mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2026-04-21 21:42:17 +02:00
Code Issues Packages Projects Releases Wiki Activity
34,865 Commits 655 Branches 423 Tags
Commit Graph

34865 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
James Le Cuirot
6ee951ced2
app-shells/bash: Apply tentative patch to try to fix wait error 
Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2026-04-16 10:29:42 +01:00
James Le Cuirot
113a95fde9
sdk_lib: Don't disable the Portage sandboxes most of the time 
We have long run with the ipc, network, and pid sandboxes disabled in
the belief that these did not work in a container even if it was
privileged. I suspect it really did work back then, but it certainly
does work now regardless.

update_sdk_container_image uses Portage in an unprivileged docker build
environment, so it is still necessary to disable these here. However,
this can be done more easily through the environment, and the regular
sandbox should work fine.

Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2026-04-16 10:23:49 +01:00
James Le Cuirot
f0a1caf488
sys-apps/baselayout: Add build USE flag to avoid poking unwritable dirs 
update_sdk_container_image fails to update baselayout because it touches
/sys, which is not allowed in an unprivileged docker build environment.

This roughly mirrors what Gentoo's baselayout does.

Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2026-04-16 10:23:48 +01:00
James Le Cuirot
a6b4348492
update_sdk_container_image: Don't truncate docker build output 
Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2026-04-15 16:55:38 +01:00
James Le Cuirot
ab17ed125a
overlay profiles: Don't complain when rm_masked_debug_files does nothing 
Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2026-04-15 16:50:23 +01:00
James Le Cuirot
2291572849
Merge pull request #3934 from flatcar/chewi/ignition-mounting 
Drop old Ignition OEM mounting code and bump bootengine with new mount handling
 2026-04-15 15:32:02 +01:00
James Le Cuirot
32f35c29b1
coreos-base/coreos-init: Bump for new Ignition OEM mount handling 
Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2026-04-15 15:23:44 +01:00
James Le Cuirot
a69494ae03
sys-kernel/bootengine: Bump for new Ignition OEM mount handling 
Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2026-04-15 15:23:43 +01:00
James Le Cuirot
3f8baedc51
sys-apps/ignition: Drop the old OEM mounting code 
bootengine will mount the partition before Ignition starts instead.

Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2026-04-15 15:23:41 +01:00
James Le Cuirot
52dec2ded5
Merge pull request #3935 from flatcar/chewi/sdk-portage-patches 
update_chroot: Fix /etc/portage/patches symlink
 2026-04-15 12:29:45 +01:00
James Le Cuirot
84a195436c
update_chroot: Fix /etc/portage/patches symlink 
This was accidentally broken by #3795. I took that change from a branch
where the `COREOS_OVERLAY` variable was no longer used at all.

Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2026-04-15 12:14:30 +01:00
Mathieu Tortuyaux
0f1bcae7cc
Merge pull request #3933 from flatcar/tormath1/azurekv 
sbsign: update Azure key vault location
 2026-04-15 11:58:45 +02:00
Mathieu Tortuyaux
65a7e5d43e
Merge pull request #3932 from flatcar/mantle-update-main 
Upgrade mantle container image to latest HEAD in main
 2026-04-15 11:11:49 +02:00
Mathieu Tortuyaux
5ca3c89a2e
sbsign: update Azure key vault location 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2026-04-15 10:35:33 +02:00
Flatcar Buildbot
f9dc297d83 Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2026-04-13 21:00:46 +00:00
flatcar-ci
c5834ad4c9 New version: main-4669.0.0-nightly-20260413-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
main-4669.0.0-nightly-20260413-2100 		2026-04-13 21:00:29 +00:00
Jan Bronicki
b362a4252e
Merge pull request #3927 from flatcar/john15321/automated/add-community-docs-and-update-readme 
## Summary

This PR adds standardized community documentation files and updates the README:

