mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2026-02-12 19:21:43 +01:00
Code Issues Packages Projects Releases Wiki Activity
33,851 Commits 629 Branches 418 Tags
Commit Graph

33851 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Flatcar Buildbot
8bc1d57fc9 app-alternatives/lex: Sync with Gentoo 
It's from Gentoo commit 2d25fad95cbaa525c8945d8e582c749d49524f49.

Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2026-01-28 17:36:40 +01:00
Flatcar Buildbot
12706d75d8 app-alternatives/gzip: Sync with Gentoo 
It's from Gentoo commit 2d25fad95cbaa525c8945d8e582c749d49524f49.

Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2026-01-28 17:36:40 +01:00
Flatcar Buildbot
98439b8794 app-alternatives/cpio: Sync with Gentoo 
It's from Gentoo commit 2d25fad95cbaa525c8945d8e582c749d49524f49.

Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2026-01-28 17:36:40 +01:00
Flatcar Buildbot
73e026f430 app-alternatives/bzip2: Sync with Gentoo 
It's from Gentoo commit 2d25fad95cbaa525c8945d8e582c749d49524f49.

Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2026-01-28 17:36:40 +01:00
Flatcar Buildbot
46bda4d2a3 app-alternatives/bc: Sync with Gentoo 
It's from Gentoo commit 2d25fad95cbaa525c8945d8e582c749d49524f49.

Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2026-01-28 17:36:40 +01:00
Flatcar Buildbot
8717102278 app-alternatives/awk: Sync with Gentoo 
It's from Gentoo commit 2d25fad95cbaa525c8945d8e582c749d49524f49.

Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2026-01-28 17:36:39 +01:00
Flatcar Buildbot
f4e43536ea app-admin/perl-cleaner: Sync with Gentoo 
It's from Gentoo commit 2d25fad95cbaa525c8945d8e582c749d49524f49.

Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2026-01-28 17:36:39 +01:00
Flatcar Buildbot
357d3f2222 app-admin/eselect: Sync with Gentoo 
It's from Gentoo commit 2d25fad95cbaa525c8945d8e582c749d49524f49.

Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2026-01-28 17:36:39 +01:00
Flatcar Buildbot
7b050f2b49 acct-user/portage: Sync with Gentoo 
It's from Gentoo commit a838526d4d0bac69ba4b403154f78384be0034ff.

Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2026-01-28 17:36:39 +01:00
Daniel Zatovic
ddd38ae5ab changelog: Mention OEM sysext signing changes 
Update the changelog entry to include information about OEM sysexts
being signed and built during the image phase.

Signed-off-by: Daniel Zatovic <daniel.zatovic@gmail.com>
 2026-01-28 13:15:33 +01:00
Daniel Zatovic
10b808642b sysext: Move OEM sysext build to image phase 
Move OEM sysext building from the vms phase to the image phase. This
ensures OEM sysexts are signed with the same ephemeral key as other
sysexts, which is generated during image build and discarded afterward.

- Add create_oem_sysexts() to build all OEM sysexts during image build
- Add oem_sysexts.sh with OEM sysext definitions
- Update install_oem_sysext() to use prebuilt sysexts
- Add OEM sysext download to vms.sh for CI builds

Signed-off-by: Daniel Zatovic <daniel.zatovic@gmail.com>
 2026-01-28 13:15:33 +01:00
Daniel Zatovic
b3dfe61eea changelog: Add entry for signed OS-dependent sysexts 
Signed-off-by: Daniel Zatovic <daniel.zatovic@gmail.com>
 2026-01-28 13:15:33 +01:00
Daniel Zatovic
3ffbf90154 sysext: Add OS-dependent sysext compression 
We removed the sysext compression, because we double-compression is
redundant for sysexts stored in already coimpressed BTRFS /usr. However,
OS-dependent sysexts that are downloaded on-demand were now also
uncompressed. This commit brings back the compression via
SYSTEMD_REPART_MKFS_OPTIONS_EROFS option.

