djpbessems/ClusterAPI.imageBuilder
1
0
Fork 0
Code Pull Requests Actions Packages Releases Activity

Test dependencies
Some checks failed
continuous-integration/drone Build is failing
Details

Browse Source
This commit is contained in:
Danny Bessems
2023-02-22 21:24:42 +01:00
commit f2b0a5e7c7
429 changed files with 20330 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

546
packer/goss/goss-vars.yaml Normal file
View File

@ -0,0 +1,546 @@
---
common_rpms: &common_rpms
audit:
ca-certificates:
cloud-init:
cloud-utils-growpart:
conntrack-tools:
chrony:
curl:
jq:
python3-pip:
socat:
sysstat:
yum-utils:
al2_rpms: &al2_rpms
ebtables:
python-netifaces:
python-requests:
rh7_rpms: &rh7_rpms
ebtables:
python-netifaces:
python-requests:
rh8_rpms: &rh8_rpms
nftables:
python3-netifaces:
python3-requests:
common_debs: &common_debs
auditd:
apt-transport-https:
conntrack:
chrony:
curl:
ebtables:
jq:
gnupg:
libnetfilter-acct1:
libnetfilter-cttimeout1:
libnetfilter-log1:
python3-distutils:
python3-netifaces:
python3-pip:
socat:
chrony_deb: &chrony_deb
chrony:
ntp:
skip: true
installed: false
common_photon_rpms: &common_photon_rpms
audit:
apparmor-parser:
conntrack-tools:
chrony:
distrib-compat:
ebtables:
net-tools:
openssl-c_rehash:
python3-pip:
rng-tools:
socat:
tar:
unzip:
photon_3_rpms: &photon_3_rpms
python-netifaces:
python-requests:
jq:
photon_4_rpms: &photon_4_rpms
jq:
arch: "amd64"
containerd_version: ""
containerd_wasm_shims_runtimes: ""
kubernetes_cni_source_type: ""
kubernetes_cni_version: ""
kubernetes_source_type: ""
kubernetes_version: ""
kubernetes_rpm_version: ""
kubernetes_deb_version: ""
kubernetes_cni_deb_version: ""
kubernetes_cni_rpm_version: ""
# When k8s and k8s cni source is http
kubernetes_load_additional_imgs: false
#windows variables
kubernetes_install_path: ""
windows_service_manager: ""
distribution_version: ""
runtime: ""
# OS Specific package/Command/Kernal Params etc...
# Structured in below format
# OS_NAME
# common-package:
# common-kernel-params:
# common-services:
# PROVIDER_NAME:
# package:
# command:
# service:
# ...
amazon linux:
common-package: *common_rpms
amazon:
service:
amazon-ssm-agent:
enabled: true
running: true
package:
awscli:
amazon-ssm-agent:
<<: *al2_rpms
centos:
common-package: *common_rpms
amazon:
package:
amazon-ssm-agent:
<<: *rh7_rpms
command:
pip3 list --format=columns | grep 'awscli' | awk -F' ' '{print $1}':
exit-status: 0
stdout: ["awscli"]
stderr: []
timeout: 0
azure:
package:
open-vm-tools:
azure-cli:
ova:
package:
python2-pip:
open-vm-tools:
<<: *rh7_rpms
qemu:
package:
open-vm-tools:
cloud-init:
cloud-utils-growpart:
python2-pip:
<<: *rh7_rpms
raw:
package:
cloud-init:
cloud-utils-growpart:
python2-pip:
flatcar:
common-service:
containerd:
enabled: true
running: true
systemd-timesyncd:
enabled: true
running: true
amazon:
command:
azure:
command:
qemu:
command:
raw:
command:
ova:
command:
nutanix:
command:
photon:
common-service:
apparmor:
enabled: false
running: false
common-kernel-param:
net.ipv4.tcp_limit_output_bytes:
value: "524288"
common-package:
<<: *common_photon_rpms
audit:
ova:
command:
grep apparmor=0 /boot/photon.cfg:
exit-status: 0
stdout: ["apparmor=0"]
stderr: []
timeout: 0
service:
networkd-dispatcher:
enabled: true
running: true
package:
open-vm-tools:
cloud-init:
cloud-utils:
python3-netifaces:
os_version:
- distro_version: "3"
package:
<<: *photon_3_rpms
- distro_version: "4"
package:
<<: *photon_4_rpms
rockylinux:
common-package: *common_rpms
amazon:
package:
amazon-ssm-agent:
<<: *rh8_rpms
command:
