14994 Commits

Author SHA1 Message Date
Brandon Philips
c825c70db9 coreos-kernel: bump to 3.15.2 2014-06-26 17:52:41 -07:00
Michael Marineau
647bcbf483 Revert "bump(fleet): Upgrade to v0.5.1"
Rolling back to 0.5.0 due to a regression in the etcd client.

Issue: https://github.com/coreos/fleet/issues/582

This (mostly) reverts commit 6a01e3c1e58c2f551307913f75097e09e73d539c.
2014-06-26 17:15:26 -07:00
Michael Marineau
b241d1dfc3 update_engine: remove metadata size verification 2014-06-26 15:41:41 -07:00
Michael Marineau
5a6d8baf83 coretest: accept new update signing key 2014-06-26 15:40:42 -07:00
Michael Marineau
7ccf2d4f0a Merge pull request #698 from marineam/version2
Official update signing key!
2014-06-25 10:18:59 -07:00
Michael Marineau
071e2345d8 Merge pull request #700 from marineam/fleet
Fleet restart policy
2014-06-24 19:44:25 -07:00
Michael Marineau
559d8bfdd2 fleet: bump revision 2014-06-24 19:35:56 -07:00
Darren Shepherd
a22b7e4669 fleet: Set restart policy for systemd unit
Setting Restart=always and RestartSec=10s which is the same settings on
etcd.service
2014-06-24 19:34:31 -07:00
Michael Marineau
773653bebc etcd: bump to 0.4.4 2014-06-24 19:32:07 -07:00
Michael Marineau
70a2b1eb20 update_engine: bump for using key version 2 2014-06-24 18:30:29 -07:00
Michael Marineau
81c76fdc96 coreos-au-key: add 'official' use flag and new public key 2014-06-24 18:26:49 -07:00
Brandon Philips
6e3ba222d1 Merge pull request #695 from philips/bump-docker-fileno
docker: bump to 1.0.1 and increase LimitNOFILE
2014-06-23 17:33:21 -07:00
Brandon Philips
dc6073c254 app-emulation/docker: add LimitNOFILE=1048576
Default to having a high file number limit this can be troublesome[1]
but most containers a based on a new enough glibc that this is OK.

[1] https://github.com/dotcloud/docker/issues/6560
2014-06-23 14:54:43 -07:00
Brandon Philips
f910d9335d app-emulation/docker: bump to docker 1.0.1 2014-06-23 14:53:47 -07:00
Brian Waldon
37c5dda344 bump(fleet): Upgrade to v0.5.1 2014-06-23 13:08:31 -07:00
Michael Marineau
fe2cc79a0f fix(sys-apps/systemd): Disable elfutils dependency
Recently added to systemd, configure is detecting elfutils as present
but compilation fails, perhaps a version mismatch. Need to report this
to Gentoo so they can add a proper use flag and dependency.
2014-06-20 12:30:23 -07:00
Jonathan Boulle
8ff3b81b75 Merge pull request #692 from jonboulle/master
bump(app-admin/locksmith): v0.1.4
2014-06-19 12:05:18 -07:00
Jonathan Boulle
490a6b2667 bump(app-admin/locksmith): v0.1.4 2014-06-19 11:44:38 -07:00
Michael Marineau
2252776c32 chore(metadata): Regenerate cache 2014-06-18 16:37:35 -07:00
Michael Marineau
aca8c1a836 bump(coreos-base/coreos-cloudinit): bugfix release 0.7.7
Fixes unit issues that caused configdrive to be ignored.
2014-06-18 15:07:50 -07:00
Michael Marineau
838c9a297d bump(sys-kernel/coreos-firmware): Update to new snapshot
This includes new bnx2x firmware required by linux 3.15:
 * Missing firmware: bnx2x/bnx2x-e2-7.8.19.0.fw (bnx2x.ko)
 * Missing firmware: bnx2x/bnx2x-e1h-7.8.19.0.fw (bnx2x.ko)
 * Missing firmware: bnx2x/bnx2x-e1-7.8.19.0.fw (bnx2x.ko)
2014-06-18 13:37:20 -07:00
Greg Kroah-Hartman
ac3e191a6e bump(sys-kernel/coreos-kernel): bump to 3.15.1 release 2014-06-18 00:12:17 -07:00
Alex Crawford
feee3974a2 Merge pull request #687 from crawford/networkd
feat(sys-apps/systemd): netdev - allow setting MACAddress in .netdev files
2014-06-16 17:39:40 -07:00
Alex Crawford
a908a280b8 feat(sys-apps/systemd): netdev - allow setting MACAddress in .netdev
Pull in 96c907 from freedesktop.org/systemd/systemd.git for v212
2014-06-16 16:39:24 -07:00
Michael Marineau
51115e6f69 Merge pull request #688 from marineam/vagrant
fix(oreos-base/oem-vagrant): Update minimum version to 1.6.0
2014-06-16 16:15:15 -07:00
Michael Marineau
124d3809bb fix(coreos-base/oem-vagrant): Update minimum version to 1.6.0
Commits 24cdca8e and 9d2c0169 added options only in 1.6 and later,
breaking compatibility with older versions. Update the minimum version
to make the resulting error more obvious. :)

