mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-08-17 18:06:59 +02:00
Code Issues Packages Projects Releases Wiki Activity
29,556 Commits 629 Branches 394 Tags 166 MiB
b51a1df470
Commit Graph

681 Commits

Author SHA1 Message Date
Mickaël Salaün
b2be807349
sys-kernel/coreos-modules: Enable Landlock 
Landlock is a feature to create security sandboxes thanks to 3 dedicated
system calls.  They are designed to be safe to used by any processes,
which can only drop their privileges, similarly to seccomp.

The new Landlock LSM is build in the kernel (CONFIG_SECURITY_LANDLOCK=y)
but it is not enough to make it usable by default.  As a stackable LSM,
it is required to enable it at boot time with the CONFIG_LSM list.  See
https://docs.kernel.org/userspace-api/landlock.html#kernel-support

As for other stackable LSMs, prepending Landlock to the default LSM list
enables users to potentially get more protection by default by letting
programs sandbox themselves.

As a dependency, CONFIG_SECURITY_PATH=y will be automatically set.

Signed-off-by: Mickaël Salaün <mic@digikod.net>
 2024-07-29 15:10:55 +02:00
Flatcar Buildbot
87c73ec262 app-misc/ca-certificates: Update from 3.102 to 3.102.1 2024-07-29 07:21:21 +00:00
Mathieu Tortuyaux
696f0168fd
changelog: add entries 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-07-23 12:01:30 +02:00
Mathieu Tortuyaux
dd9035644f
Merge pull request #2126 from flatcar/buildbot/weekly-portage-stable-package-updates-2024-07-16 
Weekly portage-stable package updates 2024-07-16
 2024-07-22 17:13:02 +02:00
Mathieu Tortuyaux
bef1feca36
changelog: add entries 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-07-22 17:10:16 +02:00
Mathieu Tortuyaux
98500cd0be
Merge pull request #2139 from flatcar/containerd-1.7.20-main 
Upgrade Containerd in main from 1.7.19 to 1.7.20
 2024-07-19 17:03:45 +02:00
Flatcar Buildbot
cfb72f2e85 app-containers/containerd: Update from 1.7.19 to 1.7.20 2024-07-19 08:17:51 +00:00
Flatcar Buildbot
361d7d99e1 sys-kernel/coreos-sources: Update from 6.6.40 to 6.6.41 2024-07-19 07:14:34 +00:00
Mathieu Tortuyaux
ca6660d6b0
Merge pull request #2123 from flatcar/linux-6.6.40-main 
Upgrade Linux Kernel for main from 6.6.39 to 6.6.40
 2024-07-17 09:24:14 +02:00
Krzesimir Nowak
503159972d
changelog: Add entries 2024-07-16 12:38:05 +02:00
Flatcar Buildbot
ad0c776d0e sys-kernel/coreos-sources: Update from 6.6.39 to 6.6.40 2024-07-16 07:14:12 +00:00
Mathieu Tortuyaux
a706c8bd22
Merge pull request #2116 from flatcar/linux-6.6.39-main 
Upgrade Linux Kernel for main from 6.6.38 to 6.6.39
 2024-07-15 17:19:24 +02:00
James Le Cuirot
1d7d53fad9
Upgrade to Catalyst 4 
Catalyst 4 has totally changed the way repositories are handled. It only
works when the name of the directory containing the repository matches
the configured name of that repository. This was not the case for us,
with the coreos repository residing in the coreos-overlay directory. We
wanted to move and rename our repositories anyway, but this is a big
change, so we'll do separately. For now, this just renames coreos to
coreos-overlay.

Catalyst 4 also ingests the main repository snapshot as a squashfs
rather than a tarball. It features a utility to generate such a
snapshot, but it doesn't fit Flatcar well, particularly because it
expects each ebuild repository to reside at the top level of its own git
repository. It was very easy to call tar2sqfs manually though.

Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2024-07-15 14:27:59 +01:00
Flatcar Buildbot
e244dff3e5 sys-kernel/coreos-sources: Update from 6.6.38 to 6.6.39 2024-07-12 07:13:48 +00:00
Flatcar Buildbot
d310d76937 sys-kernel/coreos-firmware: Update from 20240610 to 20240709 2024-07-11 07:13:05 +00:00
Mathieu Tortuyaux
a21af09393
Merge pull request #2111 from flatcar/linux-6.6.38-main 
Upgrade Linux Kernel for main from 6.6.37 to 6.6.38
 2024-07-10 14:49:21 +02:00
Mathieu Tortuyaux
07375b0f29
Merge pull request #2090 from flatcar/containerd-1.7.19-main 
Upgrade Containerd in main from 1.7.18 to 1.7.19
 2024-07-10 13:48:31 +02:00
Flatcar Buildbot
94ee7cba59 sys-kernel/coreos-sources: Update from 6.6.37 to 6.6.38 2024-07-10 07:14:47 +00:00
Mathieu Tortuyaux
7ac20b64c9
Merge pull request #2110 from flatcar/tormath1/nasm 
dev-lang/nasm: sync with the upstream
 2024-07-09 09:21:25 +02:00
Adrian Vladu
fe5f145b30
Merge pull request #2089 from flatcar/ader1990/systemd-minor-version-upgrade-255-8 
sys-apps/systemd: updated to minor version 255.8
 2024-07-08 20:03:09 +03:00
Mathieu Tortuyaux
a6dd623a13
Merge pull request #2108 from flatcar/cacerts-3.102-main 
Update ca-certificates in main from 3.101 to 3.102
 2024-07-08 15:20:17 +02:00
Mathieu Tortuyaux
68d97c5771
changelog: add runc entry 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-07-08 14:46:07 +02:00
Flatcar Buildbot
58788d8dbc
app-containers/containerd: Update from 1.7.18 to 1.7.19 2024-07-08 14:27:56 +02:00
Mathieu Tortuyaux
939575795b
changelog: add entries 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-07-08 10:24:57 +02:00
Flatcar Buildbot
b0b84ed05e app-misc/ca-certificates: Update from 3.101 to 3.102 2024-07-08 07:21:32 +00:00
Flatcar Buildbot
2299e4c4b6 sys-kernel/coreos-sources: Update from 6.6.36 to 6.6.37 2024-07-06 07:11:28 +00:00
Adrian Vladu
2821acad27 sys-apps/systemd: add changelog for 225.8 2024-07-03 15:34:58 +03:00
Mathieu Tortuyaux
a568f62513
Merge pull request #2088 from flatcar/vmware-12.4.5-main 
Upgrade open-vm-tools in main from 12.4.0 to 12.4.5
 2024-07-03 14:26:18 +02:00
Mathieu Tortuyaux
2da4ca94d7
Merge pull request #2075 from flatcar/cacerts-3.101.1-main 
Update ca-certificates in main from 3.101 to 3.101.1
 2024-07-03 14:23:26 +02:00
Flatcar Buildbot
9c0eda19ae app-emulation/open-vm-tools: Update from 12.4.0 to 12.4.5 2024-07-03 07:09:14 +00:00
Sayan Chowdhury
2e27b6ec42
changelog: Add the changelog for openssh 
Signed-off-by: Sayan Chowdhury <schowdhury@microsoft.com>
 2024-07-01 19:33:39 +05:30
Flatcar Buildbot
0860b5f73a app-misc/ca-certificates: Update from 3.101 to 3.101.1 2024-07-01 07:21:18 +00:00
Mathieu Tortuyaux
ca891106f7
Merge pull request #2065 from flatcar/linux-6.6.36-main 
Upgrade Linux Kernel for main from 6.6.35 to 6.6.36
 2024-06-28 15:36:42 +02:00
Flatcar Buildbot
c6d6da2d8e sys-kernel/coreos-sources: Update from 6.6.35 to 6.6.36 2024-06-28 07:14:08 +00:00
Mark Farrell
b79b81648c sys-libs/pam: add changelog 2024-06-27 09:04:02 +10:00
James Le Cuirot
355cfe0227
coreos-base/coreos-init: Bump to fix flatcar-install custom key issue (#2062) 
Closes: https://github.com/flatcar/scripts/pull/1471
Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2024-06-25 16:56:02 +01:00
Flatcar Buildbot
2f19712f68 sys-kernel/coreos-sources: Update from 6.6.34 to 6.6.35 2024-06-22 07:14:00 +00:00
Adrian Vladu
6fbfa5c034 grub_install: add changelog for the file removals 
Signed-off-by: Adrian Vladu <avladu@cloudbasesolutions.com>
 2024-06-21 11:10:20 +03:00
Mathieu Tortuyaux
101ef8c4f3
changelog: add entry 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-06-19 15:38:03 +02:00
Mathieu Tortuyaux
f5389cc531
Merge pull request #2041 from flatcar/tormath1/afterburn 
coreos-base/afterburn: sync with 5.6.0
 2024-06-19 15:37:11 +02:00
Mathieu Tortuyaux
34aa9c9e88
changelog: add entry 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-06-19 10:27:51 +02:00
Flatcar Buildbot
969f12a531 dev-lang/rust: Update from 1.78.0 to 1.79.0 2024-06-18 07:44:40 +00:00
Flatcar Buildbot
dc456862d7 sys-kernel/coreos-sources: Update from 6.6.33 to 6.6.34 2024-06-17 07:12:56 +00:00
Mathieu Tortuyaux
345c5e25b8
Merge pull request #2030 from flatcar/linux-6.6.33-main 
