mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-08-15 00:46:58 +02:00
Code Issues Packages Projects Releases Wiki Activity
23,516 Commits 624 Branches 396 Tags 163 MiB
04e7ab37a0
Commit Graph

15548 Commits

Author SHA1 Message Date
Krzesimir Nowak
d98a89536b coreos sys-libs/glibc: Update manifest for changed patch set 2023-09-25 09:49:06 +02:00
flatcar-ci
59f2ca5fc6 New version: main-3735.0.0-nightly-20230922-2100-INTERMEDIATE 2023-09-22 21:00:29 +00:00
Thilo Fromm
8e3144af19
Merge pull request #1171 from flatcar/t-lo/update-glibc-patchlevel 
sys-libs/glibc: update to patchlevel 2.37-rc5
 2023-09-22 17:06:13 +02:00
Flatcar Buildbot
89aca40503 Update mantle container image to latest HEAD 2023-09-22 14:06:28 +00:00
Mathieu Tortuyaux
0b705e9e04
Merge pull request #1168 from flatcar/tormath1/selinux-size 
overlay sys-libs/libsemanage: set compression on
 2023-09-22 16:06:08 +02:00
Thilo Fromm
b7e7da18c3 sys-libs/glibc: Apply Flatcar modifications 
- take care of nscd.conf via tmpfiles, add files/nscd-conf.tmpfiles.
  - comment out 'dostrip -x' to force the OS image binaries to be stripped
  - remove everything glibc wants to put under /etc since we use
    baselayout to provide that
  - un-mask amd64 and arm64

Signed-off-by: Thilo Fromm <thilofromm@microsoft.com>
 2023-09-22 15:16:28 +02:00
Thilo Fromm
9ae20fd41f sys-libs/glibc: import upstream 2.37-r5 
Imported from commit 406ab36652e8f9cac3f6e61990fb00c861a86a28

Signed-off-by: Thilo Fromm <thilofromm@microsoft.com>
 2023-09-22 15:04:11 +02:00
Kai Lüke
4272a41039
Merge pull request #1160 from flatcar/kai/fallback-update-key 
sys-kernel/bootengine: Use update key for initrd sysext download
 2023-09-22 12:17:31 +02:00
Kai Lüke
0b14db27b6
Merge pull request #1161 from flatcar/kai/cloudinit-vm-userdata 
coreos-base/coreos-cloudinit: Workaround for user-configvirtfs.service
 2023-09-22 12:17:14 +02:00
Mathieu Tortuyaux
d0562c1e4a
overlay sys-libs/libsemanage: set compression on 
otherwise it blows from 3MB to 33MB on `/usr/lib/selinux/policy/mcs/`
for example.

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-22 11:37:11 +02:00
Dongsu Park
13ddc2d85d
Merge pull request #1159 from flatcar/firmware-20230919-main 
Upgrade Linux Firmware in main from 20230804 to 20230919
 2023-09-22 09:36:06 +02:00
flatcar-ci
55f512dd7a New version: main-3734.0.0-nightly-20230921-2100 2023-09-21 21:00:29 +00:00
Kai Lueke
8777c54b0b sys-kernel/bootengine: Use update key for initrd sysext download 
This pulls in https://github.com/flatcar/bootengine/pull/71
to switch the extension download to use the update server and the update
key for verification of the payloads.
 2023-09-21 17:30:38 +02:00
Kai Lueke
8f45b6bb98 coreos-base/coreos-cloudinit: Workaround for user-configvirtfs.service 
This pulls in
https://github.com/flatcar/coreos-cloudinit/pull/24
as a workaround to use Upholds= which eventually starts
user-configvirtfs.service.
 2023-09-21 17:29:38 +02:00
Dongsu Park
8b0e46c1cc overlay sys-kernel/coreos-firmware: update cxgb4 version to 1.27.4.0 
Fix build issues of coreos-firmware, by bumping the cxgb4 firmware
version to 1.27.4.0.
 2023-09-21 16:27:09 +02:00
Flatcar Buildbot
30b42fa62b sys-kernel/coreos-firmware: Update from 20230804 to 20230919 2023-09-21 07:12:51 +00:00
flatcar-ci
4c4ec0226b New version: main-3733.0.0-nightly-20230920-2100 2023-09-20 21:00:37 +00:00
Mathieu Tortuyaux
0d3c1a5131
coreos-base/misc-files: add SELinux config 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:40 +02:00
Mathieu Tortuyaux
678dfd7f79
sys-apps/semodule-utils: sync with Gentoo 
Commit-Ref: a8d934769f

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:40 +02:00
Mathieu Tortuyaux
077dd2363e
sec-policys/selinux-dbus: add new package 
it's a dependency from ssh module:
```
Failed to resolve typeattributeset statement at /var/lib/selinux/mcs/tmp/modules/400/ssh/cil:127
Failed to resolve AST
```

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:40 +02:00
Mathieu Tortuyaux
af5400ce64
sec-policy/selinux-unconfined: sync with Gentoo 
Commit-Ref: ea4cd1f216
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:40 +02:00
Mathieu Tortuyaux
eed7eb6d21
sec-policy/selinux-sssd: sync with Gentoo 
Commit-Ref: ea4cd1f216
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:39 +02:00
Mathieu Tortuyaux
206b71a48f
coreos/user-patches: add selinux-container 
apply Flatcar patch (including the kernel_t transition that
should be removed once we have a system labelled)

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:39 +02:00
Mathieu Tortuyaux
1306dfefec
sec-policy/selinux-container: add new package 
it comes in replacement of selinux-virt

