Commit Graph

2777 Commits

Author SHA1 Message Date
Mathieu Tortuyaux
9e3a91b57d eclass/selinux: fix POLICY_PATCH applying
need to open a bug upstream - current discussions on IRC
2021-07-06 15:55:19 +02:00
Mathieu Tortuyaux
da7e024e1f eclass/selinux-policy-2: sync with upstream
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
2021-07-06 15:55:18 +02:00
Mathieu Tortuyaux
0e286d00c4 sys-libs/libsepol: sync with the upstream
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
2021-07-06 15:55:18 +02:00
Dongsu Park
1694beca3f Merge pull request #174 from kinvolk/rust-1.53.0-main
Upgrade virtual Rust in main from 1.52.1 to 1.53.0
2021-07-06 11:43:50 +02:00
Dongsu Park
b7609c8644 Merge pull request #184 from kinvolk/dongsu/libpcre-8.44
dev-libs/libpcre: update to 8.44
2021-07-05 14:19:07 +02:00
Flatcar Buildbot
b9c3e25d51 Upgrade virtual Rust in main from 1.52.1 to 1.53.0 2021-07-05 12:59:59 +02:00
Dongsu Park
bfc8d0ef5f app-crypt/mit-krb5: move to coreos-overlay
To add a custom patch to mit-krb5, move it to coreos-overlay.
2021-07-05 11:06:26 +02:00
Dongsu Park
659f32a73b dev-libs/libverto: update to 0.3.1-r1
Update dev-libs/libverto to 0.3.1-r1, to avoid failures like below:

```
!!! All ebuilds that could satisfy "=dev-libs/libverto-0.3.1-r1" for
/usr/aarch64-cros-linux-gnu/ have been masked.
!!! One of the following masked packages is required to complete your
request:
- dev-libs/libverto-0.3.1-r1::portage-stable (masked by: ~arm64 keyword)
```
2021-07-05 11:06:26 +02:00
Dongsu Park
a28f63378d dev-libs/libev: update to 4.33
Update dev-libs/libev to 4.33, needed by libpcre 8.44.
2021-07-05 11:06:26 +02:00
Dongsu Park
ac81c59212 virtual/acl: update to acl-0-r2
Update virtual/acl to 0-r2.
Otherwise build will fail on arm64 due to missing keywords.
2021-07-05 11:06:26 +02:00
Dongsu Park
6904a001b1 dev-libs/libpcre: update to 8.44
Update dev-libs/libpcre to 8.44, mainly to address security issues
like CVE-2019-20838, CVE-2020-14155 .
2021-07-05 11:06:26 +02:00
Thilo Fromm
a29b87a4c6 app-misc/pax-utils: update to upstream 1.3.1
This change syncs pax-utils to 1.3.1, bringin it on par with Gentoo
upstream. A minor change is incuded in the ebuild (commented on in the
file) to work around a build issue with our (outdated)
python-single-r1.eclass.

The workaround may be removed after we updated to a python version
supported by upstream, and updated our eclasses respectively.

The update fixes an issue with scanelf and glibc-2.33:

     /usr/lib/portage/python3.6/estrip: line 393: 1628751 Bad system call (core dumped) scanelf -yqRBF '#k%F' -k '.symtab' "$@"

Signed-off-by: Thilo Fromm <thilo@kinvolk.io>
2021-07-01 12:43:10 +02:00
Thilo Fromm
6b20fe0f08 Merge pull request #177 from kinvolk/t-lo/update-to-glibc-2.33
Unmasks for arm64 required by glibc-2.33 upgrade
2021-06-29 14:20:54 +02:00
Thilo Fromm
3fc8747b60 unmask arm64 for pax-utils, libev, libverto, acl
To un-break the toolchain build for arm64 for the glibc-2.33 update, a
few packages require un-masking for arm64.

This change unmasks arm64 for
  * app-misc/pax-utils
  * dev-libs/libev, libverto
  * virtual/acl

Unmasking this here instead of overriding the masks in
package.accept_keywords because our ebuild versions are outdated, newer
upstream versions are unmasked for arm64 already. I.e. when we update to
current upstream these packages will remain available on ARM64, no need
to use custom overrides via package.accept_keywords.

Signed-off-by: Thilo Fromm <thilo@kinvolk.io>
2021-06-29 09:22:30 +02:00
Dongsu Park
53773c875b Merge pull request #180 from kinvolk/dongsu/lz4-1.9.3
app-arch/lz4: update to 1.9.3-r1
2021-06-29 08:58:34 +02:00
Thilo Fromm
085fea2a81 sys-apps/gentoo-functions: use tarball from github
This one-line change pulls the gentoo-functions source tarball from
github instead from gentoo's own gitweb, to stabilise the build process.
We assume github to have higher availability than gentoo gitweb.

Signed-off-by: Thilo Fromm <thilo@kinvolk.io>
2021-06-28 13:33:42 +02:00
Mathieu Tortuyaux
a85e4af09b sys-apps/gptfdisk: sync with ::gentoo upstream
this commit addresses the following CVE:
- CVE-2021-0308

Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
2021-06-25 08:05:52 +02:00
Mathieu Tortuyaux
f8c416ef1d net-dialup/lrzsz: sync with gentoo upstream
the version stays the same (0.12.20) but we add some patches
to fix compatibility issues with autoconf.