Upgrade Linux Kernel for main from 6.6.32 to 6.6.33
 2024-06-13 18:05:46 +02:00
Flatcar Buildbot
524cac0445 sys-kernel/coreos-sources: Update from 6.6.32 to 6.6.33 2024-06-13 07:12:41 +00:00
Flatcar Buildbot
30d4bb340e sys-kernel/coreos-firmware: Update from 20240513 to 20240610 2024-06-13 07:12:24 +00:00
Mathieu Tortuyaux
8381ea1783
Merge pull request #2020 from flatcar/containerd-1.7.18-main 
Upgrade Containerd in main from 1.7.17 to 1.7.18
 2024-06-10 19:21:18 +02:00
Mathieu Tortuyaux
427b6b77b6
Merge pull request #2026 from flatcar/cacerts-3.101-main 
Update ca-certificates in main from 3.100 to 3.101
 2024-06-10 14:30:07 +02:00
Mathieu Tortuyaux
5f151a08bc
Merge pull request #1979 from JeWe37/python-sysext 
sysext: Add python sysext
 2024-06-10 14:26:52 +02:00
Mathieu Tortuyaux
f48098f31b
changelog: add entry 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-06-10 14:07:12 +02:00
Flatcar Buildbot
c6a30d5959 app-misc/ca-certificates: Update from 3.100 to 3.101 2024-06-10 07:20:55 +00:00
Mathieu Tortuyaux
7915f23486
sys-apps/ignition: bump to 2.19.0 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-06-07 14:09:06 +02:00
Flatcar Buildbot
6e27c525c5 app-containers/containerd: Update from 1.7.17 to 1.7.18 2024-06-07 08:18:17 +00:00
Alejandro Ripoll
68cf358c8f OpenStack: Changed metadata hostname source order 
Change `flatcar-openstack-hostname.service` to use afterburn `openstack` provider implemented on coreos/afterburn#462  instead of `openstack-metadata`.
BootEngine PR: flatcar/bootengine#96
 2024-06-03 14:18:19 +02:00
Jendrik Weise
64c9ed5820 sysext: Add python sysext 
Minimal sysext containing dev-lang/python and dev-python/pip.
Enabled ensurepip for python and added required packages from Gentoo.
 2024-05-29 19:18:18 +02:00
Flatcar Buildbot
814790d93d sys-kernel/coreos-sources: Update from 6.6.31 to 6.6.32 2024-05-26 07:12:39 +00:00
Krzesimir Nowak
0c82cdcd14
Merge pull request #1732 from flatcar/krnowak/crypt 
Migrate from glibc libcrypt to sys-libs/libxcrypt
 2024-05-24 10:04:51 +02:00
Mathieu Tortuyaux
295bf97417
Merge pull request #1992 from flatcar/linux-6.6.31-main 
Upgrade Linux Kernel for main from 6.6.30 to 6.6.31
 2024-05-23 13:02:57 +02:00
Krzesimir Nowak
f1636fc6de changelog: Add an entry 2024-05-23 11:19:30 +02:00
Dongsu Park
ba12d45e16
Merge pull request #1981 from flatcar/rust-1.78.0-main 
Upgrade dev-lang/rust and virtual/rust in main from 1.77.2 to 1.78.0
 2024-05-22 17:52:24 +02:00
Flatcar Buildbot
b5c85fee12 sys-kernel/coreos-sources: Update from 6.6.30 to 6.6.31 2024-05-18 07:11:58 +00:00
Dongsu Park
1c4b67fb21
Merge pull request #1970 from flatcar/linux-6.6.30-main 
Upgrade Linux Kernel for main from 6.6.28 to 6.6.30
 2024-05-17 16:14:33 +02:00
Dongsu Park
6aebb2b70c
Merge pull request #1990 from flatcar/dongsu/glibc-2.38-r13 
sys-libs/glibc: update to 2.38-r13
 2024-05-17 16:09:02 +02:00
Flatcar Buildbot
53d6706380 app-containers/containerd: Update from 1.7.16 to 1.7.17 2024-05-17 08:17:33 +00:00
Dongsu Park
e9047ca1fb changelog: add security changelog for glibc 2.38-r13 2024-05-16 11:20:45 +02:00
Flatcar Buildbot
f11bd27baa sys-kernel/coreos-firmware: Update from 20240410 to 20240513 2024-05-16 07:10:19 +00:00
Flatcar Buildbot
40b8c2b4d0 app-misc/ca-certificates: Update from 3.99 to 3.100 2024-05-13 07:20:39 +00:00
Flatcar Buildbot
1c3f15ab2a dev-lang/rust: Update from 1.77.2 to 1.78.0 2024-05-07 07:34:30 +00:00
Jendrik Weise
cd849d6849 sysext: Add podman sysext 
Enabled user session dbus in base image to support podman rootless mode.
Extension images can now be created from multiple packages by seperating
them with a comma. The podman sysext includes app-containers/podman and
net-misc/passt.
It can be enabled by adding podman to /etc/flatcar/enabled-sysext.conf.
Potential TODO: gpgme had to be added as BDEPEND to podman ebuild.
 2024-05-03 22:59:36 +09:00
Flatcar Buildbot
5ce9e14fec sys-kernel/coreos-sources: Update from 6.6.28 to 6.6.30 2024-05-03 07:12:18 +00:00
Adrian Vladu
6efe345d89 image: add kubevirt image build 
As Ignition supports KubeVirt, add a custom oem for it and also the
required parts to be able to build an image in .qcow2 format that
is already using internal .qcow2 gzip compression.

