mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-08-17 09:56:59 +02:00
Code Issues Packages Projects Releases Wiki Activity
9,521 Commits 629 Branches 394 Tags 166 MiB
d3247a54a2
Commit Graph

7688 Commits

Author SHA1 Message Date
Krzesimir Nowak
221b8f3455 sys-apps/shadow: Clean slate to reapply our changes 2021-12-16 19:51:46 +01:00
Krzesimir Nowak
c5e8ec0fc9 sys-apps/keyutils: Apply Flatcar modifications 2021-12-16 19:51:46 +01:00
Krzesimir Nowak
f6a355da10 sys-apps/keyutils: Clean slate to reapply our changes 2021-12-16 19:51:46 +01:00
Krzesimir Nowak
03c56caf2e sys-apps/baselayout: Port to tmpfiles eclass 2021-12-16 19:51:46 +01:00
Krzesimir Nowak
3227e5614c sec-policy/selinux-base: Apply Flatcar modifications 
- run sshd (and child) as unconfined_t
  - add init.patch to allow execute_no_trans,map and exec from init to
    unconfined
  - add AVC patch for local login and journald
  - add python[lxml] to BDEPEND (not pulled through policycoreutils
    any more due to our changes there)
 2021-12-16 19:51:46 +01:00
Krzesimir Nowak
3fe352040a sec-policy/selinux-base: Clean slate to reapply our changes 2021-12-16 19:51:46 +01:00
Krzesimir Nowak
076251ff56 net-misc/ntp: Apply Flatcar modifications 
- Check out our previous ntp.conf and service units
  - Disable USE=threads
  - Add USE=perl, disabled to skip the scripts subdir
  - Do the /etc -> /usr/share + tmpfiles dance for ntp.conf
  - Drop unused init scripts and pkg_postinst
 2021-12-16 19:51:46 +01:00
Krzesimir Nowak
e5a4653591 net-misc/ntp: Clean slate to reapply our changes 2021-12-16 19:51:46 +01:00
Krzesimir Nowak
6c8076e272 net-fs/samba: Apply Flatcar modifications 
- Add a minimal USE flag for only installing libraries
  - Change the Perl and Python run-time deps to build-time only
  - Drop a bunch of dependencies with broken cross-compilation
  - Enable using bundled libraries in their place
  - Disable building libraries requiring Python
  - Use EAPI7
  - Move libsxlt and stylesheets to BDEPEND
  - Introduce some USE flags, so we don't install some tools we don't
    need
  - Limit the size of bundled libraries
  - Make it compatible with newer python versions
  - Bump to r2 because of updating EAPI to 7
 2021-12-16 19:51:46 +01:00
Krzesimir Nowak
c5eb243890 net-fs/samba: Clean slate to reapply our changes 2021-12-16 19:51:46 +01:00
Krzesimir Nowak
e2c80f8dea net-fs/nfs-utils: Apply Flatcar modifications 
- Add the tmpfiles configuration for populating /var
  - Add service compatibility symlinks (maybe time to drop them)
  - Drop moving a binary from /usr/sbin to /sbin
  - Drop populating /etc and /var
  - Drop pkg_postinst
 2021-12-16 19:51:46 +01:00
Krzesimir Nowak
63490fac0c net-fs/nfs-utils: Clean slate to reapply our changes 2021-12-16 19:51:46 +01:00
Krzesimir Nowak
cc795e270a dev-libs/openssl: Apply Flatcar modifications 
- drop `pkg_postint`
- create `/etc/ssl` with tmpfiles
 2021-12-16 19:51:46 +01:00
Krzesimir Nowak
f6983eb7b2 dev-libs/openssl: Clean slate to reapply our changes 2021-12-16 19:51:46 +01:00
Krzesimir Nowak
e8c04ce6c4 dev-libs/cyrus-sasl: Apply Flatcar modifications 2021-12-16 19:51:46 +01:00
Krzesimir Nowak
0366286350 dev-libs/cyrus-sasl: Clean slate to reapply our changes 2021-12-16 19:51:46 +01:00
Krzesimir Nowak
13bb7c3bf3 coreos-base/update_engine: Port to tmpfiles eclass 2021-12-16 19:51:46 +01:00
Krzesimir Nowak
1e5df051b4 app-misc/ca-certificates: Port to tmpfiles eclass 2021-12-16 19:51:46 +01:00
Krzesimir Nowak
d126cac468 app-crypt/trousers: Apply Flatcar modifications 2021-12-16 19:51:46 +01:00
Krzesimir Nowak
b0603768b4 app-crypt/trousers: Clean slate to reapply our changes 2021-12-16 19:51:46 +01:00
Krzesimir Nowak
36f9f88e72 app-admin/etcd-wrapper: Port to tmpfiles eclass 2021-12-16 19:51:46 +01:00
Thilo Fromm
6038166dc1 policycoreutils semodule fix: add bugfix changelog 
Signed-off-by: Thilo Fromm <thilo@kinvolk.io>
 2021-12-16 18:48:06 +01:00
Krzesimir Nowak
e90c32752e profiles: Drop keywords for sys-boot/gnu-efi 
The updated package is stable for arm64 too now.
