mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-08-16 01:16:59 +02:00
Code Issues Packages Projects Releases Wiki Activity
10,432 Commits 624 Branches 397 Tags 164 MiB
a1a96c009d
Commit Graph

10432 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Aniruddha Basak
a1a96c009d app-admin/logrotate: Apply Flatcar modifications 2022-10-12 12:41:49 +02:00
Krzesimir Nowak
40e891505e app-admin/logrotate: Sync with Gentoo 
It's from Gentoo commit fef4d6517bb66698022978cd835a56d5701e318a.
 2022-10-12 12:24:45 +02:00
Krzesimir Nowak
8a6b90ffc1 Merge pull request #2211 from flatcar/krnowak/dbus-update 
sys-apps/dbus: Update to 1.14.4
 2022-10-12 12:09:02 +02:00
Dongsu Park
8394036bc7 Merge pull request #2188 from flatcar/rust-1.64.0-main 
Upgrade dev-lang/rust and virtual/rust in main from 1.63.0 to 1.64.0
 2022-10-12 10:31:17 +02:00
Dongsu Park
879304d1df Merge pull request #1957 from flatcar/dongsu/glibc-2.34 
sys-libs/glibc: update to 2.34
 2022-10-12 10:18:22 +02:00
Dongsu Park
835970dc2c coreos-base/update_engine: check ld-linux-*.so.2 for glibc 2.34 
While glibc 2.33 has /lib64/ld-2.33.so, glibc 2.34 does not have that,
but only /lib64/ld-linux-x86-64.so.2. So we should also check ld-linux-*
as well.

