├── .github └── FUNDING.yml ├── .gitignore ├── CHANGELOG.rst ├── README.md ├── Vagrantfile ├── bootstrap.sh ├── build_all.sh ├── build_one.sh ├── packagingbuild ├── README.md ├── busybee ├── busybee.pub ├── focal │ ├── Dockerfile │ ├── busybee │ └── busybee.pub ├── jammy │ ├── Dockerfile │ ├── busybee │ └── busybee.pub ├── rockylinux8 │ ├── Dockerfile │ ├── busybee │ └── busybee.pub └── rockylinux9 │ ├── Dockerfile │ ├── busybee │ └── busybee.pub ├── packagingrunner ├── Dockerfile.template ├── Gemfile ├── docker-entrypoint.sh └── suite.yml └── packagingtest ├── README.md ├── busybee ├── busybee.pub ├── focal ├── Dockerfile ├── busybee ├── busybee.pub └── setup.sh ├── jammy ├── Dockerfile ├── busybee ├── busybee.pub └── setup.sh ├── rockylinux8 ├── Dockerfile ├── busybee └── busybee.pub └── rockylinux9 ├── Dockerfile ├── busybee └── busybee.pub /.github/FUNDING.yml: -------------------------------------------------------------------------------- 1 | # https://stackstorm.com/2020/06/12/sponsoring-stackstorm/ 2 | # FAQ: https://stackstorm.com/donate/ 3 | # Expenses: https://github.com/StackStorm/discussions/issues/36 4 | community_bridge: stackstorm 5 | -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- 1 | *.pyc 2 | 3 | stackstorm/pkg/* 4 | 5 | .vagrant 6 | .bundle 7 | -------------------------------------------------------------------------------- /CHANGELOG.rst: -------------------------------------------------------------------------------- 1 | Changelog 2 | ========= 3 | 4 | in development 5 | -------------- 6 | 7 | Fixed 8 | ~~~~~ 9 | * Enable deprecated SSH RSA on Jammy 10 | Contributed by @mamercad 11 | -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | # Docker images used to build [StackStorm packages](https://github.com/stackstorm/st2-packages) 2 | [![Go to Docker Hub](https://img.shields.io/badge/Docker%20Hub-%E2%86%92-blue.svg)](https://hub.docker.com/r/stackstorm/) 3 | 4 | > *Note:* 5 | For official StackStorm Docker repo, go https://github.com/StackStorm/st2-dockerfiles
6 | Interested in StackStorm HA in Kubernetes? Check https://github.com/stackstorm/stackstorm-ha 7 | 8 | This repository contains Dockerfiles, used by StackStorm team for CI and some other specific needs. 9 | 10 | ## `packagingbuild` 11 | `Dockerfiles` with ready to use environment to build `.deb` and `.rpm` StackStorm packages in [StackStorm/st2-packages](https://github.com/StackStorm/st2-packages/blob/master/docker-compose.circle.yml) CI/CD. 12 | 13 | See [packagingbuild/](packagingbuild/) 14 | 15 | ## `packagingtest` 16 | `Dockerfiles` with pre-installed init system used to test `.deb` and `.rpm` StackStorm packages in [StackStorm/st2-packages](https://github.com/StackStorm/st2-packages/blob/master/docker-compose.circle.yml) CI/CD. 17 | 18 | See [packagingtest/](packagingtest/) 19 | 20 | # How To Build Theses Containers (developer) 21 | 22 | If you're a developer looking to modify / test / build these containers simply, change into 23 | the container's directory and do the following: 24 | 25 | ``` shell 26 | cd st2packaging-dockerfiles/packagingbuild/focal 27 | docker build -t stackstorm/packagingbuild:focal . 28 | 29 | cd st2packaging-dockerfiles/packagingtest/focal 30 | docker build -t stackstorm/packagingtest:focal . 31 | ``` 32 | -------------------------------------------------------------------------------- /Vagrantfile: -------------------------------------------------------------------------------- 1 | VAGRANTFILE_API_VERSION = "2" 2 | 3 | Vagrant.configure(VAGRANTFILE_API_VERSION) do |config| 4 | config.vm.network "public_network" 5 | 6 | config.vm.box = "ubuntu/focal64" 7 | 8 | config.vm.provider :virtualbox do |vb| 9 | vb.memory = 2048 10 | vb.cpus = 2 11 | end 12 | 13 | config.vm.provision :shell, :path => "bootstrap.sh" 14 | end 15 | -------------------------------------------------------------------------------- /bootstrap.sh: -------------------------------------------------------------------------------- 1 | #!/bin/sh 2 | 3 | apt-get update --quiet --quiet 4 | apt-get install apt-transport-https ca-certificates curl gnupg-agent software-properties-common 5 | curl -fsSL https://download.docker.com/linux/ubuntu/gpg | apt-key add - 6 | apt-key fingerprint 0EBFCD88 7 | add-apt-repository \ 8 | "deb [arch=amd64] https://download.docker.com/linux/ubuntu \ 9 | $(lsb_release -cs) \ 10 | stable" 11 | apt-get update --quiet --quiet 12 | apt-get install --quiet --yes docker-ce docker-ce-cli docker-compose jq 13 | usermod -a -G docker vagrant 14 | -------------------------------------------------------------------------------- /build_all.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | set -eux 4 | 5 | for pb in $(find packagingbuild -name Dockerfile); do 6 | path=$(dirname $pb) 7 | flavor=$(basename $path) 8 | (cd $path; docker build -t stackstorm/packagingbuild:$flavor .) || exit -1 9 | done 10 | 11 | for pt in $(find packagingtest -name Dockerfile); do 12 | path=$(dirname $pt) 13 | flavor=$(basename $path) 14 | (cd $path; docker build -t stackstorm/packagingtest:${flavor}-systemd .) || exit -1 15 | done 16 | -------------------------------------------------------------------------------- /build_one.