mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-08-20 22:11:39 +02:00
Code Issues Packages Projects Releases Wiki Activity
8,654 Commits 615 Branches 394 Tags
Commit Graph

8654 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Sayan Chowdhury
f68d280ab7 Merge pull request #495 from flatcar-linux/sayam/upgrade-qemu-to-5.0.0 
app-emulation/qemu: Upgrade qemu to 5.0.0
 2020-09-17 12:41:21 +05:30
Sayan Chowdhury
d953761aea app-emulation/qemu: Drop old; qemu-4.2.0-r2 
Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
 2020-09-17 12:07:35 +05:30
Sayan Chowdhury
fc9417e810 app-emulation/qemu: Upgrade qemu to 5.0.0 
Upgrade QEMU to 5.0.0 to fix the following security issues:

- [CVE-2020-11102](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11102)
- [CVE-2020-1711](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1711)
- [CVE-2020-7039](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7039)

Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
 2020-09-17 12:07:32 +05:30
Dongsu Park
2cd4943889 Merge pull request #525 from flatcar-linux/runc-1.0.0_rc92-main 
Upgrade Runc in main from 1.0.0_rc90 to 1.0.0_rc92
 2020-09-16 15:06:44 +02:00
Kai Lüke
8e18193dca Merge pull request #589 from flatcar-linux/kai/update-engine-bump 
coreos-base/update_engine: Point to latest flatcar-master
 2020-09-14 16:12:45 +02:00
Kai Lüke
7aa31a28b8 coreos-base/update_engine: Point to latest flatcar-master 
This pulls in
https://github.com/flatcar-linux/update_engine/pull/7
 2020-09-14 16:06:08 +02:00
Dongsu Park
e6b8d5175a app-emulation/docker-runc: adapt patches for runc 1.0.0-rc91 
To fix builds, adapt patches for runc 1.0.0-rc91.
 2020-09-14 15:57:17 +02:00
Flatcar Buildbot
63adddc590 app-emulation: Upgrade Runc 1.0.0_rc90 to 1.0.0_rc92 2020-09-14 15:57:17 +02:00
Krzesimir Nowak
9b8589a03f Merge pull request #584 from flatcar-linux/krnowak/refresh-kernel-patches 
sys-kernel/coreos-sources: Regenerate the patches against 5.8.9
 2020-09-14 15:00:21 +02:00
Krzesimir Nowak
441b3d2d7b sys-kernel/coreos-sources: Regenerate the patches against 5.8.9 
These used to apply just fine with the patch utility, but git am was
complaining.
 2020-09-14 14:58:39 +02:00
Thilo Fromm
c3af3aa214 Merge pull request #587 from flatcar-linux/linux-5.8.9-main 
Upgrade Linux Kernel in main from 5.8.8 to 5.8.9
 2020-09-14 14:47:45 +02:00
Flatcar Buildbot
cb9f047507 sys-kernel: Upgrade coreos-kernel 5.8.8 to 5.8.9 2020-09-13 07:22:25 +00:00
Kai Lüke
b62702c3f4 Merge pull request #583 from flatcar-linux/kai/calico-tunnel-no-tx-offload 
coreos-base/coreos-init: Update to include Calico tunl0 networkd units
 2020-09-11 15:35:06 +02:00
Kai Lüke
6212d698d2 coreos-base/coreos-init: Update to include Calico tunl0 networkd units 
This pulls in
https://github.com/flatcar-linux/init/pull/26
 2020-09-11 15:20:56 +02:00
Vincent Batts
cc40759565 Merge pull request #553 from flatcar-linux/vbatts/lockdown 
sys-kernel: make lockdown available
 2020-09-11 07:01:46 -04:00
Dongsu Park
c30c27d91d Merge pull request #574 from flatcar-linux/dongsu/go-1.15.1 
dev-lang: Upgrade Go 1.15 to 1.15.2
 2020-09-11 09:48:45 +02:00
Thilo Fromm
e4e06454fb Merge pull request #581 from flatcar-linux/t-lo/use-latest-systemd-v245-flatcar 
sys-apps/systemd: use latest v245-flatcar
 2020-09-10 17:55:44 +02:00
Thilo Fromm
df132df652 sys-apps/systemd: use latest v245-flatcar 
Signed-off-by: Thilo Fromm <thilo@kinvolk.io>
 2020-09-10 17:32:01 +02:00
Thilo Fromm
76be146d00 Merge pull request #580 from flatcar-linux/linux-5.8.8-main 
Upgrade Linux Kernel in main from 5.8.6 to 5.8.8
 2020-09-10 13:21:02 +02:00
Thilo Fromm
6ac9fd4bd5 sys-kernel/coreos-sources-5.8.8: remove tpacket patch since it's in .8 upstream 
Signed-off-by: Thilo Fromm <thilo@kinvolk.io>
 2020-09-10 13:18:52 +02:00
Dongsu Park
697d475b2d dev-lang: Upgrade Go 1.15 to 1.15.2 
Upgrade Go to 1.15.2, to address issues like potential cross-site scripting
vulnerability, as described in
https://groups.google.com/g/golang-announce/c/8wqlSbkLdPs .
 2020-09-10 10:34:52 +02:00
Dongsu Park
0bdb485bea Merge pull request #575 from flatcar-linux/dongsu/github-action-rust-body 
.github: improve body text of PR for dev-lang/rust
 2020-09-10 10:31:03 +02:00
Flatcar Buildbot
1036d87f6d sys-kernel: Upgrade coreos-kernel 5.8.6 to 5.8.8 2020-09-10 07:22:52 +00:00
Marga Manterola
857fce1565 Merge pull request #577 from flatcar-linux/marga-kinvolk/update-mantle 
coreos-devel/mantle: update to v0.15.0
 2020-09-09 23:06:34 +02:00
Margarita Manterola
21e3dd302b coreos-devel/mantle: update to v0.15.0 2020-09-09 21:57:57 +02:00
Kai Lüke
0e7039eceb Merge pull request #572 from flatcar-linux/kai/update-update_engine 
coreos-base/update_engine: Point to latest flatcar-master
 2020-09-09 21:32:28 +02:00
Dongsu Park
d238385c36 .github: improve body text of PR for dev-lang/rust 
Improve body text of each PR for `dev-lang/rust`, by mentioning that
it should be merged together with its paired PR in portage-stable.

