We handle Go differently than Gentoo, so our 1.8.4 package includes
the same security fixes. When all packages are built with Go 1.9,
the older Go packages shouldn't be installed anymore, so this line
can be dropped.
coreos-init versions older than 0.0.1-r152 still have the
update-ssh-keys shell script which means the update-ssh-keys package
fails to install. to fix this, we make coreos-base/update-ssh-keys block
on versions of coreos-init that are too old.
This is being added in no small part to better support running the
kubelet in more ways.
It adds up to a few hundred kbs of disk usage, and the benefit is some
tooling which desires to install the kubelet as a static binary on the
host can do so with fewer problems.
We could have picked either readline or ssl as a thing to remove in
package.use since the license issue is ssl XOR readline.
I arbitrarily picked ssl. The primary consumer of socat, the kubelet,
needs neither.
The changes in the commits shouldn't make a difference here, but it
is built from the same source as the gmerge package, so this makes
it look in sync.
The newer version of coreos-init removes the update-ssh-keys script in
preparation for the standalone update-ssh-keys package. Without this
bump, the update-ssh-keys package will step on coreos-init's toes.
coreos-metadata has been rewritten in rust
(github.com/coreos/coreos-metadata#62). This modifies the ebuild to
use the coreos-cargo eclass to build the rust project.
In some cases etcd is able to start before systemd-resolved has
populated the /etc/resolv.conf file. This commit addresses this by
adding a dependency on netowrk-online.target.
This will ensure that systemd-resolved finishes it's work before
etcd-member.service starts.
this adds the update-ssh-keys package, which is a utility for managing
groups of openssh authorized public keys. the previous incarnation of
this utility included in the operating system was a shell script
included in init. it is now a rust binary living at
github.com/coreos/update-ssh-keys.
The update-ssh-keys shell script is removed from init in
ed478168f0133cc140baa08d4d77e4333e8991d7, github.com/coreos/init#256.
The binutils update prevents Linux from uncompressing during boot,
so this is being put off until it's fixed.
This reverts commit 5e659964d0d59471880609674eb1495449d8cbec.
This syncs the ebuild with Gentoo, while preserving cros_workon and
cross-compiler targets. It also bumps the commit to include a fix
for a use-after-free issue.
