mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-08-16 01:16:59 +02:00
Code Issues Packages Projects Releases Wiki Activity
10,509 Commits 624 Branches 397 Tags 164 MiB
38b47df9ac
Commit Graph

8565 Commits

Author SHA1 Message Date
Krzesimir Nowak
38b47df9ac changelog: Add an entry 2022-11-03 08:59:44 +01:00
Mathieu Tortuyaux
c49c230f1b dev-libs/openssl: Apply Flatcar modifications 
- remove unecessary files
- drop `pkg_postint`
- create `/etc/ssl` with tmpfiles
- mark openssl as stable for arm64 and amd64

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-11-02 14:36:25 +01:00
Krzesimir Nowak
704380a2e0 dev-libs/openssl: Sync with Gentoo 
It's from Gentoo commit 9ffdcaba89a94dc933e722339fe9471ad16af62a.
 2022-11-02 14:30:31 +01:00
Dongsu Park
69e68c98c2 Merge pull request #2265 from flatcar/dongsu/multipath-tools-0.9.3 
profiles: accept keywords for multipath-tools 0.9.3
 2022-11-02 12:58:31 +01:00
Kai Lueke
8cc6058a64 dev-libs/openssl: Fix security issue 
This applies a patch to fix a security issue. There will be an upstream
release available soon and we can drop the patch after updating to it.
 2022-11-01 17:25:27 +01:00
Dongsu Park
c207188a81 profiles: accept keywords for multipath-tools 0.9.3 
Accept keywords ~amd64, ~arm64 for sys-fs/multipath-tools 0.9.3
to address CVE-2022-41973, CVE-2022-41974.
 2022-11-01 12:21:09 +01:00
Flatcar Buildbot
2c2af1fa7a app-emulation: Upgrade Containerd 1.6.8 to 1.6.9 2022-10-28 08:58:19 +00:00
Dongsu Park
9225503a6c Merge pull request #2250 from flatcar/docker-20.10.21-main 
Upgrade Docker in main from 20.10.20 to 20.10.21
 2022-10-28 10:53:55 +02:00
Kai Lueke
b5f2777a6e app-admin/toolbox: Use containerd 
This pulls in
https://github.com/flatcar/toolbox/pull/7
to download and mount the image with containerd instead of requiring
Docker.
 2022-10-27 16:13:51 +02:00
Krzesimir Nowak
47bf270880 Merge pull request #2248 from flatcar/krnowak/weekly 
Profile additions and cleanups for weekly update
 2022-10-27 12:19:29 +02:00
Krzesimir Nowak
f8a6a2be8d Merge pull request #2245 from flatcar/krnowak/net-misc-update 
Profile cleanups for net-misc packages update
 2022-10-27 12:17:29 +02:00
Flatcar Buildbot
139db5ad3f app-emulation: Upgrade Docker 20.10.20 to 20.10.21 2022-10-26 07:50:01 +00:00
Krzesimir Nowak
1bb650c94e profiles: Update accept keywords for sys-libs/zlib 
The package is still unstable and 1.2.13 is gone in favor of 1.2.13-r1.
 2022-10-24 19:16:54 +02:00
Krzesimir Nowak
8172ba5da7 profiles: Drop unnecessary unmask for dev-vcs/git 
We have updated the package to a different version now. Also, it's not
masked any more.
 2022-10-24 18:51:02 +02:00
Krzesimir Nowak
112001a419 profiles: Add accept keywords for dev-util/patchelf 2022-10-24 18:50:46 +02:00
Krzesimir Nowak
9511ff75bf profiles: Drop accept keywords for dev-util/cmake 
It became stable for amd64 too.
 2022-10-24 18:40:41 +02:00
Krzesimir Nowak
a1d4afd659 profiles: Add accept keywords for dev-util/meson 2022-10-24 18:40:12 +02:00
Krzesimir Nowak
c7d70dd1a2 profiles: Update accept keywords for dev-util/bpftool 2022-10-24 18:38:12 +02:00
Jeremi Piotrowski
369a2fd99c Merge pull request #2240 from flatcar/jepio/qemu-guest-agent 
coreos: add qemu-guest-agent to images
 2022-10-24 11:06:23 +02:00
Jeremi Piotrowski
e535a18d7c Merge pull request #2239 from flatcar/jepio/arm64-kernel-shrink 
arm64 kernel shrink by changing kernel options to module and disabling unsupported options.
 2022-10-24 09:34:43 +02:00
Jeremi Piotrowski
8f23ec18c2 Merge pull request #2197 from flatcar/jepio/arm64-parent-profile 
profile/coreos/arm64: switch parent profile to 17.0/hardened
 2022-10-24 09:32:51 +02:00
Jeremi Piotrowski
f261312db5 changelog: add entry for changes needed to bring down arm64 kernel size 2022-10-24 09:30:39 +02:00
Jeremi Piotrowski
83610f44d1 Merge pull request #2235 from Snaipe/fix-arm64-boot 
sys-kernel: enable IOMMU on arm64
 2022-10-21 14:33:22 +02:00
Mathieu Tortuyaux
16b9cbb3d3 changelog: add entry 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-10-21 14:20:48 +02:00
Mathieu Tortuyaux
503114256f coreos-base/oem-ec2-compat: pull ssh keys from metadata server 
Without this Ignition configuration, the SSH keys are
not installed from the Openstack metadata server.

