mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-08-26 17:01:09 +02:00
Code Issues Packages Projects Releases Wiki Activity
22,070 Commits 615 Branches 396 Tags
Commit Graph

22070 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Mathieu Tortuyaux
bd30be56ee
jenkins/kola: use httpS URL for PXE boot 
Follow-up of:
* https://github.com/flatcar-linux/mantle/pull/288
* https://github.com/flatcar-linux/Flatcar/issues/527

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-02-09 10:46:42 +01:00
Jeremi Piotrowski
c9ddda260b
Merge pull request #221 from flatcar-linux/jepio/azure-fixed-vhd 
build_library: vm_image_util: create fixed-size VHDs for Azure
 2022-02-08 16:23:43 +01:00
Dongsu Park
39301b007f jenkins: do not check out branches of coreos-overlay and portage-stable 
The default branch of both repos, coreos-overlay and portage-stable,
should be `main`. If we checkout `master` branch, which contains
invalid source code that was deprecated many years ago, the build could
sometimes fail, e.g. when trying to build perl 5.26.2 with gcc 10.

Simply delete the code checking out branches, as the part is already
being handled in emerge-gitclone.
 2022-02-08 12:26:47 +01:00
Kai Lueke
e89bb5652c sys-apps/systemd: add downstream patch to disable foreign route mgmt 
This new downstream patch disables the ManageForeignRoutes and
ManageForeignRoutingPolicyRules systemd-netword settings by default to
ensure that CNIs don't get their routes or routing policy rules
discarded on network reconfiguration events.

https://github.com/flatcar-linux/Flatcar/issues/620
 2022-02-07 17:56:54 +01:00
Flatcar Buildbot
d10829cf5f app-misc: Upgrade ca-certificates 3.74 to 3.75 2022-02-07 07:21:43 +00:00
Mathieu Tortuyaux
5c4ac96f69
kola/em: increase timeout 
number of test increased. While we don't have yet a way to reduce
testing time, let's increase the timeout.

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-02-06 11:56:12 +01:00
Krzesimir Nowak
e955cf4aac Merge pull request #281 from flatcar-linux/krnowak/drop-duplicates 
Drop duplicated packages
 2022-02-03 09:32:06 +01:00
Sayan Chowdhury
563b295ed7 Merge pull request #1610 from flatcar-linux/linux-5.15.19-main 
Upgrade Linux Kernel in main from 5.15.18 to 5.15.19
 2022-02-03 13:17:14 +05:30
Krzesimir Nowak
b3d8b009cc sys-process/tini: Drop duplicated package 2022-02-02 19:38:00 +01:00
Krzesimir Nowak
62967db6fd app-crypt/sbsigntools: Drop duplicated package 2022-02-02 19:37:42 +01:00
Mathieu Tortuyaux
d75d4a56da Merge pull request #1605 from flatcar-linux/tormath1/cyrus-sasl 
dev-libs/cyrus-sasl: sync with `::gentoo`
 2022-02-02 13:44:07 +01:00
Mathieu Tortuyaux
fcd640e6f0 dev-libs/cyrus-sasl: apply flatcar patches 
- remove unecessary ebuild
- apply cross compiling patch

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-02-02 13:43:03 +01:00
Jeremi Piotrowski
323c1b28b1 changelog: Add entry for Azure VHD format change 2022-02-02 10:01:19 +01:00
Flatcar Buildbot
6229b0f4d2 sys-kernel: Upgrade Kernel 5.15.18 to 5.15.19 2022-02-02 07:22:08 +00:00
Jeremi Piotrowski
07568fb418 build_library: vm_image_util: create fixed-size VHDs for Azure 
Azure requires disks to be fixed-size VHD files when uploading to blob storage
in order to create image/gallery objects from them. This is documented here[1].
To prevent mistakes from happening create disks in that format directly so that
any azure compatible tool can upload them, though azcopy is recommend because
it handles their sparseness best.

This has not been an issue for us so far because kola uses code from an older
utility that transparently handled the dynamic-to-fixed-size conversion for VHD
files (azure-vhd-utils). But people working with these things for the first
time fall into this trap.

[1]: https://docs.microsoft.com/en-us/azure/virtual-machines/linux/create-upload-generic#resizing-vhds.

