mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-12-23 02:01:34 +01:00
Code Issues Packages Projects Releases Wiki Activity
33,515 Commits 620 Branches 411 Tags
Commit Graph

24458 Commits

Author SHA1 Message Date
Mara Sophie Grosch
e640d196d3 Update ignition to 2.24.0 
Patches were reordered a bit, e.g. combining the
"mod-add-flatcar-ignition-0.36.2" and "sum-go-mod-tidy" patches and
moving "config-v3_6-convert-ignition-2.x-to-3.x" before
"vendor-go-mod-vendor" (so that the dependencies added by the former are
vendored in the latter).

Built and tested with the yet-unpublished UpCloud OEM.

Signed-off-by: Mara Sophie Grosch <mara.grosch@upcloud.com>
 2025-12-03 12:12:25 +02:00
Flatcar Buildbot
b611eab33d Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-12-02 01:01:06 +00:00
flatcar-ci
32a03d5a86 Revert failed version back to 4533.0.0+nightly-20251128-2100 2025-12-02 01:00:53 +00:00
flatcar-ci
1cbad0e835 New version: main-4536.0.0-nightly-20251201-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-12-01 21:00:30 +00:00
Daniel
0945652715
Merge pull request #3162 from flatcar/danzatt/sign-sysexts 
Signed OS-dependent sysexts
 2025-12-01 11:12:22 +01:00
flatcar-ci
09e679cd54 New version: main-4533.0.0-nightly-20251128-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-29 02:42:31 +00:00
flatcar-ci
ae5b186148 New version: main-4533.0.0-nightly-20251128-2100-INTERMEDIATE 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-28 21:00:37 +00:00
Flatcar Buildbot
86ae017efa Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-11-28 12:34:25 +00:00
Dongsu Park
cb6218aa93
Merge pull request #3517 from flatcar/dongsu/ue-rs-20251127 
overlay ue-rs: update to 2025-11-27
 2025-11-28 13:34:11 +01:00
flatcar-ci
1367cb3c04 New version: main-4532.0.0-nightly-20251127-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-27 21:00:27 +00:00
Mathieu Tortuyaux
681864d5f1
Merge pull request #3516 from flatcar/firmware-20251125-main 
Upgrade Linux Firmware in main from 20251111 to 20251125
 2025-11-27 17:35:46 +01:00
Dongsu Park
d62b0d5361 overlay ue-rs: update to 2025-11-27 
Pulls in https://github.com/flatcar/ue-rs/pull/95,
https://github.com/flatcar/ue-rs/pull/98.

Signed-off-by: Dongsu Park <dongsu@dpark.io>
 2025-11-27 16:54:06 +01:00
flatcar-ci
4a8083a858 New version: main-4532.0.0-nightly-20251127-0956 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-27 09:56:50 +00:00
Flatcar Buildbot
78bbdbe6df sys-kernel/coreos-firmware: Update from 20251111 to 20251125 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-11-27 07:06:09 +00:00
Flatcar Buildbot
755e2b84cd
sys-kernel/coreos-firmware: Update from 20251021 to 20251111 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-11-26 13:46:46 +01:00
James Le Cuirot
24f38bee51
Merge pull request #3511 from flatcar/linux-6.12.59-main 
Upgrade Linux Kernel for main from 6.12.58 to 6.12.59
 2025-11-25 14:37:10 +00:00
Flatcar Buildbot
1feb53d91a Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-11-25 14:07:49 +00:00
James Le Cuirot
ed064d8943
Merge pull request #3505 from flatcar/cacerts-3.118.1-main 
Update ca-certificates in main from 3.117 to 3.118.1
 2025-11-25 14:07:34 +00:00
Flatcar Buildbot
f86522aa10 sys-kernel/coreos-sources: Update from 6.12.58 to 6.12.59 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-11-25 07:06:12 +00:00
Flatcar Buildbot
4158576088 app-misc/ca-certificates: Update from 3.117 to 3.118.1 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-11-24 07:11:24 +00:00
Flatcar Buildbot
9f6a5504ff Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-11-22 02:29:31 +00:00
flatcar-ci
a37789be1b New version: main-4526.0.0-nightly-20251121-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-22 02:29:14 +00:00
flatcar-ci
1289b297f0 New version: main-4526.0.0-nightly-20251121-2100-INTERMEDIATE 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-21 21:00:30 +00:00
Flatcar Buildbot
8274cf7d8f portage-stable/metadata: Monthly GLSA metadata updates 
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Signed-off-by: Dongsu Park <dongsu@dpark.io>
 2025-11-21 12:15:27 +01:00
flatcar-ci
74fb20a470 New version: main-4525.0.0-nightly-20251120-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-20 21:00:29 +00:00
Daniel Zatovic
2eb0997167 app-crypt/azure-keyvault-pkcs11: Bump snapshot to 20250905 
Add support for WorkloadIdentityCredential.

Signed-off-by: Daniel Zatovic <daniel.zatovic@gmail.com>
 2025-11-20 18:26:12 +01:00
Daniel Zatovic
89da3cc75c dev-libs/xxhash,sys-fs/erofs-utils: Add from Gentoo 
These packages are needed for building erofs sysexts using
systemd-repart. Also add erofs-utils to SDK deps.