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | flavor="$1" 4 | 5 | if [[ -z "$flavor" ]]; then 6 | flavors="$(find packagingbuild -name Dockerfile -print0 | xargs -0 dirname | xargs basename | paste -sd '|' -)" 7 | echo "Usage: $0 [$flavors]" 8 | exit 1 9 | fi 10 | 11 | (cd "packagingbuild/${flavor}"; docker build -t "stackstorm/packagingbuild:${flavor}" .) || exit 1 12 | (cd "packagingtest/${flavor}"; docker build -t "stackstorm/packagingtest:${flavor}-systemd" .) || exit 1 13 | -------------------------------------------------------------------------------- /packagingbuild/README.md: -------------------------------------------------------------------------------- 1 | # Packagingbuild Dockerfiles 2 | [![Go to packagingbuild Docker Hub](https://img.shields.io/badge/Docker%20Hub-packagingbuild-blue.svg)](https://hub.docker.com/r/stackstorm/packagingbuild/) 3 | 4 | Docker images used to build `.deb` and `.rpm` StackStorm packages in [StackStorm/st2-packages](https://github.com/StackStorm/st2-packages/blob/master/docker-compose.circle.yml) CI/CD. 5 | 6 | In these containers build environment specific for each OS distribution is pre-installed and respective StackStorm packages are built for each platform. 7 | 8 | [`Dockerfiles` sources](https://github.com/StackStorm/st2packaging-dockerfiles/blob/master/packagingbuild): 9 | - Rocky Linux 9 10 | - Rocky Linux 8 11 | - Ubuntu Focal 12 | - Ubuntu Jammy 13 | 14 | > Note! 15 | > 16 | > Images are built automatically in Docker Hub on every push to [StackStorm/st2packaging-dockerfiles](https://github.com/StackStorm/st2packaging-dockerfiles/) `master`. 17 | -------------------------------------------------------------------------------- /packagingbuild/busybee: -------------------------------------------------------------------------------- 1 | -----BEGIN RSA PRIVATE KEY----- 2 | MIIEowIBAAKCAQEAnQppj47DgVkV3PjynYA0a7HIjY6duc02nMs/BnZJZ9pmtOOm 3 | 6zmFwKYYaf/OQyoB7QDQQbd3JePh56Q25gH8qtqmU+4VswGzMbatEo/sshclHa3l 4 | 6HuIBCssaVeqPKf0f18xHGsL6l/7xXORCBZr03WpsWbPQ0JjhOQGTM1AdfCnq5K2 5 | 9P2q1HGfIjIvTYPWtfGr6MPu6FBWejrm+yEs/3ZCEaI2ijv9qWiWeKfr+2S5+x6v 6 | E1HgZIAJcfO9qIfCfJYp4SKte8yuseDBi/Korq6doZ33tHLgscHLGBsvuA3yudfh 7 | Nr5LOhaawiHxeYSHc9unrj5+u/2KTNBdG+Z1xQIDAQABAoIBAAHd3NFbBhHkiDD/ 8 | OIsMuhLJozOjjVZnDQ4iEFa4UzkLzIq75gEHxwI6NzITW1VLC4jQqKkPUDhAFDBX 9 | sFtdjK5POQjoXJOrIoElxbrhwROA2O0YYxI3Xa+G/9kktJ5R9MMK05+d2h9oEqsP 10 | K5soARIbZO/5497NzDcJKtYA3pJITEE4eTGTnrMfgZhDew6ENghnj8FgpedA5+JU 11 | ygBohAAoSnmGXTTTsT14M43SFAdneEef7mEVlrz8LcexEWS9v5C7CelbuAg7fijh 12 | wtsA5c3QaFNZT2q4PY4oObg6/BVtTDbgY+qtIHyvLBoCAbj/qtN9jySVm2gvZdJA 13 | qXmfkyUCgYEAzevYy3cNdUmCvhaBwkVr5+Ha1XPiTReJhsw7p0B/4ixR1MuFH4UX 14 | AetN0zDf57wMhs/IR0zqfWXKpcCplAPIRe2TQaG/P4mBYf2DX0ndDCqFkzmqABW5 15 | 4NJz+YPFdi67zFk7F14I+VEfWGLvQOg3TY756o997l5+j/DBQBISyhMCgYEAwzth 16 | Dfs0zR+7tMG5MY0ZZUKkGDOuRik9ZnD63g/nJ8TqYYD9oU8eY4kM8+jt26r4WEXj 17 | DmIu69f1OFs9UXhWObCpT05MTB0r84YN8Um5VKRL1ENEOqZkx+AIhNwSlOxw1H39 18 | ePuHQjKwrMmjKyS6Dx7sC/F74kLxAlyOtcGDO8cCgYAXyqwdtf+kEX49oDQV0heJ 19 | jxrNlroK1jFZlbc+t8EOzLgXsfwLjEEAQ8OWJwt3ps57tP4a3tQo8N3dEMmHBHjb 20 | O3vMFXgXSzfbroLDO7GCelc8j2kI4Xm8dBRaO9NQuE2SaqzdIkw/IhRRDf0+rpXV 21 | LDPL2hBeviQ5VUO+t1fcaQKBgQDAAjtO69wfTXFnsgt4f2QVofgPUWy51j9r6/ve 22 | wFdAVruJD7rilhS2IgkaLeEZZUoATyOjds7c5zVmqt1grfBnpqatt7z0MtCSHirC 23 | PxbF9xwY89s7r4B4z46xVFv2GaBSbGMJRJ/fbEk0ds9CVEmlK21Nxb9oZRvxjaRR 24 | f7OY6wKBgBTRJqmLyv1oeyrqG9lI7nNmx86O0MHmPg2gEUvTePsvsHpXRJYEWHEX 25 | pYIreL+HWpC8Z7dax6dRmplhJijvsC9czTXlZMDJddGkFZ7ubS7wP6fC9kuMzt2Y 26 | IJNywmAdKiPJTaCUdizW8sjv6QJviaSPnILG8p6tVJWrqVDsW0A2 27 | -----END RSA PRIVATE KEY----- 28 | -------------------------------------------------------------------------------- /packagingbuild/busybee.pub: -------------------------------------------------------------------------------- 1 | ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCdCmmPjsOBWRXc+PKdgDRrsciNjp25zTacyz8Gdkln2ma046brOYXAphhp/85DKgHtANBBt3cl4+HnpDbmAfyq2qZT7hWzAbMxtq0Sj+yyFyUdreXoe4gEKyxpV6o8p/R/XzEcawvqX/vFc5EIFmvTdamxZs9DQmOE5AZMzUB18Kerkrb0/arUcZ8iMi9Ng9a18avow+7oUFZ6Oub7ISz/dkIRojaKO/2paJZ4p+v7ZLn7Hq8TUeBkgAlx872oh8J8linhIq17zK6x4MGL8qiurp2hnfe0cuCxwcsYGy+4DfK51+E2vks6FprCIfF5hIdz26euPn67/YpM0F0b5nXF busybee@drone 2 | -------------------------------------------------------------------------------- /packagingbuild/focal/Dockerfile: -------------------------------------------------------------------------------- 1 | FROM buildpack-deps:focal 2 | 3 | # Make noninteractive setting permanent 4 | ENV DEBIAN_FRONTEND noninteractive 5 | RUN echo 'debconf debconf/frontend select Noninteractive' | debconf-set-selections -v 6 | 7 | # Enable remote pubkey access 8 | RUN mkdir /root/.ssh && chmod 700 /root/.ssh && \ 9 | echo "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCdCmmPjsOBWRXc+PKdgDRrsciNjp25zTacyz8Gdkln2ma046brOYXAphhp/85DKgHtANBBt3cl4+HnpDbmAfyq2qZT7hWzAbMxtq0Sj+yyFyUdreXoe4gEKyxpV6o8p/R/XzEcawvqX/vFc5EIFmvTdamxZs9DQmOE5AZMzUB18Kerkrb0/arUcZ8iMi9Ng9a18avow+7oUFZ6Oub7ISz/dkIRojaKO/2paJZ4p+v7ZLn7Hq8TUeBkgAlx872oh8J8linhIq17zK6x4MGL8qiurp2hnfe0cuCxwcsYGy+4DfK51+E2vks6FprCIfF5hIdz26euPn67/YpM0F0b5nXF busybee@drone" >> /root/.ssh/authorized_keys 10 | 11 | # Create busybee credentials and make busybee pkey available for root 12 | COPY busybee* /root/.ssh/ 13 | RUN chmod 600 /root/.ssh/busybee 14 | 15 | RUN apt-get -y update && \ 16 | apt-get install -y openssh-server sudo && \ 17 | mkdir /var/run/sshd 18 | 19 | # 1. permit root logins and set simple password password and pubkey 20 | # 2. change requiretty to !requiretty in /etc/sudoers 21 | RUN sed -ri 's/^#?PermitRootLogin\s+.*/PermitRootLogin yes/' /etc/ssh/sshd_config && \ 22 | sed -ri 's/^#?PubkeyAuthentication\s+.*/PubkeyAuthentication yes/' /etc/ssh/sshd_config && \ 23 | sed -ri 's/requiretty/!requiretty/' /etc/sudoers && \ 24 | echo 'root:docker.io' | chpasswd 25 | 26 | # install core software for packaging and ssh communication 27 | RUN echo -e "#!/bin/sh\nexit 101\n" > /usr/sbin/policy-rc.d && \ 28 | apt-get -y update && \ 29 | apt-get -y install gdebi-core sshpass cron netcat net-tools 30 | 31 | # 32 | # Buildenv is special environment for generating debian packages. It provides: 33 | # - All needed pre-installed development packages 34 | # - SSH access for build executor. 