Skip to content

Sync with hyperledger-labs/fabric-operator#109

Open
github-actions[bot] wants to merge 60 commits intobestchains:mainfrom
hyperledger-labs:main
Open

Sync with hyperledger-labs/fabric-operator#109
github-actions[bot] wants to merge 60 commits intobestchains:mainfrom
hyperledger-labs:main

Conversation

@github-actions
Copy link

@github-actions github-actions bot commented Feb 14, 2023

If there is a conflict, it is recommended to manually merge the conflicting commits, and then manually execute the sync github action.

asararatnakar and others added 30 commits February 14, 2023 11:48
@asararatnakar
Fixing gosec issues (#98)
e3e9790 
Signed-off-by: asararatnakar <asara.ratnakar@gmail.com>

Signed-off-by: asararatnakar <asara.ratnakar@gmail.com>
@asararatnakar
Updating maintainers list to add and remove mainatiners
8390864 
Signed-off-by: asararatnakar <asara.ratnakar@gmail.com>
@jkneubuh @asararatnakar
Move hyperledgendary sample to fabric-operator
cc26bdb 
Signed-off-by: Josh Kneubuhl <jkneubuh@us.ibm.com>
@Abirdcfly @asararatnakar
fix: when not using couchdb, the resources of peer's init container d…
9547bd5 
…oes not take effect

Signed-off-by: Abirdcfly <fp544037857@gmail.com>
@Abirdcfly @asararatnakar
fix: E2E testing failed but displayed success
282ca83 
Signed-off-by: Abirdcfly <fp544037857@gmail.com>
@shoaebjindani
Removed IBM Confidencial License (#110)
4082bb8 
#109

Signed-off-by: Shoaeb Jindani <shoaebmjindani@gmail.com>
@benjsmi
Upgrade to patched secure Docker version (no go mod tidy). (#137)
26fa591 
As per https://nvd.nist.gov/vuln/detail/CVE-2022-36109

Signed-off-by: Ben Smith <benjsmi@us.ibm.com>
@asararatnakar
Porting changes from V1.0.6 to master (#142)
ecdd625 
#141

---------

Signed-off-by: asararatnakar <asara.ratnakar@gmail.com>
@asararatnakar
A job to push operator image from main (#144)
a7bd80c 
#143

Signed-off-by: asararatnakar <asara.ratnakar@gmail.com>
@asararatnakar
disable peer block gossiping with config blockGossipEnabled flag (#146)
cc4ed8f
@asararatnakar
Fix the Makefile by adding missing targets (#147)
4c3b27d 
#143

Signed-off-by: asararatnakar <asara.ratnakar@gmail.com>
@shoaebjindani
Making Use tags default to true (#150)
1fbf12d 
#148
@shoaebjindani
Make use tags default to true for couchdb (#152)
bda3480 
#148

---------

Signed-off-by: shoaebjindani <40020259+shoaebjindani@users.noreply.github.com>
Co-authored-by: Shoaeb Jindani <jindani.shoaeb@ibm.com>
@asararatnakar
Change the probes from legacy endpoints to tcp ports (#155)
9648d73 
#154

Signed-off-by: asararatnakar <asara.ratnakar@gmail.com>
@shoaebjindani
Removed FluentD References (#158)
00e95f4 
#100
@benjsmi
Upgrade Fabric CA to v1.5.8 (latest). (#159)
cfac96b 
Fixes CVE-2023-44273.

Signed-off-by: Ben Smith <benjsmi@us.ibm.com>
@asararatnakar
Updating hsm config name (#160)
3d81bc4 
This PR addresses the renaming for the hsm configs

Signed-off-by: asararatnakar <asara.ratnakar@gmail.com>
@benjsmi
As per CVE-2023-28842 and others. (#163)
d1762e5 
There was a major high vulnerability discovered in
`github.com/docker/docker`, so, whether it is used for tests or actual
production operation, we need to patch it in this project.

See https://nvd.nist.gov/vuln/detail/CVE-2023-28842

Signed-off-by: Ben Smith <benjsmi@us.ibm.com>
@asararatnakar
Bump golang version to 1.20 (#167)
c04518b 
#165

---------

Signed-off-by: asararatnakar <asara.ratnakar@gmail.com>
@asararatnakar
Updating fabric/fabric-ca deps to latest (#168)
65bc703 
#164

---------

Signed-off-by: asararatnakar <asara.ratnakar@gmail.com>
@asararatnakar
Updating fabric-ca dependencies (#173)
cfe8e30 
Signed-off-by: asararatnakar <asara.ratnakar@gmail.com>
@s7santosh
console role definition replicasets resources typo correction (#178)
5089f42
@asararatnakar
Fix Insecure File Permissions (#175)
e314f75 
Changes to disable read and write permissions to the group user

Signed-off-by: asararatnakar <asara.ratnakar@gmail.com>
@asararatnakar
Disable unshare in the pod containers (#179)
23b15af 
Signed-off-by: asararatnakar <asara.ratnakar@gmail.com>
@shoaebjindani
Removing Dind References From CodeBase (#172)
6bd11be
@shoaebjindani
Set the security Context for Couchdb Container of Console (#182)
06995d6
@benjsmi @asararatnakar
Move github.com/docker/docker to v24.0.9. (#183)
6713446 
As per CVE-2024-24557.