See: https://bugs.gentoo.org/685696

Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
2021-06-24 14:31:04 +02:00
Mathieu Tortuyaux
83374bc5b7 sys-devel/gettext: sync with gentoo upstream
this commit addresses the following CVE:
- CVE-2020-12825

Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
2021-06-23 17:47:16 +02:00
Dongsu Park
ba832d25bd app-arch/lz4: update to 1.9.3-r1
Update app-arch/lz4 to 1.9.3-r1, mainly to address CVE-2021-3520.
2021-06-23 12:13:16 +02:00
Mathieu Tortuyaux
3e4da82981 net-misc/curl: sync with gentoo upstream
this addresses the following CVE:
- CVE-2021-22898
- CVE-2021-22901

Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
2021-06-23 10:42:42 +02:00
Dongsu Park
911f341032 eclass: import verify-sig.eclass
Import verify-sig.eclass needed by libxml2 2.9.12-r2.
2021-05-27 16:41:12 +02:00
Dongsu Park
d9392df584 dev-libs/libxml2: update to 2.9.12-r2
Update dev-libs/libxml2 to 2.9.12-r2 to mainly address
CVE-2021-3517, CVE-2021-3518, CVE-2021-3541.
2021-05-27 16:40:40 +02:00
Sayan Chowdhury
6374a73861 sys-devel/binutils: Sync with Gentoo upstream
updates to:
sys-devel/binutils-2.36
sys-libs/binutils-libs-2.36

Signed-off-by: Sayan Chowdhury <sayan.chowdhury2012@gmail.com>
2021-05-19 11:38:32 +02:00
Flatcar Buildbot
58cabfa821 Upgrade virtual Rust in main from 1.51.0 to 1.52.1 2021-05-17 12:24:50 +02:00
Dongsu Park
e6340f244d dev-libs/jsoncpp: import new package
Import a new package dev-libs/jsoncpp, as it is needed by dev-util/cmake
3.18.5.
2021-05-12 13:13:48 +02:00
Dongsu Park
b18797dc23 dev-util/cmake: update to 3.18.5
Update dev-util/cmake to 3.18.5, as it is needed by dev-lang/rust 1.52.
Without that, building rust 1.52 simply fails at the early stage.
2021-05-12 13:12:30 +02:00
Sayan Chowdhury
fc655024f5 Merge pull request #167 from kinvolk/sayan/update-curl-7.76.1
net-misc/curl: Sync with Gentoo upstream; updates to 7.76.1
2021-04-27 20:24:17 +05:30
Sayan Chowdhury
3d816cda8b Merge pull request #166 from kinvolk/sayan/update-libxml2-2.9.10-r5
dev-libs/libxml2: Sync with Gentoo upstream; updates to 2.9.10-r5
2021-04-26 22:45:29 +05:30
Sayan Chowdhury
8f019deb57 dev-libs/libxml2: Sync with Gentoo upstream; updates to 2.9.10-r5
Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
2021-04-26 14:59:18 +05:30
Sayan Chowdhury
b99aa9cdda net-misc/curl: Sync with gentoo upstream; updates to 7.76.1
Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
2021-04-26 14:46:39 +05:30
Sayan Chowdhury
f7be705cdc net-nds/openldap: Sync with upstream
Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
2021-04-21 16:15:11 +05:30
Dongsu Park
226a7191dc net-libs/gnutls: update to 3.7.1
Update gnutls to 3.7.1, mainly to address security vulnerabilities:
* CVE-2021-20231
* CVE-2021-20232
2021-04-20 10:02:23 +02:00
Dongsu Park
301cfa8be7 Merge pull request #163 from kinvolk/sayan/update-dnsmasq
net-dns/dnsmasq: Sync with Gentoo upstream; updates to 2.83
2021-04-19 11:49:18 +02:00
Dongsu Park
08e8dd1fed Merge pull request #162 from kinvolk/sayan/update-git-2.26.3
dev-vcs/git: Sync with upstream; updates to 2.26.3
2021-04-19 11:45:20 +02:00
Sayan Chowdhury
6cef7c175f eclass: Add the eclasses required for the LUA suite
Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
2021-04-09 16:36:37 +05:30
Sayan Chowdhury
ec5a1a7d7d net-dns/dnsmasq: Sync with Gentoo upstream
Signed-off-by: Sayan Chowdhury <sayan.chowdhury2012@gmail.com>
2021-04-09 11:02:46 +00:00
Dongsu Park
c91afd01bf Merge pull request #160 from kinvolk/dongsu/sqlite-3.34.1
dev-db/sqlite: update to 3.34.1
2021-04-07 13:56:08 +02:00
Sayan Chowdhury
de9449483a net-dns/dnsmasq: Sync with Gentoo upstream
Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
2021-04-07 11:47:29 +00:00
Sayan Chowdhury
ac44bd348c dev-vcs/git: Sync with upstream
Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
2021-04-07 11:40:34 +00:00
Marga Manterola
71c60a414d Merge pull request #159 from kinvolk/marga-kinvolk/move-dracut
sys-kernel/dracut: move to coreos-overlay
2021-04-07 12:30:51 +02:00
Dongsu Park
39cc70b635 dev-util/ccache: delete ccache completely
As we do not use ccache at all, we should simply clean up ccache
from all of the code, to shrink size of the SDK.
2021-04-06 09:22:00 +02:00
Dongsu Park
5ba7da3d52 dev-db/sqlite: update to 3.34.1
Update dev-db/sqlite to 3.34.1, mainly to address CVE-2021-20227.

