mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-08-25 00:11:23 +02:00
Code Issues Packages Projects Releases Wiki Activity
22,070 Commits 616 Branches 394 Tags
Commit Graph

14297 Commits

Author SHA1 Message Date
Mathieu Tortuyaux
8bd2eefc3f app-admin/setools: remove package 
from 4.x setools is a pure python script, we won't include it
in Flatcar anymore

Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-16 10:04:02 +02:00
Mathieu Tortuyaux
d86d08d640 profiles/coreos/amd64: enable selinux for runc 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-16 10:04:02 +02:00
Mathieu Tortuyaux
c56eec4bb4 eclass: move selinux-policy-2 to ::portage-stable 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-16 10:04:02 +02:00
Mathieu Tortuyaux
0ead201568 sec-policy/selinux-unconfined: sync with upstream 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-16 10:04:02 +02:00
Mathieu Tortuyaux
e2afa149cb sec-policy/selinux-virt: apply flatcar changes 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-16 10:04:02 +02:00
Mathieu Tortuyaux
e02947a905 sec-policy/selinux-virt: sync with upstream 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-16 10:04:01 +02:00
Mathieu Tortuyaux
4d6ff7cfca sec-policy/selinux-base-policy: flatcar changes 
- run sshd (and child) as unconfined_t
- add init.patch to allow execute_no_trans,map and
exec from init to unconfined
- add AVC patch for local login and journald

Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-16 10:04:01 +02:00
Mathieu Tortuyaux
d819e2afa4 sec-policy/selinux-base-policy: sync with upstream 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-16 10:03:10 +02:00
Mathieu Tortuyaux
e472af562e sec-policy/selinux-base: apply flatcar changes 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-16 10:03:10 +02:00
Jeremi Piotrowski
743f86d4da sys-kernel/coreos-kernel: strip ROOT from TMPDIR before running dracut 
Update-bootengine chroots into the sysroot and runs dracut from there.
Dracut 053 has revised TMPDIR handling and the portage TMPDIR prefixed
with ROOT leaks into the chroot. This causes dracut to abort during
setup with the error message "invalid tmpdir".

Override TMPDIR before running update-bootengine to allow dracut to
function.

Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
 2021-07-15 13:40:50 +00:00
Jeremi Piotrowski
68f2867457 sys-kernel/dracut: Apply Flatcar patches to 053 
Flatcar uses custom networking scripts in initramfs, so the dracut iscsi
module needs to be patched to account for that.

Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
 2021-07-15 13:40:50 +00:00
Sayan Chowdhury
033048444f sys-kernel/dracut: Apply Flatcar patches 
Add Flatcar specific patch to enable the iscsi module

Flatcar uses its own network module instead of the Dracut one, but the
iscsi module depends on the network. So, in order to enable the iscsi
module, we need to patch the dependency

Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
 2021-07-15 13:40:50 +00:00
Sayan Chowdhury
2a19f3cd76 sys-kernel/dracut: Sync with Gentoo upstream 
Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
 2021-07-15 13:40:50 +00:00
Sayan Chowdhury
3f857f9f2a Merge pull request #1099 from peanutduck/ticket_361 
net-misc/curl: enable telnet protocol support
 2021-07-15 13:11:59 +05:30
Dongsu Park
6c0742bf07 Merge pull request #932 from kinvolk/dongsu/wget-ssl 
profiles: force to use ssl USE flag for wget
 2021-07-15 09:39:41 +02:00
Sayan Chowdhury
31ce217f6a Merge pull request #1104 from kinvolk/linux-5.10.49-main 
Upgrade Linux Kernel in main from 5.10.46 to 5.10.49
 2021-07-15 10:55:24 +05:30
Jeremi Piotrowski
77a0115be2 Merge pull request #186 from kinvolk/jepio/qemu-add-slirp 
net-libs/libslirp: Import from Gentoo
 2021-07-14 14:39:10 +02:00
Jeremi Piotrowski
40328de04b Merge pull request #929 from wernerb/add-mdio-bcm 
Enable MDIO_BCM_UNIMAC for arm64
 2021-07-13 09:58:28 +02:00
Flatcar Buildbot
70cb0ed335 sys-kernel: Upgrade Kernel 5.10.46 to 5.10.49 2021-07-12 07:15:21 +00:00
peanutduck
b1fa2b24ee net-misc/curl: enable telnet protocol support 
Add telnet useflag directly in the package.use file
 2021-07-08 23:10:12 +08:00
Mathieu Tortuyaux
92bc08519c Merge pull request #1093 from kinvolk/tormath1/libgcrypt-1.9.3 
profiles: accept ~amd64 & ~arm64 for libgcrypt-1.9.3
 2021-07-08 09:47:59 +02:00
Mathieu Tortuyaux
fe107d3408 profiles: accept ~amd64 & ~arm64 for libgcrypt-1.9.3 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-08 09:45:07 +02:00
Mathieu Tortuyaux
6ab3fa34b3 dev-libs/libgcrypt: sync with ::gentoo 
1.9.3 is not stable yet - accepted keywords has been updated in
::coreos-overlay.

Ref: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=5ebb8899e39bc7a7773fe930e68697cc48aab8d3

Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-08 09:43:00 +02:00
Jeremi Piotrowski
304b5abf7a net-libs/libslirp: Import from Gentoo 
slirp is needed to by qemu netdev user backend, which was removed in the
process of upgrading qemu to 5.2.0. Bring it back so that it is possible
to run flatcar_production_qemu.sh directly from the chroot.