Signed-off-by: Ben Smith <benjsmi@us.ibm.com>
Co-authored-by: Ratnakar <asara.ratnakar@gmail.com>
@jt-nti
Add missing k8s_builder config to v25 core.yaml (#184)
66d19f9 
Related to #28

Signed-off-by: James Taylor <jamest@uk.ibm.com>
@benjsmi
Address CVE-2024-24786 in google.golang.org/protobuf. (#186)
c1a1b46 
Signed-off-by: Ben Smith <benjsmi@us.ibm.com>
@shoaebjindani
Adding logs with uber/zap (#185)
f43088a
benjsmi and others added 30 commits April 17, 2024 14:59
@benjsmi
Move to golang.org/x/net v0.24.0 for CVE-2023-45288. (#191)
7771cfe 
Signed-off-by: Ben Smith <benjsmi@us.ibm.com>
@benjsmi
Upgrade github.com/docker/docker to v25.0.5 to address CVE-2024-29018. (
a474498 
#192)

Address newest docker/docker vulnerability.

Signed-off-by: Ben Smith <benjsmi@us.ibm.com>
@shoaebjindani
Fixed HSM Library Upgrade Path for 2.5.x Scenario (#195)
8a1c4b2 
Signed-off-by: Shoaeb Jindani <jindani.shoaeb@ibm.com>
Co-authored-by: Shoaeb Jindani <jindani.shoaeb@ibm.com>
@MuthuSundaravadivel
update latest version in deployer config map template (#193)
81a5d4a 
Signed-off-by: MuthuSundaravadivel <muthu.infoavc@gmail.com>
@denyeart
Bump Go to 1.21.11 (#197)
7289b71 
Bump Go to 1.21.11.
Note that starting with Go 1.21, the version in go.mod should be 3
digits.

---------

Signed-off-by: David Enyeart <enyeart@us.ibm.com>
@denyeart @shoaebjindani
Use ubi-minimal image instead of ubi go-toolset (#198)
2ec64e6 
go-toolset doesn't have the latest versions of Go.
Therefore use the ubi minimal image and install our preferred version of
Go when building operator.

---------

Signed-off-by: David Enyeart <enyeart@us.ibm.com>
Co-authored-by: shoaebjindani <40020259+shoaebjindani@users.noreply.github.com>
@denyeart
Bump Go to 1.22.5 (#199)
86fe7d1 
Bump Go to 1.22.5.
Latest Go also requires an update to controller-gen (otherwise it panics
with a nil pointer).
The controller-gen update in turn improves formatting of the generated
CRD yaml files.

Signed-off-by: David Enyeart <enyeart@us.ibm.com>
@denyeart @shoaebjindani
Bump fabric, fabric-ca, fabric-lib-go (#200)
120399a 
Update to the latest fabric (v2.5.9), fabric-ca, and fabric-lib-go.
These versions all depend on the same version of github.com/IBM/idemix
and
resolves issues related to breaking changes in github.com/IBM/idemix.
    
Note that the fabric dependency is now on the release-2.5 branch rather
than main branch,
which is why one of the function calls needed to be updated.

---------

Signed-off-by: David Enyeart <enyeart@us.ibm.com>
Co-authored-by: shoaebjindani <40020259+shoaebjindani@users.noreply.github.com>
@ketulsha
fix for CVE-2024-41110 (#203)
252aca8 
updated dockerR to v26.1.5 as part of fix for CVE-2024-41110

Signed-off-by: Ketul Shah <shah.ketul@ibm.com>
@denyeart
Fix gosec failures on integer conversion (#206)
510a47f 
New versions of gosec implemented stricter type conversion and bounds
checks. This conversion is not vulnerable so we can suppress the
warning.

Signed-off-by: David Enyeart <enyeart@us.ibm.com>
@denyeart
Bump github.com/DataDog/zstd to v1.5.6 (#205)
9e2ffb1 
Bump github.com/DataDog/zstd to v1.5.6.

