Mathieu Tortuyaux
077dd2363e
sec-policys/selinux-dbus: add new package
...
it's a dependency from ssh module:
```
Failed to resolve typeattributeset statement at /var/lib/selinux/mcs/tmp/modules/400/ssh/cil:127
Failed to resolve AST
```
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
2023-09-20 12:33:40 +02:00
Mathieu Tortuyaux
af5400ce64
sec-policy/selinux-unconfined: sync with Gentoo
...
Commit-Ref: ea4cd1f216
2023-09-20 12:33:40 +02:00
Mathieu Tortuyaux
eed7eb6d21
sec-policy/selinux-sssd: sync with Gentoo
...
Commit-Ref: ea4cd1f216
2023-09-20 12:33:39 +02:00
Mathieu Tortuyaux
206b71a48f
coreos/user-patches: add selinux-container
...
apply Flatcar patch (including the kernel_t transition that
should be removed once we have a system labelled)
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
2023-09-20 12:33:39 +02:00
Mathieu Tortuyaux
1306dfefec
sec-policy/selinux-container: add new package
...
it comes in replacement of selinux-virt
Commit-Ref: ea4cd1f216
2023-09-20 12:33:39 +02:00
Mathieu Tortuyaux
1e2b1c999d
sec-policy/selinux-virt: drop ebuild
...
it's now replaced by selinux-container
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
2023-09-20 12:33:39 +02:00
Mathieu Tortuyaux
2af995d2dc
coreos/user-patches: add selinux-base-policy
...
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
2023-09-20 12:33:39 +02:00
Mathieu Tortuyaux
6b7c24719b
sec-policy/selinux-base-policy: sync with Gentoo
...
Commit-Ref: ea4cd1f216
2023-09-20 12:33:39 +02:00
Mathieu Tortuyaux
ac520d6588
coreos/user-patches: add selinux-base
...
* add selinux patches (icmp-bind, relabel and kernel permissions)
* ship our own config file
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
2023-09-20 12:33:38 +02:00
Mathieu Tortuyaux
3de5229a3c
sec-policy/selinux-base: sync with Gentoo
...
Commit-Ref: ea4cd1f216
2023-09-20 12:33:38 +02:00
Mathieu Tortuyaux
cd2d678f43
sys-apps/checkpolicy: sync with Gentoo
...
Commit-Ref: ea4cd1f216
2023-09-20 12:33:38 +02:00
Mathieu Tortuyaux
90bd28e13f
sys-libs/libsemanage: apply flatcar patches
...
* remove python dependencies
* added back multilib_src_install function (qa_check does fail otherwise)
* setting SHLIBDIR for installation
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
2023-09-20 12:33:38 +02:00
Mathieu Tortuyaux
e1ff97556f
sys-libs/libsemanage: sync with Gentoo
...
Commit-Ref: ea4cd1f216
2023-09-20 12:33:38 +02:00
Mathieu Tortuyaux
a38d44bd1c
sys-apps/policycoreutils: apply flatcar changes
...
* remove python dependencies
* move selinux policy directory from /etc/selinux/policy to /usr/lib/selinux/policy
* add tmpfiles to recreate /var/lib/selinux on rootfs
* remove setools dependency
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
2023-09-20 12:33:38 +02:00
Mathieu Tortuyaux
d78e4b3b20
sys-apps/policycoreutils: sync with Gentoo
...
Commit-Ref: ea4cd1f216
2023-09-20 12:33:38 +02:00
Mathieu Tortuyaux
c4a353d0f8
sys-libs/libsepol: sync with Gentoo
...
Commit-Ref: ea4cd1f216
2023-09-20 12:33:37 +02:00
Mathieu Tortuyaux
7132f52f46
sys-libs/libselinux: sync with Gentoo
...
Commit-Ref: a67229c8d6
2023-09-20 12:33:37 +02:00
Mathieu Tortuyaux
b0810f46dd
eclass: sync selinux-policy-2 with Gentoo
...
Commit-Ref: ea4cd1f216
2023-09-20 12:33:37 +02:00
Jeremi Piotrowski
bc8261f9c6
Merge pull request #1148 from flatcar/add-ue-rs
...
