mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-08-23 07:21:14 +02:00
Code Issues Packages Projects Releases Wiki Activity
3,961 Commits 616 Branches 394 Tags
Commit Graph

3137 Commits

Author SHA1 Message Date
Michael Marineau
009659e01d coreos-kernel: move pkg_setup to follow execution order 2016-01-06 16:15:44 -08:00
Michael Marineau
fdf8ea8f8e coreos-kernel: fix check for unclean source tree and check earlier 
This check was broken in when the source symlinks were moved from `${S}`
to `${S}/source`. Also, since it is a environment sanity check running
the check as early as possible in `pkg_pretend` is appropriate.
 2016-01-06 16:15:04 -08:00
Michael Marineau
c166fb7731 coreos-kernel: prune old ebuild 2016-01-06 12:18:37 -08:00
mjg59
a0adaa12fd Merge pull request #1703 from mjg59/master 
Fix up selinux policy for overlays
 2016-01-05 14:52:25 -08:00
Nick Owens
2eaf7edc15 Merge pull request #1709 from mischief/mantle 
coreos-devel/mantle: bump to latest commit
 2016-01-05 12:28:22 -08:00
Michael Marineau
4c467290b1 Merge pull request #1707 from marineam/glibc-rpcgen 
glibc: ensure cross-rpcgen is compiled during the compile phase
 2016-01-05 12:14:19 -08:00
Nick Owens
220ab594e8 coreos-devel/mantle: bump to latest commit 2016-01-05 12:01:44 -08:00
Alex Crawford
dcc90fe804 Merge pull request #1708 from crawford/etcd 
dev-db/etcd: bump to v2.2.3
 2016-01-04 19:13:11 -08:00
Vito Caputo
5425b74c21 Merge pull request #1698 from experimental-platform/preserve-system-map 
coreos-kernel: preserve 'System.map' during kernel build
 2016-01-04 12:43:43 -08:00
Alex Crawford
fdf1e701e3 dev-db/etcd: bump to v2.2.3 2016-01-04 12:15:01 -08:00
Michael Marineau
a6105d7821 glibc: ensure cross-rpcgen is compiled during the compile phase 
When bootstrapping glibc installs headers but is not built. However a
native tool, cross-rpcgen, must be built in order to generate rpcsvc
header files. By skipping directly to `make headers-install` the tool
winds up getting built during src_install, building as root instead of
the portage user and so on. Although uncommon this may lead to
permission issues with ccache.
 2015-12-31 18:50:40 -05:00
Michael Marineau
bfa49f1871 Merge pull request #1705 from marineam/devpts 
glibc: Do not check /dev/pts options
 2015-12-28 16:21:39 -08:00
Michael Marineau
8411c483a3 glibc: Do not check /dev/pts options 
The SDK chroot has no control over /dev/pts since it is bind-mounted
from the host system. As far as I can tell there isn't any significant
issue caused by the `tty` group having a different gid on the host
system from the SDK anyway.
 2015-12-28 16:20:21 -08:00
Kamil Domański
e91a9e8525 preserve 'System.map' during kernel build 
allows the proper operation of 'depmod' when building out-of-tree modules
 2015-12-23 16:05:43 +01:00
Matthew Garrett
49e4570444 Don't verify write permissions on lower inodes on overlayfs 
If a user opens a file r/w on overlayfs, and if the underlying inode is
currently still on the lower fs, right now we're verifying whether selinux
policy permits writes to the selinux context on the underlying inode. This
is suboptimal, since we don't want confined processes to be able to write to
these files if they're able to escape from a container and so don't want to
permit this in policy. Have overlayfs pass down an additional flag when
verifying the permission on lower inodes, and mask off the write bits in
the selinux permissions check if that flag is set.
 2015-12-22 08:03:58 +00:00
Matthew Garrett
23a4b9d2b1 Fix up selinux policy for overlays 
MCS is restricting us from performing relabelfrom, and docker uses another
label for the underlying files so we need to permit entrypoint from there.
 2015-12-22 07:39:52 +00:00
Alex Crawford
a49030e944 app-emulation/docker: remove dirty marker 2015-12-21 14:04:02 -08:00
Alex Crawford
ac406bac2c profiles: fix package.accept_keywords 
Broken by 3ad7eb629fbafe4277b0c6ff71bc40f893929399.
 2015-12-17 10:07:33 -08:00
Alex Crawford
ecf53d9c33 Revert "profiles/coreos/base/package.accept_keywords: remove unused sys-process/criu dependency dev-libs/protobuf-c-0.15" 
This reverts commit 038c121d28c358c15136d7792e662390b11fd7b7.
 2015-12-17 09:19:22 -08:00
Alex Crawford
2c00091aa6 Merge pull request #1696 from crawford/kernel 
sys-kernel/coreos-kernel: bump to 4.3.3
 2015-12-16 20:27:02 -08:00
Alex Crawford
5e745e2af5 sys-kernel/coreos-kernel: bump to 4.3.3 2015-12-16 20:25:51 -08:00
Michael Marineau
521ca2da44 Merge pull request #1697 from marineam/cciss 