Signed-off-by: Jeremi Piotrowski <jpiotrowski@microsoft.com>
 2022-02-01 17:52:09 +00:00
Mathieu Tortuyaux
7727932905 dev-libs/cyrus-sasl: sync with ::gentoo 
Commit-Ref: c64e42b0da7ce4c4189c8868ce0a5170f044468f

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-02-01 16:37:03 +01:00
Mathieu Tortuyaux
58cfec0d2b Merge pull request #1603 from flatcar-linux/tormath1/sbsigntools 
app-crypt/sbsigntools: bump to 0.9.4
 2022-02-01 09:39:20 +01:00
Mathieu Tortuyaux
bf127a3a35 changelog: add entry 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-02-01 09:38:28 +01:00
Mathieu Tortuyaux
25c3360eee app-crypt/sbsigntools: apply flatcar changes 
- remove unecessary ebuilds
- mark sbsigntools-0.9.4.ebuild as stable for arm64/amd64
- apply OpenSSLv3 patch from: https://groups.io/g/sbsigntools/topic/patch_fix_openssl_3_0_issue/85903418?p=,,,20,0,0,0::recentpostdate/sticky,,,20,2,0,85903418,previd=1632756467394580924,nextid=1591489833755102589&previd=1632756467394580924&nextid=1591489833755102589
- remove -Werror from Makefile.am for OpenSSLv3 compilation

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-02-01 09:38:14 +01:00
Dongsu Park
7545fbf13d Merge pull request #280 from flatcar-linux/dongsu/expat-2.4.4 
dev-libs/expat: update to 2.4.4
 2022-02-01 08:10:08 +01:00
Kai Lüke
51c4f8338f Merge pull request #1602 from flatcar-linux/kai/enable-fips 
sys-kernel: allow fips mode to be enabled
 2022-01-31 19:51:07 +01:00
Krzesimir Nowak
f43b05050f Merge pull request #1600 from flatcar-linux/linux-5.15.18-main 
Upgrade Linux Kernel in main from 5.15.17 to 5.15.18
 2022-01-31 18:52:13 +01:00
Flatcar Buildbot
b51049bc89 sys-kernel: Upgrade Kernel 5.15.17 to 5.15.18 2022-01-31 18:48:44 +01:00
Mathieu Tortuyaux
258e8530ba app-crypt/sbsigntools: sync with ::gentoo 
Commit-Ref: bc01370226f4b5f773ae0da7d49ae09b90622666

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-01-31 16:59:44 +01:00
Kai Lueke
38a01288e1 sys-kernel: allow fips mode to be enabled 
With this kernel config, users can boot with fips=1 set in
`/usr/share/oem/grub.cfg`:
```
set linux_append="fips=1"
```

Which triggers various behaviors, for FIPS 200 certification.

with this config compiled in, and that boot parameter, users can can
that fips is enabled with:
```
flatcar ~ # cat /proc/sys/crypto/fips_enabled
1
```
 2022-01-31 15:07:36 +01:00
Dongsu Park
bdba7188e4 changelog: add changelog for expat 2.4.4 2022-01-31 11:06:20 +01:00
Dongsu Park
6275be666f dev-libs/expat: update to 2.4.4 
Update dev-libs/expat to 2.4.4, mainly to address security issues
like CVE-2022-23852, CVE-2022-23990.
 2022-01-31 11:00:26 +01:00
Dongsu Park
19a486c58d Merge pull request #1596 from flatcar-linux/dongsu/glibc-2.33-r10 
sys-libs/glibc: update to 2.33-r10
 2022-01-28 16:58:45 +01:00
Krzesimir Nowak
9582e2e795 Merge pull request #1595 from flatcar-linux/linux-5.15.17-main 
Upgrade Linux Kernel in main from 5.15.16 to 5.15.17
 2022-01-28 16:13:55 +01:00
Kai Lüke
456efdeb9a Merge pull request #1589 from flatcar-linux/kai/ipv6-ra 
coreos-cloudinit and bootengine: accept IPv6 RA for default net configs
 2022-01-28 11:08:46 +01:00
Dongsu Park
27bd0429a0 changelog: add changelog for glibc 2.33-r10 2022-01-28 08:43:44 +01:00
Krzesimir Nowak
a752947aec sys-libs/glibc: Apply Flatcar modifications 
- unmask amd64 and arm64
  - take care of nscd.conf via tmpfiles, add files/nscd-conf.tmpfiles.
  - don't run sanity checks in pkg_pretend to prevent gcc checks when
    only the binary package is installed.
  - comment out 'dostrip -x' to force the OS image binaries to be stripped
  - remove everything glibc wants to put under /etc since we use
    baselayout to provide that
 2022-01-28 08:43:44 +01:00
Dongsu Park
2301479ae7 sys-libs/glibc: sync with Gentoo for 2.33-r10 
Update sys-libs/glibc to 2.33-r10, mainly to address CVE-2021-3998,
CVE-2021-3999, CVE-2022-23218, CVE-2022-23219.