The new ebuild fixes also issues in cross toolchains, where the
configure script of sqlite could not find out a correct location
of `dev-lang/tcl`.
See also https://github.com/gentoo/gentoo/commit/b2b164ba52c0 .

Fixes https://github.com/kinvolk/Flatcar/issues/367 .
2021-03-31 17:06:58 +02:00
Margarita Manterola
396fa787bb sys-kernel/dracut: move to coreos-overlay
This commit removes the dracut directory from portage-stable, as the
coreos-overlay one should be used instead.

See https://github.com/kinvolk/coreos-overlay/pull/923
2021-03-30 13:10:42 +02:00
Flatcar Buildbot
4d6d4006dd Upgrade virtual Rust in main from 1.50.0 to 1.51.0 2021-03-30 07:40:14 +00:00
Sayan Chowdhury
8d1a8e2397 Merge pull request #157 from kinvolk/sayan/update-zstd
app-arch/zstd: Sync with Gentoo upstream
2021-03-24 15:31:45 +05:30
Sayan Chowdhury
94d1070c61 Merge pull request #153 from bonkko/boost-1.75.0-port
Boost 1.75.0 port
2021-03-24 15:30:22 +05:30
Dongsu Park
ac0381dd2d dev-util/glib-utils: update to 2.66.8
Bump `dev-util/glib-utils` to get it in sync with `dev-libs/glib`.
2021-03-22 15:52:29 +01:00
Dongsu Park
b3c33667e2 dev-util/gdbus-codegen: update to 2.66.8
Bump `dev-util/gdbus-codegen` to 2.66.8 as well, to get it in sync with
`dev-libs/glib`.
2021-03-22 15:52:15 +01:00
Dongsu Park
31dab2ea06 dev-libs/glib: update to 2.66.8
Update `dev-libs/glib` to 2.66.8, mainly to address a security issue,
CVE-2021-28153.
2021-03-22 15:52:05 +01:00
Sayan Chowdhury
d2c8718048 app-arch/zstd: Sync with Gentoo upstream
Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
2021-03-19 18:55:04 +05:30
Matteo Bonicolini
27eb698386 Port of gentoo boost-1.74.0-r2 and boost-1.75.0 ebuild in Flatcar portage-stable 2021-03-18 15:02:25 +01:00
Matteo Bonicolini
60adb07a63 Gentoo Vanilla 2021-03-18 15:00:33 +01:00
Thilo Fromm
d2de1875a8 Merge pull request #152 from kinvolk/t-lo/fix-sdk-bootstrap
SDK bootstrap related fixes in scripts/bootstrap: use python3; add static-libs, openmp
2021-03-15 15:06:02 +01:00
Dongsu Park
fed7e2cf76 dev-util/gdbus-codegen: update to 2.66.7
Now that glib was updated to 2.66.7, we need to also update
gdbus-codegen to the same version, to avoid dependency failures.
2021-03-15 09:28:35 +01:00
Dongsu Park
9fc14f184c dev-libs/glib: update to 2.66.7
Update glib to 2.66.7, to address security issues CVE-2021-27218
and CVE-2021-27219.
2021-03-15 09:28:05 +01:00
Thilo Fromm
7172e40cd7 scripts/bootstrap: flatcar: use python3; add static-libs, openmp
This change explicitly calls python3 (instead of python) in pycmd
so portage commands work (as we ship python 2, too, and it's still
the default).

Also, 'static-libs' and 'opempn' are added to the
bootstrap emerge USE flags (stage 3 of the bootstrap-sh script,
which is run in stage 2 of the SDK catalyst bootstrapping process):
- 'static-libs' un-breaks the zlib build: zlib installed has this flag
   set and zlib requested per emerge command line in
   bootstrap.sh stage 3 needs this flag to prevent a slot conflict.
- 'openmp' is to honor requirements of newer versions of GCC and is
   added according to Gentoo guidelines published here:
   https://wiki.gentoo.org/wiki/User:Sakaki/Sakaki%27s_EFI_Install_Guide/Building_the_Gentoo_Base_System_Minus_Kernel#Gentoo_Bootstrap_Remix:_Progressing_from_Stage_1_to_Stage_2