Fixes: https://github.com/flatcar/Flatcar/issues/1358

Signed-off-by: Adrian Vladu <avladu@cloudbasesolutions.com>
 2024-04-30 09:19:16 +03:00
Flatcar Buildbot
3a7330f697 app-containers/containerd: Update from 1.7.15 to 1.7.16 2024-04-26 08:16:43 +00:00
Mathieu Tortuyaux
0a7819a5f0
changelog: add entry 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-04-26 09:47:29 +02:00
Krzesimir Nowak
ed642d106b
Merge pull request #1949 from flatcar/buildbot/weekly-portage-stable-package-updates-2024-04-22 
Weekly portage-stable package updates 2024-04-22
 2024-04-25 17:16:42 +02:00
Krzesimir Nowak
eb19d6916f changelog: Add entries 2024-04-25 17:15:51 +02:00
Jeremi Piotrowski
0d40f3cba6
Merge pull request #1950 from flatcar/jepio/azure-fixes 
Update Azure patch.
Add azure-nvme-utils for nvme symlinks.
Disable interface restart during waagent init on Azure.
 2024-04-25 15:34:26 +02:00
Jeremi Piotrowski
7a1a004700 changelog: Add entry for azure-nvme-utils 2024-04-24 16:03:31 +00:00
Flatcar Buildbot
e62221d757 sys-kernel/coreos-sources: Update from 6.6.21 to 6.6.28 2024-04-24 15:05:13 +02:00
Krzesimir Nowak
413c66fbe3 changelog: Add entries 2024-04-22 16:47:47 +02:00
Flatcar Buildbot
65e180acb4 dev-lang/rust: Update from 1.77.1 to 1.77.2 2024-04-18 18:46:49 +09:00
Julian Tölle
08ba85c6a3 changelog: add entry for hetzner images 2024-04-16 17:08:04 +02:00
Flatcar Buildbot
ce925402f2 app-containers/containerd: Update from 1.7.14 to 1.7.15 2024-04-12 08:16:57 +00:00
Adrian Vladu
ab2cb0fff3 ci-automation/vms: provide Hyper-V images with .zip compression 
On Windows, the .bz2 compression format is not supported by native
tooling and external tools like 7zip need to be installed.