### New files
- **`SECURITY.md`** — Links to the [main Flatcar Security Policy](https://github.com/flatcar/Flatcar/blob/main/SECURITY.md) with a section for repo-specific security notes
- **`MAINTAINERS.md`** — Links to the [main Flatcar MAINTAINERS file](https://github.com/flatcar/Flatcar/blob/main/MAINTAINERS.md) with a section for repo-specific maintainers
- **`GOVERNANCE.md`** — Links to the [main Flatcar Governance document](https://github.com/flatcar/Flatcar/blob/main/governance.md) with a section for repo-specific governance
- **`CODE_OF_CONDUCT.md`** — Links to the [CNCF Code of Conduct](https://github.com/cncf/foundation/blob/main/code-of-conduct.md) and the [main Flatcar Code of Conduct](https://github.com/flatcar/Flatcar/blob/main/CODE_OF_CONDUCT.md)

### Updated files
- **`CONTRIBUTING.md`** — Added a note directing users to the [central Flatcar issue tracker](https://github.com/flatcar/Flatcar/issues)

### README.md updates
- Added **Discord** badge ([Flatcar Discord server](https://discord.gg/PMYjFUsJyq))
- Added **OpenSSF Best Practices** badge ([project 10926](https://www.bestpractices.dev/projects/10926))
- Added a note pointing to the [central Flatcar issue tracker](https://github.com/flatcar/Flatcar/issues)
- Appended a **Community & Project Documentation** reference section linking to all community docs

This change is part of a batch update across all Flatcar repositories to ensure consistent community documentation.

Ref: https://github.com/flatcar/Flatcar/issues/1865
 2026-04-13 19:53:03 +02:00
Jan Bronicki
8e12828295
docs: Fix readme note about filing issues and links 
Signed-off-by: Jan Bronicki <janbronicki@gmail.com>
 2026-04-13 19:49:14 +02:00
Jan Bronicki
6b5e76fb87 docs: add community docs, update README badges and references 
Add standardized SECURITY.md, MAINTAINERS.md, GOVERNANCE.md, and
CODE_OF_CONDUCT.md. Update README.md with Discord and OpenSSF Best
Practices badges, and append a community documentation reference section.

Ref: https://github.com/flatcar/Flatcar/issues/1865
Signed-off-by: Jan Bronicki <janbronicki@gmail.com>
 2026-04-13 16:58:56 +02:00
Mathieu Tortuyaux
1d75b468df
Merge pull request #3923 from flatcar/mantle-update-main 
Upgrade mantle container image to latest HEAD in main
 2026-04-13 15:28:19 +02:00
Flatcar Buildbot
f5754d5277 Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2026-04-13 13:14:30 +00:00
Sayan Chowdhury
9aa417653e
Merge pull request #3919 from flatcar/linux-6.12.81-main 
Upgrade Linux Kernel for main from 6.12.77 to 6.12.81
 2026-04-13 18:44:16 +05:30
Mathieu Tortuyaux
132e48e8d8
Merge pull request #3869 from flatcar/cacerts-3.122-main 
Update ca-certificates in main from 3.121 to 3.122
 2026-04-13 10:26:59 +02:00
Mathieu Tortuyaux
1879b624d1
Merge pull request #3915 from flatcar/mantle-update-main 
Upgrade mantle container image to latest HEAD in main
 2026-04-13 10:21:43 +02:00
Flatcar Buildbot
5baff0e498 sys-kernel/coreos-sources: Update from 6.12.77 to 6.12.81 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2026-04-12 07:33:07 +00:00
Flatcar Buildbot
fb4dbdf2e4 Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2026-04-11 04:29:40 +00:00
flatcar-ci
3f46247811 New version: main-4666.0.0-nightly-20260410-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
main-4666.0.0-nightly-20260410-2100 		2026-04-11 04:29:26 +00:00
flatcar-ci
3ac3569f62 New version: main-4666.0.0-nightly-20260410-2100-INTERMEDIATE 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
main-4666.0.0-nightly-20260410-2100-INTERMEDIATE 		2026-04-10 21:00:35 +00:00
Krzesimir Nowak
8f2955ca6e
Merge pull request #3910 from flatcar/krnowak/docker-full-output 
build_sdk_container_image: Stop truncating output from docker build
 2026-04-10 15:59:40 +02:00
Krzesimir Nowak
9eb60403ab build_sdk_container_image: Stop truncating output from docker build 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-04-10 15:51:44 +02:00
James Le Cuirot
9518012381
Merge pull request #3870 from flatcar/chewi/debug-dirs 2026-04-10 11:03:58 +01:00
James Le Cuirot
17e7ec0a07
sdk profile: Disable FEATURES="splitdebug" 
We don't include -g in the SDK CFLAGS, so don't waste time and space on
splitdebug. Other compilers like Rust still generate debug symbols, but
we don't need these either.

Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2026-04-10 10:16:59 +01:00
James Le Cuirot
d9391b9e34
sys-apps/baselayout: Bump to drop /usr/lib/debug dirs and symlinks 
Gentoo starts with this directory being empty, and Portage complains if
you populate it with merge-usr symlinks.

Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2026-04-10 10:16:58 +01:00
James Le Cuirot
7097436580
overlay profiles: Remove debug build-id symlinks broken by INSTALL_MASK 
Otherwise they trip our QA check, which fails the build.

Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2026-04-10 10:16:57 +01:00
James Le Cuirot
d32cf515b0
overlay profiles: Drop /usr/lib/debug/.build-id from INSTALL_MASK 
A recent Portage fix should avoid any collisions by salting the debug
files with the package name and version. The fix inadvertently broke the
debuglink CRC, which gdb checks, but this went unnoticed in Gentoo
because gdb prefers looking up symbols with the build-id instead.
However, this was noticed in Flatcar because of the INSTALL_MASK! This
has now also been fixed in Gentoo. We can drop the INSTALL_MASK now to
rely on the build-id instead of the debuglink.

Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2026-04-10 10:16:56 +01:00
James Le Cuirot
7c74612272
Merge pull request #3899 from flatcar/chewi/sdk-fixes 2026-04-10 10:15:41 +01:00
flatcar-ci
1da8728068 New version: main-4665.0.0-nightly-20260409-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
main-4665.0.0-nightly-20260409-2100 		2026-04-10 08:07:56 +00:00
Mathieu Tortuyaux
4ba27ef1e1
Merge pull request #3906 from flatcar/mantle-update-main 
Upgrade mantle container image to latest HEAD in main
 2026-04-10 09:54:31 +02:00
Flatcar Buildbot
49188bc197 Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2026-04-09 21:23:00 +00:00
flatcar-ci
832126e1fd Revert failed version back to 4664.0.0+nightly-20260408-0708 2026-04-09 21:22:39 +00:00
flatcar-ci
d44a39b261 New version: main-4665.0.0-nightly-20260409-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2026-04-09 21:00:28 +00:00
Mathieu Tortuyaux
df32786f10
Merge pull request #3904 from flatcar/mantle-update-main 
Upgrade mantle container image to latest HEAD in main
 2026-04-09 11:39:39 +02:00
Flatcar Buildbot
31fa8530ed Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2026-04-09 09:38:03 +00:00
Mathieu Tortuyaux
b45da27cc8
Merge pull request #3898 from flatcar/tormath1/gc 
ci-automation/azure: enable back Azure
 2026-04-09 11:37:47 +02:00
Mathieu Tortuyaux
47fb0c8fa6
test/azure: use public IP 
The subscription is not locked down, we can access VM with public IP

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2026-04-09 10:22:33 +02:00
Mathieu Tortuyaux
e109384e12
Revert "ci-automation/gc: skip azure for now" 
This reverts commit 314e21af915878d804eba9211f480d5024fd30cc.

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2026-04-09 10:22:33 +02:00
flatcar-ci
687d78036f Revert failed version back to 4664.0.0+nightly-20260408-0708 2026-04-08 21:15:00 +00:00
flatcar-ci
4b856448d2 New version: main-4664.0.0-nightly-20260408-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2026-04-08 21:00:30 +00:00
Mathieu Tortuyaux
88a703b501
Merge pull request #3893 from flatcar/mantle-update-main 
Upgrade mantle container image to latest HEAD in main
 2026-04-08 14:29:10 +02:00
Flatcar Buildbot
617a488f84 Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2026-04-08 12:27:41 +00:00