Signed-off-by: Thilo Fromm <thilo@kinvolk.io>
2021-03-03 10:16:21 +01:00
Sayan Chowdhury
f58e145ba8 Merge pull request #151 from kinvolk/sayan/update-multipath-0.8.5
sys-fs/multipath-tools: Sync with Gentoo upstream
2021-03-02 17:43:27 +05:30
Sayan Chowdhury
429ab16b0d sys-fs/multipath-tools: Sync with Gentoo upstream
Signed-off-by: Sayan Chowdhury <sayan.chowdhury2012@gmail.com>
2021-02-26 13:24:10 +00:00
Sayan Chowdhury
13d0a92571 virtual/libudev: Sync with Gentoo upstream
Signed-off-by: Sayan Chowdhury <sayan.chowdhury2012@gmail.com>
2021-02-26 13:23:22 +00:00
Sayan Chowdhury
aa52076a52 eclass/vcs-snapshot: Sync with Gentoo upstream
Signed-off-by: Sayan Chowdhury <sayan.chowdhury2012@gmail.com>
2021-02-26 13:22:48 +00:00
Dongsu Park
d3715c1ad2 dev-libs/icu: delete
Now that net-fs/samba runs without spotlight backend, it is not needed
to pull in unnecessary deps like dev-libs/icu. Simply delete it.
2021-02-25 16:39:59 +01:00
Dongsu Park
819912c974 eclass: update waf-utils.eclass
To be able to use EAPI=7 in net-fs/samba, we need to sync waf-utils
with upstream Gentoo.
2021-02-25 16:39:28 +01:00
Dongsu Park
476abc5e03 net-misc/dhcpcd: delete dhcpcd
As Flatcar relies on systemd-networkd for network configurations,
it is not needed to keep dhcpcd in production images at all.

According to the commit
https://github.com/kinvolk/coreos-overlay/commit/9be90f06e838 ,
it was added back in 2014 just because systemd-networkd was not mature
enough. That was already ~7 years ago, so we can safely assume that
the issue had been already gone, so we can simply use systemd-networkd.
2021-02-22 14:58:36 +01:00
Krzesimir Nowak
3f024c766b *: Drop the use of mirror://kernel
The kernel mirror was dropped from the thirdpartymirrors file in
profiles, so it's use needs to be replaced with an address to
kernel.org.
2021-02-18 10:45:40 +01:00
Flatcar Buildbot
1218053903 Upgrade virtual Rust in main from 1.49.0 to 1.50.0 2021-02-16 07:41:03 +00:00
Krzesimir Nowak
619480efc3 eclass: Drop obsolete arch from xorg-2 and xorg-3
Initially I moved the eclass to overlay and modified them there to
avoid making customizations in portage-stable, but for some reason
portage cannot locate these eclasses when building packages from
portage-stable.

This change is to avoid masked packages and resulting fromt that build
failures like:

!!! All ebuilds that could satisfy "x11-misc/makedepend" have been masked.
!!! One of the following masked packages is required to complete your request:
- x11-misc/makedepend-1.0.5::portage-stable (masked by: invalid: DEPEND: USE flag 'ppc-aix' referenced in conditional 'ppc-aix?' is not in IUSE)

Hopefully these customizations will go away once we update the
eclasses and packages that inherit these eclasses.
2021-02-15 12:45:20 +01:00
Krzesimir Nowak
623dfce31b dev-util/catalyst: Move to overlay 2021-02-15 12:45:20 +01:00
Krzesimir Nowak
0436a06b74 eclass: Sync git-r3.eclass with Gentoo 2021-02-15 12:45:20 +01:00
Krzesimir Nowak
d19c6bbfad metadata: Add repo-name to layout.conf
This makes it easier to sync the profiles directory with Gentoo.
2021-02-15 12:45:20 +01:00
Krzesimir Nowak
8d93f4f236 profiles, scripts, licenses: Sync with Gentoo 2021-02-15 12:45:20 +01:00
Krzesimir Nowak
a61e4c5332 app-admin/eselect: Sync with Gentoo 2021-02-15 12:45:20 +01:00
Krzesimir Nowak
d8aa399ca4 dev-python/setuptools: Drop it, it is moved to overlay 2021-02-15 12:45:20 +01:00
Krzesimir Nowak
a9e845b6ee eclass: Update distutils eclass
The updated app-portage/gentoolkit is using some function from
distutils-r1 that was not here before.
2021-02-15 12:45:20 +01:00
Krzesimir Nowak
5e957f27d9 sys-apps/gentoo-functions: Sync with Gentoo 2021-02-15 12:45:20 +01:00
Krzesimir Nowak
5e783bfda0 app-portage/portage-utils: Sync with Gentoo 2021-02-15 12:45:20 +01:00
Krzesimir Nowak
382e82516f app-portage/eix: Sync with Gentoo 2021-02-15 12:45:20 +01:00
Krzesimir Nowak
bcc6ba856d dev-python/pyyaml: Import from Gentoo
It's a dependency for repoman.
2021-02-15 12:45:20 +01:00
Krzesimir Nowak
1a8c2a0c2d app-portage/repoman: Drop it, it is moved to overlay 2021-02-15 12:45:20 +01:00
Krzesimir Nowak
8b07946f63 app-portage/gentoolkit-dev: Drop the deprecated package 2021-02-15 12:45:20 +01:00
Krzesimir Nowak
38f201e4f0 app-portage/gentoolkit: Drop it, it is moved to overlay 2021-02-15 12:45:20 +01:00
Sayan Chowdhury
ec3a7a8e82 net-nds/openldap: Sync with Gentoo upstream
Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
2021-02-12 10:11:42 +05:30
Mathieu Tortuyaux
7e86932a4a dev-perl/Parse-Yapp: sync from Gentoo 2021-02-09 14:33:33 +01:00
Mathieu Tortuyaux
64878ff54b sys-libs/liburing: import from gentoo 2021-02-09 14:33:15 +01:00
Mathieu Tortuyaux
5bd7d23098 dev-libs/icu: import from Gentoo
no changes, except Python8
2021-02-09 14:33:02 +01:00
Krzesimir Nowak
a498205fdc sys-apps/coreutils: Move to overlay 2021-02-04 18:38:12 +01:00
Dongsu Park
ee5f0f3033 net-dns/c-ares: update to 1.17.1
Update `net-dns/c-ares` to 1.17.1, to resolve security issue
[CVE-2020-8277](https://nvd.nist.gov/vuln/detail/CVE-2020-8277).
See also https://security.gentoo.org/glsa/202012-11.
2021-02-02 18:21:14 +01:00
Dongsu Park
b759beaea8 dev-libs/nss: delete nss
As `dev-libs/nss` is not used anywhere, let's simply remove nss.
The only ebuild that pulls in is `net-misc/curl`, but only if the USE
flag `nss` is enabled. As the `nss` flag is disabled for curl, we do
not need to keep `dev-libs/nss` at all.
2021-01-22 16:59:57 +01:00
Dongsu Park
7f89d06380 Merge pull request #140 from kinvolk/dongsu/dhcpcd-8.1.9
net-misc/dhcpcd: update to 8.1.9
2021-01-22 09:49:21 +01:00
Dongsu Park
311fdd6f25 net-misc/dhcpcd: update to 8.1.9
Update dhcpcd to 8.1.9 to address the following security issues:

* CVE-2019-11577
* CVE-2019-11766

Note, dhcpcd is not a standard tool of Flatcar, because by default
networking is configured via systemd-networkd. We update the package
just for potential use cases that still depend on dhcpcd. However,
in the long term, we should not ship dhcpcd in the production images.
2021-01-22 07:52:52 +01:00
Krzesimir Nowak
8aeedb1818 sys-libs/libnih: Drop unused package 2021-01-21 16:35:34 +01:00
Dongsu Park
274a9830d4 app-crypt/mit-krb5; update to 1.18.2-r2
Update mit-krb5 to 1.18.2-r2, to address the security issue
CVE-2020-28196.
See also https://security.gentoo.org/glsa/202011-17.
2021-01-19 16:52:49 +01:00
Dongsu Park
c9afc48e35 net-libs/nghttp2: add new package nghttp2
As `net-misc/curl` 7.74 pulls in `net-libs/nghttp2`, we need to add
a new package for that.
2021-01-18 09:24:54 +01:00
Dongsu Park
88a3416c13 profiles: add curl to MISC-FREE license group
Now that curl has its own license file, it should be also added to
`MISC-FREE` license group, just like Gentoo.
Simply sync `license_groups` with Gentoo.
2021-01-18 09:24:36 +01:00
Dongsu Park
399118dca6 licenses: add a new license curl
Now that curl >= 7.70 requires its own license file, we need to make
it included in the SDK, so that `/var/gentoo/repos/gentoo/licenses/curl`
can be available. Without that file, the image build step fails due to
a missing license file for curl.
2021-01-15 16:27:29 +01:00
Dongsu Park
2b2694a871 net-misc/curl: update to 7.74.0
We need to update net-misc/curl to 7.74.0, mainly to address the
following security issues:

* CVE-2020-8169
* CVE-2020-8231
* CVE-2020-8284
* CVE-2020-8285
* CVE-2020-8286
2021-01-15 16:21:19 +01:00
Flatcar Buildbot
d961e5519e Upgrade virtual Rust in main from 1.48.0 to 1.49.0 2021-01-05 08:00:51 +00:00
Dongsu Park
c0065d5e68 Merge pull request #135 from kinvolk/rust-1.48.0-main
Upgrade virtual Rust in main from 1.47.0 to 1.48.0
2020-12-17 12:40:37 +01:00
Dongsu Park
8b5f29caa1 Merge pull request #121 from kinvolk/dongsu/sqlite-gentoo
dev-db/sqlite: update to 3.33.0
2020-12-15 14:25:51 +01:00
Flatcar Buildbot
e281533d23 Upgrade virtual Rust in main from 1.47.0 to 1.48.0 2020-12-15 07:43:14 +00:00
Dongsu Park
978f39f90d virtual/jpeg: delete unnecessary package
Now that libjpeg-turbo was deleted, we can now delete virtual/jpeg.
2020-12-04 16:38:19 +01:00
Dongsu Park
1a7e2f51b1 media-libs/libjpeg-turbo: delete unnecessary package
Since qemu in Flatcar SDK does not need to pull in libjpeg-turbo, we can
delete it completely.
2020-12-04 16:37:03 +01:00
Dongsu Park
606d6b9ca1 Merge pull request #132 from kinvolk/dongsu/github-actions-pr-v3
.github: use create-pull-request@v3 to fix set-env issues
2020-12-01 12:03:03 +01:00
Dongsu Park
e48e61ce45 Merge pull request #131 from kinvolk/dongsu/dwarves-1.19
dev-util/dwarves: update to 1.19 for CONFIG_DEBUG_INFO_BTF
2020-12-01 11:27:24 +01:00
Dongsu Park
1babbbce12 .github: use create-pull-request@v3 to fix set-env issues
Github Actions for Rust started failing with following errors:

```
Error: Unable to process command '::set-env name=PULL_REQUEST_NUMBER::718' successfully.
Error: The `set-env` command is disabled. Please upgrade to using
Environment Files or opt into unsecure command execution by setting the
`ACTIONS_ALLOW_UNSECURE_COMMANDS` environment variable to `true`. For
more information see:
https://github.blog/changelog/2020-10-01-github-actions-deprecating-set-env-and-add-path-commands/
```