Switching to .zip compression, there will be no need for the extra step
of having external tools.

See: https://github.com/flatcar/Flatcar/issues/1009

Signed-off-by: Adrian Vladu <avladu@cloudbasesolutions.com>
 2024-04-11 15:43:07 +03:00
Mathieu Tortuyaux
144a0c417a
Merge pull request #1867 from flatcar/firmware-20240410-main 
Upgrade Linux Firmware in main from 20240312 to 20240410
 2024-04-11 14:00:45 +02:00
Krzesimir Nowak
0998e78944 changelog: Add entries 2024-04-11 12:39:59 +02:00
Dongsu Park
f861c8cbb9
Merge pull request #1855 from flatcar/dongsu/samba-4.18.9 
net-fs/samba: update to 4.18.9
 2024-04-11 11:14:17 +02:00
Kai Lueke
f57a928b4a coreos-base/common-oem-files: Enable flatcar.autologin for OpenStack 
So far the console in OpenStack (or Brightbox which shares the image)
was not usable well until one issues a reboot to add the autologin in
the GRUB menu.
Add it by default so that one doesn't need this reboot trick.
 2024-04-11 16:48:31 +09:00
Flatcar Buildbot
87f6e07a44 sys-kernel/coreos-firmware: Update from 20240312 to 20240410 2024-04-11 07:12:30 +00:00
Kai Lueke
834d32efa8 build_library/grub.cfg: Enable TPM module by default 
For binding a secret to the OS we need TPM PCRs that measure the kernel
and boot configuration (UEFI). Used for:
https://github.com/flatcar/flatcar-website/pull/317
 2024-04-09 22:17:18 +09:00
Kai Lueke
de4eb8f755 Set up symlinks for same image artifacts to remove qemu/qemu_uefi_secure 
The qemu and qemu_uefi_secure images have the same contents as the
qemu_uefi image which wastes space on the release server. A similar
case is the PXE vmlinuz which is the same as the regular one, too.

Set up symlinks for same images, and also detect this when compressing
to set up symlinks there as well. To reduce complexity, the qemu and
qemu_uefi_secure images are not supported anymore and the Jenkins or
GitHub CI will skip over them if specified. Users that build their own
images need to adapt, though.
 2024-04-09 15:09:29 +02:00
Adrian Vladu
7d4917d67c image_to_vm: add support for hyper-v vhdx format 
Add support for Gen 2 Hyper-V VMs.

`./image_to_vm` tool has now a new supported format: `hyperv_vhdx`,
that produces .vhdx dynamic disks.

How to use:

```bash
 ./image_to_vm.sh --from ../build/images/amd64-usr/developer-latest/ --format hyperv_vhdx
```

See: https://github.com/flatcar/Flatcar/issues/1009

Uses PR: https://github.com/flatcar/bootengine/pull/92

Signed-off-by: Adrian Vladu <avladu@cloudbasesolutions.com>
 2024-04-09 10:52:06 +03:00
Dongsu Park
3ded55a8f9 changelog: add changelog for samba 4.18.9 2024-04-08 15:52:48 +02:00
Kai Lueke
7379db37e8 vm_image_util.sh: Bump default VM memory to 2 GB 
While Flatcar itself runs fine with 1 GB, many workloads do not and
having to debug this is time consuming when one forgets to bump the VM
memory, e.g., in the Qemu script.
Default to 2 GB as known-good setting for things like Kubernetes or
setting up LUKS devices.
 2024-04-04 12:55:37 +09:00
Krzesimir Nowak
5dd2ebf680
Merge pull request #1788 from flatcar/buildbot/weekly-portage-stable-package-updates-2024-03-25 
Weekly portage-stable package updates 2024-03-25
 2024-04-03 13:20:45 +02:00
Kai Lueke
6d01140927 app-emulation/actool,acbuild: Remove actool and acbuild 
Both actool and acbuild upstream are deprecated and probably not in
use anymore.
Remove actool from the image and acbuild from the SDK.
 2024-04-03 16:18:56 +09:00
Krzesimir Nowak
c70df0dbd5 changelog: Add entries 2024-04-03 08:54:01 +02:00
Dongsu Park
ef31aa7956
Merge pull request #1818 from flatcar/rust-1.77.1-main 
Upgrade dev-lang/rust and virtual/rust in main from 1.77.0 to 1.77.1
 2024-04-02 16:39:11 +02:00
Kai Lueke
29dae1e506 app-arch/xz-utils: Sync with Gentoo (revert to known-good) 
The 5.6 release contained a backdoor for SSH. The 5.6 release wasn't
used in Flatcar and so far it seems that the backdoor wouldn't even be
compiled for Gentoo. However, we so far don't know whether the other
patches are malicious.