35 | # 36 | 37 | # install python development 38 | RUN apt-get update && \ 39 | apt-get -y install build-essential python3-dev python3 40 | 41 | RUN apt-get update && \ 42 | apt-get -y install \ 43 | devscripts debhelper dh-make libldap2-dev libsasl2-dev && apt-get clean 44 | 45 | # Install fresh pip and co 46 | RUN curl https://bootstrap.pypa.io/get-pip.py | python3.8 - virtualenv==20.4.0 pip==20.3.3 wheel==0.36.2 setuptools==51.3.3 cryptography; \ 47 | pip3.8 install --upgrade requests[security] && rm -rf /root/.cache 48 | 49 | # This line just busts Docker's cache so it re-runs the next line 50 | # The GitHub API will return different results when the branch HEAD changes 51 | # See https://stackoverflow.com/a/39278224 52 | # ADD https://api.github.com/repos/StackStorm/dh-virtualenv/git/refs/heads/stackstorm_patched version.json 53 | # RUN rm version.json 54 | 55 | # Use upstream dh-virtualenv master branch that includes StackStorm's 'python' shebang fix since 8 Dec 2020. 56 | # We reset the repository to use the known good commit sha id 2dc93574865d6dd9e1fc470541e3232dcbad3337 57 | RUN apt-get -y install \ 58 | python3.8-venv python3-setuptools python3-mock python3-sphinx dh-exec dh-python libjs-jquery libjs-underscore python3-sphinx-rtd-theme && \ 59 | apt-get clean && \ 60 | git clone --branch master https://github.com/spotify/dh-virtualenv.git /tmp/dh-virtualenv && \ 61 | cd /tmp/dh-virtualenv && \ 62 | git reset --hard 2dc93574865d6dd9e1fc470541e3232dcbad3337 && \ 63 | dpkg-buildpackage -b -uc -us && dpkg -i ../dh-virtualenv_*.deb && \ 64 | rm -rf /tmp/dh-virtualenv* 65 | RUN apt-get -y install dh-systemd && apt-get clean 66 | 67 | 68 | VOLUME ['/home/busybee/build'] 69 | EXPOSE 22 70 | 71 | # Run ssh daemon in foreground and wait for bees to connect. 72 | CMD ["/usr/sbin/sshd", "-D"] 73 | -------------------------------------------------------------------------------- /packagingbuild/focal/busybee: -------------------------------------------------------------------------------- 1 | -----BEGIN RSA PRIVATE KEY----- 2 | MIIEowIBAAKCAQEAnQppj47DgVkV3PjynYA0a7HIjY6duc02nMs/BnZJZ9pmtOOm 3 | 6zmFwKYYaf/OQyoB7QDQQbd3JePh56Q25gH8qtqmU+4VswGzMbatEo/sshclHa3l 4 | 6HuIBCssaVeqPKf0f18xHGsL6l/7xXORCBZr03WpsWbPQ0JjhOQGTM1AdfCnq5K2 5 | 9P2q1HGfIjIvTYPWtfGr6MPu6FBWejrm+yEs/3ZCEaI2ijv9qWiWeKfr+2S5+x6v 6 | E1HgZIAJcfO9qIfCfJYp4SKte8yuseDBi/Korq6doZ33tHLgscHLGBsvuA3yudfh 7 | Nr5LOhaawiHxeYSHc9unrj5+u/2KTNBdG+Z1xQIDAQABAoIBAAHd3NFbBhHkiDD/ 8 | OIsMuhLJozOjjVZnDQ4iEFa4UzkLzIq75gEHxwI6NzITW1VLC4jQqKkPUDhAFDBX 9 | sFtdjK5POQjoXJOrIoElxbrhwROA2O0YYxI3Xa+G/9kktJ5R9MMK05+d2h9oEqsP 10 | K5soARIbZO/5497NzDcJKtYA3pJITEE4eTGTnrMfgZhDew6ENghnj8FgpedA5+JU 11 | ygBohAAoSnmGXTTTsT14M43SFAdneEef7mEVlrz8LcexEWS9v5C7CelbuAg7fijh 12 | wtsA5c3QaFNZT2q4PY4oObg6/BVtTDbgY+qtIHyvLBoCAbj/qtN9jySVm2gvZdJA 13 | qXmfkyUCgYEAzevYy3cNdUmCvhaBwkVr5+Ha1XPiTReJhsw7p0B/4ixR1MuFH4UX 14 | AetN0zDf57wMhs/IR0zqfWXKpcCplAPIRe2TQaG/P4mBYf2DX0ndDCqFkzmqABW5 15 | 4NJz+YPFdi67zFk7F14I+VEfWGLvQOg3TY756o997l5+j/DBQBISyhMCgYEAwzth 16 | Dfs0zR+7tMG5MY0ZZUKkGDOuRik9ZnD63g/nJ8TqYYD9oU8eY4kM8+jt26r4WEXj 17 | DmIu69f1OFs9UXhWObCpT05MTB0r84YN8Um5VKRL1ENEOqZkx+AIhNwSlOxw1H39 18 | ePuHQjKwrMmjKyS6Dx7sC/F74kLxAlyOtcGDO8cCgYAXyqwdtf+kEX49oDQV0heJ 19 | jxrNlroK1jFZlbc+t8EOzLgXsfwLjEEAQ8OWJwt3ps57tP4a3tQo8N3dEMmHBHjb 20 | O3vMFXgXSzfbroLDO7GCelc8j2kI4Xm8dBRaO9NQuE2SaqzdIkw/IhRRDf0+rpXV 21 | LDPL2hBeviQ5VUO+t1fcaQKBgQDAAjtO69wfTXFnsgt4f2QVofgPUWy51j9r6/ve 22 | wFdAVruJD7rilhS2IgkaLeEZZUoATyOjds7c5zVmqt1grfBnpqatt7z0MtCSHirC 23 | PxbF9xwY89s7r4B4z46xVFv2GaBSbGMJRJ/fbEk0ds9CVEmlK21Nxb9oZRvxjaRR 24 | f7OY6wKBgBTRJqmLyv1oeyrqG9lI7nNmx86O0MHmPg2gEUvTePsvsHpXRJYEWHEX 25 | pYIreL+HWpC8Z7dax6dRmplhJijvsC9czTXlZMDJddGkFZ7ubS7wP6fC9kuMzt2Y 26 | IJNywmAdKiPJTaCUdizW8sjv6QJviaSPnILG8p6tVJWrqVDsW0A2 27 | -----END RSA PRIVATE KEY----- 28 | -------------------------------------------------------------------------------- /packagingbuild/focal/busybee.pub: -------------------------------------------------------------------------------- 1 | ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCdCmmPjsOBWRXc+PKdgDRrsciNjp25zTacyz8Gdkln2ma046brOYXAphhp/85DKgHtANBBt3cl4+HnpDbmAfyq2qZT7hWzAbMxtq0Sj+yyFyUdreXoe4gEKyxpV6o8p/R/XzEcawvqX/vFc5EIFmvTdamxZs9DQmOE5AZMzUB18Kerkrb0/arUcZ8iMi9Ng9a18avow+7oUFZ6Oub7ISz/dkIRojaKO/2paJZ4p+v7ZLn7Hq8TUeBkgAlx872oh8J8linhIq17zK6x4MGL8qiurp2hnfe0cuCxwcsYGy+4DfK51+E2vks6FprCIfF5hIdz26euPn67/YpM0F0b5nXF busybee@drone 2 | -------------------------------------------------------------------------------- /packagingbuild/jammy/Dockerfile: -------------------------------------------------------------------------------- 1 | FROM buildpack-deps:jammy 2 | 3 | # Make noninteractive setting permanent 4 | ENV DEBIAN_FRONTEND noninteractive 5 | RUN echo 'debconf debconf/frontend select Noninteractive' | debconf-set-selections -v 6 | 7 | # Enable remote pubkey access 8 | RUN mkdir /root/.ssh && chmod 700 /root/.ssh && \ 9 | echo "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCdCmmPjsOBWRXc+PKdgDRrsciNjp25zTacyz8Gdkln2ma046brOYXAphhp/85DKgHtANBBt3cl4+HnpDbmAfyq2qZT7hWzAbMxtq0Sj+yyFyUdreXoe4gEKyxpV6o8p/R/XzEcawvqX/vFc5EIFmvTdamxZs9DQmOE5AZMzUB18Kerkrb0/arUcZ8iMi9Ng9a18avow+7oUFZ6Oub7ISz/dkIRojaKO/2paJZ4p+v7ZLn7Hq8TUeBkgAlx872oh8J8linhIq17zK6x4MGL8qiurp2hnfe0cuCxwcsYGy+4DfK51+E2vks6FprCIfF5hIdz26euPn67/YpM0F0b5nXF busybee@drone" >> /root/.ssh/authorized_keys 10 | 11 | # Create busybee credentials and make busybee pkey available for root 12 | COPY busybee* /root/.ssh/ 13 | RUN chmod 600 /root/.ssh/busybee 14 | 15 | RUN apt-get -y update && \ 16 | apt-get install -y openssh-server sudo && \ 17 | mkdir /var/run/sshd 18 | 19 | # 1. permit root logins and set simple password password and pubkey 20 | # 2. change requiretty to !requiretty in /etc/sudoers 21 | RUN sed -ri 's/^#?PermitRootLogin\s+.