6268 Commits

Author SHA1 Message Date
David Michael
7abb6a86ed net-misc/openssh: Remove socket-activation rate limiting
The existing limit will cause SSH access to be disabled when 200
connections are established in two seconds.
2017-10-10 11:27:50 -07:00
Benjamin Gilbert
0f3a898e7d Merge pull request #2811 from bgilbert/dbus
coreos-base/update_engine: drop D-Bus service file
2017-10-06 16:48:10 -04:00
Benjamin Gilbert
b085008700 coreos-base/update_engine: drop D-Bus service file
We've always installed it in the session bus directory, which is
useless, since update_engine only communicates on the system bus.  This
prevented bus activation from working. We can't fix bus activation now
because that could cause update_engine to start in cases where the user
believes it to be disabled, so just drop the file.
2017-10-05 19:27:30 -07:00
Euan Kemp
ae786ddec4 Merge pull request #2808 from euank/ovl-regression
sys-kernel/coreos-*: add overlay ebusy fix
2017-10-05 18:01:50 -07:00
Euan Kemp
b1076881c4 app-emulation/docker: drop overlay ebusy patch
Since we're picking up a kernel change that solves the same problem (see
previous commit), it's safe to not include this patch and wait on
upstream to pick it up.

This bumps the commit for 17.03 to remove that patch, and stops applying
it to 17.09.
1.12 never had it.
2017-10-05 17:41:12 -07:00
Euan Kemp
bca0dfa29a sys-kernel/coreos-*: add overlay ebusy fix 2017-10-05 15:15:50 -07:00
Benjamin Gilbert
92c1a5a3b1 Merge pull request #2807 from coreosbot/master-4.13.5
Upgrade Linux in master to 4.13.5
2017-10-05 14:05:36 -07:00
Jenkins OS
47b1409650 sys-kernel/coreos-sources: bump to 4.13.5 2017-10-05 18:07:38 +00:00
Benjamin Gilbert
ab4bd5b67e Merge pull request #2804 from bgilbert/iscsidev
sys-block/open-iscsi: drop iscsidev.sh
2017-10-04 18:22:01 -07:00
Benjamin Gilbert
0f8b50a789 sys-block/open-iscsi: drop iscsidev.sh
The script and udev rule were added to Gentoo due to
https://bugs.gentoo.org/556632 without much explanation. However,
iscsidev.sh has multiple problems:

- It doesn't run for all iSCSI devices, only those with a vendor string
of "IET". Thus it works for e.g. tgtd but not for enterprise iSCSI
targets.

- It was added in 2015, but udev's builtin path_id has supported iSCSI
targets -- and produced exactly the same /dev/disk/by-path links --
since systemd/systemd@a2fe9450bb in 2009.

- When the script decides not to do anything, it exits 1, producing a
series of systemd-udevd journal messages:

    systemd-udevd[636]: Process '/usr/lib/udev/scripts/iscsidev.sh' failed with exit code 1.
2017-10-04 15:51:03 -07:00
David Michael
923595931b Merge pull request #2803 from dm0-/go
dev-lang/go: Bump to 1.8.4
2017-10-04 15:13:28 -07:00
David Michael
93bf1fb124 dev-lang/go: Bump to 1.8.4 2017-10-04 14:57:52 -07:00
David Michael
2705dea842 Merge pull request #2802 from dm0-/rkt
app-emulation/rkt: Bump to 1.29.0
2017-10-04 13:39:24 -07:00
David Michael
b8de4c74f6 app-emulation/rkt: Bump to 1.29.0 2017-10-04 13:17:19 -07:00
Benjamin Gilbert
75acfcac90 Merge pull request #2801 from bgilbert/lastlog
sys-apps/shadow: drop duplicate rule creating /var/log/lastlog
2017-10-03 18:39:35 -07:00
Benjamin Gilbert
020bfe95ea sys-apps/shadow: drop duplicate rule creating /var/log/lastlog
The rule was added in 1b28d4e25452d0eacdc19074ccfbd445e88ccc11.
systemd 234 now ships a tmpfiles.d rule to create this file. Fixes
systemd-tmpfiles warning in journal:

    [/usr/lib64/tmpfiles.d/var.conf:17] Duplicate line for path "/var/log/lastlog", ignoring.