 2021-12-16 14:03:08 +01:00
Krzesimir Nowak
de8b243fa6 profiles: Update use flags for sys-apps/smartmontools 
There is no minimal use flag any more, but it was more or less the
same as no daemon and no update drive database. We also disable
systemd integration, because it's only related to the daemon
functionality that we disabled.
 2021-12-16 14:03:08 +01:00
Krzesimir Nowak
9121acd2d5 profiles: Drop keywords for sys-apps/smartmontools 
The updated package is stable for arm64 too now.
 2021-12-16 14:03:08 +01:00
Krzesimir Nowak
d7cb798efe profiles: Drop keywords for sys-apps/pv 
The updated package is stable for arm64 too now.
 2021-12-16 14:03:08 +01:00
Krzesimir Nowak
0629654e35 profiles: Drop keywords for sys-apps/lshw 
The updated package is stable for arm64 too now.
 2021-12-16 14:03:08 +01:00
Krzesimir Nowak
05f4917972 profiles: Drop keywords for sys-apps/dtc 
The updated package is stable for arm64 too now.
 2021-12-16 14:03:08 +01:00
Krzesimir Nowak
47d0b22c6c profiles: Drop keywords for sys-apps/debianutils 
The updated package is stable for arm64 too now.
 2021-12-16 14:03:08 +01:00
Krzesimir Nowak
ae01f6c8cb profiles: Drop keywords for net-firewall/ipset 
The updated package is stable for arm64 too now.
 2021-12-16 14:03:08 +01:00
Krzesimir Nowak
6f66a9ecd9 profiles: Drop keywords for net-dialup/minicom 
The updated package is stable for arm64 too now.
 2021-12-16 14:03:08 +01:00
Krzesimir Nowak
6739933bcf profiles: Drop keywords for dev-cpp/glog 
The updated package is stable for arm64 too now.
 2021-12-16 14:03:08 +01:00
Krzesimir Nowak
94d80b99ae profiles: Drop app-misc/editor-wrapper keywords 
The old version of the package didn't have a keyword for arm64. We
just updated it and it's stable for arm64 too, rendering the entry in
accept_keyword unnecessary.
 2021-12-16 14:03:08 +01:00
Thilo Fromm
99ab4bc73c sys-apps/policycoreutils: guard against empty ${ROOT} 
Co-authored-by: Krzesimir Nowak <knowak@microsoft.com>
 2021-12-16 13:56:51 +01:00
Thilo Fromm
58294f287f sys-apps/policycoreutils: update correct SELinux store 
The policycoreutils ebuild calls `semodule` in postinst to update SELinux stores.
It does not, however, tells `semodule` the correct ROOT to use, so builds that go into `/build/[arch]-usr` end up updating the SDK's store.
Fixes 
   libsemanage.semanage_commit_sandbox: Error while renaming /var/lib/selinux/targeted/active to /var/lib/selinux/targeted/previous. (Invalid cross-device link)
observed when using the SDK Container to build the OS image.
