mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-08-21 14:31:02 +02:00
Code Issues Packages Projects Releases Wiki Activity
22,070 Commits 619 Branches 394 Tags
Commit Graph

22070 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Krzesimir Nowak
5be55ae97d profiles: Add accept keywords for app-editors/{vim,vim-core} 2022-10-10 11:29:55 +02:00
Krzesimir Nowak
48bf9a6645 app-editors/{vim,vim-core}: Move back to portage-stable 2022-10-10 11:29:34 +02:00
Krzesimir Nowak
de55948ac3 profiles: Disable python stuff for dev-libs/libxslt 
The libxslt upstream fixed their python bindings, so they are not
python2 only. Gentoo then started to build them. Since we have fared
well so far without the bindings, keep on not building them.
 2022-10-10 10:28:26 +02:00
Krzesimir Nowak
1d3daed50a profiles: Update accept keywords for dev-util/bpftool 
Bpftool 5.18.11 is gone from portage-stable, 5.19.2 is the new stable
version for amd64. There's still no keyword for arm64, so we need to
keep the entry in the profiles for arm64.
 2022-10-10 10:14:20 +02:00
Krzesimir Nowak
501c6ca99c profiles: Drop accept keywords for dev-libs/libxml2 
The updated package became stable for both amd64 and arm64.
 2022-10-10 10:05:46 +02:00
Flatcar Buildbot
d4ead663b9 dev-lang: Upgrade Go 1.18.6 to 1.18.7 2022-10-10 07:54:23 +00:00
Flatcar Buildbot
a729108048 sys-libs/zlib: Sync with Gentoo 
It's from Gentoo commit 31b2c136145e3fbb9ccbbf461c7e74e16ad02d32.
 2022-10-10 07:38:06 +00:00
Flatcar Buildbot
7f12542ecc sys-libs/binutils-libs: Sync with Gentoo 
It's from Gentoo commit d44f7aa2eb9733dc6143e8b70e73e7ddb66f1adc.
 2022-10-10 07:38:06 +00:00
Flatcar Buildbot
8678f3912c sys-devel/gnuconfig: Sync with Gentoo 
It's from Gentoo commit f979de4a92ffd3be637bc82a67dbf629216f4c8b.
 2022-10-10 07:37:59 +00:00
Flatcar Buildbot
1a202e7406 sys-devel/gcc-config: Sync with Gentoo 
It's from Gentoo commit b6b625695cad967782ae5a9c52eb755f87d1aa10.
 2022-10-10 07:37:59 +00:00
Flatcar Buildbot
dfa91f902d sys-devel/gcc: Sync with Gentoo 
It's from Gentoo commit 2e8d3818c0d760367637e9781b83dc5d6468fee4.
 2022-10-10 07:37:59 +00:00
Flatcar Buildbot
fc91bb28ab sys-devel/binutils: Sync with Gentoo 
It's from Gentoo commit 4982f3666ad8cf981fbd8477220393f51b5c7183.
 2022-10-10 07:37:55 +00:00
Flatcar Buildbot
0ef29adbf3 net-misc/rsync: Sync with Gentoo 
It's from Gentoo commit 9d26a6b263f804564af069dfe943c7851c637055.
 2022-10-10 07:37:49 +00:00
Flatcar Buildbot
779e3285f3 net-fs/cifs-utils: Sync with Gentoo 
It's from Gentoo commit cce7da3c8e02fb9aa620c9a1e52365b11de1e909.
 2022-10-10 07:37:48 +00:00
Flatcar Buildbot
f291fdd9e9 dev-vcs/git: Sync with Gentoo 
It's from Gentoo commit 6e67f60fe48bd32c0ce5e4889c6015307b26fc47.
 2022-10-10 07:37:48 +00:00
Flatcar Buildbot
9f9b67f024 dev-util/patchelf: Sync with Gentoo 
It's from Gentoo commit 6bcca7585766247889abeefedf7d24708138ca82.
 2022-10-10 07:37:42 +00:00
Flatcar Buildbot
979888c4a8 dev-util/catalyst: Sync with Gentoo 
It's from Gentoo commit aba9bb58fceaf075f2829dcbfc3f9ab918a23a68.
 2022-10-10 07:37:35 +00:00
Flatcar Buildbot
cc9d1abdc8 dev-util/bpftool: Sync with Gentoo 
It's from Gentoo commit 037531248c696c612d870b79506029ac9d24e860.
 2022-10-10 07:37:35 +00:00
Flatcar Buildbot
4f6e91a098 dev-libs/libxslt: Sync with Gentoo 
It's from Gentoo commit ad7fe6b96d6a74a408aefa3c0e86781769ba4062.
 2022-10-10 07:37:33 +00:00
Flatcar Buildbot
71b5f1bb2d dev-libs/libxml2: Sync with Gentoo 
It's from Gentoo commit c533aa9765d12c3ecf351838567fa48ab61ba59b.
 2022-10-10 07:37:33 +00:00
flatcar-ci
595d73e1b8 New version: main-3385.0.0-nightly-20221007-2100 2022-10-07 21:00:30 +00:00
Lukas Stockner
74ee472821 Enable nf_conntrack_bridge and nft_meta_bridge kernel modules 
This allows to use conntrack rules for bridges in nftables
and to match on bridge interface names.
 2022-10-07 15:56:07 +02:00
Krzesimir Nowak
948fe706ff Merge pull request #2205 from flatcar/linux-5.15.72-main 
Upgrade Linux Kernel in main from 5.15.71 to 5.15.72
 2022-10-07 14:34:51 +02:00
flatcar-ci
d5ed5917eb New version: main-3384.0.0-nightly-20221006-2100 2022-10-06 21:00:29 +00:00
Jeremi Piotrowski
de132c62d5
Merge pull request #521 from flatcar/jepio/gpg-import-batch 
ci-automation: use --batch when importing gpg key
 2022-10-06 09:52:07 +02:00
Flatcar Buildbot
7294ee7abe sys-kernel: Upgrade Kernel 5.15.71 to 5.15.72 2022-10-06 07:32:31 +00:00
Krzesimir Nowak
5b670a5504 Merge pull request #2195 from flatcar/linux-5.15.71-main 
Upgrade Linux Kernel in main from 5.15.70 to 5.15.71
 2022-10-06 09:04:22 +02:00
flatcar-ci
4b607ce480 New version: main-3383.0.0-nightly-20221005-2100 2022-10-05 21:00:38 +00:00
Jeremi Piotrowski
4f01a18c37 profile/coreos/arm64: switch parent profile to 17.0/hardened 
This was left as a 'TODO', but finally showed up when building the arm64 SDK.
The generic parent profile caused arm64 SDK (but also production images) to
have several USE flags missing, most importantly acl. Without acl, `usermod -m`
fails to correctly copy skeleton files when creating a new user.

