flatcar-scripts

mirror of https://github.com/flatcar/scripts.git synced 2025-09-22 06:01:41 +02:00

Author	SHA1	Message	Date
Matthew Garrett	9e64bef513	setup_board: create a glsa-check wrapper We want to be able to verify that we don't have any vulnerabilities in the build root, so install a wrapper for glsa-check	2016-05-17 16:39:40 -07:00
Matthew Garrett	d79a5dcada	bump(sys-fs/lvm2): sync with upstream	2016-05-17 16:18:33 -07:00
Matthew Garrett	c3579d9a5a	bump(net-misc/rsync): sync with upstream	2016-05-17 16:18:23 -07:00
Matthew Garrett	c317889deb	bump(net-analyzer/tcpdump): sync with upstream	2016-05-17 16:18:13 -07:00
Matthew Garrett	25d7460a4c	bump(app-crypt/mit-krb5): sync with upstream	2016-05-17 16:17:59 -07:00
Matthew Garrett	bcef1e2350	bump(dev-libs/mpfr): sync with upstream	2016-05-17 16:17:38 -07:00
Nick Owens	f33bc59005	Merge pull request #424 from mischief/glsa bump(metadata/glsa): sync with upstream	2016-05-17 12:38:03 -07:00
Nick Owens	c6199c7c31	Merge pull request #1968 from mischief/rkt-1.6.0 app-emulation/rkt: v1.6.0	2016-05-17 11:35:28 -07:00
Nick Owens	f3ef3c1ee1	update_ebuilds: allow glsa sync and ignore metadata if so	2016-05-17 11:30:17 -07:00
Nick Owens	b3c0a24ec7	bump(metadata/glsa): sync with upstream	2016-05-17 11:29:02 -07:00
Nick Owens	5ed74b61d7	app-emulation/rkt: v1.6.0	2016-05-16 15:26:23 -07:00
Nick Owens	3a95c8f18d	sys-kernel/coreos-firmware: update to 20160331	2016-05-16 14:55:02 -07:00
Nick Owens	276a7f6d67	sys-kernel/coreos-{sources,kernel}: update to 4.6	2016-05-16 14:55:01 -07:00
Alex Crawford	80d7aed53d	app-emulation/google-startup-script: bump to 1.3.2	2016-05-16 14:50:17 -07:00
Alex Crawford	12509babed	app-emulation/google-compute-daemon: bump to 1.3.2	2016-05-16 14:50:17 -07:00
Matthew Garrett	0375b81086	Merge pull request #1966 from mjg59/updates Update mantle and baselayout to reduce the probability of future disastrous events	2016-05-16 13:39:57 -07:00
Matthew Garrett	a25497dce5	coreos-devel/mantle: Verify that unauthenticated users can't access CoreOS Include a test to ensure that users without valid authentication tokens are unable to log into CoreOS	2016-05-16 13:36:03 -07:00
Matthew Garrett	3ba6985d62	sys-apps/baselayout: Remove login shell for operator user	2016-05-16 13:36:03 -07:00
Matthew Garrett	3865f77ecd	sys-auth/pambase: Fall back to pam_deny in auth Setting pam_unix and pam_sss to sufficient means that if both fail, control will be passed to the following pam module. If this is pam_permit then permission will be granted even if the previous modules failed. Switch to pam_deny and require it rather than permitting it to be optional - if sss or unix succeed, we'll jump out before we get to this point.	2016-05-15 21:12:57 -07:00
Nick Owens	a593ed52ff	bump(sys-libs/libseccomp): sync with upstream	2016-05-15 18:13:14 -07:00
Michael Marineau	31a479553b	tag_release: support branches, add a branch tracking manifest To make branches easier to use this splits the branch manifest into two: build-????.xml is now only pins revisions of projects that do not have a corresponding branch (yet) while release.xml pins all revisions. Unlike before the script can now be used to tag branched releases. The step to switch any particular project to a branch is still manual but that will be a simple future expansion. First this will be migrated to Go though, this script has hit the limit of sophistication that should be attempted with mixing XML and bash. ;-)	2016-05-15 17:49:43 -07:00
Michael Marineau	f60d2762c2	tag_release: remove old BUILD/BRANCH/PATCH values These old names are left over from ChromeOS and never really made sense for us. The last things using them were fixed up a while ago.	2016-05-15 16:28:34 -07:00
Nick Owens	4a94f04736	Merge pull request #1961 from mischief/linux-4.5.4 sys-kernel/coreos-{sources,kernel}: update to 4.5.4	2016-05-14 13:32:33 -07:00
Nick Owens	948af5c88b	sys-kernel/coreos-{sources,kernel}: update to 4.5.4	2016-05-13 15:46:54 -07:00