Pulls in https://github.com/flatcar-linux/update_engine/pull/17.
 2022-10-11 17:06:44 +02:00
Dongsu Park
448e9aca9b changelog: add changelog for glibc 2.34 2022-10-11 16:11:53 +02:00
Krzesimir Nowak
176b1cc152 sys-libs/glibc: Apply Flatcar modifications 
- take care of nscd.conf via tmpfiles, add files/nscd-conf.tmpfiles.
  - don't run sanity checks in pkg_pretend to prevent gcc checks when
    only the binary package is installed.
  - comment out 'dostrip -x' to force the OS image binaries to be stripped
  - remove everything glibc wants to put under /etc since we use
    baselayout to provide that
 2022-10-11 16:11:53 +02:00
Krzesimir Nowak
f2f8da03f9 sys-libs/glibc: Sync with Gentoo 
It's from Gentoo commit a3d93f81ed9442703de09b684f309d8e1d596571.
 2022-10-11 16:11:52 +02:00
Krzesimir Nowak
0a266b2209 changelog: Add entries 2022-10-11 14:04:55 +02:00
Krzesimir Nowak
4b3823890d Merge pull request #2213 from flatcar/krnowak/go-security 
changelog: Add an entry for go 1.18.7 update
 2022-10-11 13:56:49 +02:00
Dongsu Park
8e82ad0b20 changelog: add changelog for Rust 1.64.0 2022-10-11 13:41:32 +02:00
Flatcar Buildbot
0dc33cdd0c dev-lang: Upgrade dev-lang/rust 1.63.0 to 1.64.0 2022-10-11 13:41:32 +02:00
Krzesimir Nowak
9d3024be79 changelog: Add an entry 2022-10-11 13:03:03 +02:00
Krzesimir Nowak
6128c49a80 Merge pull request #2208 from flatcar/go-1.17.13-and-1.18.7-main 
Upgrade Go from 1.18.6 to 1.18.7
 2022-10-11 12:55:33 +02:00
Kai Lüke
ff185a491c Merge pull request #2207 from genesiscloud/nftables-bridge-conntrack-meta 
Enable nf_conntrack_bridge and nft_meta_bridge kernel modules
 2022-10-11 11:28:37 +02:00
Lukas Stockner
46ff05ed65 Update changelog 
Co-authored-by: Kai Lüke <pothos@users.noreply.github.com>
 2022-10-11 11:23:32 +02:00
Krzesimir Nowak
f3a354c8d1 sys-apps/dbus: Apply Flatcar modifications 2022-10-10 11:59:12 +02:00
Krzesimir Nowak
0d9aaf7b05 sys-apps/dbus: Sync with Gentoo 
It's from Gentoo commit 42b645e918ddd5fd999926bc8c0a417a9f8c3be4.
 2022-10-10 11:59:12 +02:00
Flatcar Buildbot
d4ead663b9 dev-lang: Upgrade Go 1.18.6 to 1.18.7 2022-10-10 07:54:23 +00:00
Lukas Stockner
74ee472821 Enable nf_conntrack_bridge and nft_meta_bridge kernel modules 
This allows to use conntrack rules for bridges in nftables
and to match on bridge interface names.
 2022-10-07 15:56:07 +02:00
Krzesimir Nowak
948fe706ff Merge pull request #2205 from flatcar/linux-5.15.72-main 
Upgrade Linux Kernel in main from 5.15.71 to 5.15.72
 2022-10-07 14:34:51 +02:00
Flatcar Buildbot
7294ee7abe sys-kernel: Upgrade Kernel 5.15.71 to 5.15.72 2022-10-06 07:32:31 +00:00
Krzesimir Nowak
5b670a5504 Merge pull request #2195 from flatcar/linux-5.15.71-main 
Upgrade Linux Kernel in main from 5.15.70 to 5.15.71
 2022-10-06 09:04:22 +02:00
Flatcar Buildbot
fd4783ca0a sys-kernel: Upgrade Kernel 5.15.70 to 5.15.71 2022-10-05 14:54:26 +02:00
Krzesimir Nowak
13e9213d84 Merge pull request #2180 from flatcar/krnowak/dev-util-update 
Development utilities update
 2022-10-05 11:32:37 +02:00
Krzesimir Nowak
2418d19906 Merge pull request #2198 from flatcar/krnowak/bump-init 
coreos-base/coreos-init: Bring in the port customization changes
 2022-10-04 16:39:01 +02:00
Krzesimir Nowak
aa403ffeea changelog: Add an entry 2022-10-04 16:37:41 +02:00
Krzesimir Nowak
2e726adb32 coreos-base/coreos-init: Bring in the port customization changes 2022-10-04 15:07:17 +02:00
Krzesimir Nowak
ff6227115d coreos-base/hard-host-depends: Drop dev-util/scons 
There isn't anything that uses scons, so drop it from SDK.
 2022-10-04 14:52:10 +02:00
Krzesimir Nowak
ade775850b coreos/config: Drop overrides for dev-util/dialog 
It's not packaged in neither in overlay nor in portage-stable.
 2022-10-04 14:52:10 +02:00
Dongsu Park
70e0da0687 dev-util/bsdiff: Apply Flatcar modifications 
Apply existing Flatcar changes on top of vanilla Gentoo ebuilds:
- add arm64 keyword
- apply the sais patch
- fix a heap overflow vulnerability in bspatch included in bsdiff.

Originally the security issue was published as [FreeBSD-SA-16:29](https://www.freebsd.org/security/advisories/FreeBSD-SA-16:29.bspatch.asc),
which pointed to a FreeBSD [patch](https://security.freebsd.org/patches/SA-16:29/bspatch.patch).
However, the patch was a set of huge changes including other unrelated
changes. That's why it was not simple at all to apply the patch to
bsdiff. Both Gentoo and Flatcar have not included the fix.

Fortunately X41 D-SEC [examined](https://www.x41-dsec.de/security/news/working/research/2020/07/15/bspatch/)
the issue again, and nailed down to a simple patch that can be easily
applied to other trees. We simply take the patch with minimal changes.

See also [CVE-2020-14315](https://nvd.nist.gov/vuln/detail/CVE-2020-14315).