It happens because we have used peter-evans/create-pull-request@v2,
which did not have a bug fix for the set-env issue.
The bug was fixed in create-pull-request
[v3.4.1](https://github.com/peter-evans/create-pull-request/releases/tag/v3.4.1).
So we just need to update the version to `v3`, which already includes
v3.4.1.
2020-12-01 11:14:44 +01:00
Dongsu Park
530d1e1791 Merge pull request #114 from kinvolk/rust-1.47.0-main
virtual: Upgrade Rust 1.46.0 to 1.47.0
2020-11-30 16:19:04 +01:00
Dongsu Park
706cc0eb21 dev-util/dwarves: update to 1.19 for CONFIG_DEBUG_INFO_BTF
It is already possible to enable kernel config `CONFIG_DEBUG_INFO_BTF`
using dwarves 1.18 included in the current Flatcar SDK, as long as its
arch is amd64.

However, Kernel build fails in case of arm64, when Kernel version is
>= 5.9 and dwarves version is <= 1.18, like the following:

```
+ pahole -J .tmp_vmlinux.btf
PAHOLE: Error: Found symbol of zero size when encoding btf
(sym: '__kvm_nvhe_arm64_ssbd_callback_required', cu: '../source/arch/arm64/kernel/cpu_errata.c').
PAHOLE: Error: Use '-j' or '--force' to ignore such symbols and force emit the btf.
../source/scripts/link-vmlinux.sh: line 141: 1929102 Segmentation fault
```

The bug was fixed via
https://git.kernel.org/pub/scm/devel/pahole/pahole.git/commit/?id=2e719cca6672,
("btf_encoder: revamp how per-CPU variables are encoded").
The fix was first included in dwarves
[1.19](https://git.kernel.org/pub/scm/devel/pahole/pahole.git/tag/?h=v1.19).
Thus we need to get dwarves 1.19 included in Flatcar SDK, so that the
next Alpha Kernels could have `CONFIG_DEBUG_INFO_BTF` enabled.
2020-11-30 14:54:16 +01:00
Thilo Fromm
0fe4212a73 net-dns/libidn2-2.3.0: EAPI7 -> EAPI6 to break glibc-2.32 toolchain dep loop
Signed-off-by: Thilo Fromm <thilo@kinvolk.io>
2020-11-24 13:51:13 +01:00
Thilo Fromm
9f9be4551b virtual/awk,eclass: add awk-1.ebuild, update toolchain-funcs for glibc-2.32
Signed-off-by: Thilo Fromm <thilo@kinvolk.io>
2020-11-24 13:51:13 +01:00
Thilo Fromm
2bebee3291 Merge pull request #127 from kinvolk/t-lo/update-to-gcc-9.3.0
dev-util,sys-devel,sys-libs,sys-kernel: update to gcc-9.3.0
2020-11-18 14:52:55 +01:00
Thilo Fromm
361ad25ee4 dev-util,sys-(devel|libs|kernel): modify gcc-9.3.0 updates, clean up
This commit introduces Flatcar specific modification
to the Gentoo recipes for updating to gcc-9.3.0 introduced
in the previous commit. The changes are required
in order to make things build with the Flatcar SDK.

The commit also removes old, stale, unused recipes.

The changes include:

dev-util/perf/perf-4.9.13.ebuild: fix binutils ebuild RDEPEND
dev-util/perf/perf-5.8.ebuild: remove python3_{8} compat; unmask arm64, amd64
sys-devel/binutils: remove old, stale versions
sys-devel/binutils/binutils-2.35.ebuild: backport to EAPI6 because our
                 outdated emerge does not handle BDEPEND dependencies correctly,
                 resulting in BDEPEND being pulled in as runtime deps.
                 Unmask for amd64 and arm64.
sys-devel/binutils/binutils-9999.ebuild: backport to EAPI6
net-dns/dnsmasq: remove old, stale versions
sys-devel/crossdev: remove old versions
sys-devel/gcc: remove old versions
sys-devel/gcc/gcc-9.3.0-r1.ebuild: use EAPI6 because of emerge
                 BDEPEND issue (see above)
sys-devel/libtool/libtool-2.4.6-r6.ebuild: use EAPI6 because of emerge
                 BDEPEND issue (see above)
sys-kernel/linux-headers: remove old versions
ys-kernel/linux-headers/linux-headers-5.8.ebuild: unmask for amd64, arm64

