mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-08-10 14:36:58 +02:00
Code Issues Packages Projects Releases Wiki Activity
4,592 Commits 621 Branches 390 Tags 160 MiB
4273b51cd6
Commit Graph

4592 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Nick Owens
c7ab74a7ea Merge pull request #546 from mischief/glsa-sync 
update_ebuilds: allow glsa sync and ignore metadata if so
 2016-05-18 17:21:55 -07:00
Matthew Garrett
9a3c5a9d2e Merge pull request #547 from mjg59/glsa 
Verify GLSA status when building packages
 2016-05-17 16:49:36 -07:00
Matthew Garrett
922554303b check_root: Verify that we don't have any applicable GLSA 
Once we've built the packages, verify against the Gentoo Linux Security
Advisories to ensure that we're not shipping anything with known
vulnerabilities.
 2016-05-17 16:39:40 -07:00
Matthew Garrett
9e64bef513 setup_board: create a glsa-check wrapper 
We want to be able to verify that we don't have any vulnerabilities in the
build root, so install a wrapper for glsa-check
 2016-05-17 16:39:40 -07:00
Nick Owens
f3ef3c1ee1 update_ebuilds: allow glsa sync and ignore metadata if so 2016-05-17 11:30:17 -07:00
Michael Marineau
31a479553b tag_release: support branches, add a branch tracking manifest 
To make branches easier to use this splits the branch manifest into two:
build-????.xml is now only pins revisions of projects that do not have a
corresponding branch (yet) while release.xml pins all revisions. Unlike
before the script can now be used to tag branched releases.

The step to switch any particular project to a branch is still manual
but that will be a simple future expansion. First this will be migrated
to Go though, this script has hit the limit of sophistication that
should be attempted with mixing XML and bash. ;-)
 2016-05-15 17:49:43 -07:00
Michael Marineau
f60d2762c2 tag_release: remove old BUILD/BRANCH/PATCH values 
These old names are left over from ChromeOS and never really made sense
for us. The last things using them were fixed up a while ago.
 2016-05-15 16:28:34 -07:00
Nick Owens
9b8a4ca434 Merge pull request #544 from mischief/jenkins 
initial import of public jenkins jobs
 2016-05-12 15:36:09 -07:00
Nick Owens
aa3fed014e Merge pull request #543 from mischief/arm64-grub-name 
build_library: make arm64 grub file name match x86_64
 2016-05-12 14:55:30 -07:00
Nick Owens
281f85941f initial import of public jenkins jobs 2016-05-12 14:34:55 -07:00
Nick Owens
d935a8aca0 build_library: make arm64 grub file name match x86_64 2016-05-12 13:09:46 -07:00
Nick Owens
bb800cff86 Merge pull request #542 from mischief/arm-grub-fix 
build_library: fix grub loader copy for arm64
 2016-05-12 12:14:41 -07:00
Nick Owens
1fd668ef0d build_library: fix grub loader copy for arm64 2016-05-12 12:05:11 -07:00
Michael Marineau
ccafb1b3a5 Merge pull request #541 from marineam/drop-dev-channel 
tag_release: drop pushing to old dev-channel branch
 2016-05-11 11:24:29 -07:00
Michael Marineau
15988a936a tag_release: drop pushing to old dev-channel branch 2016-05-11 11:09:39 -07:00
Michael Marineau
ebbc2c3b04 Merge pull request #537 from aogier/debian-genisoimage 
add support for genisoimage
 2016-05-10 12:23:20 -07:00
Michael Marineau
8bfd994f3f Merge pull request #534 from glevand/for-merge-build 
build_image: Fix image type conditional
 2016-05-10 12:20:07 -07:00
Michael Marineau
2e6c2212c7 Merge pull request #539 from marineam/grub 
Fix arm64 image builds with an empty board root
 2016-05-10 12:19:03 -07:00
Michael Marineau
9a468bf37d vm_image_util: ensure UEFI firmware is installed before reading it 2016-05-10 12:02:56 -07:00
Michael Marineau
44e86ecdaa update_chroot: do not reconfigure/rebuild the SDK's GRUB for arm64 
Now built/installed under the board root instead.
See https://github.com/coreos/coreos-overlay/pull/1950
 2016-05-10 12:02:56 -07:00
Michael Marineau
4d97d2752d grub_install: use GRUB installed to the board root instead of SDK 
Follow up to https://github.com/coreos/coreos-overlay/pull/1950
 2016-05-10 12:02:56 -07:00
Michael Marineau
d5cb907947 grub_install: drop old/unused esp_dir flag 2016-05-10 10:56:21 -07:00
Michael Marineau
866c11ac33 Merge pull request #538 from marineam/gentoo 
*: drop obsolete gentoo repo reference
 2016-05-08 19:42:10 -07:00
Michael Marineau
632d578b56 *: drop obsolete gentoo repo reference 
Instead of patching portage to support the `disabled` flag now we just
patch it to leave the `[gentoo]` section out of the default repos.conf.

