mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-09-23 22:51:03 +02:00
Code Issues Packages Projects Releases Wiki Activity
23,028 Commits 630 Branches 403 Tags
Commit Graph

23028 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
David Michael
e9a8442351 Merge pull request #2424 from dm0-/glsa 
Fix the OpenSSL GLSA
 2017-02-14 13:39:37 -08:00
David Michael
355d0dc88c Merge pull request #2418 from dm0-/docker 
Upgrade to Docker 1.13.1
 2017-02-14 13:26:29 -08:00
David Michael
5b487075b9 Merge pull request #2425 from dm0-/bugs-1807 
sys-apps/shadow: do not link nonexistent files
 2017-02-14 13:24:17 -08:00
David Michael
3fe151f094 sys-apps/shadow: do not link nonexistent files 2017-02-14 13:05:10 -08:00
Benjamin Gilbert
58fd27ad2e Merge pull request #2423 from bgilbert/kernel-4.9.9 
sys-kernel/coreos-*: Bump to 4.9.9
 2017-02-14 13:02:34 -08:00
David Michael
10c2b11e24 dev-libs/openssl: apply CoreOS changes 
Specifically, stabilize the arm64 version, drop pkg_postinst, and
remove the bindist USE flag.
 2017-02-14 12:33:13 -08:00
David Michael
b753c741a4 dev-libs/openssl: bump to 1.0.2k 
Addresses CVE-2016-7055, CVE-2017-3730, CVE-2017-3731, CVE-2017-3732.
 2017-02-14 12:33:09 -08:00
Benjamin Gilbert
919578496b sys-kernel/coreos-kernel: bump to v4.9.9 2017-02-14 11:20:05 -08:00
Benjamin Gilbert
8232dd1155 sys-kernel/coreos-modules: bump to v4.9.9 2017-02-14 11:20:05 -08:00
Benjamin Gilbert
faf25d6dd9 sys-kernel/coreos-sources: bump to v4.9.9 2017-02-14 11:20:01 -08:00
David Michael
ad69ab0531 chore(metadata): Regenerate cache 2017-02-14 10:57:26 -08:00
David Michael
4aff1da21a bump(profiles): sync with upstream 
Packages updated:
  eclass
  licenses
  profiles
  scripts
 2017-02-14 10:20:05 -08:00
David Michael
a83fc7b068 Merge pull request #2422 from dm0-/bugs-1787 
sys-apps/shadow: load defaults from the chroot
 2017-02-13 13:51:43 -08:00
David Michael
997a1b6e94 sys-apps/shadow: load defaults from the chroot 2017-02-13 11:58:35 -08:00
David Michael
2994d100bb Merge pull request #523 from dm0-/update-pesign 
Upgrade pesign
 2017-02-13 11:39:44 -08:00
David Michael
64bba4f659 bump(app-crypt/pesign): sync with upstream 2017-02-09 16:43:40 -08:00
David Michael
22bf1d99f9 bump(sys-libs/efivar): sync with upstream 2017-02-09 12:09:20 -08:00
David Michael
f8a473962b app-emulation/docker: upgrade to unpatched 1.13.1 2017-02-08 18:20:03 -08:00
David Michael
3b11b06960 app-emulation/containerd: sync with Docker 1.13.1 commits 2017-02-08 18:16:57 -08:00
David Michael
e3866ddc98 app-emulation/runc: sync with Docker 1.13.1 commits 2017-02-08 18:15:00 -08:00
Benjamin Gilbert
efb914596c Merge pull request #2417 from bgilbert/tty0 
sys-kernel/coreos-sources: Stop routing primary console to ttyS0
 2017-02-08 12:11:53 -08:00
Benjamin Gilbert
2c93229944 sys-kernel/coreos-sources: Stop routing primary console to ttyS0 
Our GRUB config specifies tty0 as the primary console, but it was being
forced to the serial port instead.  As a result, boot failures produced
no visible error messages on tty0, and the emergency shell was likewise
inaccessible.
 2017-02-07 13:27:05 -08:00
David Michael
8d9d15aafd Merge pull request #2415 from dm0-/ccache 
Move ccache back to portage-stable
 2017-02-06 14:41:02 -08:00
David Michael
f9e280e12e Merge pull request #522 from dm0-/ccache 
bump(dev-util/ccache): sync with upstream
 2017-02-06 14:40:54 -08:00
David Michael
06c80eb38a Merge pull request #640 from dm0-/secure-boot 
Add Secure Boot to the offline signing process
 2017-02-06 13:32:27 -08:00
David Michael
40b60875d0 offline_signing: sign UEFI binaries for Secure Boot 2017-02-06 13:29:15 -08:00
David Michael
d91c0c398f offline_signing: download all UEFI binaries 2017-02-06 13:29:14 -08:00
David Michael
68064fdbf8 chore(metadata): Regenerate cache 2017-02-06 10:52:27 -08:00
David Michael
aeb2c71a3b dev-util/ccache: move back to portage-stable 2017-02-06 10:52:20 -08:00
David Michael
f721018488 bump(dev-util/ccache): sync with upstream 2017-02-06 10:42:50 -08:00
Alex Crawford
cfc56e89a3 Merge pull request #2413 from crawford/waagent 
app-emulation/wa-linux-agent: bump to v2.2.4
 2017-02-03 13:20:01 -08:00
Alex Crawford
6c714105c5 coreos-base/oem-azure: bump to v2.2.4 2017-02-03 13:16:38 -08:00
Alex Crawford
43cff3c3f4 app-emulation/wa-linux-agent: bump to v2.2.4 2017-02-03 12:57:19 -08:00
Euan Kemp
2702a30450 Merge pull request #2411 from euank/docker-1.13.0-ipv6 
app-emulation/docker: upgrade to coreos-1.13.0
 2017-02-02 23:43:26 -08:00
Scott Burns
27000b8fa5 coreos-overlay/oem-packet: Remove bond workaround 
Now that Packet uses Ignition to configure systemd-networkd units
before systemd-networkd starts, the workaround described in the
below issue is no longer necessary:

https://github.com/coreos/bugs/issues/36
 2017-02-02 23:16:05 -08:00
Euan Kemp
ca08f9797b app-emulation/docker: upgrade to coreos-1.13.0 2017-02-02 23:04:34 -08:00
Benjamin Gilbert
7bab03e772 Merge pull request #638 from bgilbert/reinject 
Add script to inject kernel/GRUB/shim
 2017-02-02 17:39:08 -08:00
Benjamin Gilbert
5541e1521e Merge pull request #639 from bgilbert/other-boards 
build_image: Correctly disable verity on unsupported boards
 2017-02-02 17:18:22 -08:00
Benjamin Gilbert
d8d7b1ee86 Merge pull request #636 from bgilbert/secure-boot 
build_image: Extract and upload GRUB/shim EFI images for signing
 2017-02-02 17:17:53 -08:00
Benjamin Gilbert
b11d3a7c1d build_image: Correctly disable verity on unsupported boards 
Fixes up missing bit from e630a36e50799ec72305b03a6d6fe354d2b8b059.
 2017-02-02 17:08:01 -08:00
Benjamin Gilbert
e65d5101cf build_image: Extract and upload GRUB/shim EFI images for signing 
On arm64, extract only GRUB, since there is no shim.  On dev builds,
extract neither.
 2017-02-02 17:00:15 -08:00
Benjamin Gilbert
f16226acb5 grub_install: Install shim in official amd64 builds 2017-02-02 16:58:52 -08:00
Benjamin Gilbert
dd3fbb8ece image_inject_bootchain: New script to inject kernel/GRUB/shim 
Add script to replace the unsigned kernel, EFI GRUB, and shim in an
image's EFI System Partition with (externally-produced) signed ones.
 2017-02-02 16:53:16 -08:00
Benjamin Gilbert
5443a101f7 build_image: Move one message to logging framework 2017-02-02 16:51:58 -08:00
David Michael
7419751493 Merge pull request #637 from dm0-/fix-verity 
Fix verity in our automated builds
 2017-02-02 16:48:11 -08:00
David Michael
e630a36e50 Revert "build_image: Remove disable_read_write variable" 
This reverts commit a7ffba9a9f5c18bdc8ab5495b81855bc5ba76c19.

The build_image script can build multiple formats.  When our
releases and automated builds are creating developer containers and
production images from the same command, the verity flag would be
disabled while building the container and remain disabled when building
the production image.  This resulted in no verity in all our builds.
 2017-02-02 15:08:43 -08:00
Benjamin Gilbert
8751c85494 image_set_group: Move generic setup/teardown code into a library 2017-02-02 12:51:35 -08:00
Alex Crawford
0ef1b76779 Merge pull request #2410 from crawford/cpus 
sys-kernel/coreos-kernel: increase CONFIG_NR_CPUS
 2017-02-01 18:06:32 -08:00
jakub-d
e423581c75 sys-kernel/coreos-kernel: increase CONFIG_NR_CPUS 2017-02-01 15:47:38 -08:00
Benjamin Gilbert
dcc3367164 Merge pull request #635 from bgilbert/vmware-bin 
image_to_vm: Add vmware_raw image type
 2017-02-01 15:46:36 -08:00