mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-08-18 21:11:08 +02:00
Code Issues Packages Projects Releases Wiki Activity
9,735 Commits 625 Branches 396 Tags
Commit Graph

7882 Commits

Author SHA1 Message Date
Dongsu Park
53aed3bbad profiles: delete keywords for vim 2021-12-01 13:48:55 +01:00
Sayan Chowdhury
26bd80f6f0 oem-azure-pro: Add the arm64 keyword to the OEM 
Signed-off-by: Sayan Chowdhury <schowdhury@microsoft.com>
 2021-12-01 09:27:38 +00:00
Dongsu Park
6a365a652d changelog: add new changelog for CVE-2020-14040 2021-11-30 17:43:12 +01:00
Dongsu Park
93e885d0d1 sys-apps/ignition: update golang.org/x/text to 0.3.7 
Update golang.org/x/text to 0.3.7, mainly to address CVE-2020-14040.

Pulls in https://github.com/flatcar-linux/ignition/pull/31
 2021-11-30 17:39:11 +01:00
Krzesimir Nowak
49aa203f55 Merge pull request #1451 from flatcar-linux/linux-5.15.5-main 
Upgrade Linux Kernel in main from 5.15.4 to 5.15.5
 2021-11-30 17:16:39 +01:00
Krzesimir Nowak
a81d3898d8 changelog: Update the update changelog format 
Mention that it should be written as a bullet list. Also, match the
format to the example (put the version link inside parentheses).
 2021-11-30 14:53:20 +01:00
Flatcar Buildbot
dc5fe148b0 sys-kernel: Upgrade Kernel 5.15.4 to 5.15.5 2021-11-30 12:52:24 +00:00
Krzesimir Nowak
7c808058b1 Merge pull request #1443 from flatcar-linux/krnowak/linux-5.15 
Bump linux kernel and related software to 5.15
 2021-11-30 13:43:52 +01:00
Krzesimir Nowak
3353d9834a changelog: Add an entry for kernel updates 2021-11-30 13:41:21 +01:00
Krzesimir Nowak
e271cc2e08 .github: Bump KV_MAIN to 5.15 2021-11-30 13:06:17 +01:00
Mathieu Tortuyaux
95d8eb9b0c Merge pull request #1444 from flatcar-linux/tormath1/etcd 
app-admin/etcd-wrapper: remove `ETCD_NAME`
 2021-11-29 16:59:29 +01:00
Krzesimir Nowak
822b9d2caf sys-apps/systemd: Update to latest stable release 
This hopefully fixes a build issue that came up after updating kernel
headers.
 2021-11-29 16:34:05 +01:00
Krzesimir Nowak
78bc062499 sys-process/audit: Apply Flatcar modifications 2021-11-29 16:34:05 +01:00
Krzesimir Nowak
5633fc128b sys-process/audit: Sync with gentoo 
It's from gentoo commit 9537582d2381dcbac871953273430ce1391e46aa.
 2021-11-29 16:34:04 +01:00
Krzesimir Nowak
81f7fa466f sys-fs/btrfs-progs: Apply Flatcar modifications 2021-11-29 16:34:04 +01:00
Krzesimir Nowak
baefb0d674 sys-fs/btrfs-progs: Sync with gentoo 
It's from gentoo commit 1d3fac51b9ee5811ec62e49dfbbd1579b50c7df8.
 2021-11-29 16:34:04 +01:00
Krzesimir Nowak
96f881902f profiles: Add keywords for sys-apps/iproute2 to match linux kernel 2021-11-29 16:34:04 +01:00
Krzesimir Nowak
3dbd6c6a48 profiles: Add keywords for dev-util/perf to match linux kernel 2021-11-29 16:34:04 +01:00
Krzesimir Nowak
339fe900fe profiles: Add keywords for sys-kernel/linux-headers to match linux kernel 2021-11-29 16:34:04 +01:00
Krzesimir Nowak
7967ad2a0c sys-kernel/coreos-modules: Add CONFIG_PINCTRL_MSM 
It became a dependency instead of a selectable config in kernel 5.11
in commit be117ca32261c3331b614f440c737650791a6998.
 2021-11-29 16:34:04 +01:00
Krzesimir Nowak
919890407c sys-kernel/coreos-modules: Move CONFIG_TASKSTATS from arm64 to common 
CONFIG_TASKSTATS is a dependency of CONFIG_TASK_XACCT for a long time
now. Not sure how we managed to get away with such a config so far.
 2021-11-29 16:34:04 +01:00
Krzesimir Nowak
7457d866a6 sys-kernel/coreos-modules: Drop CONFIG_RAW_DRIVER 
It was dropped from kernel 5.14 in commit
603e4922f1c81fc2ed3a87b4f91a8d3aafc7e093.
 2021-11-29 16:34:04 +01:00
Krzesimir Nowak
3ee3dfa261 sys-kernel/coreos-modules: Drop CONFIG_CIFS_WEAK_PW_HASH 
It is removed from kernel 5.15 in commit
76a3c92ec9e0668e4cd0e9ff1782eb68f61a179c.
 2021-11-29 16:34:04 +01:00
Krzesimir Nowak
f0535ace30 sys-kernel/coreos-modules: Sort the config files 2021-11-29 16:34:04 +01:00
Krzesimir Nowak
8d37eb37ec sys-kernel: Bump kernel to 5.15.4 2021-11-29 16:34:04 +01:00
Jeremi Piotrowski
7a53fc8c7c coreos-modules: update kernel config for 5.13 
Some options were removed, others hidden behind other options.

Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
 2021-11-29 16:34:04 +01:00
Jeremi Piotrowski
7f16628a72 bump kernel to 5.13.11 
Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
 2021-11-29 16:34:04 +01:00
Mathieu Tortuyaux
ac99563d5e app-admin/etcd-wrapper: remove ETCD_NAME 
`etcd` node's name was defined by `ETCD_NAME`, from `etcd/v3` the server
can't be started with both `ETCD_NAME` and `--name` supplied.

Which leads to three cases:
* `etcd-member.service` starts without further configuration, no issue
since only `ETCD_NAME=%m` is used
* `etcd-member.service` is overrided with a CLC without `name: ` key, no
issue since only `ETCD_NAME=%m` is used
* `etcd-member.service` is overrided with a CLC with a `name: ` key,
there is an issue since in the final service we will have both
`ETCD_NAME=%m` and `--name name-from-clc`

This patch conditionally unset the `ETCD_NAME` in case `--name` is
supplied.

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2021-11-29 10:49:39 +01:00
Dongsu Park
f386da4005 Merge pull request #1445 from flatcar-linux/dongsu/gcc-9.4.0 
profiles: delete unnecessary keywords for gcc
 2021-11-26 16:00:03 +01:00
Dongsu Park
bb66a28afe changelog: use date format of YYYY-MM-DD 
If we use date format of DD-MM-YYYY in changelog file names, the files
will not sorted by date. e.g. 01-12-2021 will come before 25-11-2021.
Use date format of YYYY-MM-DD to make the files sorted by date.
 2021-11-26 15:31:09 +01:00
Dongsu Park
e580958b30 profiles: delete unnecessary keywords for gcc 
Now that gcc 9.4.0 already has stable keywords both amd64 and arm64,
we do not need to accept keywords in profiles. Simply delete.
 2021-11-25 16:18:07 +01:00
Sayan Chowdhury
9ea89fe87f Merge pull request #1436 from flatcar-linux/sayan/mandate-changelog-entry 
changelog: Add placeholder directory to add the changelogs
 2021-11-24 22:53:45 +05:30
Sayan Chowdhury
14b91f57e6 changelog: Add placeholder directory to add the changelogs 
Signed-off-by: Sayan Chowdhury <schowdhury@microsoft.com>
 2021-11-24 22:50:19 +05:30
Dongsu Park
8ec91fc7c8 Merge pull request #1408 from ArkaprabhaChakraborty/arkaprabha/upgrade-net-libs-libmicrohttpd 
Upgrade net-libs/libmicrohttpd to 0.9.73
 2021-11-23 15:28:38 +01:00
Kai Lueke
e860093fe1 app-admin/logrotate: Correct downstream changes to take effect 
By accident the upstream files from the example folder got used,
instead of the downstream files that were added in the files/ folder.
Also, the configuration file didn't get installed.

