mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-08-14 16:37:01 +02:00
Code Issues Packages Projects Releases Wiki Activity
23,650 Commits 625 Branches 394 Tags 163 MiB
29c85a2781
Commit Graph

23650 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Krzesimir Nowak
ffe2d0e177
changelog: Update an entry 
Co-authored-by: Kai Lüke <pothos@users.noreply.github.com>
 2023-09-25 14:50:45 +02:00
Krzesimir Nowak
1ccd915bbf
changelog: Update an entry 
Co-authored-by: Kai Lüke <pothos@users.noreply.github.com>
 2023-09-25 14:45:31 +02:00
Kai Lüke
315d72eccc
Merge pull request #1181 from flatcar/mantle-update-main 
Upgrade mantle container image to latest HEAD in main
 2023-09-25 12:49:37 +02:00
Flatcar Buildbot
2167131336 Update mantle container image to latest HEAD 2023-09-25 10:48:10 +00:00
flatcar-ci
8a0fa6c3b2 New version: main-3735.0.0-nightly-20230922-2100-INTERMEDIATE 2023-09-25 09:00:02 +00:00
Krzesimir Nowak
04e7ab37a0
Merge pull request #1178 from flatcar/krnowak/glibc-fix 
coreos sys-libs/glibc: Update manifest for changed patch set
 2023-09-25 10:04:16 +02:00
Krzesimir Nowak
d98a89536b coreos sys-libs/glibc: Update manifest for changed patch set 2023-09-25 09:49:06 +02:00
flatcar-ci
59f2ca5fc6 New version: main-3735.0.0-nightly-20230922-2100-INTERMEDIATE 2023-09-22 21:00:29 +00:00
Thilo Fromm
8e3144af19
Merge pull request #1171 from flatcar/t-lo/update-glibc-patchlevel 
sys-libs/glibc: update to patchlevel 2.37-rc5
 2023-09-22 17:06:13 +02:00
Thilo Fromm
a6c9180371 glibc: changelog for CVE-2023-4527, CVE-2023-4806 
Signed-off-by: Thilo Fromm <thilofromm@microsoft.com>
 2023-09-22 17:03:19 +02:00
Mathieu Tortuyaux
3c0708d7fd
Merge pull request #1165 from flatcar/mantle-update-main 
Upgrade mantle container image to latest HEAD in main
 2023-09-22 16:07:02 +02:00
Flatcar Buildbot
89aca40503 Update mantle container image to latest HEAD 2023-09-22 14:06:28 +00:00
Mathieu Tortuyaux
0b705e9e04
Merge pull request #1168 from flatcar/tormath1/selinux-size 
overlay sys-libs/libsemanage: set compression on
 2023-09-22 16:06:08 +02:00
Thilo Fromm
b7e7da18c3 sys-libs/glibc: Apply Flatcar modifications 
- take care of nscd.conf via tmpfiles, add files/nscd-conf.tmpfiles.
  - comment out 'dostrip -x' to force the OS image binaries to be stripped
  - remove everything glibc wants to put under /etc since we use
    baselayout to provide that
  - un-mask amd64 and arm64

Signed-off-by: Thilo Fromm <thilofromm@microsoft.com>
 2023-09-22 15:16:28 +02:00
Thilo Fromm
9ae20fd41f sys-libs/glibc: import upstream 2.37-r5 
Imported from commit 406ab36652e8f9cac3f6e61990fb00c861a86a28

Signed-off-by: Thilo Fromm <thilofromm@microsoft.com>
 2023-09-22 15:04:11 +02:00
Kai Lüke
4272a41039
Merge pull request #1160 from flatcar/kai/fallback-update-key 
sys-kernel/bootengine: Use update key for initrd sysext download
 2023-09-22 12:17:31 +02:00
Kai Lüke
0b14db27b6
Merge pull request #1161 from flatcar/kai/cloudinit-vm-userdata 
coreos-base/coreos-cloudinit: Workaround for user-configvirtfs.service
 2023-09-22 12:17:14 +02:00
Mathieu Tortuyaux
d0562c1e4a
overlay sys-libs/libsemanage: set compression on 
otherwise it blows from 3MB to 33MB on `/usr/lib/selinux/policy/mcs/`
for example.