*/PermitRootLogin yes/' /etc/ssh/sshd_config && \ 22 | sed -ri 's/^#?PubkeyAuthentication\s+.*/PubkeyAuthentication yes/' /etc/ssh/sshd_config && \ 23 | sed -ri 's/requiretty/!requiretty/' /etc/sudoers && \ 24 | echo 'root:docker.io' | chpasswd 25 | 26 | # Enable (deprecated) RSA 27 | RUN echo 'HostKeyAlgorithms +ssh-rsa' | tee -a /etc/ssh/sshd_config && \ 28 | echo 'PubkeyAcceptedKeyTypes +ssh-rsa' | tee -a /etc/ssh/sshd_config 29 | 30 | # install core software for packaging and ssh communication 31 | RUN echo -e "#!/bin/sh\nexit 101\n" > /usr/sbin/policy-rc.d && \ 32 | apt-get -y update && \ 33 | apt-get -y install gdebi-core sshpass cron netcat net-tools 34 | 35 | # 36 | # Buildenv is special environment for generating debian packages. It provides: 37 | # - All needed pre-installed development packages 38 | # - SSH access for build executor. 39 | # 40 | 41 | # install python development 42 | RUN apt-get update && \ 43 | apt-get -y install build-essential python3-dev python3 44 | 45 | RUN apt-get update && \ 46 | apt-get -y install \ 47 | devscripts debhelper dh-make libldap2-dev libsasl2-dev && apt-get clean 48 | 49 | # Install fresh pip and co (pinning wheel and setuptools is require for dh-virtualenv build) 50 | RUN curl https://bootstrap.pypa.io/get-pip.py | python3.10 - virtualenv==20.4.0 pip==20.3.3 wheel==0.36.2 setuptools==51.3.3 cryptography; \ 51 | pip3.10 install --upgrade requests[security] && rm -rf /root/.cache 52 | 53 | # This line just busts Docker's cache so it re-runs the next line 54 | # The GitHub API will return different results when the branch HEAD changes 55 | # See https://stackoverflow.com/a/39278224 56 | # ADD https://api.github.com/repos/StackStorm/dh-virtualenv/git/refs/heads/stackstorm_patched version.json 57 | # RUN rm version.json 58 | 59 | # Use upstream dh-virtualenv master branch that includes StackStorm's 'python' shebang fix since 8 Dec 2020. 60 | # We reset the repository to use the known good commit sha id 2dc93574865d6dd9e1fc470541e3232dcbad3337 61 | RUN apt-get -y install \ 62 | python3.10-venv python3-setuptools python3-mock python3-sphinx dh-exec dh-python libjs-jquery libjs-underscore python3-sphinx-rtd-theme && \ 63 | apt-get clean && \ 64 | git clone --branch master https://github.com/spotify/dh-virtualenv.git /tmp/dh-virtualenv && \ 65 | cd /tmp/dh-virtualenv && \ 66 | git reset --hard 2dc93574865d6dd9e1fc470541e3232dcbad3337 && \ 67 | dpkg-buildpackage -b -uc -us && dpkg -i ../dh-virtualenv_*.deb && \ 68 | rm -rf /tmp/dh-virtualenv* 69 | # RUN apt-get -y install dh-systemd && apt-get clean 70 | 71 | 72 | VOLUME ['/home/busybee/build'] 73 | EXPOSE 22 74 | 75 | # Run ssh daemon in foreground and wait for bees to connect. 76 | CMD ["/usr/sbin/sshd", "-D"] 77 | -------------------------------------------------------------------------------- /packagingbuild/jammy/busybee: -------------------------------------------------------------------------------- 1 | -----BEGIN RSA PRIVATE KEY----- 2 | MIIEowIBAAKCAQEAnQppj47DgVkV3PjynYA0a7HIjY6duc02nMs/BnZJZ9pmtOOm 3 | 6zmFwKYYaf/OQyoB7QDQQbd3JePh56Q25gH8qtqmU+4VswGzMbatEo/sshclHa3l 4 | 6HuIBCssaVeqPKf0f18xHGsL6l/7xXORCBZr03WpsWbPQ0JjhOQGTM1AdfCnq5K2 5 | 9P2q1HGfIjIvTYPWtfGr6MPu6FBWejrm+yEs/3ZCEaI2ijv9qWiWeKfr+2S5+x6v 6 | E1HgZIAJcfO9qIfCfJYp4SKte8yuseDBi/Korq6doZ33tHLgscHLGBsvuA3yudfh 7 | Nr5LOhaawiHxeYSHc9unrj5+u/2KTNBdG+Z1xQIDAQABAoIBAAHd3NFbBhHkiDD/ 8 | OIsMuhLJozOjjVZnDQ4iEFa4UzkLzIq75gEHxwI6NzITW1VLC4jQqKkPUDhAFDBX 9 | sFtdjK5POQjoXJOrIoElxbrhwROA2O0YYxI3Xa+G/9kktJ5R9MMK05+d2h9oEqsP 10 | K5soARIbZO/5497NzDcJKtYA3pJITEE4eTGTnrMfgZhDew6ENghnj8FgpedA5+JU 11 | ygBohAAoSnmGXTTTsT14M43SFAdneEef7mEVlrz8LcexEWS9v5C7CelbuAg7fijh 12 | wtsA5c3QaFNZT2q4PY4oObg6/BVtTDbgY+qtIHyvLBoCAbj/qtN9jySVm2gvZdJA 13 | qXmfkyUCgYEAzevYy3cNdUmCvhaBwkVr5+Ha1XPiTReJhsw7p0B/4ixR1MuFH4UX 14 | AetN0zDf57wMhs/IR0zqfWXKpcCplAPIRe2TQaG/P4mBYf2DX0ndDCqFkzmqABW5 15 | 4NJz+YPFdi67zFk7F14I+VEfWGLvQOg3TY756o997l5+j/DBQBISyhMCgYEAwzth 16 | Dfs0zR+7tMG5MY0ZZUKkGDOuRik9ZnD63g/nJ8TqYYD9oU8eY4kM8+jt26r4WEXj 17 | DmIu69f1OFs9UXhWObCpT05MTB0r84YN8Um5VKRL1ENEOqZkx+AIhNwSlOxw1H39 18 | ePuHQjKwrMmjKyS6Dx7sC/F74kLxAlyOtcGDO8cCgYAXyqwdtf+kEX49oDQV0heJ 19 | jxrNlroK1jFZlbc+t8EOzLgXsfwLjEEAQ8OWJwt3ps57tP4a3tQo8N3dEMmHBHjb 20 | O3vMFXgXSzfbroLDO7GCelc8j2kI4Xm8dBRaO9NQuE2SaqzdIkw/IhRRDf0+rpXV 21 | LDPL2hBeviQ5VUO+t1fcaQKBgQDAAjtO69wfTXFnsgt4f2QVofgPUWy51j9r6/ve 22 | wFdAVruJD7rilhS2IgkaLeEZZUoATyOjds7c5zVmqt1grfBnpqatt7z0MtCSHirC 23 | PxbF9xwY89s7r4B4z46xVFv2GaBSbGMJRJ/fbEk0ds9CVEmlK21Nxb9oZRvxjaRR 24 | f7OY6wKBgBTRJqmLyv1oeyrqG9lI7nNmx86O0MHmPg2gEUvTePsvsHpXRJYEWHEX 25 | pYIreL+HWpC8Z7dax6dRmplhJijvsC9czTXlZMDJddGkFZ7ubS7wP6fC9kuMzt2Y 26 | IJNywmAdKiPJTaCUdizW8sjv6QJviaSPnILG8p6tVJWrqVDsW0A2 27 | -----END RSA PRIVATE KEY----- 28 | -------------------------------------------------------------------------------- /packagingbuild/jammy/busybee.pub: -------------------------------------------------------------------------------- 1 | ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCdCmmPjsOBWRXc+PKdgDRrsciNjp25zTacyz8Gdkln2ma046brOYXAphhp/85DKgHtANBBt3cl4+HnpDbmAfyq2qZT7hWzAbMxtq0Sj+yyFyUdreXoe4gEKyxpV6o8p/R/XzEcawvqX/vFc5EIFmvTdamxZs9DQmOE5AZMzUB18Kerkrb0/arUcZ8iMi9Ng9a18avow+7oUFZ6Oub7ISz/dkIRojaKO/2paJZ4p+v7ZLn7Hq8TUeBkgAlx872oh8J8linhIq17zK6x4MGL8qiurp2hnfe0cuCxwcsYGy+4DfK51+E2vks6FprCIfF5hIdz26euPn67/YpM0F0b5nXF