mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-08-21 14:31:02 +02:00
Code Issues Packages Projects Releases Wiki Activity
22,070 Commits 619 Branches 394 Tags
Commit Graph

14297 Commits

Author SHA1 Message Date
Krzesimir Nowak
ab735a5df4 coreos-base/afterburn: Bump EAPI to 8 
EAPI 6 is too old for cargo eclass that gets inherited through
coreos-cargo.
 2022-03-22 10:26:03 +01:00
Krzesimir Nowak
5eccaeb306 profiles: Update accept_keywords for dev-lang/nasm 
It is available for arm64 now, but still as unstable.
 2022-03-22 10:26:03 +01:00
Krzesimir Nowak
9dec83eaa9 profiles: Drop app-misc/jq from accept_keywords 
The updated package is stable for both amd64 and arm64.
 2022-03-22 10:26:03 +01:00
Mathieu Tortuyaux
00cbb4bb25 profiles/base: accept tested version of cryptsetup 
it's required to pull fips support

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-03-22 09:55:19 +01:00
Mathieu Tortuyaux
226eae7bc3 sys-fs/cryptsetup: sync with ::gentoo 
this pulls fips support.

Commit-Ref: 1746c2caf8

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-03-22 09:46:43 +01:00
flatcar-ci
9bd3889b15 New version: sdk-3186.0.0-nightly-20220322-0139 2022-03-22 04:53:07 +00:00
Krzesimir Nowak
32941dc278 Merge pull request #1712 from JAORMX/sssd-selinux-module 
Add sssd to list of SELinux modules enabled
 2022-03-21 18:20:08 +01:00
Krzesimir Nowak
5907650a82 Merge pull request #307 from JAORMX/sssd 
Add selinux-sssd package
 2022-03-21 18:19:46 +01:00
Dongsu Park
1385747481 Merge pull request #1742 from flatcar-linux/linux-5.15.30-main 
Upgrade Linux Kernel in main from 5.15.28 to 5.15.30
 2022-03-21 17:34:25 +01:00
Dongsu Park
62298daf6b Merge pull request #1743 from flatcar-linux/sayan/update-intel-microcode-20220207_p20220207 
sys-firmware/intel-microcode: update to 20220207_p20220207
 2022-03-21 13:57:22 +01:00
Dongsu Park
cf81bdd8ef sys-kernel/coreos-sources: delete patch for Reverting xfrm state 
The patch z0005-Revert-xfrm-state-... is already included in the
upstream v5.15.30. Delete the patch to fix build failures.
 2022-03-21 13:52:33 +01:00
Dongsu Park
ac8fcf7ea7 Merge pull request #1744 from flatcar-linux/sayan/update-pambase-20220214 
sys-auth/pambase: update stub version to 20220214
 2022-03-21 13:24:34 +01:00
Sayan Chowdhury
7e12481655 sys-auth/pambase: update stub version to 20220214 
Signed-off-by: Sayan Chowdhury <schowdhury@microsoft.com>
 2022-03-21 13:23:01 +01:00
Dongsu Park
1749d86e40 Merge pull request #1735 from flatcar-linux/sayan/update-pam-1.5.1_p20210622-r1 
sys-libs/pam: Update to 1.5.1_p20210622
 2022-03-21 13:21:37 +01:00
Dongsu Park
4e2bcfb9a6 changelog: add changelog for pam 1.5.1_p20210622 2022-03-21 13:19:33 +01:00
Sayan Chowdhury
8d4ee0f2d6 sys-libs/pam: Apply Flatcar patches 
-  sys-libs/pam: Make /sbin/unix_chkpwd suid

This is to avoid importing fcaps eclass which adds a dependency on
sys-libs/libcap, which in turn depends on sys-libs/pam. To get out of
this conundrum, we could specify a "-filecaps" use flag for
sys-libs/pam. Problem with this solution would be no capability
override for the binary making it unable to read /etc/shadow. Thus we
make the binary suid. This is strictly less secure than overriding its
capabilities, but I have no idea how to solve it in a less hacky way.

-  sys-libs/pam: Install configuration into /usr

Also provide a tmpfiles fragment to bring it back.