Switch to parent profile to one matching the amd64 parent profile, which brings
the two arches closer together.
 2022-10-05 16:40:11 +02:00
Flatcar Buildbot
fd4783ca0a sys-kernel: Upgrade Kernel 5.15.70 to 5.15.71 2022-10-05 14:54:26 +02:00
Krzesimir Nowak
ce9e0fd224 Merge pull request #364 from flatcar/krnowak/dev-util-update 
Development utilities update
 2022-10-05 11:32:39 +02:00
Krzesimir Nowak
13e9213d84 Merge pull request #2180 from flatcar/krnowak/dev-util-update 
Development utilities update
 2022-10-05 11:32:37 +02:00
flatcar-ci
6b0117ba24 New version: main-3382.0.0-nightly-20221004-2100 2022-10-04 21:00:36 +00:00
Krzesimir Nowak
2418d19906 Merge pull request #2198 from flatcar/krnowak/bump-init 
coreos-base/coreos-init: Bring in the port customization changes
 2022-10-04 16:39:01 +02:00
Krzesimir Nowak
aa403ffeea changelog: Add an entry 2022-10-04 16:37:41 +02:00
Kai Lüke
4f7b2ce5ef
Merge pull request #522 from flatcar/kai/sdk-release-if-new 
ci-automation/release: Only upload SDK if a new one was built
 2022-10-04 15:20:29 +02:00
Krzesimir Nowak
2e726adb32 coreos-base/coreos-init: Bring in the port customization changes 2022-10-04 15:07:17 +02:00
Krzesimir Nowak
ff6227115d coreos-base/hard-host-depends: Drop dev-util/scons 
There isn't anything that uses scons, so drop it from SDK.
 2022-10-04 14:52:10 +02:00
Krzesimir Nowak
ade775850b coreos/config: Drop overrides for dev-util/dialog 
It's not packaged in neither in overlay nor in portage-stable.
 2022-10-04 14:52:10 +02:00
Dongsu Park
70e0da0687 dev-util/bsdiff: Apply Flatcar modifications 
Apply existing Flatcar changes on top of vanilla Gentoo ebuilds:
- add arm64 keyword
- apply the sais patch
- fix a heap overflow vulnerability in bspatch included in bsdiff.

