4275 Commits

Author SHA1 Message Date
Kai Lüke
f3cf8d4f41 Merge pull request #190 from kinvolk/kai/update-cryptsetup
sys-fs/cryptsetup: Sync with Gentoo
2021-07-30 10:03:20 +02:00
Kai Lüke
1c0936769d sys-fs/cryptsetup: Sync with Gentoo 2021-07-28 19:43:22 +02:00
Sayan Chowdhury
64ea092d0c Merge pull request #189 from kinvolk/sayan/update-to-curl-7.78
net-misc/curl: Bump curl to 7.78.0 release
2021-07-21 16:49:37 +05:30
Sayan Chowdhury
f26a5a17d3 net-misc/curl: Bump curl to 7.78.0 release
This releases includes fixes for the following CVEs:
- CVE-2021-22924
- CVE-2021-22926
- CVE-2021-22925

The changes are not sync with Gentoo upstream, rather modified in the
overlay. The changes are:
- 7.78.0 removes metalink support
- 7.78.0 remmoves references to darwinssl package

Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
2021-07-21 13:55:05 +05:30
Sayan Chowdhury
6f9eb8dd31 Merge pull request #187 from kinvolk/sayan/update-readline-8.0
sys-libs/readline: Sync with Gentoo upstream; updates to 8.1
2021-07-20 16:58:30 +05:30
Sayan Chowdhury
2300ad3287 sys-libs/readline: Sync with Gentoo upstream
Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
2021-07-19 14:43:33 +05:30
Mathieu Tortuyaux
b827c6557c Merge pull request #172 from kinvolk/tormath1/selinux
selinux: update eclass, libsepol to 3.1 and semodule-utils
2021-07-16 11:25:19 +02:00
Jeremi Piotrowski
77a0115be2 Merge pull request #186 from kinvolk/jepio/qemu-add-slirp
net-libs/libslirp: Import from Gentoo
2021-07-14 14:39:10 +02:00
Mathieu Tortuyaux
b228dfc9b4 Merge pull request #185 from kinvolk/tormath1/libgcrypt-1.8.8
dev-libs/libgcrypt: sync with ::gentoo
2021-07-08 09:46:23 +02:00
Mathieu Tortuyaux
6ab3fa34b3 dev-libs/libgcrypt: sync with ::gentoo
1.9.3 is not stable yet - accepted keywords has been updated in
::coreos-overlay.

Ref: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=5ebb8899e39bc7a7773fe930e68697cc48aab8d3

Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
2021-07-08 09:43:00 +02:00
Jeremi Piotrowski
304b5abf7a net-libs/libslirp: Import from Gentoo
slirp is needed to by qemu netdev user backend, which was removed in the
process of upgrading qemu to 5.2.0. Bring it back so that it is possible
to run flatcar_production_qemu.sh directly from the chroot.

