Jarrod Johnson
c88f34d1e1
Merge tag '3.2.3'
...
Provide more reasonable hostname on install
2021-12-14 11:27:25 -05:00
Jarrod Johnson
e488560090
Induce probe by randomized port
...
Replying to SLP caused some SLP
software to have a bug.
Since we aren't looking for a reply,
instead just throw a byte randomly at a high numbered
port.
2021-12-14 07:49:09 -05:00
Jarrod Johnson
faa20660ed
Assure confluent myname file is owned correctly
...
A lot of osdeploy initialize (which runs as root)
may induce creation of 'myname' file. Fix by
becoming confluent user, if applicable.
2021-12-14 07:24:47 -05:00
Jarrod Johnson
ee950ca8a2
Skip directories in initramfs symlink
...
If part of a debug effort leaves stray directories,
ignore them as they can't possibly be initramfs content.
2021-12-13 15:43:12 -05:00
Jarrod Johnson
743f984b3d
Fix raw integer value support
2021-12-09 14:08:24 -05:00
Jarrod Johnson
ad33572290
Add debug information to coreos init
2021-12-09 11:55:12 -05:00
Jarrod Johnson
773be640f8
Fix for long hostname on CA node
2021-12-09 11:19:16 -05:00
Jarrod Johnson
624984b1c9
Do not assume SPCR until confluent confirms text console
...
TIOCCONS was called for users that did not want to use serial. This
makes the serial console delayeed when automatic, but avoids video
users from being confused.
2021-12-09 10:34:12 -05:00
Jarrod Johnson
c2de127947
Bring el8 completely over to prefer ipv4
2021-12-09 08:31:07 -05:00
Jarrod Johnson
cf686f8018
Prefer IPv4 deployment over IPv6 when both are available
...
Some older vintages of RHEL and clones do not support IPv4,
best to prefer ipv4 to avoid messing up on places that have ipv6
configured.
2021-12-08 17:04:04 -05:00
Jarrod Johnson
d258a2ae0d
Fix py2 compatibility of util
2021-12-08 12:12:39 -05:00
Jarrod Johnson
68bfb950f3
Correect which subprocess module is used by util
2021-12-08 11:26:08 -05:00
Jarrod Johnson
343e5eabe5
Utility function for running commands
...
Given the python2/3 differences, good to have a single run
that returns stdout and stderr.
This should trigger the same behavior as timeout did, but
in a manner consistent between 2 and 3.
2021-12-08 10:20:34 -05:00
Jarrod Johnson
02da50af8b
Tighter permissions on /var/log/confluent
2021-12-08 07:42:19 -05:00
Jarrod Johnson
77de3ab25b
Apply more restrictive permissions to /var/log/confluent/
...
While confluent shouldn't put anything sensitive in the log, custom
content may. To mitigate the risk, it will now lock down the
log permissions.
2021-12-07 07:21:04 -05:00
Jarrod Johnson
dcca844e9b
Refresh eventlet resolver on resolv.conf change
...
Eventlet holds on to stale resolv.conf. As a workaround,
monitor resolv.conf and explicitly reinitialize greendns
resolver.
