flatcar-scripts

mirror of https://github.com/flatcar/scripts.git synced 2025-08-28 18:01:06 +02:00

Author	SHA1	Message	Date
Mathieu Tortuyaux	d86d08d640	profiles/coreos/amd64: enable selinux for runc Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-16 10:04:02 +02:00
Mathieu Tortuyaux	c56eec4bb4	eclass: move selinux-policy-2 to ::portage-stable Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-16 10:04:02 +02:00
Mathieu Tortuyaux	0ead201568	sec-policy/selinux-unconfined: sync with upstream Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-16 10:04:02 +02:00
Mathieu Tortuyaux	e2afa149cb	sec-policy/selinux-virt: apply flatcar changes Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-16 10:04:02 +02:00
Mathieu Tortuyaux	e02947a905	sec-policy/selinux-virt: sync with upstream Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-16 10:04:01 +02:00
Mathieu Tortuyaux	4d6ff7cfca	sec-policy/selinux-base-policy: flatcar changes - run sshd (and child) as unconfined_t - add init.patch to allow execute_no_trans,map and exec from init to unconfined - add AVC patch for local login and journald Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-16 10:04:01 +02:00
Mathieu Tortuyaux	d819e2afa4	sec-policy/selinux-base-policy: sync with upstream Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-16 10:03:10 +02:00
Mathieu Tortuyaux	e472af562e	sec-policy/selinux-base: apply flatcar changes Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-16 10:03:10 +02:00
Jeremi Piotrowski	743f86d4da	sys-kernel/coreos-kernel: strip ROOT from TMPDIR before running dracut Update-bootengine chroots into the sysroot and runs dracut from there. Dracut 053 has revised TMPDIR handling and the portage TMPDIR prefixed with ROOT leaks into the chroot. This causes dracut to abort during setup with the error message "invalid tmpdir". Override TMPDIR before running update-bootengine to allow dracut to function. Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>	2021-07-15 13:40:50 +00:00
Jeremi Piotrowski	68f2867457	sys-kernel/dracut: Apply Flatcar patches to 053 Flatcar uses custom networking scripts in initramfs, so the dracut iscsi module needs to be patched to account for that. Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>	2021-07-15 13:40:50 +00:00
Sayan Chowdhury	033048444f	sys-kernel/dracut: Apply Flatcar patches Add Flatcar specific patch to enable the iscsi module Flatcar uses its own network module instead of the Dracut one, but the iscsi module depends on the network. So, in order to enable the iscsi module, we need to patch the dependency Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>	2021-07-15 13:40:50 +00:00
Sayan Chowdhury	2a19f3cd76	sys-kernel/dracut: Sync with Gentoo upstream Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>	2021-07-15 13:40:50 +00:00
Sayan Chowdhury	3f857f9f2a	Merge pull request #1099 from peanutduck/ticket_361 net-misc/curl: enable telnet protocol support	2021-07-15 13:11:59 +05:30
Dongsu Park	6c0742bf07	Merge pull request #932 from kinvolk/dongsu/wget-ssl profiles: force to use ssl USE flag for wget	2021-07-15 09:39:41 +02:00
Sayan Chowdhury	31ce217f6a	Merge pull request #1104 from kinvolk/linux-5.10.49-main Upgrade Linux Kernel in main from 5.10.46 to 5.10.49	2021-07-15 10:55:24 +05:30
Kai Lüke	b55bfa3341	Merge pull request #130 from kinvolk/kai/gen-test-update Generate test update payload and run the kola update test	2021-07-14 20:50:15 +02:00
Jeremi Piotrowski	77a0115be2	Merge pull request #186 from kinvolk/jepio/qemu-add-slirp net-libs/libslirp: Import from Gentoo	2021-07-14 14:39:10 +02:00
Jeremi Piotrowski	40328de04b	Merge pull request #929 from wernerb/add-mdio-bcm Enable MDIO_BCM_UNIMAC for arm64	2021-07-13 09:58:28 +02:00
Kai Lüke	177bea4a74	Generate test update payload and run the kola update test The kola update tests need a dev-key-signed update payload. This was lacking and caused the update tests to be skipped. Generate the test update payload for both dev builds and release builds and run the kola tests for both. The test update payload has a special name to not confuse it with the real update payload for releases, and we keep the previous behavior to sign releases. Therefore, the generate_update function wasn't used but the extract_update function extended with generating the additional test payload.	2021-07-12 18:49:54 +02:00
Flatcar Buildbot	70cb0ed335	sys-kernel: Upgrade Kernel 5.10.46 to 5.10.49	2021-07-12 07:15:21 +00:00
Kai Lüke	dbbdb32250	Merge pull request #128 from kinvolk/kai/systemd-run-unit-name jenkins/systemd-run-wrap.sh: randomize unit name suffix	2021-07-09 11:07:33 +02:00
Kai Lüke	d1b97aff42	jenkins/systemd-run-wrap.sh: randomize unit name suffix The timestamp alone was not enough to prevent unit name clashes. Add a random suffix to greater reduce the chance of hitting a clash.	2021-07-08 21:31:04 +02:00
peanutduck	b1fa2b24ee	net-misc/curl: enable telnet protocol support Add telnet useflag directly in the package.use file	2021-07-08 23:10:12 +08:00