It is based on the following commits:

[4ee6aa895a02](https://github.com/kinvolk/coreos-overlay/commit/4ee6aa895a02) ("Add arm64 keywords")
[60d47e7359d1](https://github.com/kinvolk/coreos-overlay/commit/60d47e7359d1) ("Change suffix sort to sais-lite")
[7d3ac2a049dd](https://github.com/kinvolk/coreos-overlay/commit/7d3ac2a049dd) ("fix heap overflow vulnerability CVE-2020-14315")
 2022-10-04 14:52:10 +02:00
Krzesimir Nowak
e358a89307 dev-util/bsdiff: Sync with Gentoo 
It's from Gentoo commit 98ef629ba44e42abf5dd75e2e2c44994d85bc409.
 2022-10-04 14:52:10 +02:00
Krzesimir Nowak
e64412782e profiles: Drop outdated or redundant USE flags for dev-util/perf 2022-10-04 14:52:10 +02:00
Krzesimir Nowak
a8f0638d7f profiles: Drop accept_keywords for dev-util/perf 
Updated package is stable for both amd64 and arm64.
 2022-10-04 14:52:10 +02:00
Krzesimir Nowak
f8fac84130 profiles: Drop accept_keywords for dev-util/pahole 
Updated package is stable for both amd64 and arm64.
 2022-10-04 14:52:10 +02:00
Krzesimir Nowak
0d7e9d0971 profiles: Drop cmake from provided packages 
It should cross-compile just fine, but let's see if it ends up being
on the production image.
 2022-10-04 14:52:10 +02:00
Krzesimir Nowak
0a6a8aa7d4 profiles: Drop keywords for dev-util/checkbashisms 
The updated package is stable for both amd64 and arm64.
 2022-10-04 14:52:10 +02:00
Krzesimir Nowak
aa36317220 profiles: Update keywords for dev-util/bpftool 2022-10-04 14:52:10 +02:00
Krzesimir Nowak
b22334fd58 coreos/config: Drop fixes for cmake 2022-10-04 14:52:10 +02:00
Krzesimir Nowak
678d0788ef Merge pull request #2189 from flatcar/krnowak/update-and-fill 
Profiles and environment overrides for packages refresh
 2022-10-04 10:19:42 +02:00
Jeremi Piotrowski
997a141446 Merge pull request #2196 from flatcar/jepio-fix-kernel-stacktrace 
sys-kernel/coreos-module: use strip-debug instead of strip-unneeded
 2022-10-04 08:32:22 +02:00
Jeremi Piotrowski
1b3ddd7133 changelog: add entry for coreos-modules strip change 2022-09-30 13:10:04 +02:00
Jeremi Piotrowski
aa7aa7f13c sys-kernel/coreos-module: use strip-debug instead of strip-unneeded 
With `--strip-unneeded` some static symbols are also stripped from modules, making stacktraces
incomplete, and making it harder to debug kernel issues. Switch to the default setting of
`--strip-debug`, which keeps symbols intact and does not appear to lead to a measurable
size increase of the /usr partition.
 2022-09-29 15:34:40 +02:00
Krzesimir Nowak
d39991c538 coreos/config: Drop linking workarounds for net-misc/curl 
Let's see if those are fixed by now.
 2022-09-29 11:58:11 +02:00
Krzesimir Nowak
8a0db2516b profiles: Drop accept keywords for net-fs/cifs-utils 
The updated package is stable for both amd64 and arm64.
 2022-09-29 11:58:11 +02:00
Krzesimir Nowak
5d556e801f profiles: Update keywords and unmask for new version of dev-vcs/git 2022-09-29 11:58:11 +02:00
Krzesimir Nowak
8400b95681 profiles: Drop accept keywords for sys-devel/crossdev 
The updated package is stable for both amd64 and arm64.
 2022-09-29 11:58:11 +02:00
Krzesimir Nowak
e84867785e Merge pull request #2140 from flatcar/krnowak/vim-update 
Update vim to v9.0.0469
 2022-09-29 11:18:54 +02:00
Mathieu Tortuyaux
acdc6ca870 Merge pull request #2187 from flatcar/tormath1/ign-converter 
sys-apps/ignition: rework ignition patches
 2022-09-27 11:58:29 +02:00