Signed-off-by: David Enyeart <enyeart@us.ibm.com>
@shoaebjindani
Updating maintainers list to add and remove maintainers (#207)
35e4484 
Signed-off-by: Shoaeb Jindani <jindani.shoaeb@ibm.com>
Co-authored-by: Shoaeb Jindani <jindani.shoaeb@ibm.com>
@denyeart
Bump go to 1.23.1
e7df99f 
Signed-off-by: Shoaeb Jindani <jindani.shoaeb@ibm.com>
@denyeart
Upgrade crypto 0.31.0
4423ad8 
Signed-off-by: Shoaeb Jindani <shoaebjindani@gmail.com>
Signed-off-by: Shoaeb Jindani <jindani.shoaeb@ibm.com>
@denyeart
Fix after using go mod tidy
8f34330 
Signed-off-by: Shoaeb Jindani <jindani.shoaeb@ibm.com>
@denyeart
Upgraded golang.org/x/net v0.33.0
527baac 
Signed-off-by: Shoaeb Jindani <jindani.shoaeb@ibm.com>
@denyeart
Modified deployment to use the environment variable changes from 1.5.…
c436d00 
…13 --> 1.5.14 for Fabric CA

Signed-off-by: Shoaeb Jindani <jindani.shoaeb@ibm.com>
@denyeart
Bump golang.org/x/crypto v0.35.0 (#214)
998cf3d 
Bump golang.org/x/crypto v0.35.0.

Signed-off-by: David Enyeart <enyeart@us.ibm.com>
@shoaebjindani
Bump oAuth2 to 0.27.0 (#216)
0ede2b8 
Fixes CVE-2025-22868 -
https://cve.mitre.org/cgi-bin/cvename.cgi?name=2025-22868

---------

Signed-off-by: Shoaeb Jindani <jindani.shoaeb@ibm.com>
Signed-off-by: shoaebjindani <40020259+shoaebjindani@users.noreply.github.com>
Co-authored-by: Shoaeb Jindani <jindani.shoaeb@ibm.com>
@aviralwal @denyeart
Fix broken links in README.md
94c6479 
Signed-off-by: Aviral Agrawal <aviralwal@users.noreply.github.com>
@aviralwal @denyeart
Fix fabric ansible builder link
5ac4f88 
Signed-off-by: Aviral Agrawal <aviralwal@users.noreply.github.com>
@shoaebjindani @denyeart
Revert "Modified deployment to use the environment variable changes f…
f7a49f3 
…rom 1.5.…"

This reverts commit c436d00.
@Thomas-Leung
Bump golang.org/x/net to v0.38 (#218)
4e674bb 
Patch reported vulnerability for golang.org/x/net <v0.36

Signed-off-by: Thomas Leung <thomas.leung@ibm.com>
Co-authored-by: Thomas Leung <thomas.leung@ibm.com>
@Thomas-Leung
update certificates to fix CI failure (#219)
10af789 
### Fixes:
- Update certificates in `orderer_test.go` and `peer_test.go` such that
test can pass.
- Update ginkgo test command since the old command is deprecated.
- Fix typo

### Steps to update certificates (for reference)
1. Clone [fabric-samples](https://github.com/hyperledger/fabric-samples)
repo
2. In the test-network-nano-bash folder, set `EnableNodeOUs` to `false`
in `crypto-config.yaml`
3. Run `./generate_artifacts.sh` in test-network-nano-bash
4. The necessary certificates will be created in the crypto-config
folder (convert the certificates to base64 and replace the old
certificates as needed, I used orderer and orderer2 certs)

Note: ibppeer3 has error during test is normal as one of the test is
testing missing licence agreement.

Signed-off-by: Thomas Leung <thomas.leung@ibm.com>
Co-authored-by: Thomas Leung <thomas.leung@ibm.com>
@Thomas-Leung
Bump go to 1.24.3 (#220)
f13d804 
Bump go to 1.24.3

Signed-off-by: Thomas Leung <thomas.leung@ibm.com>
Co-authored-by: Thomas Leung <thomas.leung@ibm.com>
@ketulsha
updated docker and grpc version (#221)
ff4b05d 
updated docker and grpc version
Signed-off-by: Ketul Shah <shah.ketul@ibm.com>
@MuthuSundaravadivel
SKIP_PERMISSIONS_UPDATE Update in Console deployment Spec (#223)
854835b 
Signed-off-by: Muthu  Sundaravadivel <muthu@muthus-mbp.n3i-in.ibm.com>
Co-authored-by: Muthu  Sundaravadivel <muthu@muthus-mbp.n3i-in.ibm.com>
@MuthuSundaravadivel
Updated CouchDB container SKIP_PERMISSIONS_UPDATE Flag (#224)
c1190bd 
Signed-off-by: Muthu  Sundaravadivel <muthu@muthus-mbp.n3i-in.ibm.com>
Co-authored-by: Muthu  Sundaravadivel <muthu@muthus-mbp.n3i-in.ibm.com>
@MuthuSundaravadivel
CRYPTO Update (#229)
ad2decc 
Signed-off-by: Muthu  Sundaravadivel <muthu@dhcp-9-90-36-56.n3i-in.ibm.com>
Co-authored-by: Muthu  Sundaravadivel <muthu@dhcp-9-90-36-56.n3i-in.ibm.com>
@shoaebjindani
Upgraded fabric ca and other relevant dependencies (#231)
f02ce65 
Signed-off-by: Shoaeb Jindani <jindani.shoaeb@ibm.com>
Co-authored-by: Shoaeb Jindani <jindani.shoaeb@ibm.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.