Signed-off-by: Daniel Zatovic <daniel.zatovic@gmail.com>
 2026-01-28 13:15:33 +01:00
Daniel Zatovic
0edeb6cb5c sysext: Sign OS-dependent sysexts 
Generate an ephemeral sysext signing key, that is injected into the
image's sysext root of trust. All OS-dependent sysexts will be signed by
this key and the private key (stored in /tmp) will be discarded on SDK
container exit.

Signed-off-by: Daniel Zatovic <daniel.zatovic@gmail.com>
 2026-01-28 13:15:33 +01:00
Daniel Zatovic
9ef06f8928 overlay profiles: Enable cryptsetup in SDK systemd 
The cryptsetup useflag is required for signing sysexts built with
systemd-repart.

Signed-off-by: Daniel Zatovic <daniel.zatovic@gmail.com>
 2026-01-28 13:15:33 +01:00
James Le Cuirot
0a6a706520
Merge pull request #3673 from flatcar/vmware-13.0.10-main 
Upgrade open-vm-tools in main from 13.0.5 to 13.0.10
 2026-01-28 10:24:23 +00:00
Dongsu Park
d87f4c0a9b
Merge pull request #3648 from flatcar/firmware-20260110-main 
Upgrade Linux Firmware in main from 20251125 to 20260110
 2026-01-28 10:50:11 +01:00
flatcar-ci
f174e1b5b7 Revert failed version back to 4592.0.0+nightly-20260126-2100 2026-01-28 08:07:20 +00:00
Flatcar Buildbot
9185aa1d76 app-emulation/open-vm-tools: Update from 13.0.5 to 13.0.10 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2026-01-28 07:07:00 +00:00
flatcar-ci
b88fb61825 New version: main-4593.0.0-nightly-20260127-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2026-01-27 21:00:22 +00:00
Mathieu Tortuyaux
b0cbbcf492
Merge pull request #3669 from flatcar/mantle-update-main 
Upgrade mantle container image to latest HEAD in main
 2026-01-27 10:20:10 +01:00
Flatcar Buildbot
559513963d Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2026-01-27 08:58:19 +00:00
Dongsu Park
6041239da4
Merge pull request #3613 from flatcar/buildbot/monthly-glsa-metadata-updates-2026-01-01 
Monthly GLSA metadata 2026-01-01
 2026-01-27 09:58:04 +01:00
flatcar-ci
66995caefa New version: main-4592.0.0-nightly-20260126-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
main-4592.0.0-nightly-20260126-2100 		2026-01-26 21:00:24 +00:00
Flatcar Buildbot
f222a71d8c portage-stable/metadata: Monthly GLSA metadata updates 
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Signed-off-by: Dongsu Park <dongsu@dpark.io>
 2026-01-26 13:27:54 +01:00
flatcar-ci
ade059da60 New version: main-4589.0.0-nightly-20260123-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2026-01-24 03:00:01 +00:00
flatcar-ci
90f86ae905 New version: main-4589.0.0-nightly-20260123-2100-INTERMEDIATE 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2026-01-23 21:00:28 +00:00
Mathieu Tortuyaux
0a3e23bc59
Merge pull request #3661 from flatcar/krnowak/gnupg 
Update gnupg packages
 2026-01-23 14:23:11 +01:00
Krzesimir Nowak
d22c749c94 changelog: Add entries 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-01-23 14:16:03 +01:00
Krzesimir Nowak
1eed1066ab app-crypt/pinentry: Sync with Gentoo 
It's from Gentoo commit 2d25fad95cbaa525c8945d8e582c749d49524f49.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-01-23 13:57:16 +01:00
Krzesimir Nowak
0b21977c86 app-crypt/gpgme: Sync with Gentoo 
It's from Gentoo commit 2d25fad95cbaa525c8945d8e582c749d49524f49.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-01-23 13:53:51 +01:00
Krzesimir Nowak
c0e9c0bbd1 app-alternatives/gpg: Sync with Gentoo 
It's from Gentoo commit c5b26c6b223e02892a79b1836531fded7123b854.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-01-23 13:30:14 +01:00
Krzesimir Nowak
6f633aca2f dev-libs/npth: Sync with Gentoo 