Signed-off-by: Thilo Fromm <thilo@kinvolk.io>
2020-11-18 14:44:40 +01:00
Thilo Fromm
7e0f49e2fc dev-util,sys-(devel|libs|kernel): import recipes for update to gcc-9.3.0
This commit includes the necessary changes to upgrade the SDK
compiler to gcc-9.3.0. The changes include:

eclass: update toolchain.eclass to EAPI7
acct-(user|group): add dnsmasq user / group
net-dns/dnsmasq: update to dnsmasq-2.82
dev-util/perf: update to perf-5.8.ebuild
sys-devel/binutils: update to binutils-2.35.ebuild
sys-libs/binutils-libs: update to binutils-libs-2.35.ebuild
sys-devel/crossdev: update to crossdev-20200801.ebuild
sys-devel/gcc: update to gcc-9.3.0-r1.ebuild
sys-devel/libtool: update to libtool-2.4.6-r6.ebuild
sys-kernel/linux-headers: update to linux-headers-5.9.ebuild

Signed-off-by: Thilo Fromm <thilo@kinvolk.io>
2020-11-18 14:03:42 +01:00
Dongsu Park
a901ea801d dev-util/dwarves: introduce new dev tool dwarves
To build Kernel with `CONFIG_DEBUG_INFO_BTF`, we need to get pahole, a
part of dwarves included in the Flatcar SDK.
So simply import `dev-util/dwarves` from upstream Gentoo.
2020-11-17 15:37:14 +01:00
Thilo Fromm
f7314c720b acct(group|user)/ntp: add NTP group and user
Signed-off-by: Thilo Fromm <thilo@kinvolk.io>
2020-11-16 13:35:47 +01:00
Thilo Fromm
a6fb769199 net-fs/cifs-utils: update to 6.11
Signed-off-by: Thilo Fromm <thilo@kinvolk.io>
2020-11-13 16:58:05 +01:00
Dongsu Park
b8ba9979e4 Merge pull request #122 from kinvolk/dongsu/samba-sssd
dev-libs, sys-libs: Updated libs needed by samba, sssd
2020-11-13 15:10:12 +01:00
Dongsu Park
db5635cca2 Merge pull request #59 from kinvolk/dongsu/pkgconfig-0.29.2-alpha
dev-util/pkgconfig: bump to 0.29.2 for PKG_CHECK_MODULES_STATIC for alpha
2020-11-13 15:08:07 +01:00
Dongsu Park
b3061d608d sys-libs/tevent: update to 0.10.2
To be able to build `net-fs/samba` 4.11, we need to update
`sys-libs/tevent` to 0.10.2.
2020-11-06 13:50:57 +01:00
Dongsu Park
7cacf2c668 sys-libs/talloc: update to 2.3.1
To be able to `net-fs/samba` 4.11, we need to import `sys-libs/talloc`
to 2.3.1.
2020-11-06 13:50:55 +01:00
Dongsu Park
9cd5e87a35 sys-libs/tdb: update to 1.4.3
To be able to build samba 4.11, we need to update `sys-libs/tdb` to
1.4.3.
2020-11-06 13:50:53 +01:00
Dongsu Park
dd27327b93 app-crypt/p11-kit: import p11-kit from Gentoo
To be able to build sssd 2.3.1, we need to import `app-crypt/p11-kit`
from upstream Gentoo.
2020-11-06 13:50:51 +01:00
Dongsu Park
50c3589497 dev-libs/libtasn1: import libtasn1 from Gentoo
To build `net-libs/gnutls` 3.6, we need to import `dev-libs/libtasn1`.
2020-11-06 13:50:48 +01:00
Dongsu Park
22155497c6 dev-libs/nettle: update to 3.6
To build `net-libs/gnutls` 3.6.15, we need to also update
`dev-libs/nettle` to 3.6.
2020-11-06 13:50:46 +01:00
Dongsu Park
7a818340fa net-libs/gnutls: import from upstream Gentoo
To be able to build `net-fs/samba` 4.11, we need to import
`net-libs/gnutls` from upstream Gentoo. Since gnutls is one of the
hard requirements of upstream Samba, we are not able to disable the
dependency on gnutls.
2020-11-06 13:50:43 +01:00
Sayan Chowdhury
72be7c4946 sys-block/open-isns: Add the new package
Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
2020-11-06 11:13:28 +05:30
Dongsu Park
e3db28c9c5 dev-util/glib-utils: update to 2.64.5 2020-10-30 16:52:20 +01:00
Dongsu Park
8494602fb1 dev-db/sqlite: update to 3.33.0
Now that `dev-lang/tcl` is included in SDK, we can now build
dev-db/sqlite without having to rely on third-party patches
in coreos-overlay.