2021-12-06 12:22:42 -05:00
Jarrod Johnson
1b21b9316c
Correct variable typo in imageboot scripts
2021-12-06 09:00:44 -05:00
Jarrod Johnson
4260db20b7
Make confluent contennt from initramfs avalibale to normal root system
2021-12-03 16:06:47 -05:00
Jarrod Johnson
496be816ff
Add exit 0 to avoid failed systemd unit
2021-12-03 12:50:03 -05:00
Jarrod Johnson
4e0a76d955
Fix typo in confluent name in coreos script
2021-12-03 12:47:05 -05:00
Jarrod Johnson
f2b2d8519c
Add onboot link to coreos relabel activity
2021-12-03 12:45:42 -05:00
Jarrod Johnson
d829db4407
Add onboot hook to coreos
2021-12-03 12:37:03 -05:00
Jarrod Johnson
0e1da6ebd6
Explicitly check for TPM 2.0 before trying to use TPM 2.0
2021-12-03 11:05:11 -05:00
Jarrod Johnson
d2435d315b
Schedule fetch of private data before ignition cares
2021-12-03 10:39:47 -05:00
Jarrod Johnson
4388399f78
Fetch config.ign file during rootfs setup in CoreOS
2021-12-03 09:34:46 -05:00
Jarrod Johnson
a146a54172
Move ignition to profile private data, extracted
2021-12-03 08:48:27 -05:00
Jarrod Johnson
4482b675b4
Wait for network to get ssh certificates
2021-12-03 08:32:25 -05:00
Jarrod Johnson
2b8c8e9af9
Add support for specifying login name in nodeshell
2021-12-03 08:03:09 -05:00
Jarrod Johnson
714a883d9c
Purge the conflucting default nmconnection if we have better
2021-12-02 17:00:10 -05:00
Jarrod Johnson
77865ba71c
Disable fakecmdline for now
2021-12-02 16:40:41 -05:00
Jarrod Johnson
3adb82370f
Specify correct filename for fakecmdline
2021-12-02 16:27:55 -05:00
Jarrod Johnson
7a95c3e64c
Set selinux context of fakecmdline
2021-12-02 16:17:04 -05:00
Jarrod Johnson
e3d5a058d6
Change nodestorage to interactive and alias it to be interactive by default
2021-12-02 14:52:16 -05:00
Jarrod Johnson
25b68665e0
Provide a bit more elaboration on some attribute descriptions.
2021-12-02 11:42:32 -05:00
Jarrod Johnson
42f766d5f4
Fix osdeploy initialize when only ssh or tls is done
...
ssh is technically opt-in, though strongly recommended, so
osdeploy should cope with that.
TLS is pretty much required, but perhaps not done immediately,
so it gets similar treatmennt.
2021-12-02 11:38:18 -05:00
Jarrod Johnson
0092915cab
Fix rerunning tls initialization
2021-12-02 10:19:47 -05:00
Jarrod Johnson
8ecbcb0f00
Fix coreos tendency to disable ipv6
2021-12-01 16:26:13 -05:00
Jarrod Johnson
e5a748f0a2
Fix coreos pre-pivot to work better
2021-12-01 16:00:36 -05:00
Jarrod Johnson
7f476d64b5
Update style of nodesetboot usage message
2021-12-01 15:33:21 -05:00
Jarrod Johnson
90f3d5f323
Fix syntax error in coreos pre-pivot
2021-11-30 09:14:51 -05:00
Jarrod Johnson
00e853130f
Fallback to other location for grub
2021-11-29 16:03:06 -05:00
Jarrod Johnson
a4b1f1d30a
Fix typo in fedora coreos signature
2021-11-29 15:54:38 -05:00
Jarrod Johnson
5718e07238
Treat empty attributes as unset
...
This fixes behavior when, for example, crypted.rootpassword
is explicitly blanked
2021-11-29 11:22:48 -05:00
Jarrod Johnson
d049934626
Add a breadcrum to distinfo.yaml to indicate where an image came from
2021-11-29 09:55:38 -05:00
Jarrod Johnson
425f5276b3
Merge pull request #82 from PenghuiCui/master
...
Support getting message extention in plugin
2021-11-29 07:17:36 -05:00
Penghui Cui
079a04b28b
Support getting message extention in plugin
2021-11-25 10:01:35 +08:00
Jarrod Johnson
2e10289807
Invoke mkinitrd after zypper runs
2021-11-22 10:46:23 -05:00
Jarrod Johnson
e1c15cca8e
Switch to secureboot signed grub for ubuntu
...
It was pulling an efi binary incompatible with secureboot before.
2021-11-19 11:34:06 -05:00
Jarrod Johnson
6e4c939cd9
Various ubuntu diskless fixes/improvements
...
Needed the real losetup to handle read-only file.
busybox wc is way too slow, use ls instead.
Explicitly make /sysroot and load xfs, as that doesn't happen implicitly.
Accept a dangling symlink as viable init, since this is the case in Ubuntu.
Update hostname and ca certificates consistent with
ubuntu standards
2021-11-19 11:00:50 -05:00
Jarrod Johnson
82a783fa55
Register CA certs in global location for ubuntu
2021-11-18 16:51:18 -05:00