mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-12-23 10:12:12 +01:00
Code Issues Packages Projects Releases Wiki Activity
33,493 Commits 621 Branches 411 Tags
Commit Graph

24444 Commits

Author SHA1 Message Date
flatcar-ci
1367cb3c04 New version: main-4532.0.0-nightly-20251127-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-27 21:00:27 +00:00
Mathieu Tortuyaux
681864d5f1
Merge pull request #3516 from flatcar/firmware-20251125-main 
Upgrade Linux Firmware in main from 20251111 to 20251125
 2025-11-27 17:35:46 +01:00
flatcar-ci
4a8083a858 New version: main-4532.0.0-nightly-20251127-0956 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-27 09:56:50 +00:00
Flatcar Buildbot
78bbdbe6df sys-kernel/coreos-firmware: Update from 20251111 to 20251125 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-11-27 07:06:09 +00:00
Flatcar Buildbot
755e2b84cd
sys-kernel/coreos-firmware: Update from 20251021 to 20251111 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-11-26 13:46:46 +01:00
James Le Cuirot
24f38bee51
Merge pull request #3511 from flatcar/linux-6.12.59-main 
Upgrade Linux Kernel for main from 6.12.58 to 6.12.59
 2025-11-25 14:37:10 +00:00
Flatcar Buildbot
1feb53d91a Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-11-25 14:07:49 +00:00
James Le Cuirot
ed064d8943
Merge pull request #3505 from flatcar/cacerts-3.118.1-main 
Update ca-certificates in main from 3.117 to 3.118.1
 2025-11-25 14:07:34 +00:00
Flatcar Buildbot
f86522aa10 sys-kernel/coreos-sources: Update from 6.12.58 to 6.12.59 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-11-25 07:06:12 +00:00
Flatcar Buildbot
4158576088 app-misc/ca-certificates: Update from 3.117 to 3.118.1 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-11-24 07:11:24 +00:00
Flatcar Buildbot
9f6a5504ff Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-11-22 02:29:31 +00:00
flatcar-ci
a37789be1b New version: main-4526.0.0-nightly-20251121-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-22 02:29:14 +00:00
flatcar-ci
1289b297f0 New version: main-4526.0.0-nightly-20251121-2100-INTERMEDIATE 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-21 21:00:30 +00:00
Flatcar Buildbot
8274cf7d8f portage-stable/metadata: Monthly GLSA metadata updates 
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Signed-off-by: Dongsu Park <dongsu@dpark.io>
 2025-11-21 12:15:27 +01:00
flatcar-ci
74fb20a470 New version: main-4525.0.0-nightly-20251120-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-20 21:00:29 +00:00
Daniel
f05097d82f
Fix kernel module signing with ephemeral keys for official builds (#3493) 
* sdk: Fix ephemeral key directory paths baked into container images

The SDK container build process was persisting temporary directory
paths for module signing keys into /home/sdk/.bashrc. This caused
all container instances to share the same ephemeral key location.

Fixed by:
- Runtime check in sdk_entry.sh to recreate stale temp directories
- Build-time cleanup in Dockerfiles to remove the variables

Each container instance now gets unique temporary directories.

Signed-off-by: Daniel Zatovic <daniel.zatovic@gmail.com>

* sdk_entry: use persistent module signing keys for unofficial builds

For official builds (COREOS_OFFICIAL=1), continue using ephemeral
temporary directories for module signing keys.

For unofficial/development builds, use a persistent directory at
/mnt/host/source/.module-signing-keys to preserve keys across
container restarts.