Originally the security issue was published as [FreeBSD-SA-16:29](https://www.freebsd.org/security/advisories/FreeBSD-SA-16:29.bspatch.asc),
which pointed to a FreeBSD [patch](https://security.freebsd.org/patches/SA-16:29/bspatch.patch).
However, the patch was a set of huge changes including other unrelated
changes. That's why it was not simple at all to apply the patch to
bsdiff. Both Gentoo and Flatcar have not included the fix.

Fortunately X41 D-SEC [examined](https://www.x41-dsec.de/security/news/working/research/2020/07/15/bspatch/)
the issue again, and nailed down to a simple patch that can be easily
applied to other trees. We simply take the patch with minimal changes.

See also [CVE-2020-14315](https://nvd.nist.gov/vuln/detail/CVE-2020-14315).

It is based on the following commits:

[4ee6aa895a02](https://github.com/kinvolk/coreos-overlay/commit/4ee6aa895a02) ("Add arm64 keywords")
[60d47e7359d1](https://github.com/kinvolk/coreos-overlay/commit/60d47e7359d1) ("Change suffix sort to sais-lite")
[7d3ac2a049dd](https://github.com/kinvolk/coreos-overlay/commit/7d3ac2a049dd) ("fix heap overflow vulnerability CVE-2020-14315")
 2022-10-04 14:52:10 +02:00
Krzesimir Nowak
e358a89307 dev-util/bsdiff: Sync with Gentoo 
It's from Gentoo commit 98ef629ba44e42abf5dd75e2e2c44994d85bc409.
 2022-10-04 14:52:10 +02:00
Krzesimir Nowak
e64412782e profiles: Drop outdated or redundant USE flags for dev-util/perf 2022-10-04 14:52:10 +02:00
Krzesimir Nowak
a8f0638d7f profiles: Drop accept_keywords for dev-util/perf 
Updated package is stable for both amd64 and arm64.
 2022-10-04 14:52:10 +02:00
Krzesimir Nowak
f8fac84130 profiles: Drop accept_keywords for dev-util/pahole 
Updated package is stable for both amd64 and arm64.
 2022-10-04 14:52:10 +02:00
Krzesimir Nowak
0d7e9d0971 profiles: Drop cmake from provided packages 
It should cross-compile just fine, but let's see if it ends up being
on the production image.
 2022-10-04 14:52:10 +02:00
Krzesimir Nowak
0a6a8aa7d4 profiles: Drop keywords for dev-util/checkbashisms 
The updated package is stable for both amd64 and arm64.
 2022-10-04 14:52:10 +02:00
Krzesimir Nowak
aa36317220 profiles: Update keywords for dev-util/bpftool 2022-10-04 14:52:10 +02:00
Krzesimir Nowak
b22334fd58 coreos/config: Drop fixes for cmake 2022-10-04 14:52:10 +02:00
Krzesimir Nowak
ea3051e7e6 changelog: Add an entry 2022-10-04 14:50:34 +02:00
Krzesimir Nowak
efef41e31d .github/workflows/packages-list: Add entries 2022-10-04 14:50:34 +02:00