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-22 11:37:11 +02:00
Dongsu Park
13ddc2d85d
Merge pull request #1159 from flatcar/firmware-20230919-main 
Upgrade Linux Firmware in main from 20230804 to 20230919
 2023-09-22 09:36:06 +02:00
flatcar-ci
55f512dd7a New version: main-3734.0.0-nightly-20230921-2100 2023-09-21 21:00:29 +00:00
Kai Lueke
8777c54b0b sys-kernel/bootengine: Use update key for initrd sysext download 
This pulls in https://github.com/flatcar/bootengine/pull/71
to switch the extension download to use the update server and the update
key for verification of the payloads.
 2023-09-21 17:30:38 +02:00
Kai Lueke
8f45b6bb98 coreos-base/coreos-cloudinit: Workaround for user-configvirtfs.service 
This pulls in
https://github.com/flatcar/coreos-cloudinit/pull/24
as a workaround to use Upholds= which eventually starts
user-configvirtfs.service.
 2023-09-21 17:29:38 +02:00
Dongsu Park
8b0e46c1cc overlay sys-kernel/coreos-firmware: update cxgb4 version to 1.27.4.0 
Fix build issues of coreos-firmware, by bumping the cxgb4 firmware
version to 1.27.4.0.
 2023-09-21 16:27:09 +02:00
Flatcar Buildbot
30b42fa62b sys-kernel/coreos-firmware: Update from 20230804 to 20230919 2023-09-21 07:12:51 +00:00
flatcar-ci
4c4ec0226b New version: main-3733.0.0-nightly-20230920-2100 2023-09-20 21:00:37 +00:00
Mathieu Tortuyaux
233758055d
Merge pull request #917 from flatcar/tormath1/selinux-policy-update 
selinux: update
 2023-09-20 12:35:23 +02:00
Mathieu Tortuyaux
c3ba668ece
.github: add more packages to automation 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:40 +02:00
Mathieu Tortuyaux
0d3c1a5131
coreos-base/misc-files: add SELinux config 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:40 +02:00
Mathieu Tortuyaux
678dfd7f79
sys-apps/semodule-utils: sync with Gentoo 
Commit-Ref: a8d934769f

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:40 +02:00
Mathieu Tortuyaux
a07620c0d9
changelog: add entries 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:40 +02:00
Mathieu Tortuyaux
077dd2363e
sec-policys/selinux-dbus: add new package 
it's a dependency from ssh module:
```
Failed to resolve typeattributeset statement at /var/lib/selinux/mcs/tmp/modules/400/ssh/cil:127
Failed to resolve AST
```

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:40 +02:00
Mathieu Tortuyaux
af5400ce64
sec-policy/selinux-unconfined: sync with Gentoo 
Commit-Ref: ea4cd1f216
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:40 +02:00
Mathieu Tortuyaux
eed7eb6d21
sec-policy/selinux-sssd: sync with Gentoo 
Commit-Ref: ea4cd1f216
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:39 +02:00
Mathieu Tortuyaux
206b71a48f
coreos/user-patches: add selinux-container 
apply Flatcar patch (including the kernel_t transition that
should be removed once we have a system labelled)

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:39 +02:00
Mathieu Tortuyaux
1306dfefec
sec-policy/selinux-container: add new package 
it comes in replacement of selinux-virt

Commit-Ref: ea4cd1f216
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:39 +02:00
Mathieu Tortuyaux
1e2b1c999d
sec-policy/selinux-virt: drop ebuild 
it's now replaced by selinux-container

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:39 +02:00
Mathieu Tortuyaux
2af995d2dc
coreos/user-patches: add selinux-base-policy 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:39 +02:00
Mathieu Tortuyaux
6b7c24719b
sec-policy/selinux-base-policy: sync with Gentoo 
Commit-Ref: ea4cd1f216
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:39 +02:00
Mathieu Tortuyaux
ac520d6588
coreos/user-patches: add selinux-base 
* add selinux patches (icmp-bind, relabel and kernel permissions)
* ship our own config file

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:38 +02:00
Mathieu Tortuyaux
3de5229a3c
sec-policy/selinux-base: sync with Gentoo 
Commit-Ref: ea4cd1f216
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:38 +02:00
Mathieu Tortuyaux
cd2d678f43
sys-apps/checkpolicy: sync with Gentoo 
Commit-Ref: ea4cd1f216
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:38 +02:00
Mathieu Tortuyaux
90bd28e13f
sys-libs/libsemanage: apply flatcar patches 
* remove python dependencies
* added back multilib_src_install function (qa_check does fail otherwise)
* setting SHLIBDIR for installation

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:38 +02:00
Mathieu Tortuyaux
e1ff97556f
sys-libs/libsemanage: sync with Gentoo 
Commit-Ref: ea4cd1f216
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:38 +02:00
Mathieu Tortuyaux
a38d44bd1c
sys-apps/policycoreutils: apply flatcar changes 
* remove python dependencies
* move selinux policy directory from /etc/selinux/policy to /usr/lib/selinux/policy
* add tmpfiles to recreate /var/lib/selinux on rootfs
* remove setools dependency

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:38 +02:00
Mathieu Tortuyaux
d78e4b3b20
sys-apps/policycoreutils: sync with Gentoo 
Commit-Ref: ea4cd1f216
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:38 +02:00
Mathieu Tortuyaux
c4a353d0f8
sys-libs/libsepol: sync with Gentoo 
Commit-Ref: ea4cd1f216
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:37 +02:00
Mathieu Tortuyaux
7132f52f46
sys-libs/libselinux: sync with Gentoo 
Commit-Ref: a67229c8d6

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:37 +02:00
Mathieu Tortuyaux
b0810f46dd
eclass: sync selinux-policy-2 with Gentoo 
Commit-Ref: ea4cd1f216
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2023-09-20 12:33:37 +02:00
Jeremi Piotrowski
bc8261f9c6
Merge pull request #1148 from flatcar/add-ue-rs 
Add ue-rs to image
 2023-09-20 10:53:36 +02:00
Krzesimir Nowak
9f4232398d changelog: Add entries 2023-09-20 10:08:47 +02:00