- sys-libs/pam: Locked accounts functionality

Signed-off-by: Sayan Chowdhury <schowdhury@microsoft.com>
 2022-03-21 13:19:33 +01:00
Sayan Chowdhury
e1dfbe9862 sys-libs/pam: Update to 1.5.1__p20210622 
gentoo sync ref: a9be6b639c

Signed-off-by: Sayan Chowdhury <schowdhury@microsoft.com>
 2022-03-21 13:19:29 +01:00
Kai Lüke
498c4a1ab5 Merge pull request #1737 from flatcar-linux/kai/mantle-bump 
coreos-devel/mantle: bump to latest commit
 2022-03-21 11:54:45 +01:00
Dongsu Park
b2711efd5e profiles: disable su USE flag for util-linux 
As sys-apps/shadow has its own su binary, sys-apps/util-linux should
not have its own su binary. Otherwise, build will simply fail.
Disable su USE flag for util-linux.
 2022-03-21 11:49:08 +01:00
Dongsu Park
8851c0baa2 changelog: add changelog for util-linux 2.37.4 2022-03-21 11:44:56 +01:00
Sayan Chowdhury
ed5ec9010b sys-apps/util-linux: Sync with Gentoo upstream 
gentoo sync ref: 2dc9e5e758

Signed-off-by: Sayan Chowdhury <schowdhury@microsoft.com>
 2022-03-21 11:44:56 +01:00
Kai Lueke
d59d626d3b coreos-devel/mantle: bump to latest commit 
We have to update the commit ID now when a mantle PR gets merged
because the new pipeline uses it.
 2022-03-21 10:59:14 +01:00
Sayan Chowdhury
dce35b0a12 sys-firware/intel-microcode: Add the changelog entries for 20220207_p20220207 
Signed-off-by: Sayan Chowdhury <schowdhury@microsoft.com>
 2022-03-21 10:23:46 +01:00
flatcar-ci
f182192dd7 New version: sdk-3185.0.0-nightly-20220321-0139 2022-03-21 04:44:59 +00:00
Flatcar Buildbot
bfd4ba3a66 sys-kernel: Upgrade Kernel 5.15.28 to 5.15.30 2022-03-20 07:22:36 +00:00
flatcar-ci
e2f53bedff New version: sdk-3184.0.0-nightly-20220320-0139 2022-03-20 04:44:53 +00:00
flatcar-ci
6e47a65ff1 New version: sdk-3183.0.0-nightly-20220319-0139 2022-03-19 04:43:56 +00:00
Jeremi Piotrowski
5e82a8cc77 Merge pull request #285 from flatcar-linux/jepio/update-rng-tools-and-meson 
update meson
 2022-03-18 18:36:11 +01:00
Dongsu Park
f88785d939 Merge pull request #1736 from flatcar-linux/rust-1.59.0-main 
Upgrade dev-lang/rust in main from 1.58.1 to 1.59.0
 2022-03-18 18:07:20 +01:00
Dongsu Park
f21caf2d80 Merge pull request #1729 from flatcar-linux/firmware-20220310-main 
Upgrade Linux Firmware in main from 20220209 to 20220310
 2022-03-18 16:06:31 +01:00
Jeremi Piotrowski
830f8ad6c9 dev-util/meson: sync with Gentoo 
Sync meson and keep only the current stable ebuild (0.60.3).

Upstream commit 83cf9e2749be378ca4bb12096c2a33093a0af998

Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
 2022-03-18 12:52:27 +01:00
Flatcar Buildbot
7e7aa756f5 Upgrade virtual Rust in main from 1.58.1 to 1.59.0 2022-03-18 10:57:26 +00:00
Flatcar Buildbot
4bbf728449 dev-lang: Upgrade dev-lang/rust 1.58.1 to 1.59.0 2022-03-18 10:56:52 +00:00
Sayan Chowdhury
052c968ac8 sys-firmware/intel-microcode: Apply Flatcar patches 
Signed-off-by: Sayan Chowdhury <schowdhury@microsoft.com>
 2022-03-18 13:24:24 +05:30
Sayan Chowdhury
c3d8d35413 sys-firmware/intel-microcode: Sync with Gentoo upstream 
gentoo sync ref: b6146dcdce