Gentoo ref: 7ba56d4da4e3fd2bc0d2c1012f2dc02e448c77d4
 2022-01-28 08:43:40 +01:00
Flatcar Buildbot
e4a527aa27 sys-kernel: Upgrade Kernel 5.15.16 to 5.15.17 2022-01-28 07:22:45 +00:00
Mathieu Tortuyaux
2e32298748 Merge pull request #1588 from flatcar-linux/tormath1/polkit 
sys-auth/polkit: sync with `::gentoo`
 2022-01-27 18:12:17 +01:00
Mathieu Tortuyaux
eefde75413 changelog: add entries 
Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-01-27 18:08:23 +01:00
Mathieu Tortuyaux
0ce5422e6e sys-auth/polkit: apply Flatcar patches 
- apply duktape patchset from https://gitlab.freedesktop.org/polkit/polkit/-/merge_requests/97
 `.gitlab-ci.yml` patch has been removed since file is not shipped in
 archive.
- fix config install paths, use systemd-tmpfiles (All configs should
be installed to /usr and tmpfiles should be used to create and fix
directory permissions instead of the ebuild's postinst.)

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-01-27 18:08:20 +01:00
Kai Lueke
d341a5b51d coreos-cloudinit and bootengine: accept IPv6 RA for default net configs 
This pulls in
https://github.com/flatcar-linux/coreos-cloudinit/pull/12
and
https://github.com/flatcar-linux/bootengine/pull/30
(https://github.com/flatcar-linux/init/pull/51 is already in)
to also accept Router Advertisements in our default DHCP network
configurations.
 2022-01-27 17:17:12 +01:00
Mathieu Tortuyaux
3bcd2510bc sys-auth/polkit: sync with ::gentoo 
Ref-Commit: 4dbf4f80da2ee7c5e3325d4f25512dc0ed1a4b48

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-01-27 14:25:53 +01:00
Kai Lüke
8e13fc55f3 Merge pull request #1587 from flatcar-linux/kai/flatcar-update-improvements 
coreos-base/coreos-init/coreos-init: pull in latest changes
 2022-01-26 17:35:06 +01:00
Kai Lueke
e2d87f0d26 coreos-base/coreos-init/coreos-init: pull in latest changes 
This pulls in
https://github.com/flatcar-linux/init/pull/58
(bin/flatcar-update: don't assume $USER is set up, only use $EUID)
and
https://github.com/flatcar-linux/init/pull/51
network: Enable the RAs to fix IPv6 address assignment
 2022-01-26 17:15:03 +01:00
Mathieu Tortuyaux
98d964d689
Merge pull request #220 from flatcar-linux/tormath1/em-metro 
equinixmetal: use metro instead of facility
 2022-01-26 16:27:09 +01:00
Mathieu Tortuyaux
373976b1eb
jenkins/kola/packet: use metro instead of facility 
Follow up of: https://github.com/flatcar-linux/mantle/pull/281

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
 2022-01-26 15:49:30 +01:00
Mathieu Tortuyaux
7ddf2121a7
Merge pull request #219 from flatcar-linux/sayan/update-sdk-3127.0.0 
New major release: 3127.0.0
 2022-01-26 11:35:18 +01:00
Dongsu Park
ae70b76228 Merge pull request #278 from flatcar-linux/rust-1.58.1-main 
Upgrade virtual Rust in main from 1.57.0 to 1.58.1
 2022-01-26 11:27:40 +01:00
Dongsu Park
66e00de1db Merge pull request #1581 from flatcar-linux/rust-1.58.1-main 
Upgrade dev-lang/rust in main from 1.57.0 to 1.58.1
 2022-01-26 11:27:23 +01:00
flatcar-ci
153a347999
New major release: 3127.0.0 2022-01-26 14:11:59 +05:30
Dongsu Park
0652a4584c changelog: add security changelog for Rust 1.58.1 2022-01-25 10:25:12 +01:00
Sayan Chowdhury
44e7c99fe3 Merge pull request #1586 from flatcar-linux/linux-5.15.16-main 
Upgrade Linux Kernel in main from 5.15.15 to 5.15.16
 2022-01-24 23:50:13 +05:30
Mathieu Tortuyaux
4842771f2f Merge pull request #1578 from flatcar-linux/tormath1/krb 
app-crypt/mit-krb5: move to `::portage-stable`
 2022-01-21 11:22:16 +01:00