Nick Owens	1e63583c3c	Merge pull request #1962 from mischief/systemd-tasksmax sys-apps/systemd: bump to include DefaultTasksMax fix	2016-05-13 15:29:02 -07:00
Nick Owens	6b014521c4	sys-apps/systemd: bump to include DefaultTasksMax fix	2016-05-13 15:21:13 -07:00
Michael Marineau	e11ac9886f	Merge pull request #422 from marineam/metadata chore(metadata): Regenerate cache	2016-05-13 11:16:55 -07:00
Nick Owens	ee3d88085f	Merge pull request #1958 from mischief/fix-rkt-stage1 app-emulation/rkt: use CoreOS alpha 1010.1.0 without PAM	2016-05-13 10:41:58 -07:00
Nick Owens	8d6ccc81f2	Merge pull request #1959 from mischief/kubelet-stage1 app-admin/kubelet-wrapper: fix stage1 reference	2016-05-13 10:27:40 -07:00
Nick Owens	acf641ca67	app-admin/kubelet-wrapper: fix stage1 reference since rkt 1.3.0, rkt has began checking stage1 hashes, and will do so if the stage1 is not in the default stage1 directory. for compatibility, df131e85d5240a75fb9cd4e1fb85e86e6f5290c1 symlinked the old stage1 directory to the new one, however, if a stage1 is referred to by the old stage1 path under rkt >1.3.0, image verification will fail because no signature exists. instead of using a path, use stage1-fly.aci by name and let rkt handle finding it in the default directory.	2016-05-12 21:39:13 -07:00
Nick Owens	05856d1789	app-emulation/rkt: use CoreOS alpha 1010.1.0 without PAM CoreOS 1029.0.0 introduced PAM which was linked into systemd. rkt copies files and libraries out of CoreOS images with a static manifest to construct the CoreOS stage1. since this manifest lacks PAM libraries in rkt 1.5.1, we can't use CoreOS 1032.0.0, so fall back to a CoreOS version without PAM linked into systemd.	2016-05-12 21:31:25 -07:00
Nick Owens	9b8a4ca434	Merge pull request #544 from mischief/jenkins initial import of public jenkins jobs	2016-05-12 15:36:09 -07:00
Nick Owens	aa3fed014e	Merge pull request #543 from mischief/arm64-grub-name build_library: make arm64 grub file name match x86_64	2016-05-12 14:55:30 -07:00
Nick Owens	281f85941f	initial import of public jenkins jobs	2016-05-12 14:34:55 -07:00
Nick Owens	d935a8aca0	build_library: make arm64 grub file name match x86_64	2016-05-12 13:09:46 -07:00
Nick Owens	bb800cff86	Merge pull request #542 from mischief/arm-grub-fix build_library: fix grub loader copy for arm64	2016-05-12 12:14:41 -07:00
Nick Owens	1fd668ef0d	build_library: fix grub loader copy for arm64	2016-05-12 12:05:11 -07:00
Michael Marineau	1616098d8f	Merge pull request #1957 from marineam/metadata chore(metadata): Regenerate cache	2016-05-11 15:58:42 -07:00
Michael Marineau	787c7beaf0	chore(metadata): Regenerate cache	2016-05-11 15:50:57 -07:00
Michael Marineau	a0fa8f17fd	chore(metadata): Regenerate cache	2016-05-11 15:50:56 -07:00
Michael Marineau	916ed23174	Merge pull request #1956 from marineam/mantle mantle: small fix for plume release	2016-05-11 11:24:35 -07:00
Michael Marineau	ccafb1b3a5	Merge pull request #541 from marineam/drop-dev-channel tag_release: drop pushing to old dev-channel branch	2016-05-11 11:24:29 -07:00
Michael Marineau	aa0b0b9843	mantle: small fix for plume release	2016-05-11 11:12:55 -07:00
Michael Marineau	15988a936a	tag_release: drop pushing to old dev-channel branch	2016-05-11 11:09:39 -07:00
Michael Marineau	b96c191cf8	Merge pull request #1951 from marineam/go-arch eclass/coreos-go: add ppc64 and x86 arch to go_get_arch	2016-05-10 19:22:53 -07:00
Nick Owens	be06aefc19	Merge pull request #1952 from mischief/mantle-0.1.2 coreos-devel/mantle: bump to v0.1.2	2016-05-10 13:39:15 -07:00
Nick Owens	a606b3942f	coreos-devel/mantle: bump to v0.1.2	2016-05-10 13:33:23 -07:00
Nick Owens	d36cdc0c67	Merge pull request #1949 from mischief/linux-4.5.3 sys-kernel/coreos-{sources,kernel}: update to 4.5.3	2016-05-10 12:32:58 -07:00
Michael Marineau	ebbc2c3b04	Merge pull request #537 from aogier/debian-genisoimage add support for genisoimage	2016-05-10 12:23:20 -07:00
Michael Marineau	8bfd994f3f	Merge pull request #534 from glevand/for-merge-build build_image: Fix image type conditional	2016-05-10 12:20:07 -07:00

... 392 393 394 395 396 ...

29556 Commits