busybee@drone 2 | -------------------------------------------------------------------------------- /packagingbuild/rockylinux8/Dockerfile: -------------------------------------------------------------------------------- 1 | FROM rockylinux:8 2 | 3 | # Download tools 4 | RUN yum -y install \ 5 | ca-certificates \ 6 | curl \ 7 | wget 8 | 9 | RUN yum -y install \ 10 | git \ 11 | openssh 12 | 13 | RUN yum install -y yum-utils \ 14 | && dnf config-manager --enable powertools \ 15 | && yum install -y epel-release \ 16 | && yum -y install \ 17 | ImageMagick \ 18 | ImageMagick-devel \ 19 | libyaml-devel \ 20 | glibc-langpack-en \ 21 | && dnf config-manager --disable powertools \ 22 | && yum remove -y epel-release yum-utils 23 | 24 | # Build tools 25 | RUN yum -y install \ 26 | autoconf \ 27 | automake \ 28 | bzip2 \ 29 | bzip2-devel \ 30 | file \ 31 | gcc \ 32 | gcc-c++ \ 33 | glib2-devel \ 34 | glibc-devel \ 35 | libcurl-devel \ 36 | libevent-devel \ 37 | libffi-devel \ 38 | libjpeg-devel \ 39 | libtool \ 40 | libwebp-devel \ 41 | libxml2-devel \ 42 | libxslt-devel \ 43 | make \ 44 | mysql-devel \ 45 | ncurses-devel \ 46 | openssl-devel \ 47 | patch \ 48 | postgresql-devel \ 49 | readline-devel \ 50 | sqlite-devel \ 51 | xz \ 52 | xz-devel \ 53 | zlib-devel 54 | 55 | # St2 package build debs 56 | RUN yum -y install \ 57 | openldap-devel 58 | 59 | # Enable remote pubkey access 60 | RUN mkdir /root/.ssh && chmod 700 /root/.ssh && \ 61 | echo "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCdCmmPjsOBWRXc+PKdgDRrsciNjp25zTacyz8Gdkln2ma046brOYXAphhp/85DKgHtANBBt3cl4+HnpDbmAfyq2qZT7hWzAbMxtq0Sj+yyFyUdreXoe4gEKyxpV6o8p/R/XzEcawvqX/vFc5EIFmvTdamxZs9DQmOE5AZMzUB18Kerkrb0/arUcZ8iMi9Ng9a18avow+7oUFZ6Oub7ISz/dkIRojaKO/2paJZ4p+v7ZLn7Hq8TUeBkgAlx872oh8J8linhIq17zK6x4MGL8qiurp2hnfe0cuCxwcsYGy+4DfK51+E2vks6FprCIfF5hIdz26euPn67/YpM0F0b5nXF busybee@drone" >> /root/.ssh/authorized_keys 62 | 63 | # Create busybee credentials and make busybee pkey available for root 64 | COPY busybee* /root/.ssh/ 65 | RUN chmod 600 /root/.ssh/busybee 66 | 67 | RUN yum -y install openssh-server sudo && \ 68 | ssh-keygen -t rsa -N '' -f /etc/ssh/ssh_host_rsa_key 69 | 70 | # 1. small fix for SSH in ubuntu 13.10 (that's harmless everywhere else) 71 | # 2. permit root logins and set simple password password and pubkey 72 | # 3. change requiretty to !requiretty in /etc/sudoers 73 | RUN sed -ri 's/^session\s+required\s+pam_loginuid.so$/session optional pam_loginuid.so/' /etc/pam.d/sshd && \ 74 | sed -ri 's/^#?PermitRootLogin\s+.*/PermitRootLogin yes/' /etc/ssh/sshd_config && \ 75 | sed -ri 's/^#?PubkeyAuthentication\s+.*/PubkeyAuthentication yes/' /etc/ssh/sshd_config && \ 76 | sed -ri 's/requiretty/!requiretty/' /etc/sudoers && \ 77 | echo 'root:docker.io' | chpasswd 78 | 79 | RUN yum -y install nc net-tools 80 | 81 | # 82 | # Buildenv is special environment for generating debian packages. It provides: 83 | # - All needed pre-installed development packages 84 | # - SSH access for build executor. 85 | # 86 | 87 | # Install development tools and python3.8 for EL8 88 | RUN yum -y install python38 python38-devel rpmdevtools python3-virtualenv && \ 89 | pip3.8 install virtualenv==20.4.0 pip==20.3.3 wheel setuptools 90 | 91 | RUN pip3.8 install requests[security] venvctrl --upgrade && rm -rf /root/.cache 92 | 93 | VOLUME ["/home/busybee/build"] 94 | EXPOSE 22 95 | 96 | # Run ssh daemon in foreground and wait for bees to connect. 97 | CMD ["/usr/sbin/sshd", "-D"] 98 | -------------------------------------------------------------------------------- /packagingbuild/rockylinux8/busybee: -------------------------------------------------------------------------------- 1 | -----BEGIN RSA PRIVATE KEY----- 2 | MIIEowIBAAKCAQEAnQppj47DgVkV3PjynYA0a7HIjY6duc02nMs/BnZJZ9pmtOOm 3 | 6zmFwKYYaf/OQyoB7QDQQbd3JePh56Q25gH8qtqmU+4VswGzMbatEo/sshclHa3l 4 | 6HuIBCssaVeqPKf0f18xHGsL6l/7xXORCBZr03WpsWbPQ0JjhOQGTM1AdfCnq5K2 5 | 9P2q1HGfIjIvTYPWtfGr6MPu6FBWejrm+yEs/3ZCEaI2ijv9qWiWeKfr+2S5+x6v 6 | E1HgZIAJcfO9qIfCfJYp4SKte8yuseDBi/Korq6doZ33tHLgscHLGBsvuA3yudfh 7 | Nr5LOhaawiHxeYSHc9unrj5+u/2KTNBdG+Z1xQIDAQABAoIBAAHd3NFbBhHkiDD/ 8 | OIsMuhLJozOjjVZnDQ4iEFa4UzkLzIq75gEHxwI6NzITW1VLC4jQqKkPUDhAFDBX 9 | sFtdjK5POQjoXJOrIoElxbrhwROA2O0YYxI3Xa+G/9kktJ5R9MMK05+d2h9oEqsP 10 | K5soARIbZO/5497NzDcJKtYA3pJITEE4eTGTnrMfgZhDew6ENghnj8FgpedA5+JU 11 | ygBohAAoSnmGXTTTsT14M43SFAdneEef7mEVlrz8LcexEWS9v5C7CelbuAg7fijh 12 | wtsA5c3QaFNZT2q4PY4oObg6/BVtTDbgY+qtIHyvLBoCAbj/qtN9jySVm2gvZdJA 13 | qXmfkyUCgYEAzevYy3cNdUmCvhaBwkVr5+Ha1XPiTReJhsw7p0B/4ixR1MuFH4UX 14 | AetN0zDf57wMhs/IR0zqfWXKpcCplAPIRe2TQaG/P4mBYf2DX0ndDCqFkzmqABW5 15 | 4NJz+YPFdi67zFk7F14I+VEfWGLvQOg3TY756o997l5+j/DBQBISyhMCgYEAwzth 16 | Dfs0zR+7tMG5MY0ZZUKkGDOuRik9ZnD63g/nJ8TqYYD9oU8eY4kM8+jt26r4WEXj 17 | DmIu69f1OFs9UXhWObCpT05MTB0r84YN8Um5VKRL1ENEOqZkx+AIhNwSlOxw1H39 18 | ePuHQjKwrMmjKyS6Dx7sC/F74kLxAlyOtcGDO8cCgYAXyqwdtf+kEX49oDQV0heJ 19 | jxrNlroK1jFZlbc+t8EOzLgXsfwLjEEAQ8OWJwt3ps57tP4a3tQo8N3dEMmHBHjb 20 | O3vMFXgXSzfbroLDO7GCelc8j2kI4Xm8dBRaO9NQuE2SaqzdIkw/IhRRDf0+rpXV 21 | LDPL2hBeviQ5VUO+t1fcaQKBgQDAAjtO69wfTXFnsgt4f2QVofgPUWy51j9r6/ve 22 | wFdAVruJD7rilhS2IgkaLeEZZUoATyOjds7c5zVmqt1grfBnpqatt7z0MtCSHirC 23 | PxbF9xwY89s7r4B4z46xVFv2GaBSbGMJRJ/fbEk0ds9CVEmlK21Nxb9oZRvxjaRR 24 | f7OY6wKBgBTRJqmLyv1oeyrqG9lI7nNmx86O0MHmPg2gEUvTePsvsHpXRJYEWHEX 25 | pYIreL+HWpC8Z7dax6dRmplhJijvsC9czTXlZMDJddGkFZ7ubS7wP6fC9kuMzt2Y 26 | IJNywmAdKiPJTaCUdizW8sjv6QJviaSPnILG8p6tVJWrqVDsW0A2 27 | -----END RSA PRIVATE KEY----- 28 | -------------------------------------------------------------------------------- /packagingbuild/rockylinux8/busybee.pub: -------------------------------------------------------------------------------- 