So simply sync sqlite with Gentoo upstream, and update to the latest
version 3.33.0.
2020-10-30 16:04:31 +01:00
Sayan Chowdhury
e7b5405278 dev-libs/glib: Sync the package with upstream
Signed-off-by: Sayan Chowdhury <sayan.chowdhury2012@gmail.com>
2020-10-30 14:17:24 +01:00
Krzesimir Nowak
407e682a37 app-arch: Import from Gentoo
An updated systemd will need it.
2020-10-26 14:15:15 +01:00
Dongsu Park
0be496912c Merge pull request #119 from flatcar-linux/dongsu/sdk-pkgs-re2c-file
dev-util,sys-apps: update re2c, file
2020-10-23 15:06:58 +02:00
Dongsu Park
2c820da16e Merge pull request #118 from flatcar-linux/dongsu/meson-gdbus
dev-util: update meson, gdbus-codegen
2020-10-23 15:06:11 +02:00
Dongsu Park
f8a27a086e sys-apps/file: update to 5.39
Update sys-apps/file to 5.39 to address
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18218 .
2020-10-22 15:20:38 +02:00
Dongsu Park
5b8dbb7fb2 dev-util/re2c: update to 2.0.3
Update dev-util/re2c to 2.0.3 to address
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11958 .
2020-10-22 15:19:06 +02:00
Dongsu Park
c320d06f06 dev-util/gdbus-codegen: update to 2.64.5
Now that dev-libs/glib was updated to 2.64.5, we need to also update
dev-util/gdbus-codegen to 2.64.5.

Otherwise we would see strange slot conflicts like:

```
 * Error: The above package list contains packages which cannot be
 * installed at the same time on the same system.

 (dev-libs/glib-2.64.5:2/2::portage-stable, ebuild scheduled for merge) pulled in by
   >=dev-libs/glib-2.58.3:2 required by (dev-util/gdbus-codegen-2.58.3:0/0::portage-stable, binary scheduled for merge)

 (dev-util/gdbus-codegen-2.58.3:0/0::portage-stable, binary scheduled for merge) pulled in by
   dev-util/gdbus-codegen required by (coreos-base/hard-host-depends-0.0.1-r194:0/0::coreos, binary scheduled for merge)
```
2020-10-22 14:30:38 +02:00
Sayan Chowdhury
c6a6d5a685 dev-util/meson: Sync package with the upstream
Signed-off-by: Sayan Chowdhury <sayan.chowdhury2012@gmail.com>
2020-10-22 14:30:38 +02:00
Dongsu Park
698a6c104d dev-libs/libxml2: update to 2.9.10-r3
Update libxml2 to 2.9.10-r3, to multiple security issues in libxml2:

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20388
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7595

See also https://security.gentoo.org/glsa/202010-04 .
2020-10-21 16:34:26 +02:00
Dongsu Park
6c98682dd6 sys-fs/cryptsetup: update to 2.3.2
Since cryptsetup 1.7.5 cannot be built with json-c 0.15,
we need to also update cryptsetup to 2.3.2.
2020-10-21 16:34:17 +02:00
Dongsu Park
1bc50f2cd2 eclass: sync cmake-multilib.eclass with Gentoo
Now that json-c 0.15 requires new definitions in cmake-multilib.eclass,
we need to sync cmake-multilib.eclass with upstream Gentoo.
2020-10-21 16:32:18 +02:00
Dongsu Park
2fbc9fb0b8 dev-libs/json-c: update 0.15
Update json-c to 0.15, to address
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12762 .
2020-10-21 16:32:18 +02:00
Dongsu Park
69e05d7dbc dev-libs/libuv: update to 1.39.0
Update libuv to 1.39.0 to address
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8252 .
2020-10-21 16:32:10 +02:00
Dongsu Park
4d28d167f5 net-dns/c-ares: update to 1.61.1
Update net-dns/c-ares to 1.61.1, to address
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000381 .
2020-10-21 16:25:20 +02:00
Sayan Chowdhury
0bbfd9bc1e app-arch/tar: Sync with upstream
Signed-off-by: Sayan Chowdhury <sayan.chowdhury2012@gmail.com>
2020-10-20 05:45:10 +00:00
Dongsu Park
47e30b2847 virtual/rust: update to 1.47.0
Update virtual/rust to 1.47.0, to make dev-lang/rust 1.47.0 work well.
2020-10-13 13:45:57 +02:00
Krzesimir Nowak
1550782835 Merge pull request #112 from flatcar-linux/krnowak/dracut-update
Update dracut
2020-10-08 18:46:03 +02:00
Alban Crequy
3593d2251c Merge pull request #111 from flatcar-linux/alban/update-seccomp
bump(sys-libs/libseccomp): sync with upstream
2020-10-02 19:27:26 +02:00
Krzesimir Nowak
654ebbf5dd eclass: Pull in an eclass needed by a new dracut 2020-09-30 19:49:09 +02:00
Krzesimir Nowak
215d9bda8b eclass: Sync systemd.eclass with upstream 2020-09-30 19:48:30 +02:00
Krzesimir Nowak
9a2855f189 sys-kernel/dracut: Sync with gentoo 2020-09-30 19:41:18 +02:00
Alban Crequy
8dc4b6702d bump(sys-libs/libseccomp): sync with upstream
Change python check to python3_6 so it builds in Flatcar.
Update checksums
2020-09-26 14:36:19 +02:00
Dongsu Park
4dc4d60108 dev-lang/tcl: add tcl for SDK dependencies
Since sqlite 3.32 or newer requires dev-lang/tcl to be available in
the Flatcar SDK by default, we should add dev-lang/tcl into the SDK.
2020-09-25 17:30:35 +02:00