The coreos-vagrant project already required 1.6 (although not
explicitly, probably should fix that) so most uses probably won't notice.
2014-06-16 16:02:40 -07:00
Michael Marineau
c64df49948 Merge pull request #683 from marineam/profiles
Setup new image profiles
2014-06-16 14:55:38 -07:00
Michael Marineau
61f61d6479 bump(sys-apps/systemd): Add version 214 for testing
Features the same issues that currently block using 213 but here for
testing purposes.
2014-06-14 21:39:12 -07:00
Michael Marineau
9b73b29eaf chore(sys-apps/systemd): Sync live ebuild with upstream changes.
Only important thing here is that xattr support is now enabled by
default and the libattr dependency is gone. Previously CoreOS didn't
have the feature enabled.
2014-06-14 21:37:14 -07:00
Michael Marineau
061d36aa8d fix(sys-apps/systemd): Add resolv.conf, remove gentoo-integration
This backports commits 18e58b3e9b and 8577b6480b1 from 213 to 212.
2014-06-14 21:37:14 -07:00
Michael Marineau
2bdae7e39e chore(sys-apps/systemd): Roll back to systemd 212
Versions 213 and 214 are not currently usable on GCE:

 - networkd aborts with "Assertion 'link->manager->rtnl' failed"
   https://bugs.freedesktop.org/show_bug.cgi?id=79789

 - persistent naming for virtio devices was removed,
   network devices have returned to the old eth0, eth1, etc. names:
   bf81e792f3
   This re-breaks our copy of the GCE address_manager agent:
   a24dfc97a9/app-emulation/google-compute-daemon/files/0001-hack-address_manager-use-CoreOS-names-and-locations.patch

This reverts commit da3226051f and f179df3449.
2014-06-14 21:09:46 -07:00
Michael Marineau
7f0df85dc0 bump(coreos-base/coreos-init): Updates for empty /etc
Fix some issues for booting without using tmpfiles to setup the root
filesystem in advance. For example this now works reliably:

    mkdir -p c/etc
    cp /etc/os-release c/etc
    ln -s usr/lib64 c/lib
    ln -s usr/lib64 c/lib64
    ln -s usr/bin c/bin
    ln -s usr/sbin c/sbin
    systemd-nspawn --directory=c --bind=/usr --boot
2014-06-13 15:59:28 -07:00
Michael Marineau
eff108a898 feat(profiles): Set proper mask in dev and prod sub-profiles. 2014-06-12 15:17:00 -07:00
Michael Marineau
9295ea0344 feat(profiles): shuffle around some excludes for dev images
Dev images need to be a full build environment but still don't need
extra things like gtk-docs or extra config files. Adjust accordingly.
2014-06-12 15:08:05 -07:00
Michael Marineau
37744a633e fix(sys-apps/systemd): Fix matching by MAC address 2014-06-12 13:53:27 -07:00
Michael Marineau
12d093e8b1 fix(app-misc/ca-certificates): Never rehash certs during boot.
This kills the massive time-waster we currently have during boot to
cleanup/refresh OpenSSL's certificate directory in /etc/ssl/certs.
System provided certs are now hashed at build time and tempfiles is used
to install the proper links. The certificate bundle is also created at
build time and provided as a symlink. Since tempfiles does not help us
clean up broken links to certs that have been removed that task has been
moved to clean-ca-certificates.service which is still run on every boot.
The update-ca-certificates.service is now only responsible for
recreating the certificate bundle if required. On systems where the user
has never run update-ca-certificates the certificate bundle is just a
symlink to the copy in /usr and update-ca-certificates.service never
runs on boot. If the user does run update-ca-certificates then
update-ca-certificates.service will rewrite the bundle only if the
directory has not been modified since the last time it ran.

There are a few edge cases where if stale hash links may be left if a
system provided cert was replaced a subject that is different enough to
change the hash but not change the file name. I don't expect that to
ever happen though. Also hash collisions between the system certs and
each other or user provided certs are not handled gracefully but should
be rare. tempfiles will report wrong symlink errors in that case.
2014-06-12 11:43:05 -07:00
Michael Marineau
5f55bcc182 Merge pull request #679 from marineam/systemd
Systemd maintnance
2014-06-11 18:11:54 -07:00
Michael Marineau
1f414f4f3b fix(coreos-base/oem-vagrant): disable VBox's shared files 2014-06-11 18:00:50 -07:00
Michael Marineau
015746fd5e fix(coreos-base/oem-vagrant): disable VMware's hgfs
Suggested in https://github.com/coreos/coreos-vagrant/pull/127
2014-06-11 17:45:45 -07:00
Michael Marineau
a775be854a fix(sys-apps/systemd): Add tmpfiles rule for resolv.conf
This path has changed after v213 so it must be handled here instead of
baselayout now.
2014-06-11 17:00:08 -07:00
Michael Marineau
09f3152319 chore(sys-apps/systemd): sync/cleanup systemd ebuilds.
Pull in some updates from upstream Gentoo.
As a follow up to the gentoo-systemd-integration removal prune the now
unused vanilla use flag and our custom openrc use flag along with it.
2014-06-11 17:00:08 -07:00
Michael Marineau
c6e7ff3d55 chore(sys-apps/systemd): Remove old version 2014-06-11 17:00:08 -07:00
Jonathan Boulle
fe2e501b77 chore(systemd): remove gentoo-systemd-integration from systemd build 2014-06-11 17:00:08 -07:00
Michael Marineau
11deb867b8 bump(sys-apps/baselayout): Updates for systemd 2014-06-11 17:00:07 -07:00
Michael Marineau
32ad96fc9b Merge pull request #677 from marineam/metadata
chore(metadata): Regenerate cache
2014-06-10 19:49:19 -07:00
Michael Marineau
4d6f4d5150 chore(metadata): Regenerate cache 2014-06-10 18:48:57 -07:00
Michael Marineau
76c3deff55 chore(metadata): Regenerate cache 2014-06-10 18:48:56 -07:00
Michael Marineau
d19b2306aa fix(sys-apps/systemd): Fix build during stage1 bootstrap.
stage1 builds disable most use flags but systemd 213 fails to build if
kmod is disabled. Work around this by force-enabling the flag.
2014-06-10 17:27:47 -07:00
Michael Marineau
a16f056692 feat(profiles): Move portage permissions setting out of make.conf
Developer friendly permissions are fine as the default in CoreOS.
2014-06-10 15:25:35 -07:00
Michael Marineau
b2b0c46c28 Merge pull request #670 from marineam/provided
package.provided and new profiles
2014-06-10 13:54:00 -07:00