By switching to the upstream rule, this changes the lastlog gid
from root to utmp and the mode from 0644 to 0664.
2017-10-03 17:42:16 -07:00
Benjamin Gilbert
7a6b00c006 Merge pull request #2800 from bgilbert/append
coreos-base/oem-packet: drop redundant grub.cfg line
2017-10-03 16:15:12 -07:00
Benjamin Gilbert
56b87a1812 coreos-base/oem-packet: drop redundant grub.cfg line
Introduced by 3c73f05cfacf25693805dcc3675a1752b88cedfa.
2017-10-03 14:07:05 -07:00
David Michael
bceaa05107 Merge pull request #2797 from dm0-/docker
Update Docker
2017-10-02 14:50:46 -07:00
David Michael
bd565d6368 app-torcx/docker: Add a Docker 17.03 torcx image 2017-09-28 22:01:34 -07:00
David Michael
79fd18f518 app-emulation/docker: Add an ebuild for Docker 17.03 2017-09-28 22:01:34 -07:00
David Michael
7764732a35 app-emulation/containerd: Add an ebuild for Docker 17.03 2017-09-28 22:01:34 -07:00
David Michael
e5881026f6 app-emulation/docker-runc: Add an ebuild for Docker 17.03
This ebuild is a mix of the upstream ebuild and the existing one.
2017-09-28 22:01:17 -07:00
David Michael
23db752fa9 app-emulation/docker-proxy: Add an ebuild for Docker 17.03 2017-09-28 18:47:38 -07:00
David Michael
b1cc45001c app-arch/torcx: Use Docker 17.09 in the non-1.12 profile 2017-09-28 18:42:42 -07:00
David Michael
61f79086f4 app-torcx/docker: Bump the 17.06 package to 17.09 2017-09-28 18:42:42 -07:00
David Michael
cc98b79640 app-emulation/docker-proxy: Sync with Gentoo
This does not change the commit that gets built, which still
matches the version used in Docker 17.09.
2017-09-28 18:42:32 -07:00
David Michael
dbf9146671 app-emulation/docker: Bump to Docker 17.09.0
The build date patch is included upstream.
2017-09-28 15:05:38 -07:00
David Michael
594fa991b8 Merge pull request #2796 from coreosbot/master-4.13.4
Upgrade Linux in master to 4.13.4
2017-09-28 15:03:26 -07:00
David Michael
60a82dfae5 app-emulation/containerd: Bump for Docker 17.09 2017-09-28 14:30:08 -07:00
David Michael
28efe488ac app-emulation/docker-runc: Bump for Docker 17.09
This also includes some minor shifting around to reduce the diff
with current Gentoo ebuilds.
2017-09-28 14:13:30 -07:00
Jenkins OS
b198862a31 sys-kernel/coreos-sources: bump to 4.13.4 2017-09-28 20:23:18 +00:00
Alex Crawford
4faab9e9ba Merge pull request #2792 from crawford/metadata
coreos-base/coreos-metadata: bump to v0.14.0
2017-09-26 11:56:18 -07:00
Alex Crawford
33e19921d2 coreos-base/coreos-metadata: bump to v0.14.0 2017-09-26 11:31:12 -07:00
Euan Kemp
3ca5a3ec34 Merge pull request #2791 from euank/1.12.6-corruption
app-emulation/docker: bump 1.12.6
2017-09-25 17:22:10 -07:00
Euan Kemp
eb758878f8 app-torcx/docker: bump docker 1.12.6 version 2017-09-25 17:07:59 -07:00
Euan Kemp
5a5f1e0a22 app-emulation/docker: bump 1.12.6
This includes the the layer-store corruption patch
2017-09-25 17:06:47 -07:00
Euan Kemp
eab9ac0cd8 Merge pull request #2787 from euank/docker-ebusy
app-emulation/docker: apply ebusy overlayfs patch
2017-09-22 18:04:59 -07:00
Andrew Jeddeloh
6f322807fb Merge pull request #2789 from ajeddeloh/ignition0-19-0
sys-apps/ignition: bump to v0.19.0
2017-09-22 17:32:37 -07:00
Andrew Jeddeloh
dbb64a8165 sys-apps/ignition: bump to v0.19.0 2017-09-22 17:31:15 -07:00
Euan Kemp
1ccbcc4073 app-emulation/docker: eapply engine patches
Also split them into an array so we can decouple the files in
patches/engine from those applied, e.g. to allow carrying patches for
only specific ebuilds.
2017-09-22 17:27:14 -07:00
Benjamin Gilbert
a4ca2934ba Merge pull request #2788 from bgilbert/4.13.3-r1
sys-kernel/coreos-*: add patch for CVE-2017-14489
2017-09-22 17:12:10 -07:00
Benjamin Gilbert
5c32531b12 sys-kernel/coreos-*: add patch for CVE-2017-14489 2017-09-22 16:34:52 -07:00
David Michael
209beb10cd Merge pull request #2786 from dm0-/etcd2
dev-db/etcd: Fix etcd2 on arm64
2017-09-22 16:28:58 -07:00
David Michael
5cd45c047c Merge pull request #2785 from dm0-/flannel
app-admin/flannel-wrapper: Bump to 0.9.0
2017-09-22 15:50:59 -07:00
Benjamin Gilbert
e0657d6237 Merge pull request #2784 from bgilbert/docker-flag
app-arch/torcx: update to 0.1.2
2017-09-22 15:44:54 -07:00
Euan Kemp
e3d0b5edb2 app-torcx/docker: update to include patches 2017-09-22 15:13:13 -07:00
Euan Kemp
e312b48b01 app-emulation/docker: apply ebusy overlayfs patch
See https://github.com/coreos/bugs/issues/2127 and
https://github.com/moby/moby/issues/34672 for discussion.

Patch files have been split into more folders, plus some manual eapply
calls, to allow moby/moby patches to be used unmodified against
docker-ce
2017-09-22 15:13:13 -07:00
Euan Kemp
6edec6a89c app-emulation/runc: apply mount propagation patch
Upstream as https://github.com/opencontainers/runc/pull/1598

See discussion there and in linked issues for the full details.
2017-09-22 14:55:32 -07:00
Benjamin Gilbert
0198966a96 app-arch/torcx: update to 0.1.2
Add profiles for /etc/coreos/docker-1.12 flag file.
2017-09-22 14:31:43 -07:00