It now also updates the correct store, which it previously did not.
 2021-12-16 13:56:51 +01:00
Dongsu Park
c9017c62b8 sys-apps/portage: update to 3.0.28-r1 for EAPI 8 
To be able to support EAPI 8 used by a few ebuilds nowadays, we need to
update sys-apps/portage to 3.0.28-r1. Simply sync with Gentoo.
 2021-12-16 13:52:59 +01:00
Mathieu Tortuyaux
46f9a0bdda Merge pull request #1484 from flatcar-linux/tormath1/mirror 
.github/wf: add mirror-calico action
 2021-12-16 13:44:07 +01:00
Mathieu Tortuyaux
748baac625 app-emulation/containerd: update manifest 
The length of the shorthand commit hash is not constant.
It varies depending on the number of commits in the repo and
it lengthens as necessary to avoid hash conflicts.

When you download GitHub achives, these values are filled.

See also:
* https://github.com/containerd/containerd/discussions/6382
* https://github.com/google/ko/issues/315#issuecomment-783718564

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2021-12-16 11:08:14 +01:00
Dongsu Park
4240f03432 Merge pull request #1495 from flatcar-linux/dongsu/gce-oslogin-sshd-config 
sys-auth/google-oslogin: accept ssh-rsa in sshd_config for openssh 8.8
 2021-12-13 19:09:25 +01:00
Dongsu Park
ac7e8b2232 sys-auth/google-oslogin: accept ssh-rsa in sshd_config for openssh 8.8 
Temporarily accept ssh-rsa algorithm in sshd_config for openssh >= 8.8,
until most ssh clients could deprecate ssh-rsa.

It is the same fix as https://github.com/flatcar-linux/init/pull/54.
However, we should do that again for GCE, because the google-oslogin
ebuild overwrites the existing sshd_config.
 2021-12-13 15:10:24 +01:00
Krzesimir Nowak
d61e4c0da5 changelog: Add entry for update of python 2021-12-10 17:31:12 +01:00
Krzesimir Nowak
659054b567 app-emulation/qemu: Move to portage-stable 
The ebuild has no Flatcar modifications now.
 2021-12-10 17:26:19 +01:00
Krzesimir Nowak
766b1a9d6b dev-python/boto: Apply Flatcar modifications 2021-12-10 17:26:19 +01:00
Krzesimir Nowak
3598bbbe98 dev-python/boto: Import from portage-stable 2021-12-10 17:26:19 +01:00
Krzesimir Nowak
03048d2445 dev-python/distro-oem: Depend on new version of python-oem 2021-12-10 17:26:19 +01:00
Krzesimir Nowak
2bc34d1da7 app-emulation/wa-linux-agent: Depend on new version of python-oem 2021-12-10 17:26:19 +01:00
Krzesimir Nowak
d19d339f88 coreos-devel/sdk-depends: Add app-eselect/eselect-python to deps 
It used to be pulled in by dev-lang/python, but not any more. It is
needed for running fsscript during stage4 of SDK build to set up the
default python interpreter.
 2021-12-10 17:26:19 +01:00
Krzesimir Nowak
4c4b6192f9 net-misc/google-cloud-sdk: Properly use the python single eclass 
If python-single-r1.eclass is inherited, then PYTHON_USEDEP can't be
used directly inside dependency variable - either PYTHON_SINGLE_USEDEP
(for single-python-impl packages) should be used or the dependency
should be wrapped into python_gen_cond_dep function (for
multi-python-impl packages). crcmod is a multi-python-impl package, so
use the latter.

Also follow the practice of specifying the BDEPEND in terms of
RDEPEND. For this, we need to bump the EAPI to 7.