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-10-21 14:20:48 +02:00
Krzesimir Nowak
fd81c9ade2 Merge pull request #2210 from flatcar/krnowak/vim-update 
app-editors/vim: Move back to portage-stable
 2022-10-20 16:22:18 +02:00
Krzesimir Nowak
5c783ce9c1 profiles: Remove unnecessary package.provided for app-arch/xz-utils 
The circular dep used to be:

app-arch/xz-utils
libtool.eclass
app-portage/elt-patches
app-arch/xz-utils

The circular dep should be gone now, because app-arch/xz-utils is a
BDEPEND, so for building production images the package from SDK will
be used. For building SDK the package from seed SDK should be used.
 2022-10-20 15:20:36 +02:00
Krzesimir Nowak
830d3e424a profiles: Drop redundant package.use.force for net-misc/wget 
It already is a part of the base profile in portage-stable.
 2022-10-20 15:20:36 +02:00
Krzesimir Nowak
eea6bf76b1 profiles: Drop accept_keywords for net-misc/wget 
The updated package is stable for both amd64 and arm64.
 2022-10-20 15:20:36 +02:00
Krzesimir Nowak
1d9b15ea3e profiles: Drop obsolete USE flag for net-misc/iputils 
The net-misc/iputils package stopped providing traceroute. We are
pulling in a different package instead.
 2022-10-20 15:20:36 +02:00
Krzesimir Nowak
d87266cbf0 coreos-base/coreos{,-dev}: Add net-analyzer/traceroute 
These packages are pulling in iputils, that used to provide the
traceroute utility. The updated iputils package stopped doing that
altogether, recommending to install net-analyzer/traceroute or
net-analyzer/mtr instead. We are going with the former here.
 2022-10-20 15:19:20 +02:00
Krzesimir Nowak
9d5fc0ff03 Merge pull request #2243 from flatcar/krnowak/curl-update 
profiles: Accept keywords for curl 7.85
 2022-10-20 15:00:53 +02:00
Krzesimir Nowak
7499c24a52 changelog: Add entries 2022-10-20 14:34:18 +02:00
Sayan Chowdhury
1296ae7ef6 Merge pull request #2244 from flatcar/sayan/update-wireguard-tools-1.0.20210914 
net-vpn/wireguard-tools: Move to portage-stable
 2022-10-20 15:32:36 +05:30
Krzesimir Nowak
e4bda5bbf3 Merge pull request #2242 from flatcar/docker-20.10.20-main 
Upgrade Docker in main from 20.10.18 to 20.10.20
 2022-10-19 18:53:00 +02:00
Krzesimir Nowak
0f99e5dcf6 Merge pull request #2241 from flatcar/krnowak/weekly 
Profile changes for the weekly updates
 2022-10-19 18:12:03 +02:00
Krzesimir Nowak
6f1a2a0cab Merge pull request #2221 from flatcar/krnowak/deduplicate-workflows 
github: Deduplicate kernel and ca-certificates workflows
 2022-10-19 18:02:32 +02:00
Krzesimir Nowak
3ce9099727 profiles: Remove obsolete USE flag of net-misc/curl 
Also drop the comment, it was related to the media-libs/mesa package
that was dropped over 9 years ago in commit
de91081f00a4ab07332759b1bbfc3072d530c9fd.
