mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-08-18 10:27:00 +02:00
Code Issues Packages Projects Releases Wiki Activity
8,739 Commits 632 Branches 394 Tags 167 MiB
622a99058c
Commit Graph

6986 Commits

Author SHA1 Message Date
Kai Lüke
622a99058c coreos-base/update_engine: support btrfs as /usr filesystem 
This pulls in
https://github.com/kinvolk/update_engine/pull/11
 2021-07-28 13:29:02 +02:00
Kai Lüke
ab2467e547 sys-apps/seismograph: support btrfs in rootdev 
This pulls in
https://github.com/kinvolk/seismograph/pull/6
 2021-07-28 13:28:55 +02:00
Kai Lüke
e45a6140d0 sys-apps/ignition: support btrfs on the OEM partition 
This pulls in
https://github.com/kinvolk/ignition/pull/21
 2021-07-28 13:28:45 +02:00
Kai Lüke
bdc7f36d4f sys-kernel/coreos-modules: use 4k pages for arm64 
Btrfs filesystems do not support a non-standard 64k page size on arm64
when the filesystem was created by a 4k page size system.

Use the default page size for arm64 to ensure compatibility with
btrfs filesystems created by amd64 systems.
 2021-07-28 13:28:45 +02:00
Kai Lüke
c01560ba63 coreos-base/coreos-init: support btrfs on the OEM partition 
This pulls in
https://github.com/kinvolk/init/pull/42
 2021-07-28 13:28:28 +02:00
Kai Lüke
42b4f612ca sys-kernel/bootengine: support btrfs /usr filesystems 
Pulls in https://github.com/kinvolk/bootengine/pull/25
 2021-07-28 13:28:10 +02:00
Kai Lüke
29f2903c87 sys-kernel/coreos-modules: switch to gzip/zstd compression 
With the default gzip compression the 60 MB limit for the vmlinuz
bundle of kernel+initramfs was reached. The limit comes from the size
of the /boot partition which is 128 MB large and the kernel needs to
fit twice, in addition to GRUB.

Use zstd for the initramfs as it provides a similar speed but better
compression. For the kernel we can't switch yet to zstd for arm64
but for amd64 it works.
 2021-07-27 14:48:26 +02:00
Sayan Chowdhury
1b068b5186 Merge pull request #1126 from kinvolk/sayan/update-systemd-247.7 
sys-apps/systemd: Bump to v247.7
 2021-07-21 16:50:28 +05:30
Flatcar Buildbot
e1e7bd2c2c sys-kernel: Upgrade Kernel 5.10.49 to 5.10.52 2021-07-21 07:10:12 +00:00
Sayan Chowdhury
cf97d4ad91 sys-apps/systemd: Bump to v247.7 
Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
 2021-07-20 23:29:14 +05:30
Dongsu Park
70bfaff439 app-emulation/containerd: update to 1.5.4 
Update app-emulation/containerd to 1.5.4, mainly to address
CVE-2021-32760.
 2021-07-20 16:36:48 +02:00
Dongsu Park
2df538b480 Merge pull request #1115 from kinvolk/go-1.16.6-main 
Upgrade Go in main from 1.16.5 to 1.16.6
 2021-07-19 18:28:20 +02:00
Dongsu Park
065661a751 Merge pull request #1113 from kinvolk/dongsu/open-vm-tools-11.3.0 
app-emulation/open-vm-tools: update to 11.3.0
 2021-07-19 12:01:03 +02:00
Flatcar Buildbot
e03a28561c dev-lang: Upgrade Go 1.16.5 to 1.16.6 2021-07-19 07:26:12 +00:00
Mathieu Tortuyaux
abd1e615c0 Merge pull request #1112 from kinvolk/containerd-1.5.3-main 
Upgrade Containerd in main from 1.5.2 to 1.5.3
 2021-07-16 15:52:27 +02:00
Jeremi Piotrowski
23d3861740 Merge pull request #1105 from kinvolk/sayan+jepio/update-dracut 
Sayan+jepio/update dracut

Closes kinvolk/Flatcar#375
 2021-07-16 15:47:17 +02:00
Dongsu Park
688eed80f3 coreos-base/oem-vmware: update to 11.3.0 
Update oem-vmware to 11.3.0, corresponding to the update of
open-vm-tools to 11.3.0.
 2021-07-16 13:54:28 +02:00
Dongsu Park
53983eb353 app-emulation/open-vm-tools: update to 11.3.0 
Update open-vm-tools 11.3.0,
https://github.com/vmware/open-vm-tools/releases/tag/stable-11.3.0 .
Update also the build number to 18090558.
 2021-07-16 13:53:51 +02:00
Mathieu Tortuyaux
aa3ad05497 Merge pull request #1048 from kinvolk/tormath1/selinux 
selinux: upgrade selinux libs
 2021-07-16 11:25:10 +02:00
Flatcar Buildbot
4309eaab99 app-emulation: Upgrade Containerd 1.5.2 to 1.5.3 2021-07-16 08:10:14 +00:00
Mathieu Tortuyaux
6841de885a Revert "app-emulation/docker: disable SELinux" 
This reverts commit 956f9757d45b7df260ed0e78213e1ad96c7409eb.
 2021-07-16 10:04:03 +02:00
Sayan Chowdhury
2a3a1c8bc8 sys-apps/dbus: Apply Flatcar patches 
Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
 2021-07-16 10:04:02 +02:00
Sayan Chowdhury
d3d56cda69 sys-apps/dbus: Sync with Gentoo upstream 
Updates to dbus-1.12.20-r1

Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
 2021-07-16 10:04:02 +02:00
Mathieu Tortuyaux
8bd2eefc3f app-admin/setools: remove package 
from 4.x setools is a pure python script, we won't include it
in Flatcar anymore

Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-16 10:04:02 +02:00
Mathieu Tortuyaux
d86d08d640 profiles/coreos/amd64: enable selinux for runc 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-16 10:04:02 +02:00
Mathieu Tortuyaux
c56eec4bb4 eclass: move selinux-policy-2 to ::portage-stable 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-16 10:04:02 +02:00
Mathieu Tortuyaux
0ead201568 sec-policy/selinux-unconfined: sync with upstream 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-16 10:04:02 +02:00
Mathieu Tortuyaux
e2afa149cb sec-policy/selinux-virt: apply flatcar changes 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-16 10:04:02 +02:00
Mathieu Tortuyaux
e02947a905 sec-policy/selinux-virt: sync with upstream 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-16 10:04:01 +02:00
Mathieu Tortuyaux
4d6ff7cfca sec-policy/selinux-base-policy: flatcar changes 
- run sshd (and child) as unconfined_t
- add init.patch to allow execute_no_trans,map and
exec from init to unconfined
- add AVC patch for local login and journald

Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-16 10:04:01 +02:00
Mathieu Tortuyaux
d819e2afa4 sec-policy/selinux-base-policy: sync with upstream 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-16 10:03:10 +02:00
Mathieu Tortuyaux
e472af562e sec-policy/selinux-base: apply flatcar changes 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-16 10:03:10 +02:00
Jeremi Piotrowski
743f86d4da sys-kernel/coreos-kernel: strip ROOT from TMPDIR before running dracut 
Update-bootengine chroots into the sysroot and runs dracut from there.
Dracut 053 has revised TMPDIR handling and the portage TMPDIR prefixed
with ROOT leaks into the chroot. This causes dracut to abort during
setup with the error message "invalid tmpdir".

Override TMPDIR before running update-bootengine to allow dracut to
function.

Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
 2021-07-15 13:40:50 +00:00
Jeremi Piotrowski
68f2867457 sys-kernel/dracut: Apply Flatcar patches to 053 
Flatcar uses custom networking scripts in initramfs, so the dracut iscsi
module needs to be patched to account for that.

Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
 2021-07-15 13:40:50 +00:00
Sayan Chowdhury
033048444f sys-kernel/dracut: Apply Flatcar patches 
Add Flatcar specific patch to enable the iscsi module

Flatcar uses its own network module instead of the Dracut one, but the
iscsi module depends on the network. So, in order to enable the iscsi
module, we need to patch the dependency

Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
 2021-07-15 13:40:50 +00:00
Sayan Chowdhury
2a19f3cd76 sys-kernel/dracut: Sync with Gentoo upstream 
Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
 2021-07-15 13:40:50 +00:00
Sayan Chowdhury
3f857f9f2a Merge pull request #1099 from peanutduck/ticket_361 
net-misc/curl: enable telnet protocol support
 2021-07-15 13:11:59 +05:30
Dongsu Park
6c0742bf07 Merge pull request #932 from kinvolk/dongsu/wget-ssl 
profiles: force to use ssl USE flag for wget
 2021-07-15 09:39:41 +02:00
Sayan Chowdhury
31ce217f6a Merge pull request #1104 from kinvolk/linux-5.10.49-main 
Upgrade Linux Kernel in main from 5.10.46 to 5.10.49
 2021-07-15 10:55:24 +05:30
Jeremi Piotrowski
40328de04b Merge pull request #929 from wernerb/add-mdio-bcm 
Enable MDIO_BCM_UNIMAC for arm64
 2021-07-13 09:58:28 +02:00
Flatcar Buildbot
70cb0ed335 sys-kernel: Upgrade Kernel 5.10.46 to 5.10.49 2021-07-12 07:15:21 +00:00
peanutduck
b1fa2b24ee net-misc/curl: enable telnet protocol support 
Add telnet useflag directly in the package.use file
 2021-07-08 23:10:12 +08:00
Mathieu Tortuyaux
92bc08519c Merge pull request #1093 from kinvolk/tormath1/libgcrypt-1.9.3 
profiles: accept ~amd64 & ~arm64 for libgcrypt-1.9.3
 2021-07-08 09:47:59 +02:00
Mathieu Tortuyaux
fe107d3408 profiles: accept ~amd64 & ~arm64 for libgcrypt-1.9.3 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-08 09:45:07 +02:00
Kai Lüke
c2b0b0cc7e coreos-base/coreos-init: add udev systemd tag for Azure storage devices 
This pulls in
https://github.com/kinvolk/init/pull/41
 2021-07-07 12:25:46 +02:00
Mathieu Tortuyaux
1219a8ff35 sec-policy/selinux-base: sync with the upstream 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-06 15:57:28 +02:00
Mathieu Tortuyaux
b7419c3548 sys-libs/libsemanage: apply flatcar changes 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-06 15:57:28 +02:00
Mathieu Tortuyaux
5738da828c sys-libs/libsemanage: sync with the upstream 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-06 15:57:28 +02:00
Mathieu Tortuyaux
522387fa10 sys-libs/libselinux: apply flatcar changes 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-06 15:57:28 +02:00
Mathieu Tortuyaux
9aecd8fc33 sys-libs/libselinux: sync with upstream 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-06 15:57:28 +02:00