Add ue-rs to image
2023-09-20 10:53:36 +02:00
Krzesimir Nowak
9f4232398d
changelog: Add entries
2023-09-20 10:08:47 +02:00
Krzesimir Nowak
e7de80a2e5
.github: Add net-libs/rpcsvc-proto to package automation
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
72701e273d
net-libs/rpcsvc-proto: Sync with Gentoo
...
It's from Gentoo commit 6224cc9e8fc46385e18d62bd1c5fa96801e13d18.
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
747f318742
overlay net-libs/rpcsvc-proto: Move to portage-stable
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
3721e4a810
.github: Add dev-libs/xmlsec to package automation
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
fc34867b81
dev-libs/xmlsec: Add from Gentoo
...
It's from Gentoo commit 1e94c87d6d6155169455dfd273e02c16e705ae92.
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
2c3df2aafe
.github: Add dev-libs/libmspack to automation
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
570aad56e8
dev-libs/libmspack: Sync with Gentoo
...
It's from Gentoo commit 8d671320f4803974b97ba9bcb90d14d19ae62767.
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
dda041adf9
overlay dev-libs/libmspack: Move to portage-stable
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
d33d42f5ef
.github: Add sys-fs/fuse-common to package automation
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
19a3cdde63
sys-fs/fuse-common: Add from Gentoo
...
It's from Gentoo commit 86f1cf927f6a27a19482e1eb25430e47d5f58ff7.
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
64dbcc6092
overlay profiles: Add accept keywords for sys-fs/fuse
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
03d9d3238e
overlay profiles: Do not install suid binaries from sys-fs/fuse
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
88ff21b324
.github: Add sys-fs/fuse to package automation
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
481b0e0eaf
sys-fs/fuse: Add from Gentoo
...
It's from Gentoo commit ba10b3c5f0eec6233e4dfbfa65db40253e7fdd7d.
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
618e11dd53
overlay profiles: Add accept keywords for dev-libs/libdnet
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
a89adcda17
.github: Add dev-libs/libdnet to package automation
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
63cca7c78a
dev-libs/libdnet: Sync with Gentoo
...
It's from Gentoo commit 7d00351296070d4b6cea6913fab62b96819abddb.
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
c6c2f83ed7
overlay dev-libs/libdnet: Move to portage-stable
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
ccae9d434f
overlay coreos-base/misc-files: Add a list of old VMware OEM image files
...
This list will be used by bootengine to clean up old installation of
VMware OEM software before installing a sysext.
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
90b74e29b3
overlay coreos-base/oem-vmware: Update to be sysext-ready
...
Ignition files are not necessary any more. Grub config file and
oem-releas file are now provided by the coreos-base/oem-common-files
package.
We install drop-in files for systemd units instead of providing our
own copies. This is where we set up PrivateTmp option and create
symlinks for /etc.
There's also manglefs.sh script, that will be executed by the
build_sysext utility. It drops unnecessary stuff like translations,
debugging symbols and development files.
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
cc40a00aa1
overlay profiles: Update USE flags for app-emulation/open-vm-tools
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
67a2aa9e73
coreos/user-patches: Add a patch for app-emulation/open-vm-tools
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
0336d57627
overlay app-emulation/open-vm-tools: Apply Flatcar modifications
...
None of these modifications are actually specific to Flatcar. This is
something we will want to upstream to Gentoo.
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
fa2f2101a9
overlay app-emulation/open-vm-tools: Drop old ebuild, bump version
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
b1e69f4c41
app-emulation/open-vm-tools: Sync with Gentoo
...
It's from Gentoo commit ecc674a080e039b5db316f4f8258315c1936801a.
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
6f2189e94f
coreos-base/common-oem-files: Add VMware OEM common files
...
This will replace files in coreos-base/oem-vmware package.
2023-09-20 09:18:43 +02:00
Krzesimir Nowak
fa3dc6b649
build_library/vm_image_util: Opt VMware OEM into sysext images
2023-09-20 09:18:43 +02:00
flatcar-ci
3099b8f996
New version: main-3732.0.0-nightly-20230919-2100
2023-09-19 21:00:29 +00:00
Dongsu Park
786abacd0b
Merge pull request #1156 from flatcar/linux-6.1.54-main
...
Upgrade Linux Kernel for main from 6.1.53 to 6.1.54
2023-09-19 18:34:31 +02:00
Flatcar Buildbot
4855fc503c
sys-kernel/coreos-sources: Update from 6.1.53 to 6.1.54
2023-09-19 14:15:36 +00:00