Mathieu Tortuyaux	92bc08519c	Merge pull request #1093 from kinvolk/tormath1/libgcrypt-1.9.3 profiles: accept ~amd64 & ~arm64 for libgcrypt-1.9.3	2021-07-08 09:47:59 +02:00
Mathieu Tortuyaux	b228dfc9b4	Merge pull request #185 from kinvolk/tormath1/libgcrypt-1.8.8 dev-libs/libgcrypt: sync with ::gentoo	2021-07-08 09:46:23 +02:00
Mathieu Tortuyaux	fe107d3408	profiles: accept ~amd64 & ~arm64 for libgcrypt-1.9.3 Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-08 09:45:07 +02:00
Mathieu Tortuyaux	6ab3fa34b3	dev-libs/libgcrypt: sync with ::gentoo 1.9.3 is not stable yet - accepted keywords has been updated in ::coreos-overlay. Ref: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=5ebb8899e39bc7a7773fe930e68697cc48aab8d3 Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-08 09:43:00 +02:00
Jeremi Piotrowski	304b5abf7a	net-libs/libslirp: Import from Gentoo slirp is needed to by qemu netdev user backend, which was removed in the process of upgrading qemu to 5.2.0. Bring it back so that it is possible to run flatcar_production_qemu.sh directly from the chroot. See also kinvolk/Flatcar#420 Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>	2021-07-07 12:43:14 +00:00
Kai Lüke	e7a0579a7a	Merge pull request #1091 from kinvolk/kai/azure-device-unit coreos-base/coreos-init: add udev systemd tag for Azure storage devices	2021-07-07 12:28:05 +02:00
Kai Lüke	c2b0b0cc7e	coreos-base/coreos-init: add udev systemd tag for Azure storage devices This pulls in https://github.com/kinvolk/init/pull/41	2021-07-07 12:25:46 +02:00
Mathieu Tortuyaux	1219a8ff35	sec-policy/selinux-base: sync with the upstream Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-06 15:57:28 +02:00
Mathieu Tortuyaux	b7419c3548	sys-libs/libsemanage: apply flatcar changes Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-06 15:57:28 +02:00
Mathieu Tortuyaux	5738da828c	sys-libs/libsemanage: sync with the upstream Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-06 15:57:28 +02:00
Mathieu Tortuyaux	522387fa10	sys-libs/libselinux: apply flatcar changes Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-06 15:57:28 +02:00
Mathieu Tortuyaux	9aecd8fc33	sys-libs/libselinux: sync with upstream Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-06 15:57:28 +02:00
Mathieu Tortuyaux	a693d478e1	sys-apps/policycoreutils: apply flatcar changes Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-06 15:57:28 +02:00
Mathieu Tortuyaux	c172da732c	sys-apps/policycoreutils: sync with upstream Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-06 15:57:27 +02:00
Mathieu Tortuyaux	17d538681e	sys-apps/checkpolicy: apply flatcar changes backported from CoreOS commits Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-06 15:57:27 +02:00
Mathieu Tortuyaux	3b1534f9da	sys-apps/checkpolicy: sync with the upstream Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-06 15:57:27 +02:00
Sayan Chowdhury	c9c98f49b6	acct-{group, user}/messagebus: Add the new dependencies for dbus Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>	2021-07-06 15:55:19 +02:00
Mathieu Tortuyaux	8565def18b	sys-apps/semodule-utils: apply tmp flatcar changes Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-06 15:55:19 +02:00
Mathieu Tortuyaux	676c14c966	sys-apps/semodule-utils: add new package Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-06 15:55:19 +02:00
Mathieu Tortuyaux	9e3a91b57d	eclass/selinux: fix POLICY_PATCH applying need to open a bug upstream - current discussions on IRC	2021-07-06 15:55:19 +02:00
Mathieu Tortuyaux	da7e024e1f	eclass/selinux-policy-2: sync with upstream Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-06 15:55:18 +02:00
Mathieu Tortuyaux	0e286d00c4	sys-libs/libsepol: sync with the upstream Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>	2021-07-06 15:55:18 +02:00
Dongsu Park	e44705e606	Merge pull request #1092 from kinvolk/dongsu/updateservicectl-20210705 app-admin/updateservicectl: sync with current main - 2021-07-05	2021-07-06 15:00:29 +02:00
Dongsu Park	8f82c06a48	app-admin/updateservicectl: sync with current main - 2021-07-05 Update commit to 6a4ff4ca879082c07353dd379439c437cbe27e18, to sync with the current main branch. Pulls in https://github.com/kinvolk/updateservicectl/pull/6 . Also update Go import paths to `github.com/kinvolk/updateservicectl`. Also set `COREOS_GO_GO111MODULE=on` because updateservicectl now relies on Go module.	2021-07-06 12:31:13 +02:00
Dongsu Park	1694beca3f	Merge pull request #174 from kinvolk/rust-1.53.0-main Upgrade virtual Rust in main from 1.52.1 to 1.53.0	2021-07-06 11:43:50 +02:00
Dongsu Park	37eeb0f666	Merge pull request #1068 from kinvolk/rust-1.53.0-main Upgrade dev-lang/rust in main from 1.52.1 to 1.53.0	2021-07-06 11:43:31 +02:00
Kai Lüke	aa27b1d11f	Merge pull request #127 from kinvolk/kai/jenkins-inline jenkins: move all inline bash scripts to flatcar-scripts	2021-07-05 20:05:38 +02:00

... 131 132 133 134 135 ...

22893 Commits