pip3 list --format=columns | grep 'awscli' | awk -F' ' '{print $1}':
exit-status: 0
stdout: [ "awscli" ]
stderr: [ ]
timeout: 0
service:
amazon-ssm-agent:
enabled: true
running: true
ova:
package:
open-vm-tools:
python2-pip:
<<: *rh8_rpms
qemu:
package:
open-vm-tools:
cloud-init:
cloud-utils:
python3-netifaces:
<<: *rh8_rpms
raw:
package:
cloud-init:
cloud-utils:
python3-netifaces:
<<: *rh8_rpms
nutanix:
package:
cloud-init:
python3-netifaces:
iscsi-initiator-utils:
nfs-utils:
lvm2:
xfsprogs:
<<: *rh8_rpms
service:
iscsid:
enabled: true
running: true
rhel:
common-package: *common_rpms
amazon:
package:
amazon-ssm-agent:
os_version:
- distro_version: "8"
package:
<<: *rh8_rpms
command:
pip3 list --format=columns | grep 'awscli' | awk -F' ' '{print $1}':
exit-status: 0
stdout: [ "awscli" ]
stderr: [ ]
timeout: 0
service:
amazon-ssm-agent:
enabled: true
running: true
azure:
package:
open-vm-tools:
azure-cli:
os_version:
- distro_version: "8"
package:
<<: *rh8_rpms
ova:
package:
python2-pip:
open-vm-tools:
os_version:
- distro_version: "7"
package:
<<: *rh7_rpms
- distro_version: "8"
package:
<<: *rh8_rpms
qemu:
package:
open-vm-tools:
cloud-init:
cloud-utils-growpart:
python2-pip:
<<: *rh7_rpms
raw:
package:
cloud-init:
cloud-utils-growpart:
python2-pip:
<<: *rh7_rpms
ubuntu:
common-kernel-param:
net.ipv4.conf.all.rp_filter:
value: "1"
common-package:
<<: *common_debs
common-service:
apt-daily.timer:
enabled: false
running: false
apt-daily-upgrade.timer:
enabled: false
running: false
azure:
command:
pip3 list --format=columns | grep 'azure-cli' | awk -F' ' '{print $1}':
exit-status: 0
stdout: ["azure-cli"]
stderr: []
timeout: 0
iptables -C FORWARD -d 168.63.129.16/32 -p tcp -m tcp --dport 80 -m comment --comment "block traffic to 168.63.129.16 for cve-2021-27075" -j DROP:
exit-status: 0
timeout: 0
package:
open-vm-tools:
linux-cloud-tools-virtual:
linux-tools-virtual:
<<: *chrony_deb
service:
chrony:
enabled: true
running: true
amazon:
service:
snap.amazon-ssm-agent.amazon-ssm-agent.service:
enabled: true
running: true
package:
linux-cloud-tools-virtual:
linux-tools-virtual:
command:
snap list | grep 'amazon-ssm-agent' | awk -F' ' '{print $1}':
exit-status: 0
stdout: ["amazon-ssm-agent"]
stderr: []
timeout: 0
pip3 list --format=columns | grep 'awscli' | awk -F' ' '{print $1}':
exit-status: 0
stdout: ["awscli"]
stderr: []
timeout: 0
gcp:
package:
linux-cloud-tools-virtual:
linux-tools-virtual:
command:
find -L /bin -maxdepth 1 -type f -executable -printf "%f\n" | grep -Fx 'gcloud':
exit-status: 0
stdout: ["gcloud"]
stderr: []
timeout: 0
oci:
service:
package:
command:
outscale:
package:
linux-cloud-tools-virtual:
linux-tools-virtual:
ova:
service:
networkd-dispatcher:
enabled: true
running: true
package:
linux-cloud-tools-virtual:
linux-tools-virtual:
open-vm-tools:
cloud-guest-utils:
cloud-initramfs-copymods:
cloud-initramfs-dyn-netconf:
qemu:
package:
linux-cloud-tools-virtual:
linux-tools-virtual:
open-vm-tools:
cloud-guest-utils:
cloud-initramfs-copymods:
cloud-initramfs-dyn-netconf:
raw:
package:
cloud-guest-utils:
cloud-initramfs-copymods:
cloud-initramfs-dyn-netconf:
linux-cloud-tools-generic:
linux-tools-generic:
nutanix:
package:
linux-cloud-tools-virtual:
linux-tools-virtual:
cloud-guest-utils:
cloud-initramfs-copymods:
cloud-initramfs-dyn-netconf:
open-iscsi:
xfsprogs:
mdadm:
nfs-common:
service:
iscsid:
enabled: true
running: true
oracle linux:
common-kernel-param:
common-package:
<<: *common_rpms
common-service:
oci:
command:
service:
package:
<<: *rh8_rpms
# Windows specific variables
windows:
common-windows-features:
Hyper-V-PowerShell:
expected:
- Installed
Containers:
expected:
- Installed
common-files:
c:/etc/kubernetes/pki:
exists: true
filetype: directory
contains:
c:/etc/kubernetes:
exists: true
filetype: directory
contains:
c:/etc/kubernetes/manifests:
exists: true
filetype: directory
contains:
c:/var/log/kubelet:
exists: true
filetype: directory
contains:
common-windows-service:
cloudbase-init:
expected:
- Manual
- Stopped
kubelet:
expected:
- Automatic
- "/RequiredServices.+:.+(containerd|docker)/"
sshd:
expected:
- Automatic
- Running
azure:
windows-service:
files:
'c:/program files/Cloudbase Solutions/Cloudbase-init/conf/cloudbase-init.conf':
exists: true
filetype: file
contains:
- "COM2,115200,N,8"
- "metadata_services=cloudbaseinit.metadata.services.azureservice.AzureService"
- "cloudbaseinit.plugins.common.ephemeraldisk.EphemeralDiskPlugin"
- "cloudbaseinit.plugins.windows.azureguestagent.AzureGuestAgentPlugin"
- "cloudbaseinit.plugins.common.mtu.MTUPlugin"
- "cloudbaseinit.plugins.common.sethostname.SetHostNamePlugin"
ova:
windows-service:
vmtools:
expected:
- Automatic
- Running
files:
'c:/program files/Cloudbase Solutions/Cloudbase-init/conf/cloudbase-init.conf':
exists: true
filetype: file
contains:
- "!/logging_serial_port=COM1,115200,N,8/"
- "cloudbaseinit.metadata.services.vmwareguestinfoservice.VMwareGuestInfoService"
- "cloudbaseinit.plugins.common.ephemeraldisk.EphemeralDiskPlugin"
- "cloudbaseinit.plugins.common.mtu.MTUPlugin"
- "cloudbaseinit.plugins.common.sethostname.SetHostNamePlugin"
- "cloudbaseinit.plugins.common.sshpublickeys.SetUserSSHPublicKeysPlugin"
- "cloudbaseinit.plugins.common.userdata.UserDataPlugin"
- "cloudbaseinit.plugins.common.localscripts.LocalScriptsPlugin"
- "cloudbaseinit.plugins.windows.createuser.CreateUserPlugin"
- "cloudbaseinit.plugins.windows.extendvolumes.ExtendVolumesPlugin"
'c:/program files/Cloudbase Solutions/Cloudbase-init/conf/cloudbase-init-unattend.conf':
exists: true
filetype: file
contains:
- "metadata_services=cloudbaseinit.metadata.services.vmwareguestinfoservice.VMwareGuestInfoService"
amazon:
windows-service:
files:
'c:/program files/Cloudbase Solutions/Cloudbase-init/conf/cloudbase-init.conf':
exists: true
filetype: file
contains:
- "!/logging_serial_port=COM1,115200,N,8/"
- "metadata_services=cloudbaseinit.metadata.services.ec2service.EC2Service"
- "cloudbaseinit.plugins.common.ephemeraldisk.EphemeralDiskPlugin"
- "cloudbaseinit.plugins.common.mtu.MTUPlugin"
- "cloudbaseinit.plugins.common.sethostname.SetHostNamePlugin"
- "cloudbaseinit.plugins.common.sshpublickeys.SetUserSSHPublicKeysPlugin"
nutanix:
windows-service:
files:
'c:/program files/Cloudbase Solutions/Cloudbase-init/conf/cloudbase-init.conf':
exists: true
filetype: file
contains:
- "!/logging_serial_port=COM1,115200,N,8/"
- "cloudbaseinit.metadata.services.configdrive.ConfigDriveService"
- "cloudbaseinit.plugins.common.ephemeraldisk.EphemeralDiskPlugin"
- "cloudbaseinit.plugins.common.mtu.MTUPlugin"
- "cloudbaseinit.plugins.common.sethostname.SetHostNamePlugin"
- "cloudbaseinit.plugins.common.sshpublickeys.SetUserSSHPublicKeysPlugin"
- "cloudbaseinit.plugins.common.userdata.UserDataPlugin"
- "cloudbaseinit.plugins.common.localscripts.LocalScriptsPlugin"
- "cloudbaseinit.plugins.windows.createuser.CreateUserPlugin"
- "cloudbaseinit.plugins.windows.extendvolumes.ExtendVolumesPlugin"
'c:/program files/Cloudbase Solutions/Cloudbase-init/conf/cloudbase-init-unattend.conf':
exists: true
filetype: file
contains:
- "metadata_services=cloudbaseinit.metadata.services.base.EmptyMetadataService"