Weekly portage-stable package updates 2025-01-27 #2614
Draft
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
added 30 commits
January 27, 2025 07:04
It's from Gentoo commit 60cee2d56801f6df58f13309ed08991b22f4074b.
It's from Gentoo commit 319c1a011cc04637dc556b3a80d5173a6a01abb0.
It's from Gentoo commit 5545709a6cfa0b7358ff18525dba078c6d1cf3a5.
It's from Gentoo commit e13fe2f017b486723ca7718f8c29b0179723baaa.
It's from Gentoo commit 760493569ad7f0d92ede74785350b0fd44bab450.
It's from Gentoo commit e13097fab6cfcd97feece06d68f1e96ebac8d7c7.
It's from Gentoo commit 98b70e5b78d00fb836b77e1c9c7b5535a02dcf52.
It's from Gentoo commit fb3694ed99e0fcec9bc7ff8ee87833ba00dbe9dd.
It's from Gentoo commit 3c00a6f2d424fe0bfd2756fd792ddc17d43aa407.
It's from Gentoo commit bc98becba58b33e3661a75335d002e872e28d3a7.
It's from Gentoo commit 7617135b280082d0f36300d5fd38acccd14322e6.
It's from Gentoo commit 2911d5ba5878e82ee45ae45bca1666d580b3a3b9.
It's from Gentoo commit 4edce3e2fe55d1f54143fc2596ffb589caab377d.
It's from Gentoo commit 4a8dd58c068837168bb446928be8476ce020b14f.
It's from Gentoo commit d8d6652b0f896caae6209dff7f95015fc2e0ad76.
It's from Gentoo commit 175e1bd7460ce179a3eb31b85fecc9524f102302.
It's from Gentoo commit d6282a603a64a0aacbb14b6ecb32ff0b0f9cf07a.
It's from Gentoo commit 1bf826f5866cdbddd51ac67b0a61a8b5691f66cb.
It's from Gentoo commit 2d39bd247282509e88cece390cca7af987ddb903.
It's from Gentoo commit 42fc8f609c99387f8d5715239f253b0a5ba4899b.
It's from Gentoo commit 729f493c51c6ce66a7f131d28a2b96658bee0452.
It's from Gentoo commit 38eba5544c9ecb6c3f48a58209d4cd2ee1332374.
It's from Gentoo commit b961c626169e83597d6c8f94b3f0c7d4a44bf202.
It's from Gentoo commit 50d40e2d5e4a717ea3c15729353b4ae929383b01.
It's from Gentoo commit 9db17fadb485a7847416677e409cd4e73d308011.
It's from Gentoo commit a94bb8dcc4c03c4e2ec4f34b562535d8ccecfb5f.
It's from Gentoo commit 0e86b15105aa0a9052d1f3ab0a3d5252b9d9aba2.
It's from Gentoo commit 5132d29ce21cee78f79a8bf32e9b4f9fb003f5f2.
It's from Gentoo commit dd9aab5ab8ca0c4e94e1854fa2be5bc2fdcd33e9.
It's from Gentoo commit 3f6812a2957a16e149dd14b24595a985dc357dba.
It's from Gentoo commit e9492217affdba34c6691244a2ff275b4d65cdb4. We can do the move by applying our modifications in a different way: - Instead of removing dev-lang/perl runtime dependency, we add dev-lang/perl to package.provided for the generic profile. - We remove OpenLDAP schema files and sudo.conf with install mask. - We keep sudoers.d with a post-src_install hook. The move was triggered by a need to handle the missing USE=sudo in newer versions of sys-auth/sssd package, which is dependency of app-admin/sudo.
This revision has fixed an issue of pulling python unconditionally.
It's from Gentoo commit 99f669ca0cf7a32116d0e687e9d3521e4bf665d7.
It's from Gentoo commit f0e39f486df96baf28c1305f481aac7046be1854.