See also kinvolk/Flatcar#420

Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
2021-07-07 12:43:14 +00:00
Sayan Chowdhury
c9c98f49b6 acct-{group, user}/messagebus: Add the new dependencies for dbus
Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
2021-07-06 15:55:19 +02:00
Mathieu Tortuyaux
8565def18b sys-apps/semodule-utils: apply tmp flatcar changes
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
2021-07-06 15:55:19 +02:00
Mathieu Tortuyaux
676c14c966 sys-apps/semodule-utils: add new package
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
2021-07-06 15:55:19 +02:00
Mathieu Tortuyaux
9e3a91b57d eclass/selinux: fix POLICY_PATCH applying
need to open a bug upstream - current discussions on IRC
2021-07-06 15:55:19 +02:00
Mathieu Tortuyaux
da7e024e1f eclass/selinux-policy-2: sync with upstream
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
2021-07-06 15:55:18 +02:00
Mathieu Tortuyaux
0e286d00c4 sys-libs/libsepol: sync with the upstream
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
2021-07-06 15:55:18 +02:00
Dongsu Park
1694beca3f Merge pull request #174 from kinvolk/rust-1.53.0-main
Upgrade virtual Rust in main from 1.52.1 to 1.53.0
2021-07-06 11:43:50 +02:00
Dongsu Park
b7609c8644 Merge pull request #184 from kinvolk/dongsu/libpcre-8.44
dev-libs/libpcre: update to 8.44
2021-07-05 14:19:07 +02:00
Flatcar Buildbot
b9c3e25d51 Upgrade virtual Rust in main from 1.52.1 to 1.53.0 2021-07-05 12:59:59 +02:00
Mathieu Tortuyaux
bf5d5b62a7 Merge pull request #183 from kinvolk/t-lo/update-to-glibc-2.33
app-misc/pax-utils: update to upstream 1.3.1
2021-07-05 11:19:56 +02:00
Dongsu Park
bfc8d0ef5f app-crypt/mit-krb5: move to coreos-overlay
To add a custom patch to mit-krb5, move it to coreos-overlay.
2021-07-05 11:06:26 +02:00
Dongsu Park
659f32a73b dev-libs/libverto: update to 0.3.1-r1
Update dev-libs/libverto to 0.3.1-r1, to avoid failures like below:

```
!!! All ebuilds that could satisfy "=dev-libs/libverto-0.3.1-r1" for
/usr/aarch64-cros-linux-gnu/ have been masked.
!!! One of the following masked packages is required to complete your
request:
- dev-libs/libverto-0.3.1-r1::portage-stable (masked by: ~arm64 keyword)
```
2021-07-05 11:06:26 +02:00
Dongsu Park
a28f63378d dev-libs/libev: update to 4.33
Update dev-libs/libev to 4.33, needed by libpcre 8.44.
2021-07-05 11:06:26 +02:00
Dongsu Park
ac81c59212 virtual/acl: update to acl-0-r2
Update virtual/acl to 0-r2.
Otherwise build will fail on arm64 due to missing keywords.
2021-07-05 11:06:26 +02:00
Dongsu Park
6904a001b1 dev-libs/libpcre: update to 8.44
Update dev-libs/libpcre to 8.44, mainly to address security issues
like CVE-2019-20838, CVE-2020-14155 .
2021-07-05 11:06:26 +02:00
Thilo Fromm
a29b87a4c6 app-misc/pax-utils: update to upstream 1.3.1
This change syncs pax-utils to 1.3.1, bringin it on par with Gentoo
upstream. A minor change is incuded in the ebuild (commented on in the
file) to work around a build issue with our (outdated)
python-single-r1.eclass.

The workaround may be removed after we updated to a python version
supported by upstream, and updated our eclasses respectively.

The update fixes an issue with scanelf and glibc-2.33:

     /usr/lib/portage/python3.6/estrip: line 393: 1628751 Bad system call (core dumped) scanelf -yqRBF '#k%F' -k '.symtab' "$@"

Signed-off-by: Thilo Fromm <thilo@kinvolk.io>
2021-07-01 12:43:10 +02:00
Thilo Fromm
6b20fe0f08 Merge pull request #177 from kinvolk/t-lo/update-to-glibc-2.33
Unmasks for arm64 required by glibc-2.33 upgrade
2021-06-29 14:20:54 +02:00
Thilo Fromm
3fc8747b60 unmask arm64 for pax-utils, libev, libverto, acl
To un-break the toolchain build for arm64 for the glibc-2.33 update, a
few packages require un-masking for arm64.

This change unmasks arm64 for
  * app-misc/pax-utils
  * dev-libs/libev, libverto
  * virtual/acl

Unmasking this here instead of overriding the masks in
package.accept_keywords because our ebuild versions are outdated, newer
upstream versions are unmasked for arm64 already. I.e. when we update to
current upstream these packages will remain available on ARM64, no need
to use custom overrides via package.accept_keywords.

Signed-off-by: Thilo Fromm <thilo@kinvolk.io>
2021-06-29 09:22:30 +02:00
Dongsu Park
53773c875b Merge pull request #180 from kinvolk/dongsu/lz4-1.9.3
app-arch/lz4: update to 1.9.3-r1
2021-06-29 08:58:34 +02:00
Thilo Fromm
10400c4341 Merge pull request #181 from kinvolk/t-lo/gentoo-functions-switch-to-github
sys-apps/gentoo-functions: use tarball from github
2021-06-28 14:50:51 +02:00
Thilo Fromm
085fea2a81 sys-apps/gentoo-functions: use tarball from github
This one-line change pulls the gentoo-functions source tarball from
github instead from gentoo's own gitweb, to stabilise the build process.
We assume github to have higher availability than gentoo gitweb.