Signed-off-by: Daniel Zatovic <daniel.zatovic@gmail.com>

---------

Signed-off-by: Daniel Zatovic <daniel.zatovic@gmail.com>
 2025-11-20 09:56:49 +01:00
flatcar-ci
72a74fdce7 New version: main-4524.0.0-nightly-20251119-0830 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-19 08:30:44 +00:00
Flatcar Buildbot
ce578cce4f Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-11-18 00:57:23 +00:00
flatcar-ci
e196336c82 Revert failed version back to 4519.0.0+nightly-20251114-2100 2025-11-18 00:57:09 +00:00
flatcar-ci
0332395383 New version: main-4522.0.0-nightly-20251117-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-17 21:00:30 +00:00
flatcar-ci
a23d816108 New version: main-4519.0.0-nightly-20251114-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-15 02:23:51 +00:00
flatcar-ci
764988d84d New version: main-4519.0.0-nightly-20251114-2100-INTERMEDIATE 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-14 21:00:32 +00:00
Flatcar Buildbot
00479cf02d sys-kernel/coreos-sources: Update from 6.12.54 to 6.12.58 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-11-14 07:05:47 +00:00
flatcar-ci
7ec9fa3ec2 New version: main-4518.0.0-nightly-20251113-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-13 21:00:28 +00:00
Krzesimir Nowak
9a00daf2c3
Merge pull request #3485 from flatcar/krnowak/packages-cleanup 
portage-stable: Drop unused packages
 2025-11-13 14:32:09 +01:00
Krzesimir Nowak
6fb2e9883b
Merge pull request #3478 from flatcar/krnowak/fix-sssd 
overlay coreos/config: Keep ldb modules
 2025-11-13 13:18:20 +01:00
flatcar-ci
ea1706c17d Revert failed version back to 4516.0.0+nightly-20251111-2100 2025-11-13 00:15:01 +00:00
flatcar-ci
b15c53ea85 New version: main-4517.0.0-nightly-20251112-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-12 21:00:29 +00:00
Krzesimir Nowak
9ba0af29bf app-text/docbook-xsl-ns-stylesheets: Add from Gentoo 
It's from Gentoo commit 0ad96e879b651cc7e8214159d5841d6b633bef8a.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:04:49 +01:00
Krzesimir Nowak
009df56c4f overlay coreos-base/oem-vmware: Do not mangle pam files 
This already should be taken care of by open-vm-tools post install
hooks.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:04:49 +01:00
Krzesimir Nowak
318e6af8fc overlay coreos/config: Add vendoring of PAM files to a couple of packages 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:04:49 +01:00
Krzesimir Nowak
064cca2e6a overlay profiles: Set some USE flags for sys-auth/pambase 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:04:49 +01:00
Krzesimir Nowak
1668f15c47 overlay coreos/config: Clean up pam config mess for sys-apps/systemd 
Use the default location for pam configs. We replace them with our own
in post_src_install hook anyway.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:04:49 +01:00
Krzesimir Nowak
b4c59b6435 overlay sys-apps/baselayout: Pull in pam files removal, cleanups 
We are building sssd on arm64, so drop the unnecessary code. Also
create some more compatibility symlinks.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:04:49 +01:00
Krzesimir Nowak
fa4e6f2bd0 overlay coreos/user-patches: Add patches for sys-auth/pambase 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:00:53 +01:00
Krzesimir Nowak
14c8a7bc0c sys-auth/pambase: Sync with Gentoo 
It's from Gentoo commit f32e281b3b124b273302ddffeb06c0e6f20852e9.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:00:53 +01:00
Krzesimir Nowak
c9573f1f79 overlay sys-auth/pambase: Move to portage-stable 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:00:53 +01:00
Krzesimir Nowak
5e7e0957bf sys-libs/pam: Sync with Gentoo 
It's from Gentoo commit 197e3931b76a596e0df99bd22809d1db04ec5131.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:00:53 +01:00
Krzesimir Nowak
1973743a18 overlay sys-libs/pam: Move to portage-stable 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:00:53 +01:00
Krzesimir Nowak
86df95db83 overlay coreos/config: Add config overrides for sys-libs/pam 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:00:53 +01:00
Krzesimir Nowak
2b120cc866 overlay profiles: Add a function for vendorizing pam files 
This is meant to be used by packages installing pam config files. The
function should be invoked in a post src_install hook.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:00:52 +01:00
Krzesimir Nowak
d4b29659d3 overlay coreos/user-patches: Add a user patch for sys-libs/pam 
It's a patch for adding the account locking functionality.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:00:52 +01:00
Krzesimir Nowak
811a8322dc portage-stable: Drop unused packages 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 16:07:34 +01:00
Flatcar Buildbot
7c7efac281 Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-11-12 07:39:09 +00:00
flatcar-ci
28cf73c46e New version: main-4516.0.0-nightly-20251111-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-11 21:00:28 +00:00
Krzesimir Nowak
37f9b4402f overlay coreos/config: Keep ldb modules 
ldb was folded into samba, so it is not sys-libs/ldb that installs ldb
modules, but rather net-fs/samba. The ldb modules are needed by
sys-auth/sssd to work, so stop removing them in the post src_install
hook.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-11 13:28:03 +01:00
flatcar-ci
50b4233835 New version: main-4515.0.0-nightly-20251110-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-10 21:00:28 +00:00
Krzesimir Nowak
3f74e83ad3
Merge pull request #3459 from flatcar/buildbot/weekly-portage-stable-package-updates-2025-11-03 
Weekly portage-stable package updates 2025-11-03
 2025-11-10 15:31:36 +01:00
flatcar-ci
cc57523459 New version: main-4512.0.0-nightly-20251107-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-08 02:31:36 +00:00
flatcar-ci
bcfa5b66dc New version: main-4512.0.0-nightly-20251107-2100-INTERMEDIATE 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-07 21:00:30 +00:00