 2022-10-19 10:08:25 +02:00
Krzesimir Nowak
eb2d5da242 profiles: Add accept keywords for net-misc/curl 2022-10-19 10:08:07 +02:00
Flatcar Buildbot
7d7ff9c223 app-emulation: Upgrade Docker 20.10.18 to 20.10.20 2022-10-19 08:07:25 +00:00
Krzesimir Nowak
40e0917023 profiles: Add accept keywords for sys-libs/zlib 2022-10-19 08:51:13 +02:00
jenkins
cee408b4a6 coreos: add qemu-guest-agent to images 
Qemu-guest-agent gets activated using a udev rule, and so will only run
when the correct virtio-port name is detected. Qemu-guest-agent is used
across several oems so we include it in the usr partition.
 2022-10-18 17:01:44 +00:00
Krzesimir Nowak
9ea66f917a profiles: Drop accept keywords for dev-vcs/git 
The updated package became stable on both amd64 and arm64.
 2022-10-18 18:18:33 +02:00
Krzesimir Nowak
e7863f5ab1 profiles: Add accept keywords for dev-util/cmake 2022-10-18 18:13:43 +02:00
Krzesimir Nowak
d8f81f4442 profiles: Add accept keywords for dev-libs/libxml2 2022-10-18 18:07:24 +02:00
Krzesimir Nowak
9f7bb31f84 Merge pull request #2228 from flatcar/linux-5.15.74-main 
Upgrade Linux Kernel in main from 5.15.73 to 5.15.74
 2022-10-18 16:16:58 +02:00
Jeremi Piotrowski
99ff470847 sys-kernel/coreos-modules: make wireguard a module 
The wireguard module has some crypto dependencies, we benefit from making them
all modules so that they don't increase the arm64 kernel size.
 2022-10-18 13:12:56 +02:00
Jeremi Piotrowski
d3d07fc959 sys-kernel/coreos-modules: disable arm64 board specific kconfig settings 
Disable ARCH_QCOM, ARCH_ZYNQMP, ARCH_MEDIATEK which enable other options that
are only relevant on the respective boards, none of which are supported targets
for Flatcar. Since the arm64 kernel does not support compression, these
settings have a significant impact on kernel size. The boot partition size is
only 128MB and needs to fit 2 kernels, so we have set ourselves a target of
60MB per kernel. This commit brings down the arm64 kernel size by 3MB.

At the same time, enable the settings that are actually relevant: ARCH_BCM,
because that one is relevant for Raspberry Pi 4 that runs Linux.
 2022-10-18 13:12:01 +02:00
Krzesimir Nowak
053fe006d3 .github: Simplify kernel patch script 
No point in setting UPDATE_NEEDED to zero if we exit the script
without doing anything with the just set variable.

Also to avoid mismatches in branch names, export the branch name as a
github workflow step output, so the follow-up steps can pick it up and
use.
 2022-10-18 11:37:01 +02:00
Krzesimir Nowak
b15055684e .github: Deduplicate kernel workflows 
Also use a newer version of the create pull request action, and apply
correct labels ("alpha" or "stable" instead of "flatcar-XXXX").
 2022-10-18 11:37:01 +02:00