It's from Gentoo commit 9fbdb080f182155a33ff5f977d9c7fa2b2889db5.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-01-23 13:14:07 +01:00
Krzesimir Nowak
9fb7d08d0c dev-libs/libksba: Sync with Gentoo 
It's from Gentoo commit 2d25fad95cbaa525c8945d8e582c749d49524f49.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-01-23 13:14:06 +01:00
Krzesimir Nowak
2fbea58f1f dev-libs/libgpg-error: Sync with Gentoo 
It's from Gentoo commit b9824063db6ccf8c4e7e7b8d37f34814e483ec39.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-01-23 13:14:06 +01:00
Krzesimir Nowak
995cacb882 dev-libs/libgcrypt: Sync with Gentoo 
It's from Gentoo commit fb11a11f280769e8273be722e7717d44805155e5.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-01-23 13:14:06 +01:00
Krzesimir Nowak
5c044301f5 dev-libs/libassuan: Sync with Gentoo 
It's from Gentoo commit 2d25fad95cbaa525c8945d8e582c749d49524f49.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-01-23 13:14:06 +01:00
Krzesimir Nowak
c2ede77c37 app-crypt/gnupg: Sync with Gentoo 
It's from Gentoo commit 5d13f520cbffbd379192a3644046c6835826a6c3.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-01-23 13:12:21 +01:00
flatcar-ci
5611890b22 New version: main-4588.0.0-nightly-20260122-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2026-01-22 21:00:34 +00:00
Dongsu Park
74fc3e1f14
Merge pull request #3649 from flatcar/dongsu/ue-rs-20250109 
overlay ue-rs: update to v0.2.0, 2026-01-09
 2026-01-22 11:29:42 +01:00
flatcar-ci
769580b4cc New version: main-4586.0.0-nightly-20260120-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2026-01-20 21:00:25 +00:00
Krzesimir Nowak
211be0aa19
Merge pull request #3618 from flatcar/krnowak/python-bump 
Bump python to 3.12
 2026-01-20 14:54:46 +01:00
flatcar-ci
6d03cc9bef New version: main-4585.0.0-nightly-20260119-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2026-01-19 21:00:24 +00:00
Mathieu Tortuyaux
11b3978980
Merge pull request #3657 from flatcar/mantle-update-main 
Upgrade mantle container image to latest HEAD in main
 2026-01-19 14:46:40 +01:00
Flatcar Buildbot
441c71805e Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2026-01-19 13:39:34 +00:00
Mathieu Tortuyaux
012ba19079
Merge pull request #3652 from flatcar/linux-6.12.66-main 
Upgrade Linux Kernel for main from 6.12.65 to 6.12.66
 2026-01-19 14:39:22 +01:00
Krzesimir Nowak
f23661e2d0 overlay dev-python/boto: Add a patch to make it work on python 3.12 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-01-19 12:02:44 +01:00
Krzesimir Nowak
d4e33f7a4c overlay profiles: Ease into Python bump with transitional profile 
We only allow one version of Python in the SDK and generic images, but
this creates a friction during the SDK build where the seed still has
an old version of Python and the stage1 is supposed to have the new
one, and thus we end up with slot conflicts for python packages - I
don't really understand what is going on (there are python packages in
the seed image that are built for old Python and emerge wants to
install the same packages in the seed but built for the new Python and
it can't work its way around it.)

Allowing both versions of Python to coexist in stage1 seems to be
moving things forward. Stage3 image (stage2 is skipped) will contain
only the new version of Python.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-01-19 11:56:44 +01:00
Krzesimir Nowak
965d344a92 overlay profiles: Add a transitional profile for SDK 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-01-19 11:55:49 +01:00
Flatcar Buildbot
7ae9c7dcea sys-kernel/coreos-sources: Update from 6.12.65 to 6.12.66 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2026-01-18 07:06:49 +00:00