Signed-off-by: Daniel Zatovic <daniel.zatovic@gmail.com>
 2025-11-20 09:59:11 +01:00
Daniel Zatovic
4b3ae28dfb virtual/zlib: Add from Gentoo 
Gentoo is moving the zlib dependency from sys-libs/zlib to virtual/zlib
to allow different zlib implementation (like zlib-ng). We need to pull
this virtual dependency because erofs-utils depends on it.

Signed-off-by: Daniel Zatovic <daniel.zatovic@gmail.com>
 2025-11-20 09:59:11 +01:00
Daniel Zatovic
39d97da549 overlay profiles: Enable cryptsetup in SDK systemd 
The cryptsetup useflag is required for signing sysexts built with
systemd-repart.

Signed-off-by: Daniel Zatovic <daniel.zatovic@gmail.com>
 2025-11-20 09:59:11 +01:00
Daniel
f05097d82f
Fix kernel module signing with ephemeral keys for official builds (#3493) 
* sdk: Fix ephemeral key directory paths baked into container images

The SDK container build process was persisting temporary directory
paths for module signing keys into /home/sdk/.bashrc. This caused
all container instances to share the same ephemeral key location.

Fixed by:
- Runtime check in sdk_entry.sh to recreate stale temp directories
- Build-time cleanup in Dockerfiles to remove the variables

Each container instance now gets unique temporary directories.

Signed-off-by: Daniel Zatovic <daniel.zatovic@gmail.com>

* sdk_entry: use persistent module signing keys for unofficial builds

For official builds (COREOS_OFFICIAL=1), continue using ephemeral
temporary directories for module signing keys.

For unofficial/development builds, use a persistent directory at
/mnt/host/source/.module-signing-keys to preserve keys across
container restarts.

Signed-off-by: Daniel Zatovic <daniel.zatovic@gmail.com>

---------

Signed-off-by: Daniel Zatovic <daniel.zatovic@gmail.com>
 2025-11-20 09:56:49 +01:00
flatcar-ci
72a74fdce7 New version: main-4524.0.0-nightly-20251119-0830 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-19 08:30:44 +00:00
Flatcar Buildbot
ce578cce4f Update mantle container image to latest HEAD 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-11-18 00:57:23 +00:00
flatcar-ci
e196336c82 Revert failed version back to 4519.0.0+nightly-20251114-2100 2025-11-18 00:57:09 +00:00
flatcar-ci
0332395383 New version: main-4522.0.0-nightly-20251117-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-17 21:00:30 +00:00
flatcar-ci
a23d816108 New version: main-4519.0.0-nightly-20251114-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-15 02:23:51 +00:00
flatcar-ci
764988d84d New version: main-4519.0.0-nightly-20251114-2100-INTERMEDIATE 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-14 21:00:32 +00:00
Flatcar Buildbot
00479cf02d sys-kernel/coreos-sources: Update from 6.12.54 to 6.12.58 
Signed-off-by: Flatcar Buildbot <buildbot@flatcar-linux.org>
 2025-11-14 07:05:47 +00:00
flatcar-ci
7ec9fa3ec2 New version: main-4518.0.0-nightly-20251113-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-13 21:00:28 +00:00
Krzesimir Nowak
9a00daf2c3
Merge pull request #3485 from flatcar/krnowak/packages-cleanup 
portage-stable: Drop unused packages
 2025-11-13 14:32:09 +01:00
Krzesimir Nowak
6fb2e9883b
Merge pull request #3478 from flatcar/krnowak/fix-sssd 
overlay coreos/config: Keep ldb modules
 2025-11-13 13:18:20 +01:00
flatcar-ci
ea1706c17d Revert failed version back to 4516.0.0+nightly-20251111-2100 2025-11-13 00:15:01 +00:00
flatcar-ci
b15c53ea85 New version: main-4517.0.0-nightly-20251112-2100 
Signed-off-by: flatcar-ci <infra+ci@flatcar-linux.org>
 2025-11-12 21:00:29 +00:00
Krzesimir Nowak
9ba0af29bf app-text/docbook-xsl-ns-stylesheets: Add from Gentoo 
It's from Gentoo commit 0ad96e879b651cc7e8214159d5841d6b633bef8a.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:04:49 +01:00
Krzesimir Nowak
009df56c4f overlay coreos-base/oem-vmware: Do not mangle pam files 
This already should be taken care of by open-vm-tools post install
hooks.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:04:49 +01:00
Krzesimir Nowak
318e6af8fc overlay coreos/config: Add vendoring of PAM files to a couple of packages 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:04:49 +01:00
Krzesimir Nowak
064cca2e6a overlay profiles: Set some USE flags for sys-auth/pambase 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:04:49 +01:00
Krzesimir Nowak
1668f15c47 overlay coreos/config: Clean up pam config mess for sys-apps/systemd 
Use the default location for pam configs. We replace them with our own
in post_src_install hook anyway.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:04:49 +01:00
Krzesimir Nowak
b4c59b6435 overlay sys-apps/baselayout: Pull in pam files removal, cleanups 
We are building sssd on arm64, so drop the unnecessary code. Also
create some more compatibility symlinks.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:04:49 +01:00
Krzesimir Nowak
fa4e6f2bd0 overlay coreos/user-patches: Add patches for sys-auth/pambase 
Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:00:53 +01:00
Krzesimir Nowak
14c8a7bc0c sys-auth/pambase: Sync with Gentoo 
It's from Gentoo commit f32e281b3b124b273302ddffeb06c0e6f20852e9.

Signed-off-by: Krzesimir Nowak <knowak@microsoft.com>
 2025-11-12 18:00:53 +01:00