Pull in some updates from upstream Gentoo.
As a follow up to the gentoo-systemd-integration removal prune the now
unused vanilla use flag and our custom openrc use flag along with it.
The dev images are going to become complete build environments. Keeping
track of the differences between the two via profiles will be easier
than making the current prod and dev image scripts even more complex.
The intent of this file is to exclude dependencies from both the build
root in /build/amd64-usr and board images that would be pulled in but
aren't actually needed. Many of these are build utilities that need to
be provided by the SDK rather than the build root. The current state is
a bit confusing because we are actually including things like git but it
is also listed here and this somehow works due to version differences.
Additionally dev images will start including a working build environment
soon so may of these tools need to get built after all. To simplify
things everything has been removed except for the few packages that are
would get pulled into production images if it weren't for this file.
packages.provided actually shouldn't be used in this way, instead
controlling dependencies should be done via USE flags and possibly some
day the experimental HDEPEND ebuild variable.
fleet needs to write to etcd while gracefully shutting
down, which typically requires the etcd unit to be
active locally. Define this relation explicitly in
the fleet unit with an After=etcd.service option.
In addition to bumping to the latest stable this tweaks the default
settings for panics and lockups so that they do not need to be set in
sysctl configs. We needed to update these settings anyway and setting it
here means they will apply before boot gets around loading sysctl confs.
Previously the sysctl options set the hardlockup threshold to 5 seconds
and the softlockup threshold to 10 seconds. This is perhaps a bit too
aggressive, just use the default values of 10 and 20 seconds.
Also sysctl enabled an immediate reboot after panic, using a friendlier
60 seconds gives users a chance to see the error before the reboot.
A few things of note:
- Adds patch to fix tmpfiles regression.
- Adds patch to fix VMware bridged network interfaces.
- Drops all other patches, all merged or otherwise fixed.
- v213 is a pretty big release overall, could use more testing.
