This change updates coreos-cloudinit to the latest flatcar-master commit.
This change disables user-configdrive.service on OpenStack,
as coreos-cloudinit.service already runs on OpenStack when the system is
not configured via ignition.
Signed-off-by: Gabriel Adrian Samfira <gsamfira@cloudbasesolutions.com>
We could use systemd-cryptenroll and cryptsetup with a TPM device but
so far the support was not compiled in.
Enable the use flags for TPM2 support in systemd.
The goal is to enable ntpd by default on AWS/GCP with using the cloud provided
ntp endpoint. Enabling ntpd.service is the easy part. Enabling the correct ntp
server is trickier. I would love to ship an OEM specific ntp.conf, but this
might interfere with user modifications to either ntpd.service or ntp.conf.
The safest way to implement this is to add the AWS/GCP time sync address
(which are link-local address) to the default ntp.conf. This will work
on AWS/GCP where ntpd will be enabled by default, and if a user on another
platform enables ntpd they will simply have a non-responsive source in
their server list - which is not a problem for ntpd.
Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
Inspired by https://github.com/microsoft/azurelinux/pull/6234, requires
a udev rule to be shipped with the OS, since udev rules in sysexts don't
quite work.
Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
Along with configuration, tmpfiles setup and service dependencies. The
files are added through normal ebuild mechanisms. The config file is
based on what Ubuntu ships on Azure.
Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
Sysexts can includes services that have a Conflicts=systemd-timesyncd
entry. To ensure that this takes effect, start timesyncd after the
ensure-sysext.service.
Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
Add chrony to RDEPENDS so that it is built for the board sysroot and can
be included into a sysext.
Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
We don't care too much for readline support and this avoids pulling
libedit into a sysext that wants to ship chrony.
Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
PTP_1588_CLOCK defaults to =y, make it =m explicitly. Switch
PTP_1588_CLOCK_KVM to module as well, so tath it doesn't load on non-KVM
platforms. Enable PTP_1588_CLOCK_VMW so that PTP timesync to the host is
available there as well.
We don't need PTP support to be compiled into the kernel, it is not
essential for system boot.
Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