Revert to 5.4.2 as last known-good release (like Gentoo did).
Note that the Flatcar main branch had a copy of the 5.6 ebuild but was
not using it. Flatcar Alpha was on 5.4.6-r1, so before the backdoor but
the malicious contributor did other changes of unclear impact part of
this release. Similarly, Beta is on 5.4.5 and Stable is on 5.4.3. These
should get downgraded, too.
 2024-04-02 16:03:16 +02:00
Flatcar Buildbot
a60b812a57 dev-lang/rust: Update from 1.77.0 to 1.77.1 2024-04-02 13:19:59 +02:00
Jeremi Piotrowski
dd9e0303c4
Merge pull request #1792 from flatcar/jepio/clock 
NTP/PTP by default on Azure/AWS/GCP
 2024-03-28 12:14:27 +01:00
Jeremi Piotrowski
d93f0807b0 changelog: Add entry for PTP/NTP changes 
Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
 2024-03-28 12:13:48 +01:00
Kai Lueke
44086829b0 sys-kernel/bootengine: Install libcryptsetup-token-systemd-tpm2 plugin 
This pulls in https://github.com/flatcar/bootengine/pull/93
to support systemd-cryptenroll for the rootfs with TPMs.
 2024-03-28 16:55:19 +09:00
Gabriel
d47a052ebf Update changelog/bugfixes/2024-03-25-disable-user-configdrive-on-openstack.md 
Co-authored-by: Kai Lüke <pothos@users.noreply.github.com>
 2024-03-27 17:05:46 +02:00
Gabriel Adrian Samfira
041662aaa9 Update coreos-cloudinit to latest main branch 
This change updates coreos-cloudinit to the latest flatcar-master commit.

This change disables user-configdrive.service on OpenStack,
as coreos-cloudinit.service already runs on OpenStack when the system is
not configured via ignition.

Signed-off-by: Gabriel Adrian Samfira <gsamfira@cloudbasesolutions.com>
 2024-03-27 17:05:46 +02:00
Dongsu Park
21a7da41fc
Merge pull request #1797 from flatcar/vmware-12.4.0-main 
Upgrade open-vm-tools in main from 12.3.5 to 12.4.0
 2024-03-27 14:21:38 +01:00
Flatcar Buildbot
9c1e19f2a6 dev-lang/rust: Update from 1.76.0 to 1.77.0 2024-03-27 10:07:27 +01:00
Flatcar Buildbot
25c05d92e2 app-emulation/open-vm-tools: Update from 12.3.5 to 12.4.0 2024-03-27 07:07:00 +00:00
David Eichin
e5179b2e78 changelog: upgrade toolbox to latest version 
This version fixes that mounted snapshots with ctr are being gc'ed which
breaks the toolbox.
 2024-03-26 08:25:57 +01:00
Henrik Schmidt
1bd8373430 Changelog: sys-kernel/coreos-modules: Enable CONFIG_IGC=y 2024-03-26 00:45:51 +09:00
Krzesimir Nowak
361731d4a9 changelog: Add an entry 2024-03-21 17:44:52 +01:00
Jeremi Piotrowski
7b937f2ddb
Merge pull request #1770 from flatcar/jepio/amd-pstate 
sys-kernel/coreos-modules: Enable CONFIG_X86_AMD_PSTATE=y
 2024-03-19 16:38:54 +01:00
Jeremi Piotrowski
8417eda473 changelog: Add entry for X86_AMD_PSTATE 
Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
 2024-03-19 16:38:19 +01:00
Jeremi Piotrowski
b790241057
Merge pull request #1771 from flatcar/multipathd-disable-rt 
sys-fs/multipath-tools: Disable realtime scheduling for multipathd
 2024-03-19 15:41:07 +01:00
Jeremi Piotrowski
71ffac206b changelog: Add entry for multipath realtime change 
Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
 2024-03-19 14:37:04 +00:00
Dongsu Park
d30566da4b
Merge pull request #1768 from flatcar/cacerts-3.99-main 
Update ca-certificates in main from 3.98 to 3.99
 2024-03-19 14:36:46 +01:00
Dongsu Park
c34fb9f7fc
Merge pull request #1752 from flatcar/containerd-1.7.14-main 
Upgrade Containerd in main from 1.7.13 to 1.7.14
 2024-03-18 16:40:54 +01:00
Flatcar Buildbot
3f97fcf360 app-misc/ca-certificates: Update from 3.98 to 3.99 2024-03-18 07:19:26 +00:00
Kai Lüke
f446fe851f
Merge pull request #1744 from flatcar/firmware-20240312-main 
Upgrade Linux Firmware in main from 20240220 to 20240312
 2024-03-15 20:14:23 +01:00
Flatcar Buildbot
8830c57dc6 sys-kernel/coreos-sources: Update from 6.6.17 to 6.6.21 2024-03-15 11:54:18 +01:00
Flatcar Buildbot
c4fb5d03ac app-containers/containerd: Update from 1.7.13 to 1.7.14 2024-03-15 08:16:08 +00:00
Adrian Vladu
467287eb5b sys-apps/systemd: added changelog entry for 252 to 255 upgrade 
Signed-off-by: Adrian Vladu <avladu@cloudbasesolutions.com>
 2024-03-14 12:07:07 +00:00
Simon Campion
2a5917deb9 changelog: add entry for disk encryption 2024-03-14 12:09:16 +01:00
Flatcar Buildbot
fae8931aef sys-kernel/coreos-firmware: Update from 20240220 to 20240312 2024-03-14 07:13:42 +00:00
Kai Lüke
e5867917ec
Merge pull request #1742 from flatcar/jepio/zfs-sysext 
Build ZFS sysext with each release
 2024-03-13 23:24:30 +01:00
Jeremi Piotrowski
3aa9cd21ac changelog: Add entry for zfs sysext 
Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
 2024-03-13 23:23:44 +01:00
Adrian Vladu
89cca15171
Merge pull request #1734 from flatcar/ader1990/decrease_initrd_size_v1 
initrd_size_decrease: remove mlxsw_spectrum/mlxsw_core kernel modules
 2024-03-12 19:36:29 +02:00
Adrian Vladu
3da9f859be initrd_size_decrease: remove mlxsw_spectrum/mlxsw_core kernel modules 
This commit is part of the effort to decrease the initrd size:
Partially-Fixes: https://github.com/flatcar/Flatcar/issues/1381

