mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-11-22 02:51:56 +01:00
Code Issues Packages Projects Releases Wiki Activity
29,556 Commits 623 Branches 405 Tags
Commit Graph

681 Commits

Author SHA1 Message Date
Mickaël Salaün
b2be807349
sys-kernel/coreos-modules: Enable Landlock 
Landlock is a feature to create security sandboxes thanks to 3 dedicated
system calls.  They are designed to be safe to used by any processes,
which can only drop their privileges, similarly to seccomp.

The new Landlock LSM is build in the kernel (CONFIG_SECURITY_LANDLOCK=y)
but it is not enough to make it usable by default.  As a stackable LSM,
it is required to enable it at boot time with the CONFIG_LSM list.  See
https://docs.kernel.org/userspace-api/landlock.html#kernel-support

As for other stackable LSMs, prepending Landlock to the default LSM list
enables users to potentially get more protection by default by letting
programs sandbox themselves.

As a dependency, CONFIG_SECURITY_PATH=y will be automatically set.

Signed-off-by: Mickaël Salaün <mic@digikod.net>
 2024-07-29 15:10:55 +02:00
Flatcar Buildbot
87c73ec262 app-misc/ca-certificates: Update from 3.102 to 3.102.1 2024-07-29 07:21:21 +00:00
Mathieu Tortuyaux
696f0168fd
changelog: add entries 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-07-23 12:01:30 +02:00
Mathieu Tortuyaux
dd9035644f
Merge pull request #2126 from flatcar/buildbot/weekly-portage-stable-package-updates-2024-07-16 
Weekly portage-stable package updates 2024-07-16
 2024-07-22 17:13:02 +02:00
Mathieu Tortuyaux
bef1feca36
changelog: add entries 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-07-22 17:10:16 +02:00
Mathieu Tortuyaux
98500cd0be
Merge pull request #2139 from flatcar/containerd-1.7.20-main 
Upgrade Containerd in main from 1.7.19 to 1.7.20
 2024-07-19 17:03:45 +02:00
Flatcar Buildbot
cfb72f2e85 app-containers/containerd: Update from 1.7.19 to 1.7.20 2024-07-19 08:17:51 +00:00
Flatcar Buildbot
361d7d99e1 sys-kernel/coreos-sources: Update from 6.6.40 to 6.6.41 2024-07-19 07:14:34 +00:00
Mathieu Tortuyaux
ca6660d6b0
Merge pull request #2123 from flatcar/linux-6.6.40-main 
Upgrade Linux Kernel for main from 6.6.39 to 6.6.40
 2024-07-17 09:24:14 +02:00
Krzesimir Nowak
503159972d
changelog: Add entries 2024-07-16 12:38:05 +02:00
Flatcar Buildbot
ad0c776d0e sys-kernel/coreos-sources: Update from 6.6.39 to 6.6.40 2024-07-16 07:14:12 +00:00
Mathieu Tortuyaux
a706c8bd22
Merge pull request #2116 from flatcar/linux-6.6.39-main 
Upgrade Linux Kernel for main from 6.6.38 to 6.6.39
 2024-07-15 17:19:24 +02:00
James Le Cuirot
1d7d53fad9
Upgrade to Catalyst 4 
Catalyst 4 has totally changed the way repositories are handled. It only
works when the name of the directory containing the repository matches
the configured name of that repository. This was not the case for us,
with the coreos repository residing in the coreos-overlay directory. We
wanted to move and rename our repositories anyway, but this is a big
change, so we'll do separately. For now, this just renames coreos to
coreos-overlay.

Catalyst 4 also ingests the main repository snapshot as a squashfs
rather than a tarball. It features a utility to generate such a
snapshot, but it doesn't fit Flatcar well, particularly because it
expects each ebuild repository to reside at the top level of its own git
repository. It was very easy to call tar2sqfs manually though.

Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2024-07-15 14:27:59 +01:00
Flatcar Buildbot
e244dff3e5 sys-kernel/coreos-sources: Update from 6.6.38 to 6.6.39 2024-07-12 07:13:48 +00:00
Flatcar Buildbot
d310d76937 sys-kernel/coreos-firmware: Update from 20240610 to 20240709 2024-07-11 07:13:05 +00:00
Mathieu Tortuyaux
a21af09393
Merge pull request #2111 from flatcar/linux-6.6.38-main 
Upgrade Linux Kernel for main from 6.6.37 to 6.6.38
 2024-07-10 14:49:21 +02:00
Mathieu Tortuyaux
07375b0f29
Merge pull request #2090 from flatcar/containerd-1.7.19-main 
Upgrade Containerd in main from 1.7.18 to 1.7.19
 2024-07-10 13:48:31 +02:00
Flatcar Buildbot
94ee7cba59 sys-kernel/coreos-sources: Update from 6.6.37 to 6.6.38 2024-07-10 07:14:47 +00:00
Mathieu Tortuyaux
7ac20b64c9
Merge pull request #2110 from flatcar/tormath1/nasm 
dev-lang/nasm: sync with the upstream
 2024-07-09 09:21:25 +02:00
Adrian Vladu
fe5f145b30
Merge pull request #2089 from flatcar/ader1990/systemd-minor-version-upgrade-255-8 
sys-apps/systemd: updated to minor version 255.8
 2024-07-08 20:03:09 +03:00
Mathieu Tortuyaux
a6dd623a13
Merge pull request #2108 from flatcar/cacerts-3.102-main 
Update ca-certificates in main from 3.101 to 3.102
 2024-07-08 15:20:17 +02:00
Mathieu Tortuyaux
68d97c5771
changelog: add runc entry 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-07-08 14:46:07 +02:00
Flatcar Buildbot
58788d8dbc
app-containers/containerd: Update from 1.7.18 to 1.7.19 2024-07-08 14:27:56 +02:00
Mathieu Tortuyaux
939575795b
changelog: add entries 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-07-08 10:24:57 +02:00
Flatcar Buildbot
b0b84ed05e app-misc/ca-certificates: Update from 3.101 to 3.102 2024-07-08 07:21:32 +00:00
Flatcar Buildbot
2299e4c4b6 sys-kernel/coreos-sources: Update from 6.6.36 to 6.6.37 2024-07-06 07:11:28 +00:00
Adrian Vladu
2821acad27 sys-apps/systemd: add changelog for 225.8 2024-07-03 15:34:58 +03:00
Mathieu Tortuyaux
a568f62513
Merge pull request #2088 from flatcar/vmware-12.4.5-main 
Upgrade open-vm-tools in main from 12.4.0 to 12.4.5
 2024-07-03 14:26:18 +02:00
Mathieu Tortuyaux
2da4ca94d7
Merge pull request #2075 from flatcar/cacerts-3.101.1-main 
Update ca-certificates in main from 3.101 to 3.101.1
 2024-07-03 14:23:26 +02:00
Flatcar Buildbot
9c0eda19ae app-emulation/open-vm-tools: Update from 12.4.0 to 12.4.5 2024-07-03 07:09:14 +00:00
Sayan Chowdhury
2e27b6ec42
changelog: Add the changelog for openssh 
Signed-off-by: Sayan Chowdhury <schowdhury@microsoft.com>
 2024-07-01 19:33:39 +05:30
Flatcar Buildbot
0860b5f73a app-misc/ca-certificates: Update from 3.101 to 3.101.1 2024-07-01 07:21:18 +00:00
Mathieu Tortuyaux
ca891106f7
Merge pull request #2065 from flatcar/linux-6.6.36-main 
Upgrade Linux Kernel for main from 6.6.35 to 6.6.36
 2024-06-28 15:36:42 +02:00
Flatcar Buildbot
c6d6da2d8e sys-kernel/coreos-sources: Update from 6.6.35 to 6.6.36 2024-06-28 07:14:08 +00:00
Mark Farrell
b79b81648c sys-libs/pam: add changelog 2024-06-27 09:04:02 +10:00
James Le Cuirot
355cfe0227
coreos-base/coreos-init: Bump to fix flatcar-install custom key issue (#2062) 
Closes: https://github.com/flatcar/scripts/pull/1471
Signed-off-by: James Le Cuirot <jlecuirot@microsoft.com>
 2024-06-25 16:56:02 +01:00
Flatcar Buildbot
2f19712f68 sys-kernel/coreos-sources: Update from 6.6.34 to 6.6.35 2024-06-22 07:14:00 +00:00
Adrian Vladu
6fbfa5c034 grub_install: add changelog for the file removals 
Signed-off-by: Adrian Vladu <avladu@cloudbasesolutions.com>
 2024-06-21 11:10:20 +03:00
Mathieu Tortuyaux
101ef8c4f3
changelog: add entry 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-06-19 15:38:03 +02:00
Mathieu Tortuyaux
f5389cc531
Merge pull request #2041 from flatcar/tormath1/afterburn 
coreos-base/afterburn: sync with 5.6.0
 2024-06-19 15:37:11 +02:00
Mathieu Tortuyaux
34aa9c9e88
changelog: add entry 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-06-19 10:27:51 +02:00
Flatcar Buildbot
969f12a531 dev-lang/rust: Update from 1.78.0 to 1.79.0 2024-06-18 07:44:40 +00:00
Flatcar Buildbot
dc456862d7 sys-kernel/coreos-sources: Update from 6.6.33 to 6.6.34 2024-06-17 07:12:56 +00:00
Mathieu Tortuyaux
345c5e25b8
Merge pull request #2030 from flatcar/linux-6.6.33-main 
Upgrade Linux Kernel for main from 6.6.32 to 6.6.33
 2024-06-13 18:05:46 +02:00
Flatcar Buildbot
524cac0445 sys-kernel/coreos-sources: Update from 6.6.32 to 6.6.33 2024-06-13 07:12:41 +00:00
Flatcar Buildbot
30d4bb340e sys-kernel/coreos-firmware: Update from 20240513 to 20240610 2024-06-13 07:12:24 +00:00
Mathieu Tortuyaux
8381ea1783
Merge pull request #2020 from flatcar/containerd-1.7.18-main 
Upgrade Containerd in main from 1.7.17 to 1.7.18
 2024-06-10 19:21:18 +02:00
Mathieu Tortuyaux
427b6b77b6
Merge pull request #2026 from flatcar/cacerts-3.101-main 
Update ca-certificates in main from 3.100 to 3.101
 2024-06-10 14:30:07 +02:00
Mathieu Tortuyaux
5f151a08bc
Merge pull request #1979 from JeWe37/python-sysext 
sysext: Add python sysext
 2024-06-10 14:26:52 +02:00
Mathieu Tortuyaux
f48098f31b
changelog: add entry 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2024-06-10 14:07:12 +02:00