 2021-12-10 17:26:19 +01:00
Krzesimir Nowak
54dbfd2cf4 sys-auth/sssd: Make PYTHON_COMPAT a bit more future-proof 2021-12-10 17:26:19 +01:00
Krzesimir Nowak
08b4623745 sys-apps/systemd: Make PYTHON_COMPAT a bit more future-proof 2021-12-10 17:26:19 +01:00
Krzesimir Nowak
9b5573feba net-firewall/nftables: Make PYTHON_COMPAT a bit more future-proof 2021-12-10 17:26:19 +01:00
Krzesimir Nowak
7888ad939b sys-apps/dbus: Make PYTHON_COMPAT a bit more future-proof 2021-12-10 17:26:19 +01:00
Krzesimir Nowak
735bb27c90 sys-libs/libsemanage: Make PYTHON_COMPAT a bit more future-proof 2021-12-10 17:26:19 +01:00
Krzesimir Nowak
204a36b601 sys-libs/libselinux: Make PYTHON_COMPAT a bit more future-proof 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
3431da6375 sys-libs/ldb: Make PYTHON_COMPAT a bit more future-proof 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
0897fcb98f sys-libs/glibc: Make PYTHON_COMPAT a bit more future-proof 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
b2b15c3006 sys-devel/gdb: Make PYTHON_COMPAT a bit more future-proof 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
162d0d434e sys-boot/grub: Make PYTHON_COMPAT a bit more future-proof 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
46c9711979 sys-apps/portage: Make PYTHON_COMPAT a bit more future-proof 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
3b9e88d78a sys-apps/policycoreutils: Make PYTHON_COMPAT a bit more future-proof 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
930e8b1d3a net-misc/google-cloud-sdk: Make PYTHON_COMPAT a bit more future-proof 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
bea9ffd812 net-fs/samba: Make PYTHON_COMPAT a bit more future-proof 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
e39e8216bf dev-vcs/repo: Move it back to portage-stable 
We are dropping python2, making python3 the default, so there is no
reason to keep this old version of repo in overlay any more.
 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
6dd1e7433d dev-util/catalyst: Drop the package 
The reason for keeping it was that the package assumed that
unversioned python will point to python3 which wasn't the case in
Flatcar. Now that we updated python and made python3 the default, we
can move this package back to portage-stable and update it there.
 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
2303c61bd8 dev-lang/rust: Make PYTHON_COMPAT a bit more future-proof 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
0562a13b0e coreos-base/emerge-gitclone: Make PYTHON_COMPAT a bit more future-proof 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
a7abaa2ae1 coreos-base/coreos-init: Make PYTHON_COMPAT a bit more future-proof 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
2e2da29c85 app-misc/ca-certificates: Make PYTHON_COMPAT a bit more future-proof 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
30a1ecd137 app-emulation/xenstore: Make PYTHON_COMPAT a bit more future-proof 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
be8f416527 app-emulation/qemu: Revert the PYTHON_COMPAT changes 
We are updating python, so this modification is not needed any
more. This also seems to be the only modification we have made in this
ebuild, so we will move it back to portage-stable shortly.
 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
34c4919983 app-crypt/mit-krb5: Revert the PYTHON_COMPAT changes 
We are updating python, so this modification is not needed any more.
 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
f6c136bfa8 profiles: Update keywords for dev-util/pahole 
The pahole package now has a keyword for arm64, but it's still
unstable. It's stable for amd64 so no keyword for it is needed.
 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
a896c6d603 coreos-devel/sdk-depends: Update a dependency on dev-util/dwarves 
`dev-util/dwarves` got renamed to `dev-util/pahole`. Reflect that here
too.
 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
ba710e1c18 profiles: Switch to python 3.9 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
7879ac6535 dev-lang/python-oem: Apply Flatcar modifications 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
552455fb67 dev-lang/python-oem: Copy ebuild of python 3.9.8 from gentoo 
This is the latest stable version at the moment.
 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
5197208ce6 profiles: Drop entry for dev-util/perf-next 
There is no such package, even gentoo does not have it.
 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
0bd3e6595d app-emulation/google-compute-engine: Use python3 explicitly 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
6c4dd2023c profiles: Drop sys-libs/libcap-ng from accept_keywords 
The updated package is stable for both amd64 and arm64.
 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
666d39d4e5 profiles: Drop sys-apps/i2c-tools from accept_keywords 
The updated package is stable also for arm64 now.