Explicitly name `dev-lang/rust` instead of `Rust`, because now there are
`dev-lang/rust` as well as `virtual/rust`.

Rename the dispatched event-type name to `rust-pull-request-main`, as
`cargo` has already disappeared.

Make the repository-dispatch action send additional client-payload with
a field `coreos-overlay-pull-request-number`, which will be later used
by the corresponding PR in portage-stable for adding a link back to the
PR in coreos-overlay.
 2020-09-09 11:56:29 +02:00
Vincent Batts
342e858d66 sys-kernel: make lockdown available 
This will not be enabled by default, and still requires the "lockdown"
kernel parameter. Users can test by setting in
`/usr/share/oem/grub.cfg`:
```
set linux_append="lockdown=integrity"
```

After this is set, dmesg output you'll see:
```
[    0.000000] Kernel is locked down from command line; see man
kernel_lockdown.7
```

Signed-off-by: Vincent Batts <vbatts@kinvolk.io>
 2020-09-08 13:22:51 -04:00
Marga Manterola
ea32f00966 Merge pull request #559 from flatcar-linux/rust-1.46.0-main 
Upgrade Rust in main from 1.44.1 to 1.46.0
 2020-09-08 14:03:43 +02:00
Dongsu Park
0af204196a Merge pull request #571 from flatcar-linux/dongsu/github-action-fix-go115 
.github: fix regexp to get correct semver from Go ebuilds
 2020-09-08 10:02:51 +02:00
Kai Lüke
331b877958 coreos-base/update_engine: Point to latest flatcar-master 
This pulls in
https://github.com/flatcar-linux/update_engine/pull/6
for rollback detection.
 2020-09-07 18:52:45 +02:00
Dongsu Park
01ee4dd82f .github: fix regexp to get correct semver from Go ebuilds 
Github Action for Go has had a bug when parsing the current Go version
from `dev-lang/go/Manifest`, only when the current ebuild file has only
major + minor versions, without patchlevel. For example, it could parse
well `1.13.15`, but not `1.15`. We need to make it deal with both
versions, `x.y.z` and `x.y`.