It's from Gentoo commit dabacec32ecfbe1080c70a7797a58941147a6467.
It's from Gentoo commit e11eb4b6fbdae37dfaf9c62ce17fbd0a103bf9d7. We apply our modifications in a bit different way to avoid modifying the ebuild itself: - To avoid having unstripped binaries we add a hack to make "dostrip x -/" a noop. - Using tmpfiles for putting the nscd config file into /etc is not necessary any more - our overlay setup for /etc will handle it. We add a symlink at /usr/share/baselayout/nscd.conf to point to its flatcar-etc counterpart for backward compatibility. - Using tmpfiles for creating a directory under /var is also not necessary - at a later build stage we will generate such a tmpfile for all the directories in /var. The trigger to move the glibc to portage-stable was to update it to address some security issue.
It was relying on dev-libs/openssl pulling app-misc/c_rehash. But in Gentoo, openssl dropped its dependency on c_rehash, as openssl does not need it. Our ca-certificates package is using c_rehash in its systemd service, so depend on c_rehash directly. This will remove one modification we make to openssl package.
It's from Gentoo commit c6f66f3f44b35413f09f95ddbd52fecb19e2d8f3. We apply modifications without changing the ebuild: - The tmpfiles config files are not necessary any more for files in /etc, so we just put the config there directly. - The c_rehash dependency was moved to its actual user - the app-misc/ca-certificates package. - We override openssl command to make it a no-op for rehashing during the pkg_postinst phase.
Some dependency was dropped and the man group and user packages are not installed any more. Bring them in with an eventual goal of dropping group and passwd from baselayout.
Looks like Gentoo has their own fix now.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
CI: http://jenkins.infra.kinvolk.io:8080/job/container/job/sdk/1928/cldsv/
Closes flatcar/Flatcar#1621
Closes flatcar/Flatcar#1620
Closes flatcar/Flatcar#1611
Closes flatcar/Flatcar#1610
Closes flatcar/Flatcar#1586
--
app-admin/sudo: [PROD] [DEV]
app-arch/sharutils:
app-containers/containerd: [CONTAINERD]
app-containers/cri-tools: [PROD] [DEV]
app-containers/docker: [DOCKER]
app-containers/docker-buildx: [DOCKER]
app-containers/docker-cli: [DOCKER]
app-containers/netavark: [SYSEXT-PODMAN]
app-containers/runc: [CONTAINERD]
app-crypt/gnupg: [PROD] [DEV]
app-emulation/virt-firmware:
dev-build/meson:
dev-db/sqlite: [PROD] [DEV]
dev-lang/perl:
dev-lang/rust:
dev-libs/glib: [PROD] [DEV]
dev-libs/libffi: [PROD] [DEV]
dev-libs/openssl: [PROD] [DEV]
dev-libs/xmlsec: [VMWARE]
dev-python/ensurepip-setuptools: [AZURE] [DEV] [GCE] [SYSEXT-PYTHON]
dev-python/pillow:
dev-python/pygments: [SYSEXT-PYTHON]
dev-python/rich: [SYSEXT-PYTHON]
dev-python/setuptools: [SYSEXT-PYTHON]
dev-python/trove-classifiers: [SYSEXT-PYTHON]
dev-util/maturin:
dev-vcs/git: [PROD] [DEV]
licenses:
net-dialup/lrzsz: [DEV]
net-firewall/ipset: [PROD] [DEV]
net-libs/gnutls: [PROD] [DEV]
net-libs/nghttp2: [PROD] [DEV]
net-misc/rsync: [PROD] [DEV]
net-misc/socat: [PROD] [DEV]
profiles:
sys-apps/kbd: [PROD] [DEV]
sys-apps/zram-generator: [PROD] [DEV]
sys-auth/sssd: [PROD] [DEV]
sys-devel/gcc-config: [DEV]
sys-libs/efivar: [PROD] [DEV]
sys-libs/glibc: [PROD] [DEV]
--