mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-09-22 06:01:41 +02:00
Code Issues Packages Projects Releases Wiki Activity
22,984 Commits 630 Branches 408 Tags
Commit Graph

22984 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Nick Owens
93b0c3516f dev-lang/go: bump to 1.4.3 2015-11-12 15:37:41 -08:00
Nick Owens
66f783a588 Merge pull request #365 from mischief/libxml2 
bump(dev-libs/libxml2): sync with upstream
 2015-11-12 15:22:13 -08:00
Nick Owens
68432fb90c bump(dev-libs/libxml2): sync with upstream 2015-11-12 15:14:15 -08:00
Michael Marineau
695e46734b Merge pull request #1633 from marineam/go14 
dev-lang/go: downgrade to go 1.4.2
 2015-11-12 14:54:21 -08:00
mischief
6f8cc8ae5e dev-lang/go: downgrade to go 1.4.2 2015-11-12 14:52:40 -08:00
Alex Crawford
b77800956f Merge pull request #1621 from endocode/kayrus/enable_dm_cache 
coreos-kernel: Enabled dm-cache kernel module
 2015-11-12 13:07:16 -08:00
Alex Crawford
f0be34f4dd Merge pull request #476 from crawford/gpg 
oem/azure: verify GPG signature of image
 2015-11-12 11:52:33 -08:00
Alex Crawford
eb5a53cc7a oem/azure: verify GPG signature of image 2015-11-12 11:44:48 -08:00
Alex Crawford
d9ee591159 Merge pull request #1617 from endocode/kayrus/sysusers.d 
Automatically create /etc/sysusers.d directory
 2015-11-12 11:11:03 -08:00
mjg59
1ce40e4ca1 Merge pull request #1632 from mjg59/master 
Enable SELinux for Docker
 2015-11-11 17:12:13 -08:00
Vito Caputo
1d02acec7c Merge pull request #475 from vcaputo/always_disable_console_blanking 
grub: disable console blanking
 2015-11-11 15:53:02 -08:00
Vito Caputo
0b9c8e5855 grub: disable console blanking 
The console often contains very useful information in the event of a
hard crash, in such situations there's no ability to unblank the console
via keypress because the kernel won't handle the interrupt.

Since CoreOS is a server/cluster operating system, there won't generally
be monitors connected benefitting from a blanked console.  Disabling the
blanking altogether allows the frame buffer contents to always be
visible, even when the kernel can't handle keypresses.
 2015-11-11 15:22:12 -08:00
Matthew Garrett
1911ea81e7 Enable SELinux for Docker 
We ship appropriate SELinux policy for Docker, but the daemon isn't using
it. Make sure Docker is built with SELinux support and turn it on at daemon
startup time.
 2015-11-11 14:54:08 -08:00
Michael Marineau
cff534fd0e Merge pull request #1631 from marineam/kernel 
coreos-kernel: update fs and security options
 2015-11-11 10:38:49 -08:00
Michael Marineau
58ea72b512 coreos-kernel: more security option updates 
- Enable RANDOMIZE_BASE, hopefully Xen is ok with this now.
 - Disable HIBERNATE/KEXEC_JUMP, we don't need these features.
 - Fix RO/NX settings in the arm64 kernel.
 2015-11-11 10:35:18 -08:00
Michael Marineau
9f0fb176fd Merge pull request #474 from marineam/kernel 
kernel_menuconfig: new script to simplify kernel config changes
 2015-11-11 10:20:01 -08:00
Michael Marineau
b0c14f99b1 kernel_menuconfig: new script to simplify kernel config changes 2015-11-10 18:06:49 -08:00
Michael Marineau
71fd1532e9 coreos-kernel: update fs and security options 
- Switched overlay from built-in to a module.
 - Squashfs was missing xattr support, required for filesystem
   capabilities to work. ping should now work in PXE and ISO images.
 - We never switched to stackprotector string when we updated to GCC 4.9
 - Enable extra credential and selinux checks (DEBUG_CREDENTIALS)
 - Enable RODATA and syn cookies on arm64.