With this PR, for example, when `VERSION_SHORT` is `1.15` and the
Manifest includes a tarball `go1.15.src.tar.gz`, we can confirm the new
regexp works well like below:

```
$ sed -n "s/^DIST go\(1\.15\.*[0-9]*\)\.src.*/\1/p" dev-lang/go/Manifest
1.15
```
 2020-09-07 16:23:29 +02:00
Dongsu Park
54cd827f05 Merge pull request #561 from flatcar-linux/dongsu/flatcar-install-multipath 
coreos-base: Allow installation to multipath target
 2020-09-07 15:08:32 +02:00
Krzesimir Nowak
dd8d8d3fce Merge pull request #567 from flatcar-linux/krnowak/kernel-5.8 
Update kernel to 5.8.6 and firmware to 20200817
 2020-09-07 14:48:40 +02:00
Krzesimir Nowak
fddbd9defe .github: Update KV_MAIN to 5.8 2020-09-07 12:58:11 +02:00
Krzesimir Nowak
36cf4b16e9 sys-kernel/coreos-firmware: Update to 20200817 
Also sync with upstream.
 2020-09-04 21:10:21 +02:00
Krzesimir Nowak
4e7dfb9c50 sys-kernel/coreos-modules: Drop OPTIMIZE_INLINING - removed upstream 
Dropped in commit 889b3c1245de48ed0cacf7aebb25c489d3e4a3e9.
 2020-09-04 21:10:08 +02:00
Krzesimir Nowak
5ad0aa9055 sys-kernel/coreos-modules: Drop NF_TABLES_SET - removed upstream 
Dropped in commit e32a4dc6512ce3c1a1920531246e7037896e510a.
 2020-09-04 21:10:01 +02:00
Krzesimir Nowak
a6d811b5ca sys-kernel/coreos-modules: Add deps for NETFILTER_XT_MATCH_PHYSDEV 
Not sure what and when new deps were added, but adding those config
variables made the build move forward.
 2020-09-04 21:09:50 +02:00
Krzesimir Nowak
92828c0a32 sys-kernel/coreos-modules: Drop INFINIBAND_CXGB3 - removed upstream 
Dropped in commit 30e0f6cf5acb39cd04316d1eecbf4c6087c7ee02.
 2020-09-04 21:09:38 +02:00
Krzesimir Nowak
c9ad088fe4 sys-kernel/coreos-modules: Drop HP100 - removed upstream 
Dropped in commit a10079c6629068b906de5c944cb0e9bcc9517a7e.
 2020-09-04 21:09:29 +02:00
Krzesimir Nowak
c330df0af0 sys-kernel/coreos-modules: Add deps for ACPI_APEI_PCIEAER 
Not sure when and where things have changed, but adding those config
variables made the build move forward.
 2020-09-04 21:09:18 +02:00
Krzesimir Nowak
15f137392b sys-kernel/coreos-modules: Add deps for HID_LOGITECH 
The dependencies were added in commit
bdd08fff4915a9705ea3ec20c82ab8f745bdf225.
 2020-09-04 21:09:01 +02:00
Krzesimir Nowak
2d5d0d8091 sys-kernel/coreos-modules: Add deps for AT803X_PHY 
The dependency was added in commit
dddb318b9f989acba9ccca9babc4715a9075eae8. Earlier the regulator code
was only built for arm64, but since the CONFIG_AT803X_PHY variable is
specified in common config, the CONFIG_REGULATOR variables needed to
be moved to common config too.
 2020-09-04 21:07:31 +02:00
Krzesimir Nowak
42bed4a985 sys-kernel/coreos-sources: Sort config files 2020-09-04 21:06:40 +02:00
Krzesimir Nowak
f75fb46b80 sys-kernel/coreos-sources: Add a script for sorting configs 
The script sorts the lines in the config files and prints a messages
when some variable is being overridden (means that it is specified
twice in the config).

The script can be also used to check for such situations with full
configs like:

    cat commonconfig-* amd64_defconfig-* >amd64fullconfig
    ./sort_config.sh amd64fullconfig
    rm amd64fullconfig
 2020-09-04 21:06:35 +02:00
Krzesimir Nowak
875b2bf18d sys-kernel/coreos-sources: Enable wireguard 2020-09-04 21:01:56 +02:00
Krzesimir Nowak
7969c25385 sys-kernel/coreos-sources: Drop duplicates from configs 
Most of the duplicates happened to be within amd64 config. But some of
the duplicates were across the files (defined in both common and
amd64). Almost all of them were exact duplicates, so those could be
just dropped, favoring the config lines in common config to remain.

The CONFIG_CONNECTOR was different in common config (module) and in
amd64 config (builtin), so the config line was moved to arm64
config. Now amd64 has CONFIG_CONNECTOR as builtin and arm64 as a
module.
 2020-09-04 21:01:56 +02:00
Krzesimir Nowak
7cd8610e48 sys-kernel/coreos-sources: Drop wireguard patches 
Wireguard is already a part of the kernel.
 2020-09-04 21:01:56 +02:00
Krzesimir Nowak
bdd4ca3686 sys-kernel/*: Bump kernel to 5.8 
It's just a bunch of renames, I still need to review patches and
kernel config.
 2020-09-04 21:01:56 +02:00