Signed-off-by: Sayan Chowdhury <schowdhury@microsoft.com>
 2022-03-18 13:21:57 +05:30
flatcar-ci
1aabf5db93 New version: sdk-3182.0.0-nightly-20220318-0139 2022-03-18 04:36:03 +00:00
Kai Lüke
28b13f4448 Merge pull request #1713 from flatcar-linux/kai/no-lib-symlink 
Split lib and lib64 for sysext support
 2022-03-17 17:06:13 +01:00
Kai Lueke
00841774c9 changelog: add entry for lib and lib64 split 2022-03-17 17:03:16 +01:00
Kai Lueke
bfbf373f20 coreos-base/coreos-oem-gce: use usr/lib/systemd folder 
The lib64/systemd location only happened to work through the used
symlink on Flatcar. The standard location is lib/systemd.
Use the standard location as we now want to split the libs folders.
 2022-03-17 17:03:16 +01:00
Kai Lueke
bc9d7af985 sys-apps/systemd: enable systemd-sysext.service 
The systemd-sysext.service activates sysext images on boot.
Enable it by default.
 2022-03-17 17:03:16 +01:00
Kai Lueke
5fc316e775 coreos-base/coreos-init: add helper service to start sysext services 
This pulls in
https://github.com/flatcar-linux/init/pull/65
 2022-03-17 17:03:16 +01:00
Dongsu Park
9989de6963 Merge pull request #1725 from flatcar-linux/docker-20.10.13-main 
Upgrade Docker in main from 20.10.12 to 20.10.13
 2022-03-17 14:30:14 +01:00
Kai Lueke
ba8aeb992a coreos-base/coreos-init: create compatibility symlinks 
The split of /usr/lib64 into /usr/lib and /usr/lib64 means that paths
to /usr/lib64/X that worked before now wouldn't.
Therefore, create compatibility symlinks.
 2022-03-17 12:15:40 +01:00
Kai Lueke
c6e427d80d profiles: disable SYMLINK_LIB 
The profile Flatcar is on had SYMLINK_LIB set for amd64 which set up
(/usr)/lib as symlink to (/usr)/lib64. This is not the case for arm64
nor common in other recent distributions and causes systemd-sysext
loading to fail.
Disable SYMLINK_LIB for the amd64 board for now, leaving the SDK as is
but we could also set it for the SDK, too. A future profile update will
also bring this change.
 2022-03-17 12:12:46 +01:00
Kai Lueke
b3f4b641ce sys-apps/baselayout: force link creation in tmpfile rule 
The /lib symlink does not point to /usr/lib but instead points to
/usr/lib64 on current releases which have a single /usr/lib64 folder
and a symlink from /usr/lib to it. This means that when they update to
a release with a split lib vs. lib64 setup, the kernel modules are not
found because /lib/modules does not exist (because /lib still points
to /usr/lib64 instead of /usr/lib).
Force link recreation to match the new layout. The system will still be
able to rollback because the link to /usr/lib is still valid because
/usr/lib is itself a link that forwards to /usr/lib64.
 2022-03-17 12:11:11 +01:00
Dongsu Park
96d59a1d55 app-emulation/docker: remove unnecessary patch for etcd 
Now that Docker 20.10.13 updated its vendored etcd to 3.3.27, it is
not necessary any more to fix F_OFD_GETLK in etcd. Simply remove it.
 2022-03-17 10:24:49 +01:00
Juan Antonio Osorio
6dadefecfb Add SELinux flag for sssd build 
Signed-off-by: Juan Antonio Osorio <juan.osoriorobles@eu.equinix.com>
 2022-03-17 09:34:51 +02:00
Flatcar Buildbot
372c62308b sys-kernel: Upgrade Linux Firmware 20220209 to 20220310 2022-03-17 07:12:09 +00:00
Sayan Chowdhury
a44e49d7a6 sys-fs/cryptsetup: Sync to cryptsetup 2.4.3 
sync ref: 9ca608da6b

Signed-off-by: Sayan Chowdhury <schowdhury@microsoft.com>
 2022-03-17 12:04:59 +05:30
flatcar-ci
90ea343ac1 New version: sdk-3181.0.0-nightly-20220317-0139 2022-03-17 04:35:48 +00:00