coreos-init: update to fix resizing on cciss disks
 2015-12-16 17:32:33 -08:00
Michael Marineau
5a4ae87e01 coreos-init: update to fix resizing on cciss disks 2015-12-16 17:18:44 -08:00
Michael Marineau
72c011c02f Merge pull request #1690 from marineam/glibc 
Glibc 2.21 and simplify locale management in the SDK
 2015-12-16 17:16:56 -08:00
Geoff Levand
ba1e180f45 Merge pull request #1677 from glevand/for-merge-tpm 
Enable arm64 TPM support
 2015-12-16 16:59:54 -08:00
Nick Owens
e11d1a78bb Merge pull request #1694 from mischief/cachefiles 
sys-kernel/coreos-kernel: enable CACHEFILES
 2015-12-16 14:25:18 -08:00
Nick Owens
85f175ded1 profiles/coreos/base/package.accept_keywords: remove old net-libs/libpcap-1.1.1-r1 2015-12-15 18:21:27 -08:00
Nick Owens
f88fce89ac profiles/coreos/base/package.accept_keywords: remove old app-text/xmlto-0.0.24-r1 2015-12-15 18:21:08 -08:00
Nick Owens
3cb04b1698 profiles/coreos/base/package.accept_keywords: remove old app-editors/vim-7.4.712 and app-editors/vim-core-7.4.712 2015-12-15 18:19:48 -08:00
Nick Owens
852d8eceb5 profiles/coreos/base/package.accept_keywords: remove old net-misc/curl-7.41 2015-12-15 18:19:48 -08:00
Nick Owens
d859738b89 profiles/coreos/base/package.accept_keywords: remove old sys-fs/btrfs-progs-3.17.3 2015-12-15 18:19:48 -08:00
Nick Owens
fd009b57d4 profiles/coreos/base/package.accept_keywords: remove old sys-fs/lvm2-2.02.107 and sys-block/thin-provisioning-tools-0.3.2 2015-12-15 18:19:48 -08:00
Nick Owens
c8bec3b94a profiles/coreos/base/package.accept_keywords: remove old sys-kernel/linux-headers-3.13 2015-12-15 18:19:48 -08:00
Nick Owens
6f039d43d3 profiles/coreos/base/package.accept_keywords: remove old app-admin/sudo-1.8.10_p2 2015-12-15 18:19:48 -08:00
Nick Owens
0fcba1f125 profiles/coreos/base/package.accept_keywords: remove old net-analyzer/nmap-6.40-r1 2015-12-15 18:19:48 -08:00
Nick Owens
22e0aa23dc profiles/coreos/base/package.accept_keywords: remove old app-admin/eselect-1.4 2015-12-15 18:19:48 -08:00
Nick Owens
561f5092e4 profiles/coreos/base/package.accept_keywords: remove old dev-lang/python-2.7.6 2015-12-15 18:19:48 -08:00
Nick Owens
2c406af5f5 profiles/coreos/base/package.accept_keywords: remove old e2fsprogs 2015-12-15 18:19:48 -08:00
Nick Owens
29f7de4a7f profiles/coreos/base/package.accept_keywords: remove old dev-util/boost-build-1.52.0-r1 2015-12-15 18:19:48 -08:00
Nick Owens
e417eb5500 profiles/coreos/base/package.accept_keywords: remove unused sys-process/criu dependency dev-libs/protobuf-c-0.15 2015-12-15 18:19:47 -08:00
Nick Owens
76996bbe44 profiles/coreos/base/package.accept_keywords: remove unused dev-libs/opencryptoki-2.4.2 2015-12-15 18:19:47 -08:00
Nick Owens
93955c4c20 profiles/coreos/base/package.accept_keywords: remove unused app-benchmarks/i7z-0.27-r1 2015-12-15 18:19:47 -08:00
Nick Owens
78fbc64ab9 profiles/coreos/base/package.accept_keywords: remove keyword for missing sys-auth/pam_pwdfile 2015-12-15 18:19:47 -08:00
Nick Owens
17e20f6b46 profiles/coreos/base/package.accept_keywords: remove keyword for missing dev-python/pyusb-1.0.0_alpha3 2015-12-15 18:19:47 -08:00
Nick Owens
cc716a5083 profiles/coreos/base/package.accept_keywords: remove unused dev-lang/closure-compiler-bin 2015-12-15 18:19:47 -08:00
Nick Owens
d65cdc5a74 profiles/coreos/base/package.accept_keywords: remove old nss keywords 2015-12-15 18:19:47 -08:00
Nick Owens
d8bad9c0f0 profiles/coreos/base: merge package.keywords with package.accept_keywords 2015-12-15 17:47:26 -08:00
Nick Owens
3e8f52a32b sys-kernel/coreos-kernel: enable CACHEFILES 2015-12-15 16:23:38 -08:00
Nick Owens
bd7ee7c632 sys-apps/systemd: include systemd-journal-remote memory limit fix 2015-12-14 15:14:28 -08:00
Michael Marineau
bf8fe18b5a glibc: apply CoreOS tweaks 
This time around our changes take a slightly different approach. Instead
of editing the ebuild to undo things done in the common eblit code the
eblits are edited directly, allowing for better customization. Also,
managing locales is now different. Inside the SDK all locales are built
at compile time, avoiding the need for locale-gen which is slow and
complicates setup of the SDK chroot. For cross-compiled targets (CoreOS
itself) final images don't include locale info either, again no need for
locale-gen.

The SDK is a bit bigger now, the compressed tarball is 20MB bigger and
200MB bigger extracted on disk. Considering how big it already is this
shouldn't be that big of a deal.
 2015-12-10 11:43:53 -08:00