Signed-off-by: Adrian Vladu <avladu@cloudbasesolutions.com>
 2024-03-12 16:51:35 +00:00
Mathieu Tortuyaux
009220ff54
Merge pull request #1683 from flatcar/tormath1/scaleway 
oem: provide scaleway images
 2024-03-11 09:34:05 +01:00
Krzesimir Nowak
93c4a369a8
Merge pull request #1727 from flatcar/buildbot/weekly-portage-stable-package-updates-2024-03-04 
Weekly portage-stable package updates 2024-03-04
 2024-03-06 16:05:13 +01:00
Kai Lüke
a2aa30f487
Merge pull request #1729 from flatcar/kai/sysext-merge-contents 
build_sysext: Remove any opaque directory markers
 2024-03-05 17:03:15 +01:00
Kai Lueke
5aecc0a802 build_sysext: Remove any opaque directory markers 
The Flatcar extension images built with build_sysext created directories
in the overlay in a way that masked contents from other layers.
Instead of fixing the way we create directories, make use of
postprocessing to avoid any similar problems show up again in the
future.
 2024-03-05 17:01:43 +01:00
Kai Lüke
6c2c11db7d
Merge pull request #1707 from flatcar/kai/pxe-compat 
sys-kernel/bootengine: Restore support for custom PXE OEM contents
 2024-03-05 16:35:42 +01:00
Kai Lueke
b0ce20639b sys-kernel/bootengine: Restore support for custom PXE OEM contents 
This pulls in https://github.com/flatcar/bootengine/pull/88
to restore looking at the documented /usr/share/oem path in a custom
PXE OEM initrd instead of /oem.
 2024-03-05 16:35:03 +01:00
Mathieu Tortuyaux
fab18fdb42
changelog: add entry 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-03-05 13:51:07 +01:00
Mathieu Tortuyaux
a701d71e59
changelog: update entry 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-03-04 17:34:53 +01:00
Dongsu Park
a842366ed9
Merge pull request #1669 from flatcar/linux-6.6.17-main 
Upgrade Linux Kernel for main from 6.6.16 to 6.6.17
 2024-03-04 15:08:23 +01:00
Krzesimir Nowak
89559227ee changelog: Add entries 2024-03-04 13:56:02 +01:00
Krzesimir Nowak
91853181d1 changelog: Add an entry 2024-03-01 16:14:22 +01:00
Krzesimir Nowak
f2d7be8cd9
Merge pull request #1702 from flatcar/buildbot/weekly-portage-stable-package-updates-2024-02-26 
Weekly portage-stable package updates 2024-02-26
 2024-02-28 14:51:01 +01:00
Kai Lüke
d35414a2ba
Merge pull request #1589 from flatcar/sayan/secureboot-changes 
Initial implementation for Secure boot support
 2024-02-26 15:46:31 +01:00
Sayan Chowdhury
0fc380cf21 sys-boot/shim: Add the changelog for shim upgrade, and secureboot 
Signed-off-by: Sayan Chowdhury <schowdhury@microsoft.com>
 2024-02-26 15:46:12 +01:00
Dongsu Park
dbd40fbf90
Merge pull request #1686 from flatcar/firmware-20240220-main 
Upgrade Linux Firmware in main from 20240115 to 20240220
 2024-02-26 14:24:29 +01:00
Krzesimir Nowak
08baf293ef changelog: Add an entry 2024-02-26 10:31:23 +01:00
Mathieu Tortuyaux
c3c046529c
Merge pull request #1689 from flatcar/tormath1/keyutils 
sys-apps/keyutils: sync with upstream
 2024-02-23 14:54:09 +01:00
Mathieu Tortuyaux
e5970bb3cb
changelog: add entry 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-02-23 14:53:10 +01:00
Mathieu Tortuyaux
ea3d0cf1c4
changelog: add entry 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-02-23 14:33:29 +01:00
Krzesimir Nowak
bf4b088cb8
Merge pull request #1672 from flatcar/buildbot/weekly-portage-stable-package-updates-2024-02-19 
Weekly portage-stable package updates 2024-02-19
 2024-02-22 09:01:41 +01:00
Flatcar Buildbot
d4a5f08dc7 sys-kernel/coreos-firmware: Update from 20240115 to 20240220 2024-02-22 07:11:34 +00:00
Dongsu Park
051232e560
Merge pull request #1681 from flatcar/dongsu/gnupg-2.2.42 
app-crypt/gnupg: update to 2.2.42-r2
 2024-02-21 16:04:41 +01:00
Mathieu Tortuyaux
2c2b20dd7d
changelog: add entry 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-02-21 15:47:14 +01:00
Krzesimir Nowak
1020bc7dcf changelog: Add entries 2024-02-21 11:05:42 +01:00
Dongsu Park
bbb70f3de1 changelog: add changelog for gnupg 2.2.42 2024-02-20 13:37:45 +01:00
Flatcar Buildbot
1d5d073308 app-misc/ca-certificates: Update from 3.97 to 3.98 2024-02-19 07:19:41 +00:00
Flatcar Buildbot
b0829ce5b4 sys-kernel/coreos-sources: Update from 6.6.16 to 6.6.17 2024-02-17 07:10:38 +00:00
Dongsu Park
020e604d4e
Merge pull request #1662 from flatcar/dongsu/sudo-1.9.15 
app-admin/sudo: update to 1.9.15_p5
 2024-02-14 15:10:20 +01:00
Adrian Vladu
f770658e7b
Merge pull request #1654 from flatcar/ader1990/fix-kmod-static-nodes 
bootengine: fix kmod-static-nodes
 2024-02-14 14:21:48 +02:00
Krzesimir Nowak
aaeea98037
Merge pull request #1609 from flatcar/buildbot/weekly-portage-stable-package-updates-2024-01-29 
Weekly portage-stable package updates 2024-01-29
 2024-02-14 12:46:20 +01:00
Adrian Vladu
70ad180b0c bootengine: fix kmod static node creation 
Update the bootengine commit id to use the fix from:
https://github.com/flatcar/bootengine/pull/85