See also kinvolk/Flatcar#420

Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
 2021-07-07 12:43:14 +00:00
Kai Lüke
c2b0b0cc7e coreos-base/coreos-init: add udev systemd tag for Azure storage devices 
This pulls in
https://github.com/kinvolk/init/pull/41
 2021-07-07 12:25:46 +02:00
Mathieu Tortuyaux
1219a8ff35 sec-policy/selinux-base: sync with the upstream 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-06 15:57:28 +02:00
Mathieu Tortuyaux
b7419c3548 sys-libs/libsemanage: apply flatcar changes 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-06 15:57:28 +02:00
Mathieu Tortuyaux
5738da828c sys-libs/libsemanage: sync with the upstream 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-06 15:57:28 +02:00
Mathieu Tortuyaux
522387fa10 sys-libs/libselinux: apply flatcar changes 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-06 15:57:28 +02:00
Mathieu Tortuyaux
9aecd8fc33 sys-libs/libselinux: sync with upstream 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-06 15:57:28 +02:00
Mathieu Tortuyaux
a693d478e1 sys-apps/policycoreutils: apply flatcar changes 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-06 15:57:28 +02:00
Mathieu Tortuyaux
c172da732c sys-apps/policycoreutils: sync with upstream 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-06 15:57:27 +02:00
Mathieu Tortuyaux
17d538681e sys-apps/checkpolicy: apply flatcar changes 
backported from CoreOS commits

Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-06 15:57:27 +02:00
Mathieu Tortuyaux
3b1534f9da sys-apps/checkpolicy: sync with the upstream 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-06 15:57:27 +02:00
Sayan Chowdhury
c9c98f49b6 acct-{group, user}/messagebus: Add the new dependencies for dbus 
Signed-off-by: Sayan Chowdhury <sayan@kinvolk.io>
 2021-07-06 15:55:19 +02:00
Mathieu Tortuyaux
8565def18b sys-apps/semodule-utils: apply tmp flatcar changes 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-06 15:55:19 +02:00
Mathieu Tortuyaux
676c14c966 sys-apps/semodule-utils: add new package 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-06 15:55:19 +02:00
Mathieu Tortuyaux
9e3a91b57d eclass/selinux: fix POLICY_PATCH applying 
need to open a bug upstream - current discussions on IRC
 2021-07-06 15:55:19 +02:00
Mathieu Tortuyaux
da7e024e1f eclass/selinux-policy-2: sync with upstream 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-06 15:55:18 +02:00
Mathieu Tortuyaux
0e286d00c4 sys-libs/libsepol: sync with the upstream 
Signed-off-by: Mathieu Tortuyaux <mathieu@kinvolk.io>
 2021-07-06 15:55:18 +02:00
Dongsu Park
8f82c06a48 app-admin/updateservicectl: sync with current main - 2021-07-05 
Update commit to 6a4ff4ca879082c07353dd379439c437cbe27e18, to sync with
the current main branch.
Pulls in https://github.com/kinvolk/updateservicectl/pull/6 .

Also update Go import paths to `github.com/kinvolk/updateservicectl`.

Also set `COREOS_GO_GO111MODULE=on` because updateservicectl now relies
on Go module.
 2021-07-06 12:31:13 +02:00
Dongsu Park
1694beca3f Merge pull request #174 from kinvolk/rust-1.53.0-main 
Upgrade virtual Rust in main from 1.52.1 to 1.53.0
 2021-07-06 11:43:50 +02:00
Dongsu Park
37eeb0f666 Merge pull request #1068 from kinvolk/rust-1.53.0-main 
Upgrade dev-lang/rust in main from 1.52.1 to 1.53.0
 2021-07-06 11:43:31 +02:00
Dongsu Park
7a418b4212 Merge pull request #1088 from kinvolk/dongsu/libpcre-8.44 
profiles,app-crypt: fixes needed by libpcre 8.44
 2021-07-05 14:19:20 +02:00
Dongsu Park
b7609c8644 Merge pull request #184 from kinvolk/dongsu/libpcre-8.44 
dev-libs/libpcre: update to 8.44
 2021-07-05 14:19:07 +02:00
Mathieu Tortuyaux
377d68fbc3 Merge pull request #1087 from kinvolk/t-lo/update-to-glibc-2.33 
Upgrade to glibc-2.33
 2021-07-05 14:05:57 +02:00
Dongsu Park
e91efef4ff app-crypt/mit-krb5: add warn-crossbuild.patch 
Set PYTHON_COMPAT to python 3.6 and 3.7 to be suitable for the current
code base.

Add a custom patch to replace error with warning when running autoconf
for cross builds, because libkrb5 is not able to detect
cross-compilation.

See also https://github.com/kinvolk/Flatcar/issues/369 .
 2021-07-05 13:08:35 +02:00
Dongsu Park
c4e7fd6fca app-crypt/mit-krb5: move from portage-stable 
To add a custom patch, move mit-krb5 from portage-stable to
coreos-overlay, and update it to 1.18.2-r4.
 2021-07-05 13:08:35 +02:00
Flatcar Buildbot
b9c3e25d51 Upgrade virtual Rust in main from 1.52.1 to 1.53.0 2021-07-05 12:59:59 +02:00
Flatcar Buildbot
fc048ca53c dev-lang: Upgrade dev-lang/rust 1.52.1 to 1.53.0 2021-07-05 12:59:07 +02:00