mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-08-21 22:41:09 +02:00
Code Issues Packages Projects Releases Wiki Activity
22,523 Commits 616 Branches 395 Tags
Commit Graph

14675 Commits

Author SHA1 Message Date
flatcar-ci
53530aa3fa New version: main-3321.0.0-nightly-20220804-2100 2022-08-04 21:00:26 +00:00
Dongsu Park
e739f9bfa4 changelog: add changelog for libtirpc 1.3.2-r1 2022-08-04 18:04:07 +02:00
Dongsu Park
a729ef7c9a net-libs/libtirpc: Apply Flatcar modifications 
Update keywords to stable amd64 and arm64.

Note, fix-dos patch is not necessary any more, because 1.3.2-r1 from
upstream Gentoo already has the patch.

Based on commit f3150e4b458e8d8979a37a91e44a7e1d2334d2aa.
 2022-08-04 18:04:07 +02:00
Dongsu Park
382a18c125 net-libs/libtirpc: update to 1.3.2-r1 
Update net-libs/libtirpc to 1.3.2-r1 mainly to address CVE-2021-46828.
 2022-08-04 18:04:07 +02:00
Jeremi Piotrowski
1da35c897e Merge pull request #2070 from flatcar-linux/jepio/coreos-cloudinit-update 
coreos-base/coreos-cloudinit: bump commit for imdsv2 and go.mod support
 2022-08-04 15:43:40 +02:00
Jeremi Piotrowski
cd37e46bb8 changelog: add entry for coreos-cloudinit update 2022-08-04 14:47:13 +02:00
Jeremi Piotrowski
f2c0730ab7 coreos-base/coreos-cloudinit: pull in AWS IMDSv2 and go-module support 
This pulls in these PRs:
- https://github.com/flatcar-linux/coreos-cloudinit/pull/13 (imdsv2)
- https://github.com/flatcar-linux/coreos-cloudinit/pull/14 (go.mod)

Since go.mod is now present, rework the ebuild to remove unused bits and
enable go module support.
 2022-08-04 10:30:09 +02:00
Flatcar Buildbot
43279010b9 sys-kernel: Upgrade Kernel 5.15.58 to 5.15.59 2022-08-04 07:23:00 +00:00
flatcar-ci
a179c14cd2 New version: main-3320.0.0-nightly-20220803-2100 2022-08-03 21:00:27 +00:00
Mathieu Tortuyaux
988523a4b2 changelog: add entries 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-08-03 18:35:29 +02:00
Mathieu Tortuyaux
0924a6d486 coreos-base/coreos-init: bump commit ID 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-08-03 18:27:13 +02:00
Jeremi Piotrowski
4c6debc989 sys-kernel/coreos-sources: backport 2 more patches 
and refresh other patches. The changes in PCI irq masking on hyperv resulted in
the previous set of patches not building on arm64. Resolve this by taking
another 2 patches. Patch z0006 makes the non-compiling code x86 specific
(fixing the build failure on arm64) and patch z0007 fixes a subsequent "not
used function" error.
 2022-08-03 12:15:50 +02:00
flatcar-ci
00ce08216d New version: main-3319.0.0-nightly-20220802-2100 2022-08-02 21:00:29 +00:00
Krzesimir Nowak
45268f7e02 sys-kernel/coreos-sources: Regenerate patches 
The changes made to drivers/pci/controller/pci-hyperv.c by upstream
resulted in the first hyperv patch failing to apply.
 2022-08-02 17:51:47 +02:00
Jeremi Piotrowski
10cde6a11a profiles/coreos/base: slsa: format report before compression 2022-08-02 17:04:23 +02:00
Krzesimir Nowak
9fc609c834 Merge pull request #2068 from flatcar-linux/linux-5.15.58-main 
Upgrade Linux Kernel in main from 5.15.56 to 5.15.58
 2022-08-02 09:55:03 +02:00
flatcar-ci
9260fc3001 New version: main-3318.0.0-nightly-20220801-2100 2022-08-01 21:00:31 +00:00
Mathieu Tortuyaux
f6628428ea changelog: add entry 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-08-01 10:40:05 +02:00
Mathieu Tortuyaux
85fe7d9c1d coreos-base/init: keep static network configuration 
this pulls: https://github.com/flatcar-linux/init/pull/77

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-08-01 10:40:05 +02:00
Flatcar Buildbot
4d6fefdcee sys-kernel: Upgrade Kernel 5.15.56 to 5.15.58 2022-07-30 07:21:57 +00:00
flatcar-ci
948fd31440 New version: main-3314.0.0-nightly-20220728-2100 2022-07-28 21:00:36 +00:00
Dongsu Park
c339ab8bfb changelog: add changelog for oniguruma 6.9.8 2022-07-28 16:47:30 +02:00
Dongsu Park
cfdb9d026f dev-libs/oniguruma: update to 6.9.8 
Update dev-libs/oniguruma to 6.9.8, mainly to address oss-fuzz issues
reported in https://bugs.gentoo.org/841893.
 2022-07-28 16:47:06 +02:00
Mathieu Tortuyaux
78f76d45fd coreos-base/hard-host-depends: add syft 
Otherwise it's not pulled in the SDK