Commit-Ref: ea4cd1f216
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:39 +02:00
Mathieu Tortuyaux
1e2b1c999d
sec-policy/selinux-virt: drop ebuild 
it's now replaced by selinux-container

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:39 +02:00
Mathieu Tortuyaux
2af995d2dc
coreos/user-patches: add selinux-base-policy 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:39 +02:00
Mathieu Tortuyaux
6b7c24719b
sec-policy/selinux-base-policy: sync with Gentoo 
Commit-Ref: ea4cd1f216
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:39 +02:00
Mathieu Tortuyaux
ac520d6588
coreos/user-patches: add selinux-base 
* add selinux patches (icmp-bind, relabel and kernel permissions)
* ship our own config file

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:38 +02:00
Mathieu Tortuyaux
3de5229a3c
sec-policy/selinux-base: sync with Gentoo 
Commit-Ref: ea4cd1f216
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:38 +02:00
Mathieu Tortuyaux
cd2d678f43
sys-apps/checkpolicy: sync with Gentoo 
Commit-Ref: ea4cd1f216
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:38 +02:00
Mathieu Tortuyaux
90bd28e13f
sys-libs/libsemanage: apply flatcar patches 
* remove python dependencies
* added back multilib_src_install function (qa_check does fail otherwise)
* setting SHLIBDIR for installation

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:38 +02:00
Mathieu Tortuyaux
e1ff97556f
sys-libs/libsemanage: sync with Gentoo 
Commit-Ref: ea4cd1f216
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:38 +02:00
Mathieu Tortuyaux
a38d44bd1c
sys-apps/policycoreutils: apply flatcar changes 
* remove python dependencies
* move selinux policy directory from /etc/selinux/policy to /usr/lib/selinux/policy
* add tmpfiles to recreate /var/lib/selinux on rootfs
* remove setools dependency

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:38 +02:00
Mathieu Tortuyaux
d78e4b3b20
sys-apps/policycoreutils: sync with Gentoo 
Commit-Ref: ea4cd1f216
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:38 +02:00
Mathieu Tortuyaux
c4a353d0f8
sys-libs/libsepol: sync with Gentoo 
Commit-Ref: ea4cd1f216
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:37 +02:00
Mathieu Tortuyaux
7132f52f46
sys-libs/libselinux: sync with Gentoo 
Commit-Ref: a67229c8d6

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:37 +02:00
Mathieu Tortuyaux
b0810f46dd
eclass: sync selinux-policy-2 with Gentoo 
Commit-Ref: ea4cd1f216
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:37 +02:00
Jeremi Piotrowski
bc8261f9c6
Merge pull request #1148 from flatcar/add-ue-rs 
Add ue-rs to image
 2023-09-20 10:53:36 +02:00
flatcar-ci
3099b8f996 New version: main-3732.0.0-nightly-20230919-2100 2023-09-19 21:00:29 +00:00
Flatcar Buildbot
4855fc503c sys-kernel/coreos-sources: Update from 6.1.53 to 6.1.54 2023-09-19 14:15:36 +00:00
Flatcar Buildbot
64dbc8c123 Update mantle container image to latest HEAD 2023-09-19 11:48:09 +00:00
Dongsu Park
33c94b390e
Merge pull request #1127 from flatcar/buildbot/weekly-portage-stable-package-updates-2023-09-11 
Weekly portage-stable package updates 2023-09-11
 2023-09-19 13:47:52 +02:00
Dongsu Park
121798c7fa
Merge pull request #1121 from flatcar/sayan/update-to-nvidia-535.104.05 
x11-drivers/nvidia-drivers: updates to 535.104.05
 2023-09-19 12:43:01 +02:00
Jeremi Piotrowski
e2599703b3 coreos: Add ue-rs to production image 
Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
 2023-09-19 12:27:02 +02:00
Jeremi Piotrowski
3030926df7 coreos-base/ue-rs: Initial ebuild 
Based on the afterburn ebuild with some tweaks. The dependency list was
generated using cargo-ebuild.

Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
 2023-09-19 12:27:02 +02:00
flatcar-ci
ae33c46aa1 New version: main-3731.0.0-nightly-20230918-2100 2023-09-18 21:00:28 +00:00
flatcar-ci
0a0724d76c New version: main-3728.0.0-nightly-20230915-2100 2023-09-16 02:41:30 +00:00
flatcar-ci
336fd2428d New version: main-3728.0.0-nightly-20230915-2100-INTERMEDIATE 2023-09-15 21:00:38 +00:00
Jeremi Piotrowski
bf21753ca5
Merge pull request #1131 from flatcar/azure-mana-vf 
Pull in flatcar/init and bootengine changes  to ignore mana VF in networkd
 2023-09-15 16:29:03 +02:00
Krzesimir Nowak
1ac17be8d5 overlay coreos-base/coreos-oem-gce: Pull in sys-apps/gentoo-functions too 
Previously the sys-apps/gentoo-functions package was pulled in into
the GCE image by the sys-libs/glibc package. After the sys-libs/glibc
package update, the dependency disappeared. This resulted in
gentoo-functions not being installed and the build to fail a check for
dangling symlinks:

broken link: b'/etc/init.d/functions.sh' -> b'../../lib/gentoo/functions.sh'
ERROR   build_oem_aci: test_image_content: Failed symlink check

The `/etc/init.d/functions.sh` symlink is installed by
sys-apps/baselayout in postinst phase. The package also has a
dependency on sys-apps/gentoo-functions, but it is not pulled in into
the image, because baselayout is installed specially - without
dependencies.

It would probably be better to just drop the symlink, but it's here
for compatibility purposes. We also can't remove the symlink in the
manglefs script, as it gets executed after the filesystem checks.
 2023-09-15 16:14:29 +02:00