Follow up to 585275b268
 2016-05-08 19:31:02 -07:00
Alessandro -oggei- Ogier
fbe60fa3fb adding support for debian genisoimage 2016-05-06 19:32:37 +02:00
Michael Marineau
af38bc6df4 Merge pull request #536 from marineam/assert-keys 
prod_image_util: do not check update keys on arm64
 2016-05-05 17:56:37 -07:00
Michael Marineau
20541226bf prod_image_util: do not check update keys on arm64 
arm64-usr doesn't have update_engine yet so this isn't valid.
 2016-05-05 17:33:11 -07:00
Michael Marineau
3d851911c5 Merge pull request #535 from marineam/static 
setup_board: fix running build_image with an empty board root
 2016-05-04 17:50:38 -07:00
Michael Marineau
6c7c063474 setup_board: fix running build_image with an empty board root 2016-05-04 17:13:29 -07:00
Geoff Levand
c053521e37 build_image: Fix image type conditional 
PROD_IMAGE is a flag that indicates a production image should be
built, and will be set for dev builds if the user specifies that
both dev and prod images should be built.  build_image was
incorrectly using the PROD_IMAGE variable to conditionaly do some
setup depending on the image type.

Add a new variable IMAGE_BUILD_TYPE that can be tested for the type
of image currently being built and replace the PROD_IMAGE usage.

Signed-off-by: Geoff Levand <geoff@infradead.org>
 2016-05-03 14:06:14 -07:00
Michael Marineau
bfb5618261 Merge pull request #533 from marineam/https 
*: convert assorted download references to https
 2016-05-02 20:24:19 -07:00
Michael Marineau
3ff92f4bc3 bootstrap_sdk: use http instead of https 
Using https gives us a bit of a dep issue, cannot download the sources
required to build ssl support when ssl hasn't been built yet!
 2016-05-02 20:23:30 -07:00
Michael Marineau
582361b30c catalyst: allow GENTOO_MIRRORS to be passed in through the environment 2016-05-02 20:12:27 -07:00
Michael Marineau
bad34243ef *: convert assorted download references to https 2016-05-02 19:19:06 -07:00
Michael Marineau
41adf5e105 Merge pull request #532 from marineam/no-verity-on-arm 
build_image: disable verity on arm64
 2016-05-02 15:02:39 -07:00
Nick Owens
bbf737f9e6 Merge pull request #525 from mischief/grub-copy 
build_library: copy grub.efi in pxe/cpio generation
 2016-05-02 12:11:52 -07:00
Michael Marineau
678c37c3c2 build_image: disable verity on arm64 
Our current scheme injects the verity hash into a free spot in x86
kernel images. This is a bad thing to try on other types ;-)
 2016-05-02 11:35:48 -07:00
Michael Marineau
75388260a9 Merge pull request #531 from marineam/roller 
core_roller_upload: use new download URL
 2016-04-29 16:01:26 -07:00
Michael Marineau
bad4ff715c core_roller_upload: use new download URL 2016-04-29 15:55:31 -07:00
Nick Owens
bdd0226ec2 Merge pull request #530 from mischief/generate-au-zip 
build_library: core_promote is gone, do not copy it
 2016-04-28 16:55:31 -07:00
Nick Owens
8c76ea6ea4 build_library: core_promote is gone, do not copy it 2016-04-28 16:46:22 -07:00
Michael Marineau
a27c2eb70d Merge pull request #529 from marineam/promote 
core_promote: remove, replaced by plume release
 2016-04-28 14:46:16 -07:00
Michael Marineau
66eace5b7f core_promote: remove, replaced by plume release 2016-04-28 14:04:55 -07:00
Michael Marineau
6f6e101775 Merge pull request #528 from marineam/storage 
core_roller_upload: use new update storage bucket
 2016-04-27 17:14:02 -07:00
Michael Marineau
21017632e4 core_roller_upload: use new update storage bucket 
The google domain name is still used for downloads, that will be
switched as soon as the appropriate certificates are set up.
 2016-04-27 16:58:56 -07:00
Nick Owens
a03cef558e build_library: copy grub.efi in pxe/cpio generation 2016-04-27 15:54:59 -07:00
Matthew Garrett
253590ab99 Merge pull request #526 from mjg59/increase_devsize 
Increase the size of /usr on devel images
 2016-04-27 13:53:48 -07:00
Matthew Garrett
9ae9ce8332 Increase the size of /usr on devel images 
devel images contain significantly more code and we're overflowing the
filesystem. Increase this, but only for devel images.
 2016-04-27 13:40:36 -07:00
Michael Marineau
ce461819b4 Merge pull request #527 from marineam/distfiles 
update_distfiles: upload to both old and new buckets
 2016-04-27 13:03:09 -07:00
Michael Marineau
125872788e update_distfiles: upload to both old and new buckets 2016-04-27 12:48:20 -07:00