Use the right paths to install the downstream files.
 2021-11-23 10:50:25 +01:00
ArkaprabhaChakraborty
4032d3a5e5 Remove net-libs/libmicrohttpd from package.accept_keywords 2021-11-21 15:09:15 +00:00
Dongsu Park
d68272f5e6 Merge pull request #1431 from flatcar-linux/dongsu/rsync-3.2.3-r5 
profiles: accept keywords for rsync 3.2.3-r5
 2021-11-19 17:41:44 +01:00
Dongsu Park
4739a90732 Merge pull request #1435 from flatcar-linux/linux-5.10.80-main 
Upgrade Linux Kernel in main from 5.10.78 to 5.10.80
 2021-11-19 17:38:25 +01:00
Mathieu Tortuyaux
218b96730b app-emulation/docker-cli: use ${PV} for CLI version 
Upstream isn't updating the file regularly, so use ${PV}.

Closes: https://bugs.gentoo.org/815658
Closes: https://github.com/gentoo/gentoo/pull/22457
Package-Manager: Portage-3.0.20, Repoman-3.0.3
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
Signed-off-by: William Hubbs <williamh@gentoo.org>
 2021-11-19 17:23:20 +01:00
Flatcar Buildbot
494c12850f app-emulation: Upgrade Docker 20.10.10 to 20.10.11 2021-11-19 17:23:19 +01:00
Dongsu Park
bd623c63e9 profiles: accept keywords for rsync 3.2.3-r5 2021-11-19 09:21:07 +01:00
Flatcar Buildbot
e7d74d8a45 app-emulation: Upgrade Containerd 1.5.7 to 1.5.8 2021-11-19 09:18:57 +01:00
Flatcar Buildbot
e277aa133a sys-kernel: Upgrade Kernel 5.10.78 to 5.10.80 2021-11-19 07:24:19 +00:00
Mathieu Tortuyaux
46edd14fad Merge pull request #1426 from flatcar-linux/tormath1/selinux 
sec-policy/selinux-base-policy: add capability to unlabeled_t
 2021-11-18 16:57:53 +01:00
Mathieu Tortuyaux
5c25c3835c sec-policy/selinux-base-policy: add capability to unlabeled_t 
with this patch, we allow `unlabeled_t` to associate to tmpfs
filesystem.
It aims to solve the AVC we have with `torcx` with the
`torcx-generator`:
```
Nov 15 09:45:43 localhost audit[688]: AVC avc: denied { associate } for pid=688 comm="torcx-generator" name="docker" dev="tmpfs" ino=2 scontext=system_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=filesystem permissive=0
```

It has been not been caught earlier because it occurs
when the system boots with `SELinux` in `enforcing` mode.

This denial was preventing torcx to finish correctly its setup and so
Docker was not able to start.

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2021-11-18 16:56:55 +01:00
Flatcar Buildbot
b1f26fb9de app-misc: Upgrade ca-certificates 3.70 to 3.72 2021-11-17 16:03:23 +00:00
Dongsu Park
b65c369d0a .github: fix version delimiter of ca-certs workflow for main 
Since every tag of the nss Github repo has `_` delimiters, we need to
first use `sort -t_` for sorting, then after that we need to replace `_`
with `.` by calling tr. Without that conversion, the input ebuild file
name will be wrong.
We fixed the issue in all other maintenance branches, but not in main.
Fix that also in main.
 2021-11-17 16:25:41 +01:00
Dongsu Park
f561ec568c .github: add Github Actions for ca-certificates 
Automatically update app-misc/ca-certificates , a derivative of
nss https://hg.mozilla.org/projects/nss . To make things easier,
we simply check for new releases on its Github mirror
https://github.com/nss-dev/nss . When the new latest tag is found,
simply bump the version of ca-certificates ebuild.
 2021-11-16 15:30:13 +01:00
Krzesimir Nowak
e6897de5e4 sys-fs/btrfs-progs: Apply Flatcar modifications 2021-11-15 15:29:26 +01:00
Krzesimir Nowak
ed3e805682 sys-fs/btrfs-progs: Add from gentoo 
It's from gentoo commit 638e02f491a1e37f2af31523490f00f8a118419d.
 2021-11-15 15:29:26 +01:00