 2015-11-10 17:58:24 -08:00
Brian Waldon
ec46ea71cb Merge pull request #1618 from coreos/bump-kubelet 
app-admin/kubelet: bump to v1.0.7
 2015-11-09 15:14:50 -08:00
Vito Caputo
4029cd6291 Merge pull request #1628 from vcaputo/bump-bootengine-disk-guid-param 
sys-kernel/bootengine: bump for coreos.randomize_disk_guid guid as param
 2015-11-06 15:05:34 -08:00
Vito Caputo
bd83d4f7f8 sys-kernel/bootengine: bump for coreos.randomize_disk_guid guid as param 
Cleanup
 2015-11-06 15:02:31 -08:00
Vito Caputo
a9c2ef6c61 Merge pull request #471 from vcaputo/grub_supply_guid_to_randomize 
grub: supply disk guid to randomize in coreos.randomize_disk_guid
 2015-11-06 14:59:10 -08:00
Vito Caputo
f67fa9ce6c grub: supply disk guid to randomize in coreos.randomize_disk_guid 2015-11-06 14:58:00 -08:00
Vito Caputo
b1d4cb7d23 Merge pull request #1626 from vcaputo/bump-bootengine-randomize-disk-guid 
sys-kernel/bootengine: bump for coreos.randomize_disk_guid support
 2015-11-05 23:48:53 -08:00
Vito Caputo
f0a9acafff sys-kernel/bootengine: bump for coreos.randomize_disk_guid support 
Fixes https://github.com/coreos/bugs/issues/955
 2015-11-05 23:17:59 -08:00
Vito Caputo
822edbd080 Merge pull request #469 from vcaputo/explicitly_randomize_disk_guid 
grub: add and set coreos.randomize_disk_guid kernel param
 2015-11-05 23:14:56 -08:00
Vito Caputo
68f1b407c6 grub: add and set coreos.randomize_disk_guid kernel param 
coreos.first_boot=1 will no longer trigger disk-guid randomization, so
manual ignition triggers in diskless/pxe scenarios may succeed.  Instead
we explicitly request the randomization when first_boot=1 was added by
grub finding the 00000000-0000-0000-0000-000000000001 disk-guid.
 2015-11-05 21:04:31 -08:00
Nick Owens
09cb97d0be Merge pull request #1624 from mischief/locksmith 
app-admin/locksmith: bump to v0.3.4
 2015-11-05 18:09:47 -08:00
mischief
633462a157 app-admin/locksmith: bump to v0.3.4 2015-11-05 17:37:21 -08:00
Nick Owens
3b820dec7f Merge pull request #364 from mischief/nspr 
bump(dev-libs/nspr): sync with upstream
 2015-11-05 13:12:06 -08:00
Nick Owens
ab558e9dc1 bump(dev-libs/nspr): sync with upstream 
no glsa yet, but the upstream bug is
https://bugs.gentoo.org/show_bug.cgi?id=564834
 2015-11-05 09:32:08 -08:00
kayrus
756d3f9159 coreos-kernel: Enabled dm-cache kernel module 2015-11-04 14:16:09 +01:00
Nick Owens
c1ccb976a2 Merge pull request #363 from mischief/automake-wrapper 
bump(sys-devel/automake-wrapper): sync with upstream
 2015-11-03 18:21:45 -08:00
Nick Owens
2fc83a4fa6 bump(sys-devel/automake-wrapper): sync with upstream 2015-11-03 17:35:48 -08:00
Nick Owens
a891c401c3 Merge pull request #362 from mischief/pixman 
bump(x11-libs/pixman): sync with upstream
 2015-11-03 17:31:15 -08:00
Nick Owens
8219bff2c3 Merge pull request #361 from mischief/automake 
bump(sys-devel/automake): sync with upstream
 2015-11-03 17:31:09 -08:00
Nick Owens
542bcf5e4a Merge pull request #360 from mischief/libpng 
bump(media-libs/libpng): sync with upstream
 2015-11-03 17:30:56 -08:00
Nick Owens
ac8222ac32 Merge pull request #359 from mischief/libyaml 
bump(dev-libs/libyaml): sync with upstream
 2015-11-03 17:30:49 -08:00
Nick Owens
b3419e7528 Merge pull request #309 from mischief/net-firewall-iptables 
bump(net-firewall/iptables): sync with upstream
 2015-11-03 17:30:43 -08:00
Nick Owens
55a91d4835 bump(x11-libs/pixman): sync with upstream 
https://security.gentoo.org/glsa/201402-03
 2015-11-03 17:02:34 -08:00
Nick Owens
0f336d8c65 bump(sys-devel/automake): sync with upstream 
https://security.gentoo.org/glsa/201310-15
 2015-11-03 16:57:03 -08:00
Nick Owens
4be5993b89 bump(media-libs/libpng): sync with upstream 
https://security.gentoo.org/glsa/201502-10
 2015-11-03 16:52:43 -08:00
Nick Owens
a35c9a6889 bump(dev-libs/libyaml): sync with upstream 
https://security.gentoo.org/glsa/201405-27
 2015-11-03 16:51:07 -08:00
Brian Waldon
adf1da35f7 app-admin/kubelet: bump to v1.0.7 2015-11-03 09:31:28 -08:00
kayrus
bec0d600fc Automatically create /etc/sysusers.d directory 2015-11-03 16:48:04 +01:00
Michael Marineau
6389c19a10 Merge pull request #1616 from marineam/gsutil 
gsutil and gcutil update
 2015-10-29 11:08:55 -07:00
Michael Marineau
ce9808df33 Merge pull request #358 from marineam/gsutil 
gsutil and gcutil update
 2015-10-29 11:08:52 -07:00
Michael Marineau
8e22a55fe2 chore(metadata): Regenerate cache 2015-10-28 14:32:24 -07:00
Michael Marineau
f910633c63 net-misc/gcutil: add gcutil ebuild 2015-10-28 14:31:59 -07:00
Michael Marineau
0e76d3e362 bump(dev-python/setuptools): sync with upstream 2015-10-28 14:22:22 -07:00