microsoft/genpolicy/0004-genpolicy-regex-check-contrast-specific-layer-src-pr.patch b/packages/by-name/microsoft/genpolicy/0004-genpolicy-regex-check-contrast-specific-layer-src-pr.patch index a696338291..142158de05 100644 --- a/packages/by-name/microsoft/genpolicy/0004-genpolicy-regex-check-contrast-specific-layer-src-pr.patch +++ b/packages/by-name/microsoft/genpolicy/0004-genpolicy-regex-check-contrast-specific-layer-src-pr.patch @@ -1,7 +1,7 @@ From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001 From: Paul Meyer <49727155+katexochen@users.noreply.github.com> Date: Thu, 11 Jul 2024 12:05:00 +0200 -Subject: [PATCH] genpolicy: regex check contrast specific layer-src-prefix +Subject: [PATCH 4/7] genpolicy: regex check contrast specific layer-src-prefix Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com> --- diff --git a/packages/by-name/microsoft/genpolicy/0005-genpolicy-propagate-mount_options-for-empty-dirs.patch b/packages/by-name/microsoft/genpolicy/0005-genpolicy-propagate-mount_options-for-empty-dirs.patch index b8c24803f3..cd68503dcd 100644 --- a/packages/by-name/microsoft/genpolicy/0005-genpolicy-propagate-mount_options-for-empty-dirs.patch +++ b/packages/by-name/microsoft/genpolicy/0005-genpolicy-propagate-mount_options-for-empty-dirs.patch @@ -1,7 +1,7 @@ From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001 From: Leonard Cohnen Date: Thu, 29 Aug 2024 03:45:24 +0200 -Subject: [PATCH] genpolicy: propagate mount_options for empty dirs +Subject: [PATCH 5/7] genpolicy: propagate mount_options for empty dirs In order to mount empty dirs e.g., with mount propagation "Bidirectional", we need the yaml value to the policy --- diff --git a/packages/by-name/microsoft/genpolicy/0006-genpolicy-support-HostToContainer-mount-propagation.patch b/packages/by-name/microsoft/genpolicy/0006-genpolicy-support-HostToContainer-mount-propagation.patch index 6bc7b9b22d..020b9ae292 100644 --- a/packages/by-name/microsoft/genpolicy/0006-genpolicy-support-HostToContainer-mount-propagation.patch +++ b/packages/by-name/microsoft/genpolicy/0006-genpolicy-support-HostToContainer-mount-propagation.patch @@ -1,7 +1,7 @@ From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001 From: Leonard Cohnen Date: Fri, 30 Aug 2024 00:30:57 +0200 -Subject: [PATCH] genpolicy: support HostToContainer mount propagation +Subject: [PATCH 6/7] genpolicy: support HostToContainer mount propagation --- src/tools/genpolicy/src/mount_and_storage.rs | 5 +++-- diff --git a/packages/by-name/microsoft/genpolicy/0007-genpolicy-support-for-VOLUME-definition-in-container.patch b/packages/by-name/microsoft/genpolicy/0007-genpolicy-support-for-VOLUME-definition-in-container.patch index 5013f0a13a..4a90d4f7c2 100644 --- a/packages/by-name/microsoft/genpolicy/0007-genpolicy-support-for-VOLUME-definition-in-container.patch +++ b/packages/by-name/microsoft/genpolicy/0007-genpolicy-support-for-VOLUME-definition-in-container.patch @@ -1,7 +1,7 @@ From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001 From: miampf Date: Thu, 14 Nov 2024 12:34:56 +0100 -Subject: [PATCH] genpolicy: support for VOLUME definition in container image +Subject: [PATCH 7/7] genpolicy: support for VOLUME definition in container image --- src/tools/genpolicy/genpolicy-settings.json | 14 ++++-