Fixes kubevirt vm creation by ensuring that /dev/vhost-net static node gets created
Fixes: https://github.com/flatcar/Flatcar/issues/1336

Signed-off-by: Adrian Vladu <avladu@cloudbasesolutions.com>
 2024-02-14 10:38:37 +00:00
Dongsu Park
29f32b1f18 changelog: add changelog for sudo 1.9.15p5 2024-02-14 09:25:55 +01:00
Dongsu Park
19e97c359d
Merge pull request #1653 from flatcar/rust-1.76.0-main 
Upgrade dev-lang/rust and virtual/rust in main from 1.75.0 to 1.76.0
 2024-02-14 09:23:12 +01:00
Dongsu Park
97ba68b68b
Merge pull request #1651 from flatcar/go-1.19.13-and-1.20.14-main 
Upgrade Go from 1.20.13 to 1.20.14
 2024-02-14 09:17:52 +01:00
Flatcar Buildbot
d18efe61a5 dev-lang/rust: Update from 1.75.0 to 1.76.0 2024-02-13 17:09:33 +01:00
Krzesimir Nowak
60fc0f9d4f
Merge pull request #1567 from flatcar/krnowak/glibc-update 
Update sys-libs/glibc to 2.38
 2024-02-13 15:06:26 +01:00
Kai Lueke
c0b2f1ce2f coreos-base/update_engine: Support updating old airgapped clients 
This pulls in https://github.com/flatcar/update_engine/pull/38
with two workarounds to read out proxy env vars from the service unit
and to read out the XML response from the journal logs, because the XML
passing and the passing of proxy env vars is not present in old clients.
 2024-02-12 17:13:34 +01:00
Flatcar Buildbot
d55c31f6f9 dev-lang/go: Update from 1.20.13 to 1.20.14 2024-02-12 07:22:18 +00:00
Krzesimir Nowak
a02e04d6ae
Merge pull request #1631 from daMupfel/cloudinit-cloudsigma-fix-duplicated-service-execution 
changelog: remove cloudsigma custom cloudinit service configuration
 2024-02-08 15:29:22 +01:00
David Eichin
0cff10309b changelog: remove cloudsigma custom cloudinit service configuration 
CloudSigma uses a serial port to transfer metadata into a running
instance. Because the service was overwritten with the configuration
"restart" it was possible that the previous instance got interrupted.
This left the serial connection in an non-deterministic state as the
next user would get output from the previous request. The service in
general was not needed as the cloud oem is already set to cloudsigma.
 2024-02-08 15:18:04 +01:00
Krzesimir Nowak
8af400c51b changelog: Add entries 2024-02-08 14:27:11 +01:00
Krzesimir Nowak
9f6479e58e changelog: Add entries 2024-02-08 14:20:17 +01:00
Krzesimir Nowak
4590ad3d6e changelog: Add entries 2024-02-07 10:16:32 +01:00
Sayan Chowdhury
14ffb04418
Merge pull request #1627 from flatcar/linux-6.6.16-main 
Upgrade Linux Kernel for main from 6.6.12 to 6.6.16
 2024-02-06 18:36:02 +05:30
Flatcar Buildbot
f4e78b34eb sys-kernel/coreos-sources: Update from 6.6.12 to 6.6.16 2024-02-06 07:11:20 +00:00
Flatcar Buildbot
55a27b72da app-containers/containerd: Update from 1.7.12 to 1.7.13 2024-02-02 08:16:09 +00:00
Kai Lüke
a97efb8882
Merge pull request #1601 from flatcar/kai/oem-optional 
coreos-base/coreos-init: Add flatcar-update flag to skip OEM payloads
 2024-02-01 19:27:58 +01:00
Kai Lueke
e16da83984 coreos-base/coreos-init: Add flatcar-update flag to skip OEM payloads 
This pulls in https://github.com/flatcar/init/pull/114 to
support a flag to skip providing OEM payloads, with the goal of easing
downgrades to non-sysext-OEM releases or, when backported to LTS with
the default behavior switched, to opt-in to OEM payloads for airgapped
updates that can't use the fallback download.
 2024-02-01 19:27:38 +01:00
Flatcar Buildbot
3676e6ad8f app-misc/ca-certificates: Update from 3.96 to 3.97 2024-01-29 07:17:57 +00:00
Krzesimir Nowak
24dab44337
Merge pull request #1569 from flatcar/buildbot/weekly-portage-stable-package-updates-2024-01-15 
Weekly portage-stable package updates 2024-01-15
 2024-01-25 18:15:17 +01:00
Dongsu Park
75ca7d9e79
Merge pull request #1591 from flatcar/containerd-1.7.12-main 
Upgrade Containerd in main from 1.7.11 to 1.7.12
 2024-01-25 17:56:17 +01:00
Kai Lueke
32737a23dc coreos-base/update_engine: Forward proxy env for postinstall script 
This pulls in https://github.com/flatcar/update_engine/pull/37
to forward the proxy env vars for curl and ue-rs download_sysext
(Flatcar Stable currently uses curl, Alpha uses ue-rs).
 2024-01-24 14:52:46 +01:00
Dongsu Park
e114c3717f
Merge pull request #1582 from flatcar/firmware-20240115-main 
Upgrade Linux Firmware in main from 20231211 to 20240115
 2024-01-19 10:15:54 +01:00
Flatcar Buildbot
1a86cb7abc app-containers/containerd: Update from 1.7.11 to 1.7.12 2024-01-19 08:17:28 +00:00
Kai Lüke
b4f339220a
Merge pull request #1580 from flatcar/kai/ue-rs-target-filename 
coreos-base/(ue-rs|update_engine): Control extracted OEM payload name
 2024-01-18 11:54:17 +01:00
Kai Lueke
d05773b8ee coreos-base/(ue-rs|update_engine): Control extracted OEM payload name 
This pulls in https://github.com/flatcar/ue-rs/pull/49 and
https://github.com/flatcar/update_engine/pull/36 to fix the handling
of OEM update payloads in a Nebraska response with self-hosted packages.
Before this fix the processing failed and had to rely on the fallback
download from the release server.
 2024-01-18 11:53:54 +01:00
Flatcar Buildbot
c6ec730945 sys-kernel/coreos-firmware: Update from 20231211 to 20240115 2024-01-18 07:13:00 +00:00
Dongsu Park
d7415b2aec changelog: add update changelog for afterburn 5.5.1 2024-01-17 10:18:44 +01:00
Dongsu Park
4f789d1cd6
Merge pull request #1573 from flatcar/linux-6.6.12-main 
Upgrade Linux Kernel for main from 6.6.8 to 6.6.12
 2024-01-16 17:34:03 +01:00
Jeremi Piotrowski
625fe5c2c8
Merge pull request #1572 from flatcar/tormath1/ssm-agent 
app-emulation/amazon-ssm-agent: use upstream makefile
 2024-01-16 15:26:19 +01:00
Krzesimir Nowak
63b41be8fe changelog: Add an entry 2024-01-16 12:57:28 +01:00
Mathieu Tortuyaux
631a11fdf0
changelog: add entry 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-01-16 11:28:17 +01:00
Jeremi Piotrowski
892a51e552 Add changelog for coreos-cloudinit bugfix 
Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
 2024-01-16 09:44:36 +01:00
Flatcar Buildbot
a7d28a8f60 sys-kernel/coreos-sources: Update from 6.6.8 to 6.6.12 2024-01-16 07:12:10 +00:00
Dongsu Park
38ae73f075
Merge pull request #1565 from flatcar/go-1.19.13-and-1.20.13-main 
Upgrade Go from 1.20.12 to 1.20.13
 2024-01-12 11:32:57 +01:00
Krzesimir Nowak
5ddb24bc40 changelog: Drop a CVE that does not affect Flatcar 2024-01-11 18:45:54 +01:00
Krzesimir Nowak
8fd9282da0 changelog: Add missing CVEs for openssh update 2024-01-11 18:45:32 +01:00
Krzesimir Nowak
82c53eb1f9
Merge pull request #1535 from flatcar/buildbot/weekly-portage-stable-package-updates-2024-01-01 
Weekly portage-stable package updates 2024-01-01
 2024-01-11 18:18:28 +01:00
Flatcar Buildbot
79cd73d7ad dev-lang/go: Update from 1.20.12 to 1.20.13 2024-01-11 18:00:56 +01:00
Krzesimir Nowak
a642a4fc55
Merge pull request #1552 from flatcar/krnowak/openssl-update 
Update dev-libs/openssl
 2024-01-09 10:36:57 +01:00
Krzesimir Nowak
eed6e16fd7
Merge pull request #1551 from flatcar/krnowak/openssh-update 
Update net-misc/openssh
 2024-01-09 10:36:44 +01:00
Krzesimir Nowak
bdf9c33519 changelog: Update an entry 2024-01-08 17:48:02 +01:00
Krzesimir Nowak
685069e01e changelog: Add entries 2024-01-08 17:42:23 +01:00