Signed-off-by: Thilo Fromm <thilo@kinvolk.io>
2021-06-28 13:33:42 +02:00
Mathieu Tortuyaux
8bcde7c7ed Merge pull request #179 from kinvolk/tormath1/gptfdisk-1.0.7
sys-apps/gptfdisk: sync with ::gentoo upstream
2021-06-25 15:06:02 +02:00
Mathieu Tortuyaux
a85e4af09b sys-apps/gptfdisk: sync with ::gentoo upstream
this commit addresses the following CVE:
- CVE-2021-0308

Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
2021-06-25 08:05:52 +02:00
Mathieu Tortuyaux
f28dd3815e Merge pull request #178 from kinvolk/tormath1/gettext-0.21
sys-devel/gettext: sync with gentoo upstream
2021-06-24 17:29:22 +02:00
Mathieu Tortuyaux
f8c416ef1d net-dialup/lrzsz: sync with gentoo upstream
the version stays the same (0.12.20) but we add some patches
to fix compatibility issues with autoconf.

See: https://bugs.gentoo.org/685696

Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
2021-06-24 14:31:04 +02:00
Mathieu Tortuyaux
83374bc5b7 sys-devel/gettext: sync with gentoo upstream
this commit addresses the following CVE:
- CVE-2020-12825

Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
2021-06-23 17:47:16 +02:00
Dongsu Park
ba832d25bd app-arch/lz4: update to 1.9.3-r1
Update app-arch/lz4 to 1.9.3-r1, mainly to address CVE-2021-3520.
2021-06-23 12:13:16 +02:00
Mathieu Tortuyaux
c0c6904c0d Merge pull request #175 from kinvolk/tormath1/curl-7.77
net-misc/curl: sync with gentoo upstream
2021-06-23 10:44:37 +02:00
Mathieu Tortuyaux
3e4da82981 net-misc/curl: sync with gentoo upstream
this addresses the following CVE:
- CVE-2021-22898
- CVE-2021-22901

Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
2021-06-23 10:42:42 +02:00
Thilo Fromm
cf364ba619 Merge pull request #176 from kinvolk/revert-173-dongsu/lz4-1.9.3
Revert "app-arch/lz4: update to 1.9.3-r1"
2021-06-22 17:42:27 +02:00
Thilo Fromm
4d05889cdf Revert "app-arch/lz4: update to 1.9.3-r1" 2021-06-22 17:20:31 +02:00
Dongsu Park
147addfb29 Merge pull request #173 from kinvolk/dongsu/lz4-1.9.3
app-arch/lz4: update to 1.9.3-r1
2021-06-18 14:59:56 +02:00
Dongsu Park
e503e0f5a2 app-arch/lz4: update to 1.9.3-r1
Update app-arch/lz4 to 1.9.3-r1, mainly to address CVE-2021-3520.
2021-06-18 10:59:38 +02:00
Dongsu Park
dd8c068abf Merge pull request #171 from kinvolk/dongsu/libxml2-2.9.12
dev-libs/libxml2: update to 2.9.12-r2
2021-06-01 09:29:23 +02:00
Dongsu Park
911f341032 eclass: import verify-sig.eclass
Import verify-sig.eclass needed by libxml2 2.9.12-r2.
2021-05-27 16:41:12 +02:00
Dongsu Park
d9392df584 dev-libs/libxml2: update to 2.9.12-r2
Update dev-libs/libxml2 to 2.9.12-r2 to mainly address
CVE-2021-3517, CVE-2021-3518, CVE-2021-3541.
2021-05-27 16:40:40 +02:00
Dongsu Park
30ac617523 Merge pull request #170 from kinvolk/sayan/update-binutils-2.36
sys-devel/binutils: Sync with Gentoo upstream
2021-05-21 10:04:30 +02:00
Sayan Chowdhury
6374a73861 sys-devel/binutils: Sync with Gentoo upstream
updates to:
sys-devel/binutils-2.36
sys-libs/binutils-libs-2.36

Signed-off-by: Sayan Chowdhury <sayan.chowdhury2012@gmail.com>
2021-05-19 11:38:32 +02:00
Dongsu Park
631adcc7ef Merge pull request #168 from kinvolk/rust-1.52.1-main
Upgrade virtual Rust in main from 1.51.0 to 1.52.1
2021-05-17 19:37:50 +02:00