 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
cbcb1c10a2 profiles: Update USE flags for net-analyzer/nmap 
The USE flag to disable lua in nmap is now system-lua. We still are
not packaging lua, so keep it disabled.
 2021-12-10 17:26:18 +01:00
Krzesimir Nowak
0194e32be5 profiles: Drop dev-util/ninja from accept_keywords 
The updated package is stable for both amd64 and arm64.
 2021-12-10 17:23:37 +01:00
Krzesimir Nowak
6e870b5abb profiles: Drop dev-python/ctypesgen from accept_keywords 
We probably don't need this package.
 2021-12-10 17:23:37 +01:00
Krzesimir Nowak
4cb1a68177 coreos-base/hard-host-depends: Drop dev-python/ctypesgen 
See if it is really needed for building cross-compiled packages.
 2021-12-10 17:23:37 +01:00
Krzesimir Nowak
8b59174827 profiles: Drop dev-python/wrapt from accept_keywords 
The updated package is stable for both amd64 and arm64.
 2021-12-10 17:23:37 +01:00
Krzesimir Nowak
6ebf34aa27 profiles: Drop dev-python/pyflakes from accept_keywords 
The updated package is stable for both amd64 and arm64.
 2021-12-10 17:23:36 +01:00
Krzesimir Nowak
5bc8d6838f profiles: Drop dev-python/pep8 from accept_keywords 
The package is dropped.
 2021-12-10 17:23:36 +01:00
Krzesimir Nowak
0ccb19c5c7 profiles: Drop dev-python/mccabe from accept_keywords 
The updated package is stable for both amd64 and arm64.
 2021-12-10 17:23:36 +01:00
Krzesimir Nowak
05d2da720b profiles: Drop dev-python/mako from accept_keywords 
The updated package is stable for both amd64 and arm64.
 2021-12-10 17:23:36 +01:00
Krzesimir Nowak
29594a8544 profiles: Drop dev-python/lazy-object-proxy from accept_keywords 
The updated package is stable for both amd64 and arm64.
 2021-12-10 17:23:36 +01:00
Krzesimir Nowak
a86c22adb4 profiles: Drop dev-python/flake8 from accept_keywords 
The updated package is stable for both amd64 and arm64.
 2021-12-10 17:23:36 +01:00
Krzesimir Nowak
586e73a438 profiles: Drop dev-python/isort from accept_keywords 
The updated package is stable for both amd64 and arm64.
 2021-12-10 17:23:36 +01:00
Krzesimir Nowak
53779e31b2 profiles: Drop dev-python/configparser from accept_keywords 
The package is dropped.
 2021-12-10 17:23:36 +01:00
Krzesimir Nowak
ee6d364084 profiles: Drop dev-python/boto from accept_keywords 
The updated package is stable for both amd64 and arm64.
 2021-12-10 17:23:36 +01:00
Krzesimir Nowak
86eb65aecf profiles: Drop dev-python/backports-functools-lru-cache from accept_keywords 
The package got dropped.
 2021-12-10 17:23:36 +01:00
Krzesimir Nowak
2fe7a4eeb5 profiles: Drop dev-python/pylint from accept_keywords 
The updated package is stable for arm64
 2021-12-10 17:23:36 +01:00
Krzesimir Nowak
ed3924c26b profiles: Drop dev-python/astroid from accept_keywords 
Update version of the package is stable for arm64.
 2021-12-10 17:23:36 +01:00
Krzesimir Nowak
b5f7dac4c4 profiles: Drop dev-libs/libxml2 from accept_keywords 
The updated version is stable on both amd64 and arm64.
 2021-12-10 17:23:36 +01:00
Krzesimir Nowak
529b7e5018 profiles: Drop dev-libs/libnl from accept_keywords 
The updated version is stable for arm64 too.
 2021-12-10 17:23:36 +01:00
Krzesimir Nowak
afd7c488d6 profiles: Drop gobject-introspection from arm64 provides 
The updated version of gobject-introspection has arm64 keyword.
 2021-12-10 17:23:36 +01:00