mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2026-02-14 12:11:12 +01:00
Code Issues Packages Projects Releases Wiki Activity
34,068 Commits 632 Branches 413 Tags
Commit Graph

24958 Commits

Author SHA1 Message Date
James Le Cuirot
acc72feb6a
app-containers/accelerated-container-image: Use offline vendor tarball 
I have submitted a PR upstream so that they can automatically create a
vendor tarball with each release. In the meantime, I have hosted one in
my Gentoo dev space.

Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2026-01-08 13:55:16 +00:00
James Le Cuirot
cef9a6a40e
sys-fs/overlaybd: Patch and rework to build entirely offline 
Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2026-01-08 13:55:15 +00:00
James Le Cuirot
2479cd95a6
dev-libs/rapidjson: Import from Gentoo to build sys-fs/overlaybd offline 
Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2026-01-08 12:25:10 +00:00
flatcar-ci
2d5b140d51 New version: main-4572.0.0-nightly-20260106-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2026-01-06 21:00:25 +00:00
James Le Cuirot
fdab8b4d35
coreos-base/misc-files: Drop Ciphers, MACs, KexAlgorithms from sshd conf 
Setting an absolute list was preventing newer options from being
enabled, leading to this scary error message from newer clients.

    $ ssh flatcar
    Warning: Permanently added '[127.0.0.1]:2222' (ED25519) to the list of known hosts.
    ** WARNING: connection is not using a post-quantum key exchange algorithm.
    ** This session may be vulnerable to "store now, decrypt later" attacks.
    ** The server may need to be upgraded. See https://openssh.com/pq.html
    Last login: Wed Oct 15 10:05:46 UTC 2025 from 10.0.2.2 on pts/0
    Flatcar Container Linux by Kinvolk beta 4426.1.0 for QEMU

After going through each of the options, the only ones we were adding
above the current 10.2p1 defaults were the diffie-hellman-group KEX
algorithms. These were dropped upstream in 2024 because they are slower
while providing no benefit over other options. The continued presence of
ecdh-sha2-nistp256 ensures compatibility with default clients at least
as far back as 2016.

I think we should just continue to follow the upstream defaults unless
some significant client breakage is reported. They're usually quite
forgiving.

The order of these is significant, and our order did differ from
upstream's slightly, but I trust their order over ours.

Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2026-01-06 11:55:15 +00:00
flatcar-ci
9733e87a32 New version: main-4571.0.0-nightly-20260105-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2026-01-05 21:00:26 +00:00
flatcar-ci
1978d32d1e New version: main-4568.0.0-nightly-20260102-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2026-01-03 03:10:52 +00:00
flatcar-ci
8b54e2df6d New version: main-4568.0.0-nightly-20260102-2100-INTERMEDIATE 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2026-01-02 21:00:22 +00:00
Flatcar Buildbot
ed29e505e8 Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-12-29 21:00:39 +00:00
flatcar-ci
ee720f941f New version: main-4564.0.0-nightly-20261229-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-12-29 21:00:26 +00:00
flatcar-ci
41e0f1f574 New version: main-4557.0.0-nightly-20251222-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-12-22 21:00:24 +00:00
Flatcar Buildbot
c2e3a2ec7b Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-12-22 13:14:18 +00:00
Flatcar Buildbot
53c272ed2d Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-12-22 11:26:06 +00:00
flatcar-ci
415fc4ae10 New version: main-4554.0.0-nightly-20251219-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-12-20 03:02:00 +00:00
flatcar-ci
33e829a160 New version: main-4554.0.0-nightly-20251219-2100-INTERMEDIATE 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-12-19 21:00:23 +00:00
Kai Lueke
b783e3ee91 coreos-base/coreos-init: Add noop systemd-sysupdate transfer config 
This pulls in https://github.com/flatcar/init/pull/139 as workaround for
https://github.com/flatcar/flatcar/issues/1979 and should be backported
to Alpha/Beta.

Signed-off-by: Kai Lueke <kailuke@microsoft.com>
 2025-12-19 17:53:53 +09:00
flatcar-ci
65938e0ca1 New version: main-4553.0.0-nightly-20251218-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-12-18 21:00:23 +00:00
Flatcar Buildbot
e946a4cf9f Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-12-18 12:01:56 +00:00
Flatcar Buildbot
a52db450ea Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-12-18 09:32:27 +00:00
flatcar-ci
8c5cc3b270 New version: main-4552.0.0-nightly-20251217-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-12-17 21:00:24 +00:00
Flatcar Buildbot
aac6351af6 Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-12-17 14:47:27 +00:00
James Le Cuirot
7f128bce66
Merge pull request #3524 from timbuchwaldt/main 
sys-kernel/coreos-modules: Enable Netkit flag
 2025-12-17 10:59:28 +00:00
flatcar-ci
b548c371f8 New version: main-4551.0.0-nightly-20251216-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-12-16 21:00:31 +00:00
James Le Cuirot
5a0e40ae97
sys-kernel/coreos-sources: Don't add backslashes to UNIPATCH_LIST 
It's unnecessary and looks weird.

Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2025-12-16 12:01:59 +00:00
James Le Cuirot
102ffc86fc
sys-kernel/coreos-sources: Drop unnecessary arm64 tools patch 
The hv-daemons package has been adjusted instead.

Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2025-12-16 12:01:58 +00:00
James Le Cuirot
71930b71c9
app-emulation/hv-daemons: Don't use kmake to build this 
It's essentially a standalone userspace project that happens to live
within the kernel sources. It should not be built like the kernel.

hv_fcopy_daemon was dropped upstream.

Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2025-12-16 12:01:57 +00:00
James Le Cuirot
3d1a2a44bd
app-emulation/hv-daemons: Drop 9999 ebuild 
It doesn't make any sense because there is no 9999 version of coreos-sources.

Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2025-12-16 12:01:53 +00:00
James Le Cuirot
b5e9560fba
Simplify kernel directory logic 
Having too many variables is confusing, so use the ones already provided
by upstream. linux-info.eclass uses KERNEL_DIR (if set) as the kernel
sources directory and sets KV_DIR to that for use elsewhere. If
KERNEL_DIR is unset, it checks the /usr/src/linux symlink. While we
could rely on the symlink, we want to be sure that coreos-modules and
coreos-kernel are built against the matching kernel version.

KV_OUT_DIR is the kernel output directory. It is automatically set by
linux-info.eclass, and it will never leave it empty.

Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2025-12-16 12:01:03 +00:00
Flatcar Buildbot
13e0140350 Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-12-16 11:48:39 +00:00
James Le Cuirot
4fe5f90ba3
Merge pull request #3561 from flatcar/linux-6.12.62-main 
Upgrade Linux Kernel for main from 6.12.61 to 6.12.62
 2025-12-16 11:48:25 +00:00
flatcar-ci
6213947267 New version: main-4550.0.0-nightly-20251215-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-12-15 21:00:32 +00:00
Daniel
d28ece4479 Revert PR #3534 "sysext: Add OS-dependent sysext compression" 
Revert PR #3162 "Signed OS-dependent sysexts"

Signed-off-by: Daniel Zatovic <daniel.zatovic@gmail.com>
 2025-12-15 17:56:48 +01:00
Flatcar Buildbot
1cb3f7399c sys-kernel/coreos-sources: Update from 6.12.61 to 6.12.62 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-12-13 07:05:25 +00:00
flatcar-ci
4041e4b21a New version: main-4547.0.0-nightly-20251212-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-12-13 02:31:37 +00:00
flatcar-ci
5528688d0d New version: main-4547.0.0-nightly-20251212-2100-INTERMEDIATE 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-12-12 21:00:37 +00:00
Dongsu Park
585f734799
Merge pull request #3545 from flatcar/dongsu/ue-rs-fix-downloadresult 
overlay ue-rs: fix download regression by returning Ok
 2025-12-12 14:07:15 +01:00
Dongsu Park
3bff39990f
Merge pull request #3495 from flatcar/buildbot/weekly-portage-stable-package-updates-2025-11-17 
Weekly portage-stable package updates 2025-11-17
 2025-12-12 12:57:27 +01:00
flatcar-ci
c1c79e68fd Revert failed version back to 4545.0.0+nightly-20251210-2100 2025-12-12 01:24:56 +00:00
flatcar-ci
fa201d1892 New version: main-4546.0.0-nightly-20251211-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-12-11 21:00:27 +00:00
Dongsu Park
5feee4aac6 overlay ue-rs: fix download regression by returning Ok 
Pulls in https://github.com/flatcar/ue-rs/pull/100.

Signed-off-by: Dongsu Park <dongsu@dpark.io>
 2025-12-11 15:29:56 +01:00
Flatcar Buildbot
fe2cc7053e Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-12-11 10:54:02 +00:00
flatcar-ci
d9175f6b00 New version: main-4545.0.0-nightly-20251210-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-12-10 21:00:30 +00:00
Flatcar Buildbot
2da938011d Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-12-10 15:18:32 +00:00
Mathieu Tortuyaux
20a5323e9a
Merge pull request #3542 from flatcar/cacerts-3.119-main 
Update ca-certificates in main from 3.118 to 3.119
 2025-12-10 16:18:19 +01:00
Krzesimir Nowak
b5994ce55d overlay sys-apps/baselayout: Pull in shadow group fixes 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-12-10 14:21:35 +01:00
Krzesimir Nowak
0c21b66778 overlay profiles: Drop accept keywords for sys-apps/coreutils 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-12-10 14:21:35 +01:00
Krzesimir Nowak
25acd753c2 overlay sys-fs/overlaybd: Depend on virtual/zlib instead of sys-libs/zlib 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-12-10 14:21:35 +01:00
Krzesimir Nowak
97fbc236a4 overlay profiles: Update accept keywords for dev-libs/jose 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-12-10 14:21:35 +01:00
Krzesimir Nowak
1afb85b3ae dev-libs/jose: Sync with Gentoo 
It's from Gentoo commit 6a3644bf2f9aace46ad9bbab2e4f3bccd747079e.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-12-10 14:21:35 +01:00
Krzesimir Nowak
1768ba6899 overlay dev-libs/jose: Move to portage-stable 
The package has moved from GURU to Gentoo, so we can just use that.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-12-10 14:21:34 +01:00