mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2026-03-04 21:11:43 +01:00
Code Issues Packages Projects Releases Wiki Activity
34,396 Commits 641 Branches 420 Tags
Commit Graph

34396 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Krzesimir Nowak
bb70882fda sys-libs/libsemanage: Sync with Gentoo 
It's from Gentoo commit 2a36cce420348509e5c8a75d75647c200f39b2bc.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:17:29 +01:00
Krzesimir Nowak
f058e32bb2 overlay sys-libs/libsemanage: Move to portage-stable 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:17:29 +01:00
Krzesimir Nowak
8128c9a072 overlay coreos/config: Add Flatcar modifications for sys-libs/libsemanage 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:17:29 +01:00
Krzesimir Nowak
0fe3480314 overlay profiles: Allow python for sys-libs/libselinux 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:17:29 +01:00
Krzesimir Nowak
a6598d470e overlay profiles: Disable caps for smartmontools 
The USE=caps is only relevant for smartd, which we are not building
anyway.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:17:29 +01:00
Krzesimir Nowak
8a33f8b99f overlay profiles: Drop enabling caps and audit USE flags for specific packages 
selinux profile enables the USE flags for all of them.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:17:29 +01:00
Krzesimir Nowak
6e9797dfc5 overlay profiles: Mask python and perl USE flags for generic images 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:17:29 +01:00
Krzesimir Nowak
7ceb145fd9 overlay profiles: Clean up selinux enabling 
Not needed given that we have switched to selinux profile, which
enables selinux USE.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:17:27 +01:00
Krzesimir Nowak
086f5b066c .github: Add newly added policy packages to automation 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:04 +01:00
Krzesimir Nowak
e122ead299 overlay coreos/user-patches: Add symlinks for newly added policy packages 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:04 +01:00
Krzesimir Nowak
cb1ca71ab5 sec-policy/selinux-zfs: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:04 +01:00
Krzesimir Nowak
72dddf8b9b sec-policy/selinux-xfs: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:04 +01:00
Krzesimir Nowak
970eb635f4 sec-policy/selinux-wireguard: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:04 +01:00
Krzesimir Nowak
149cffa53a sec-policy/selinux-virt: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:04 +01:00
Krzesimir Nowak
2fd2afed44 sec-policy/selinux-tcsd: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:04 +01:00
Krzesimir Nowak
b67a36f300 sec-policy/selinux-sudo: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:04 +01:00
Krzesimir Nowak
5636b9ef72 sec-policy/selinux-smartmon: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:04 +01:00
Krzesimir Nowak
db19635e0b sec-policy/selinux-sasl: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:04 +01:00
Krzesimir Nowak
076df9f95f sec-policy/selinux-samba: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:04 +01:00
Krzesimir Nowak
33fbdd6b22 sec-policy/selinux-rpcbind: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:04 +01:00
Krzesimir Nowak
e530d951bc sec-policy/selinux-rpc: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:04 +01:00
Krzesimir Nowak
3e4586c1aa sec-policy/selinux-quota: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:04 +01:00
Krzesimir Nowak
e51dcd8130 sec-policy/selinux-qemu: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:04 +01:00
Krzesimir Nowak
1c48d2cdf4 sec-policy/selinux-podman: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:04 +01:00
Krzesimir Nowak
9b48d6eebe sec-policy/selinux-pcscd: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:04 +01:00
Krzesimir Nowak
a388698251 sec-policy/selinux-ntp: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:04 +01:00
Krzesimir Nowak
311145aa13 sec-policy/selinux-mandb: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
Krzesimir Nowak
04893842cf sec-policy/selinux-makewhatis: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
Krzesimir Nowak
969fda1a50 sec-policy/selinux-logrotate: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
Krzesimir Nowak
f32cdfa3dd sec-policy/selinux-loadkeys: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
Krzesimir Nowak
dbd27ab586 sec-policy/selinux-ldap: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
Krzesimir Nowak
72eaaff53a sec-policy/selinux-kerberos: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
Krzesimir Nowak
44c28de58b sec-policy/selinux-kdump: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
Krzesimir Nowak
ba72335ddd sec-policy/selinux-gpg: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
Krzesimir Nowak
48de7b5bcb sec-policy/selinux-git: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
Krzesimir Nowak
18e8db15b6 sec-policy/selinux-dracut: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
Krzesimir Nowak
b5b8724bd2 sec-policy/selinux-docker: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
Krzesimir Nowak
3e641f81b3 sec-policy/selinux-dnsmasq: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
Krzesimir Nowak
dc37a2f6d1 sec-policy/selinux-dirmngr: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
Krzesimir Nowak
d558de4b80 sec-policy/selinux-chronyd: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
Krzesimir Nowak
d3cb4e8858 sec-policy/selinux-cdrecord: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
Krzesimir Nowak
7baa46de59 sec-policy/selinux-brctl: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
Krzesimir Nowak
e92322adbe sec-policy/selinux-bind: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
Krzesimir Nowak
cdeaa93f6a sec-policy/selinux-apm: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
Krzesimir Nowak
39ae787572 sec-policy/selinux-apache: Add from Gentoo 
It's from Gentoo commit 4d7080a9766d886cd15cdf4fa75890677c6266b1.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
Krzesimir Nowak
414f69d3b9 overlay profiles: Switch to hardened/selinux/systemd profiles 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
Krzesimir Nowak
298fc4e974 overlay coreos/config, profiles: Drop PKG_INSTALL_MASK 
PKG_INSTALL_MASK is for binary packages like INSTALL_MASK is for
${ROOT} - whatever is added to PKG_INSTALL_MASK will be absent from
binary packages. But we may want to install different content to
different kind of images using the same binary packages. For example,
we may want to install some python selinux scripts to developer
container, but not to production image.

I started adding PKG_INSTALL_MASK before, because of a
misunderstanding - I thought that PKG_INSTALL_MASK is about filtering
files that are installed to ${ROOT} from binary packages. So in
reality, PKG_INSTALL_MASK is really unnecessary.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
Krzesimir Nowak
c651c5f39a save logs 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2026-02-27 13:14:03 +01:00
flatcar-ci
8d5225a469 New version: main-4620.0.0-nightly-20260223-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
main-4620.0.0-nightly-20260223-2100 		2026-02-23 21:00:26 +00:00
flatcar-ci
bcd829101b New version: main-4617.0.0-nightly-20260220-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2026-02-21 02:44:35 +00:00