4959 Commits

Author SHA1 Message Date
David Michael
4f0a961299 Merge pull request #2683 from dm0-/gmerge
Fix emerge-gitclone with Python 3 dev images
2017-08-02 14:11:04 -07:00
David Michael
6ea70422b4 app-emulation/rkt: bump to v1.28.1 2017-08-02 13:39:16 -07:00
David Michael
528c6f64f9 coreos-base/gmerge: bump for branching and python3 syntax 2017-08-02 13:36:57 -07:00
David Michael
35d5644e80 coreos-base/gmerge: acknowledge the existence of python-exec 2017-08-02 13:32:17 -07:00
David Michael
8d5f3db9cf app-arch/torcx: bump to v0.1.0 2017-08-01 11:39:08 -07:00
Euan Kemp
cc5c444da2 coreos-base/update_engine: update to 0.4.4
Notably to include the vmware CVE postinst patch
2017-07-31 16:59:19 -07:00
Euan Kemp
cb3212b2e3 sys-kernel/coreos-*: fix virtio net truesize
See https://github.com/coreos/bugs/issues/2076
2017-07-31 12:26:00 -07:00
Benjamin Gilbert
cb0fea4945 Merge pull request #2674 from bgilbert/open-vm-tools
app-emulation/open-vm-tools: update to 10.1.10
2017-07-29 23:40:19 -07:00
Benjamin Gilbert
4a01b6d029 app-emulation/open-vm-tools: update to 10.1.10
Fixes CVE-2015-5191.
2017-07-28 22:42:53 -07:00
Benjamin Gilbert
40cedc85f6 coreos-base/oem-vmware: enable PrivateTmp for vmtoolsd
It would have mitigated CVE-2015-5191 and might again be useful in the
future.
2017-07-28 22:41:53 -07:00
Benjamin Gilbert
185daf4027 sys-fs/e2fsprogs: drop from overlay
Ignition 0.17.2 no longer uses the custom -p flag to mkfs.ext4.
2017-07-28 22:38:38 -07:00
Benjamin Gilbert
39a9328c9a sys-kernel/bootengine: fail verity-setup.service if verity fails 2017-07-28 17:54:44 -07:00
Derek Gonyeo
7f45b34f63 ignition: v0.17.1 -> v0.17.2 2017-07-28 17:12:19 -07:00
David Michael
65ddabd4ba Merge pull request #2667 from dm0-/rkt
app-emulation/rkt: bump to v1.28.0
2017-07-28 15:31:55 -07:00
Jenkins OS
76ba6f5719 sys-kernel/coreos-sources: bump to 4.12.4 2017-07-28 19:34:25 +00:00
David Michael
57a851bb6e app-emulation/rkt: bump to v1.28.0 2017-07-28 12:22:15 -07:00
Geoff Levand
59086e19dc edk2-ovmf: Remove unused package
Signed-off-by: Geoff Levand <geoff@infradead.org>
2017-07-27 15:42:28 -07:00
Geoff Levand
b3f437683a edk2-armvirt: Remove unused package
Signed-off-by: Geoff Levand <geoff@infradead.org>
2017-07-27 15:42:28 -07:00
Geoff Levand
087e9fa2e5 edk2: Enable ebuild
Signed-off-by: Geoff Levand <geoff@infradead.org>
2017-07-27 15:42:28 -07:00
Geoff Levand
884e75efef sys-firmware/edk2: New package
Create a new EDK2/UEFI ebuild sys-firmware/edk2 to replace the current
per-arch edk2-armvirt and edk2-ovmf ebuilds.  Updates to use the latest
EDK2 UDK2017 and openssl-1.1.0f releases.

For amd64 builds UDK2017 requires an update to nasm-2.10 or greater.

Fixes UEFI startup problems like these when running Container Linux in
a KVM guest on arm64 machines:

  Synchronous Exception at 0x00000000BF033004

Signed-off-by: Geoff Levand <geoff@infradead.org>
2017-07-27 15:42:28 -07:00
Benjamin Gilbert
8a0245e4d9 sys-kernel/bootengine: fix dev-mapper-usr.device timeout; don't fsck /usr 2017-07-26 14:41:51 -07:00
Benjamin Gilbert
2cfb852b99 sys-kernel/coreos-modules: enable MEM_SOFT_DIRTY
criu uses it. ARM64 doesn't HAVE_ARCH_SOFT_DIRTY so make this AMD64-only.
2017-07-25 23:45:48 -07:00
Benjamin Gilbert
c882a4a4ef Merge pull request #2662 from bgilbert/kernel-opts
Enable TCP Hybla and nftables
2017-07-25 20:41:55 -07:00
Benjamin Gilbert
d3d76b8bbe coreos-base/coreos: add nftables 2017-07-25 15:48:44 -07:00
Benjamin Gilbert
e299a9454a net-firewall/nftables: Container Linux fixups
- Stabilize
- docbook2X isn't needed unless we're installing docs
- Don't ship automatic save/restore infrastructure for now
- Move base config files into /usr/share/nftables
2017-07-25 15:48:41 -07:00
Benjamin Gilbert
ee90e8feb3 net-firewall/nftables: add package 2017-07-25 15:40:46 -07:00
Benjamin Gilbert
e32df6dbfe profiles: accept libnftnl on ARM 2017-07-25 13:05:24 -07:00
Benjamin Gilbert
894fe62e65 sys-kernel/coreos-modules: enable nftables 2017-07-25 13:03:29 -07:00
Benjamin Gilbert
4200b9840f sys-kernel/coreos-modules: enable TCP Hybla 2017-07-25 11:37:36 -07:00
David Michael
de9d663901 chore(metadata): Regenerate cache 2017-07-24 17:35:43 -07:00
David Michael
f084917d6d profiles: sync meson on arm64 2017-07-24 17:29:35 -07:00
David Michael
f5657649f2 profiles: allow building Python 3 for meson 2017-07-24 17:29:34 -07:00
Jenkins OS
527af70cc2 sys-kernel/coreos-sources: bump to 4.12.3 2017-07-24 20:08:45 +00:00
Benjamin Gilbert
33198fa0dc Merge pull request #2657 from bgilbert/bootengine
sys-kernel/bootengine: bump for mkswap, Packet race, chmod fixup
2017-07-21 13:51:22 -07:00
Benjamin Gilbert
8619959235 sys-kernel/bootengine: bump for mkswap, Packet race, chmod fixup 2017-07-21 13:42:49 -07:00
Benjamin Gilbert
85451cb7e4 sys-kernel/bootengine: add missing chmod
It was performed by bootengine until
coreos/bootengine@7c7bbb8d85.
2017-07-21 13:38:11 -07:00
David Michael
0b033b5f8c app-admin/etcd-wrapper: bump to 3.1.10 2017-07-20 12:20:23 -07:00
David Michael
c88b4345f6 app-admin/flannel-wrapper: bump to 0.8.0 2017-07-20 12:19:28 -07:00
David Michael
f186446b98 sys-apps/systemd: upgrade to v234
This syncs most of the ebuild with Gentoo's, except it omits the
meson build part for now.

A side effect of this is that lxml will be built as a dependency,
but it is not used since systemd now requires Python 3.  This will
be fixed with meson support, since meson requires Python 3 as well.
2017-07-18 12:54:06 -07:00
David Michael
4c5c1fb86f profiles: sync lxml on arm64 2017-07-18 12:49:54 -07:00
Jenkins OS
467cedff05 sys-kernel/coreos-sources: bump to 4.12.2 2017-07-17 20:23:39 +00:00
David Michael
44a42faa1e sys-kernel/bootengine: bump for dracut 045 2017-07-13 18:27:42 -07:00
David Michael
5446be23f3 profiles: upgrade to dracut 045 2017-07-11 18:23:39 -07:00
David Michael
8ac62a5664 Merge pull request #2642 from dm0-/torcx
app-arch/torcx: bump to v0.1.0-alpha.3
2017-07-11 12:16:25 -07:00
David Michael
254e6d949d profiles: sync man-db version on arm64 2017-07-09 17:39:13 -07:00
Derek Gonyeo
10f31b7297 sys-apps/ignition: 0.17.0 -> 0.17.1 2017-07-05 15:38:27 -07:00
David Michael
35ea95152c app-arch/torcx: bump to v0.1.0-alpha.3 2017-07-05 11:00:05 -07:00
Benjamin Gilbert
eac64b8cd5 sys-kernel/coreos-*: bump to v4.12
CONFIG_EDAC_MM_EDAC was merged into CONFIG_EDAC, and the latter converted
to a tristate, in e3c4ff6d8c949fa9a9ea1bd005bf1967efe09d5d.
2017-07-03 18:08:51 -07:00
Benjamin Gilbert
ab20c61d1d Merge pull request #2628 from bgilbert/packet
Sync with Packet provisioner
2017-06-30 23:29:36 -07:00
David Michael
832db7af43 coreos-base/coreos-init: bump for sync fixes 2017-06-30 18:42:40 -07:00