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-07-28 12:36:20 +02:00
Mathieu Tortuyaux
372a75bdf9 Merge pull request #2060 from flatcar-linux/tormath1/ignition 
sys-apps/ignition: add networkd translate fix
 2022-07-28 10:05:02 +02:00
Mathieu Tortuyaux
8f0354c2f3 changelog: add entry 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-07-28 10:03:57 +02:00
Mathieu Tortuyaux
669a944e8d sys-apps/ignition: add networkd translate fix 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-07-28 10:03:57 +02:00
flatcar-ci
f854ca61c9 New version: main-3313.0.0-nightly-20220727-2100 2022-07-27 21:00:25 +00:00
Jeremi Piotrowski
ef48877b47 Merge pull request #2030 from flatcar-linux/jepio/spdx-sbom 
app-containers/syft: add v0.51.0 to sdk
 2022-07-27 13:51:24 +02:00
jenkins
d6077e9286 profiles/coreos/base: slsa: use .git/HEAD file to fetch scripts hash 
ORIG_HEAD is the previous HEAD, so it is not what we are after. HEAD
only contains the hash if we are in a detached head situation, otherwise
it will contain a ref and we need to resolve it. `git rev-parse HEAD`
should work as well but hits an issue with git's new `safe.directory`
setting, I have not found a way to set this parameter for a signle call.

For toolchain packages are built with catalyst, and the HEAD value needs
to pre-resolved because we do not have access to the whole git
repository. So build_toolchains will need to inject the correct HEAD
file contents.
 2022-07-27 13:02:22 +02:00
jenkins
113de2ac75 profiles/coreos/base: slsa: compute ebuild file checksum for materials entry 2022-07-27 13:02:22 +02:00
Jeremi Piotrowski
fbdbd1ac19 profiles/coreos/base: slsa: revise material uri to match SPDXDownloadLocation spec 
If the uri points to a path within the repo then the format is
git+https://repo@ref#path. ORIG_HEAD is actually the previous HEAD, so read
use that to extract the correct ref.
 2022-07-27 13:02:22 +02:00
Jeremi Piotrowski
b1ce3800a5 profiles/coreos/base: slsa: sort file checksums by name 2022-07-27 13:02:22 +02:00
Jeremi Piotrowski
1a0f396be4 profile/coreos/base: slsa: switch to bz2 compression for consistency 
...and remove redundant mkdir. Mkdir is already called with the same argument a
couple of lines lower.
 2022-07-27 13:02:22 +02:00
Jeremi Piotrowski
d211a2b168 profile/core/base: slsa: use nproc instead of parsing /proc/cpuinfo 2022-07-27 13:02:22 +02:00
Jeremi Piotrowski
91b64a5587 profile/coreos/base: slsa: remove name collision between variable and function 
__slsa_provenance_report is both a variable and a function, which is confusing.
Rename the variable.
 2022-07-27 13:02:22 +02:00
jenkins
39f1d45dff profiles/coreos/base: slsa: return when disabled and use die() 2022-07-27 13:02:22 +02:00
jenkins
7bd2f19fac profiles/coreos/base: slsa: use portageq to find repository path 
This makes the lookup work within the catalyst chroot, as well as in the
SDK.
 2022-07-27 13:02:22 +02:00
Thilo Fromm
d86d5ebe3f slsa-provenance: make generation optional 2022-07-27 13:02:22 +02:00
Thilo Fromm
be46ed7bb0 profiles/coreos/base/profile.bashrc: SLSA provenance reports 
This change adds initial support for SLSA provenance report generation.
Reports are generated in package build post-install hooks after
compilation.

See https://slsa.dev/ for SLSA and https://slsa.dev/provenance/v0.2 for
the provenance report syntax.

Signed-off-by: Thilo Fromm <thilo@kinvolk.io>
 2022-07-27 13:02:22 +02:00
flatcar-ci
99bb586c3a New version: main-3312.0.0-nightly-20220726-2100 2022-07-26 21:00:24 +00:00
Dongsu Park
0d2a3f29fb Merge pull request #2059 from flatcar-linux/rust-1.62.1-main 
Upgrade dev-lang/rust and virtual/rust in main from 1.62.0 to 1.62.1
 2022-07-26 16:58:05 +02:00
Jeremi Piotrowski
c2c7f0d504 Merge pull request #2057 from flatcar-linux/jepio/systemd-resolve.conf 
sys-apps/systemd: fix tmpfile entry for resolv.conf link
 2022-07-26 11:07:09 +02:00
Jeremi Piotrowski
36ecad566a changelog: add entry for resolv.conf bugfix 2022-07-26 11:06:27 +02:00
Jeremi Piotrowski
d9972d4ad1 sys-apps/systemd: fix tmpfile entry for resolv.conf link 
Our ebuild modifies the systemd owned tmpfiles.d entry that creates the
/etc/resolv.conf symlink to point to resolv.conf instead of stub-resolv.conf.
The file that contains that entry changed from etc.conf.in to
systemd-resolve.conf, so update the ebuild to touch that file.
 2022-07-26 10:03:13 +02:00
Flatcar Buildbot
5acb31cbab dev-lang: Upgrade dev-lang/rust 1.62.0 to 1.62.1 2022-07-26 07:37:28 +00:00
flatcar-ci
a64011137b New version: main-3311.0.0-nightly-20220725-2100 2022-07-25 21:00:35 +00:00
Flatcar Buildbot
6058ad50fc app-misc: Upgrade ca-certificates 3.80 to 3.81 2022-07-25 07:24:01 +00:00
Dongsu Park
cd80387051 Merge pull request #2040 from flatcar-linux/dongsu/add-Go-CVE-2022-32148 
changelog: add missing CVE for Go 1.18.4, 1.17.12
 2022-07-22 15:04:15 +02:00
Flatcar Buildbot
2568802c6e sys-kernel: Upgrade Kernel 5.15.55 to 5.15.56 2022-07-22 07:24:26 +00:00