1 | ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCdCmmPjsOBWRXc+PKdgDRrsciNjp25zTacyz8Gdkln2ma046brOYXAphhp/85DKgHtANBBt3cl4+HnpDbmAfyq2qZT7hWzAbMxtq0Sj+yyFyUdreXoe4gEKyxpV6o8p/R/XzEcawvqX/vFc5EIFmvTdamxZs9DQmOE5AZMzUB18Kerkrb0/arUcZ8iMi9Ng9a18avow+7oUFZ6Oub7ISz/dkIRojaKO/2paJZ4p+v7ZLn7Hq8TUeBkgAlx872oh8J8linhIq17zK6x4MGL8qiurp2hnfe0cuCxwcsYGy+4DfK51+E2vks6FprCIfF5hIdz26euPn67/YpM0F0b5nXF busybee@drone 2 | -------------------------------------------------------------------------------- /packagingbuild/rockylinux9/Dockerfile: -------------------------------------------------------------------------------- 1 | FROM rockylinux:9 2 | 3 | # Download tools 4 | RUN yum -y install \ 5 | ca-certificates \ 6 | wget 7 | 8 | RUN yum -y install \ 9 | git \ 10 | openssh 11 | 12 | RUN yum install -y yum-utils \ 13 | && dnf install -y dnf-plugin-config-manager \ 14 | && dnf config-manager --enable crb \ 15 | && yum install -y epel-release \ 16 | && yum -y install \ 17 | ImageMagick \ 18 | ImageMagick-devel \ 19 | libyaml-devel \ 20 | glibc-langpack-en \ 21 | && yum remove -y epel-release yum-utils 22 | 23 | # Build tools 24 | RUN yum -y install \ 25 | autoconf \ 26 | automake \ 27 | bzip2 \ 28 | bzip2-devel \ 29 | file \ 30 | gcc \ 31 | gcc-c++ \ 32 | glib2-devel \ 33 | glibc-devel \ 34 | libcurl-devel \ 35 | libevent-devel \ 36 | libffi-devel \ 37 | libjpeg-devel \ 38 | libtool \ 39 | libwebp-devel \ 40 | libxml2-devel \ 41 | libxslt-devel \ 42 | make \ 43 | mysql-devel \ 44 | ncurses-devel \ 45 | openssl-devel \ 46 | patch \ 47 | postgresql-devel \ 48 | readline-devel \ 49 | sqlite-devel \ 50 | xz \ 51 | xz-devel \ 52 | zlib-devel 53 | 54 | # St2 package build debs 55 | RUN yum -y install \ 56 | openldap-devel 57 | 58 | # Enable remote pubkey access 59 | RUN mkdir -p /root/.ssh && chmod 700 /root/.ssh && \ 60 | echo "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCdCmmPjsOBWRXc+PKdgDRrsciNjp25zTacyz8Gdkln2ma046brOYXAphhp/85DKgHtANBBt3cl4+HnpDbmAfyq2qZT7hWzAbMxtq0Sj+yyFyUdreXoe4gEKyxpV6o8p/R/XzEcawvqX/vFc5EIFmvTdamxZs9DQmOE5AZMzUB18Kerkrb0/arUcZ8iMi9Ng9a18avow+7oUFZ6Oub7ISz/dkIRojaKO/2paJZ4p+v7ZLn7Hq8TUeBkgAlx872oh8J8linhIq17zK6x4MGL8qiurp2hnfe0cuCxwcsYGy+4DfK51+E2vks6FprCIfF5hIdz26euPn67/YpM0F0b5nXF busybee@drone" >> /root/.ssh/authorized_keys 61 | 62 | # Create busybee credentials and make busybee pkey available for root 63 | COPY busybee* /root/.ssh/ 64 | RUN chmod 600 /root/.ssh/busybee 65 | 66 | RUN yum -y install openssh-server sudo && \ 67 | ssh-keygen -t rsa -N '' -f /etc/ssh/ssh_host_rsa_key 68 | 69 | # 1. small fix for SSH in ubuntu 13.10 (that's harmless everywhere else) 70 | # 2. permit root logins and set simple password password and pubkey 71 | # 3. change requiretty to !requiretty in /etc/sudoers 72 | RUN sed -ri 's/^session\s+required\s+pam_loginuid.so$/session optional pam_loginuid.so/' /etc/pam.d/sshd && \ 73 | sed -ri 's/^#?PermitRootLogin\s+.*/PermitRootLogin yes/' /etc/ssh/sshd_config && \ 74 | sed -ri 's/^#?PubkeyAuthentication\s+.*/PubkeyAuthentication yes/' /etc/ssh/sshd_config && \ 75 | sed -ri 's/requiretty/!requiretty/' /etc/sudoers && \ 76 | echo 'root:docker.io' | chpasswd 77 | 78 | RUN yum -y install nc net-tools 79 | #EL9 enable RSA 80 | RUN update-crypto-policies --set DEFAULT:SHA1 81 | 82 | # 83 | # Buildenv is special environment for generating debian packages. It provides: 84 | # - All needed pre-installed development packages 85 | # - SSH access for build executor. 86 | # 87 | 88 | # Install development tools and python3 for EL9 89 | RUN yum -y install python3 python3-devel rpmdevtools && \ 90 | pip3 install virtualenv==20.4.0 pip==20.3.3 wheel setuptools 91 | 92 | RUN rm -rf /root/.cache 93 | 94 | VOLUME ["/home/busybee/build"] 95 | EXPOSE 22 96 | 97 | # Run ssh daemon in foreground and wait for bees to connect. 98 | CMD ["/usr/sbin/sshd", "-D"] 99 | -------------------------------------------------------------------------------- /packagingbuild/rockylinux9/busybee: -------------------------------------------------------------------------------- 1 | -----BEGIN RSA PRIVATE KEY----- 2 | MIIEowIBAAKCAQEAnQppj47DgVkV3PjynYA0a7HIjY6duc02nMs/BnZJZ9pmtOOm 3 | 6zmFwKYYaf/OQyoB7QDQQbd3JePh56Q25gH8qtqmU+4VswGzMbatEo/sshclHa3l 4 | 6HuIBCssaVeqPKf0f18xHGsL6l/7xXORCBZr03WpsWbPQ0JjhOQGTM1AdfCnq5K2 5 | 9P2q1HGfIjIvTYPWtfGr6MPu6FBWejrm+yEs/3ZCEaI2ijv9qWiWeKfr+2S5+x6v 6 | E1HgZIAJcfO9qIfCfJYp4SKte8yuseDBi/Korq6doZ33tHLgscHLGBsvuA3yudfh 7 | Nr5LOhaawiHxeYSHc9unrj5+u/2KTNBdG+Z1xQIDAQABAoIBAAHd3NFbBhHkiDD/ 8 | OIsMuhLJozOjjVZnDQ4iEFa4UzkLzIq75gEHxwI6NzITW1VLC4jQqKkPUDhAFDBX 9 | sFtdjK5POQjoXJOrIoElxbrhwROA2O0YYxI3Xa+G/9kktJ5R9MMK05+d2h9oEqsP 10 | K5soARIbZO/5497NzDcJKtYA3pJITEE4eTGTnrMfgZhDew6ENghnj8FgpedA5+JU 11 | ygBohAAoSnmGXTTTsT14M43SFAdneEef7mEVlrz8LcexEWS9v5C7CelbuAg7fijh 12 | wtsA5c3QaFNZT2q4PY4oObg6/BVtTDbgY+qtIHyvLBoCAbj/qtN9jySVm2gvZdJA 13 | qXmfkyUCgYEAzevYy3cNdUmCvhaBwkVr5+Ha1XPiTReJhsw7p0B/4ixR1MuFH4UX 14 | AetN0zDf57wMhs/IR0zqfWXKpcCplAPIRe2TQaG/P4mBYf2DX0ndDCqFkzmqABW5 15 | 4NJz+YPFdi67zFk7F14I+VEfWGLvQOg3TY756o997l5+j/DBQBISyhMCgYEAwzth 16 | Dfs0zR+7tMG5MY0ZZUKkGDOuRik9ZnD63g/nJ8TqYYD9oU8eY4kM8+jt26r4WEXj 17 | DmIu69f1OFs9UXhWObCpT05MTB0r84YN8Um5VKRL1ENEOqZkx+AIhNwSlOxw1H39 18 | ePuHQjKwrMmjKyS6Dx7sC/F74kLxAlyOtcGDO8cCgYAXyqwdtf+kEX49oDQV0heJ 19 | jxrNlroK1jFZlbc+t8EOzLgXsfwLjEEAQ8OWJwt3ps57tP4a3tQo8N3dEMmHBHjb 20 | O3vMFXgXSzfbroLDO7GCelc8j2kI4Xm8dBRaO9NQuE2SaqzdIkw/IhRRDf0+rpXV 21 | LDPL2hBeviQ5VUO+t1fcaQKBgQDAAjtO69wfTXFnsgt4f2QVofgPUWy51j9r6/ve 22 | wFdAVruJD7rilhS2IgkaLeEZZUoATyOjds7c5zVmqt1grfBnpqatt7z0MtCSHirC 23 | PxbF9xwY89s7r4B4z46xVFv2GaBSbGMJRJ/fbEk0ds9CVEmlK21Nxb9oZRvxjaRR 24 | f7OY6wKBgBTRJqmLyv1oeyrqG9lI7nNmx86O0MHmPg2gEUvTePsvsHpXRJYEWHEX 25 | pYIreL+HWpC8Z7dax6dRmplhJijvsC9czTXlZMDJddGkFZ7ubS7wP6fC9kuMzt2Y 26 | IJNywmAdKiPJTaCUdizW8sjv6QJviaSPnILG8p6tVJWrqVDsW0A2 27 | -----END RSA PRIVATE KEY----- 28 | -------------------------------------------------------------------------------- /packagingbuild/rockylinux9/busybee.pub: -------------------------------------------------------------------------------- 1 | ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCdCmmPjsOBWRXc+PKdgDRrsciNjp25zTacyz8Gdkln2ma046brOYXAphhp/85DKgHtANBBt3cl4+HnpDbmAfyq2qZT7hWzAbMxtq0Sj+yyFyUdreXoe4gEKyxpV6o8p/R/XzEcawvqX/vFc5EIFmvTdamxZs9DQmOE5AZMzUB18Kerkrb0/arUcZ8iMi9Ng9a18avow+7oUFZ6Oub7ISz/dkIRojaKO/2paJZ4p+v7ZLn7Hq8TUeBkgAlx872oh8J8linhIq17zK6x4MGL8qiurp2hnfe0cuCxwcsYGy+4DfK51+E2vks6FprCIfF5hIdz26euPn67/YpM0F0b5nXF busybee@drone 2 | -------------------------------------------------------------------------------- /packagingrunner/Dockerfile.template: -------------------------------------------------------------------------------- 1 | FROM quay.io/dennybaa/droneruby:{{ suite }}-rbenv 2 | 3 | # Additional software (needed for RSpec, serverspec) 4 | RUN DEBIAN_FRONTEND=noninteractive && apt-get -y update && \ 5 | apt-get -y install netcat && apt-get -y clean 6 | 7 | ADD Gemfile /root/Gemfile 8 | 9 | RUN ~/.rbenv/bin/rbenv exec bundle --gemfile=/root/Gemfile 10 | 11 | COPY docker-entrypoint.sh /entrypoint.sh 12 | ENTRYPOINT [ "/entrypoint.sh" ] 13 | -------------------------------------------------------------------------------- /packagingrunner/Gemfile: -------------------------------------------------------------------------------- 1 | source 'https://rubygems.org' 2 | 3 | gem 'serverspec' 4 | gem 'hashie' 5 | gem 'slop' 6 | gem 'sshkit', git: 'https://github.com/capistrano/sshkit.git', ref: 'acfa0e221f499da01b2cbba097acdb37a71555fa' 7 | gem 'bintray', git:'https://github.com/stefanozanella/bintray.git' 8 | gem 'net-ssh', '<5.0' 9 | -------------------------------------------------------------------------------- /packagingrunner/docker-entrypoint.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # Copy Gemfile* to WORKING_DIR 4 | cp /root/Gemfile* ./ 5 | 6 | # If no operation is given run complete suite (default behaviour) 7 | operation="${1:-complete}" 8 | 9 | case "$operation" in 10 | build) 11 | bundle exec rake build:all 12 | ;; 13 | test) 14 | bundle exec rake setup:all && bundle exec rspec 15 | ;; 16 | complete) 17 | bundle exec rake && bundle exec rspec 18 | ;; 19 | *) 20 | [ $# -gt 0 ] && exec "$@" 21 | ;; 22 | esac 23 | -------------------------------------------------------------------------------- /packagingrunner/suite.yml: -------------------------------------------------------------------------------- 1 | registry: quay.io/stackstorm/ 2 | latest: trusty 3 | -------------------------------------------------------------------------------- /packagingtest/README.md: -------------------------------------------------------------------------------- 1 | # Packagingtest Dockerfiles 2 | [![Go to packagingtest Docker Hub](https://img.shields.io/badge/Docker%20Hub-packagingtest-blue.svg)](https://hub.docker.com/r/stackstorm/packagingtest/) 3 | 4 | Docker images with pre-installed init system used to test `.deb` and `.rpm` StackStorm packages in [StackStorm/st2-packages](https://github.com/StackStorm/st2-packages/blob/master/docker-compose.circle.yml) CI/CD. 5 | 6 | In these containers built artifacts are tested: StackStorm packages are installed, configuration is written, dependent services like MongoDB, RabbitMQ, PostgreSQL are started and end-to-end tests are performed, like on real OS with specific init system. 7 | 8 | [`Dockerfiles` sources](https://github.com/StackStorm/st2packaging-dockerfiles/blob/master/packagingtest): 9 | - Rocky Linux 8 10 | - Rocky Linux 9 11 | - Ubuntu Focal 12 | - Ubuntu Jammy 13 | 14 | NB! 15 | Images are built automatically on every push to [StackStorm/st2packaging-dockerfiles](https://github.com/StackStorm/st2packaging-dockerfiles/) `master`. 16 | -------------------------------------------------------------------------------- /packagingtest/busybee: -------------------------------------------------------------------------------- 1 | -----BEGIN RSA PRIVATE KEY----- 2 | MIIEowIBAAKCAQEAnQppj47DgVkV3PjynYA0a7HIjY6duc02nMs/BnZJZ9pmtOOm 3 | 6zmFwKYYaf/OQyoB7QDQQbd3JePh56Q25gH8qtqmU+4VswGzMbatEo/sshclHa3l 4 | 6HuIBCssaVeqPKf0f18xHGsL6l/7xXORCBZr03WpsWbPQ0JjhOQGTM1AdfCnq5K2 5 | 9P2q1HGfIjIvTYPWtfGr6MPu6FBWejrm+yEs/3ZCEaI2ijv9qWiWeKfr+2S5+x6v 6 | E1HgZIAJcfO9qIfCfJYp4SKte8yuseDBi/Korq6doZ33tHLgscHLGBsvuA3yudfh 7 | Nr5LOhaawiHxeYSHc9unrj5+u/2KTNBdG+Z1xQIDAQABAoIBAAHd3NFbBhHkiDD/ 8 | OIsMuhLJozOjjVZnDQ4iEFa4UzkLzIq75gEHxwI6NzITW1VLC4jQqKkPUDhAFDBX 9 | sFtdjK5POQjoXJOrIoElxbrhwROA2O0YYxI3Xa+G/9kktJ5R9MMK05+d2h9oEqsP 10 | K5soARIbZO/5497NzDcJKtYA3pJITEE4eTGTnrMfgZhDew6ENghnj8FgpedA5+JU 11 | ygBohAAoSnmGXTTTsT14M43SFAdneEef7mEVlrz8LcexEWS9v5C7CelbuAg7fijh 12 | wtsA5c3QaFNZT2q4PY4oObg6/BVtTDbgY+qtIHyvLBoCAbj/qtN9jySVm2gvZdJA 13 | qXmfkyUCgYEAzevYy3cNdUmCvhaBwkVr5+Ha1XPiTReJhsw7p0B/4ixR1MuFH4UX 14 | AetN0zDf57wMhs/IR0zqfWXKpcCplAPIRe2TQaG/P4mBYf2DX0ndDCqFkzmqABW5 15 | 4NJz+YPFdi67zFk7F14I+VEfWGLvQOg3TY756o997l5+j/DBQBISyhMCgYEAwzth 16 | Dfs0zR+7tMG5MY0ZZUKkGDOuRik9ZnD63g/nJ8TqYYD9oU8eY4kM8+jt26r4WEXj 17 | DmIu69f1OFs9UXhWObCpT05MTB0r84YN8Um5VKRL1ENEOqZkx+AIhNwSlOxw1H39 18 | ePuHQjKwrMmjKyS6Dx7sC/F74kLxAlyOtcGDO8cCgYAXyqwdtf+kEX49oDQV0heJ 19 | jxrNlroK1jFZlbc+t8EOzLgXsfwLjEEAQ8OWJwt3ps57tP4a3tQo8N3dEMmHBHjb 20 | O3vMFXgXSzfbroLDO7GCelc8j2kI4Xm8dBRaO9NQuE2SaqzdIkw/IhRRDf0+rpXV 21 | LDPL2hBeviQ5VUO+t1fcaQKBgQDAAjtO69wfTXFnsgt4f2QVofgPUWy51j9r6/ve 22 | wFdAVruJD7rilhS2IgkaLeEZZUoATyOjds7c5zVmqt1grfBnpqatt7z0MtCSHirC 23 | PxbF9xwY89s7r4B4z46xVFv2GaBSbGMJRJ/fbEk0ds9CVEmlK21Nxb9oZRvxjaRR 24 | f7OY6wKBgBTRJqmLyv1oeyrqG9lI7nNmx86O0MHmPg2gEUvTePsvsHpXRJYEWHEX 25 | pYIreL+HWpC8Z7dax6dRmplhJijvsC9czTXlZMDJddGkFZ7ubS7wP6fC9kuMzt2Y 26 | IJNywmAdKiPJTaCUdizW8sjv6QJviaSPnILG8p6tVJWrqVDsW0A2 27 | -----END RSA PRIVATE KEY----- 28 | -------------------------------------------------------------------------------- /packagingtest/busybee.pub: -------------------------------------------------------------------------------- 1 | ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCdCmmPjsOBWRXc+PKdgDRrsciNjp25zTacyz8Gdkln2ma046brOYXAphhp/85DKgHtANBBt3cl4+HnpDbmAfyq2qZT7hWzAbMxtq0Sj+yyFyUdreXoe4gEKyxpV6o8p/R/XzEcawvqX/vFc5EIFmvTdamxZs9DQmOE5AZMzUB18Kerkrb0/arUcZ8iMi9Ng9a18avow+7oUFZ6Oub7ISz/dkIRojaKO/2paJZ4p+v7ZLn7Hq8TUeBkgAlx872oh8J8linhIq17zK6x4MGL8qiurp2hnfe0cuCxwcsYGy+4DfK51+E2vks6FprCIfF5hIdz26euPn67/YpM0F0b5nXF busybee@drone 2 | -------------------------------------------------------------------------------- /packagingtest/focal/Dockerfile: -------------------------------------------------------------------------------- 1 | FROM buildpack-deps:focal 2 | 3 | ENV container docker 4 | ENV TERM xterm 5 | 6 | # Make noninteractive setting permanent 7 | ENV DEBIAN_FRONTEND noninteractive 8 | RUN echo 'debconf debconf/frontend select Noninteractive' | debconf-set-selections -v 9 | 10 | RUN apt-get -y update 11 | 12 | # Enable remote pubkey access 13 | RUN mkdir /root/.ssh && chmod 700 /root/.ssh && \ 14 | echo "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCdCmmPjsOBWRXc+PKdgDRrsciNjp25zTacyz8Gdkln2ma046brOYXAphhp/85DKgHtANBBt3cl4+HnpDbmAfyq2qZT7hWzAbMxtq0Sj+yyFyUdreXoe4gEKyxpV6o8p/R/XzEcawvqX/vFc5EIFmvTdamxZs9DQmOE5AZMzUB18Kerkrb0/arUcZ8iMi9Ng9a18avow+7oUFZ6Oub7ISz/dkIRojaKO/2paJZ4p+v7ZLn7Hq8TUeBkgAlx872oh8J8linhIq17zK6x4MGL8qiurp2hnfe0cuCxwcsYGy+4DfK51+E2vks6FprCIfF5hIdz26euPn67/YpM0F0b5nXF busybee@drone" >> /root/.ssh/authorized_keys 15 | 16 | # Create busybee credentials and make busybee pkey available for root 17 | COPY busybee* /root/.ssh/ 18 | RUN chmod 600 /root/.ssh/busybee 19 | 20 | RUN apt-get install -y openssh-server sudo && \ 21 | mkdir /var/run/sshd 22 | 23 | # install locales package and set default locale to 'UTF-8' for the test execution environment 24 | RUN apt-get -y install locales && \ 25 | locale-gen en_US.UTF-8 && \ 26 | dpkg-reconfigure locales && \ 27 | update-locale LANG=en_US.UTF-8 28 | ENV LANG en_US.UTF-8 29 | 30 | # 1. small fix for SSH in ubuntu 13.10 (that's harmless everywhere else) 31 | # 2. permit root logins and set simple password password and pubkey 32 | # 3. change requiretty to !requiretty in /etc/sudoers 33 | RUN sed -ri 's/^session\s+required\s+pam_loginuid.so$/session optional pam_loginuid.so/' /etc/pam.d/sshd && \ 34 | sed -ri 's/^#?PermitRootLogin\s+.*/PermitRootLogin yes/' /etc/ssh/sshd_config && \ 35 | sed -ri 's/^#?PubkeyAuthentication\s+.*/PubkeyAuthentication yes/' /etc/ssh/sshd_config && \ 36 | sed -ri 's/requiretty/!requiretty/' /etc/sudoers && \ 37 | echo 'root:docker.io' | chpasswd 38 | 39 | # install core software for packaging and ssh communication 40 | RUN echo -e "#!/bin/sh\nexit 101\n" > /usr/sbin/policy-rc.d && \ 41 | apt-get -y install gdebi-core sshpass cron netcat net-tools iproute2 42 | 43 | # install apt https transport so apt sources can be added that refernece https:// URLs 44 | RUN apt-get -y install apt-transport-https ca-certificates 45 | 46 | # install netbase package (includes /etc/protocols and other files we rely on) 47 | RUN apt-get -y install netbase 48 | 49 | RUN find /etc/systemd/system \ 50 | /lib/systemd/system \ 51 | -path '*.wants/*' \ 52 | -not -name '*journald*' \ 53 | -not -name '*systemd-tmpfiles*' \ 54 | -not -name '*systemd-user-sessions*' \ 55 | -exec rm \{} \; 56 | 57 | RUN systemctl set-default multi-user.target 58 | 59 | # The base Ubuntu 18.04 image contains a file that excludes all documentation 60 | # from being installed by packages. Specifically /usr/share/doc/* 61 | # This exclusion prevents our nginx config from being installed in the 'st2' package: 62 | # /usr/share/doc/st2/conf/nginx/st2.conf 63 | # This step removes the exclusion configuration so documentation of all future packages 64 | # will be installed. 65 | RUN rm -rf /etc/dpkg/dpkg.cfg.d/excludes 66 | 67 | COPY setup.sh /sbin/ 68 | 69 | RUN systemctl preset ssh; 70 | 71 | # we can have ssh 72 | EXPOSE 22 73 | 74 | VOLUME [ "/sys/fs/cgroup" ] 75 | CMD [ "/sbin/init" ] 76 | -------------------------------------------------------------------------------- /packagingtest/focal/busybee: -------------------------------------------------------------------------------- 1 | -----BEGIN RSA PRIVATE KEY----- 2 | MIIEowIBAAKCAQEAnQppj47DgVkV3PjynYA0a7HIjY6duc02nMs/BnZJZ9pmtOOm 3 | 6zmFwKYYaf/OQyoB7QDQQbd3JePh56Q25gH8qtqmU+4VswGzMbatEo/sshclHa3l 4 | 6HuIBCssaVeqPKf0f18xHGsL6l/7xXORCBZr03WpsWbPQ0JjhOQGTM1AdfCnq5K2 5 | 9P2q1HGfIjIvTYPWtfGr6MPu6FBWejrm+yEs/3ZCEaI2ijv9qWiWeKfr+2S5+x6v 6 | E1HgZIAJcfO9qIfCfJYp4SKte8yuseDBi/Korq6doZ33tHLgscHLGBsvuA3yudfh 7 | Nr5LOhaawiHxeYSHc9unrj5+u/2KTNBdG+Z1xQIDAQABAoIBAAHd3NFbBhHkiDD/ 8 | OIsMuhLJozOjjVZnDQ4iEFa4UzkLzIq75gEHxwI6NzITW1VLC4jQqKkPUDhAFDBX 9 | sFtdjK5POQjoXJOrIoElxbrhwROA2O0YYxI3Xa+G/9kktJ5R9MMK05+d2h9oEqsP 10 | K5soARIbZO/5497NzDcJKtYA3pJITEE4eTGTnrMfgZhDew6ENghnj8FgpedA5+JU 11 | ygBohAAoSnmGXTTTsT14M43SFAdneEef7mEVlrz8LcexEWS9v5C7CelbuAg7fijh 12 | wtsA5c3QaFNZT2q4PY4oObg6/BVtTDbgY+qtIHyvLBoCAbj/qtN9jySVm2gvZdJA 13 | qXmfkyUCgYEAzevYy3cNdUmCvhaBwkVr5+Ha1XPiTReJhsw7p0B/4ixR1MuFH4UX 14 | AetN0zDf57wMhs/IR0zqfWXKpcCplAPIRe2TQaG/P4mBYf2DX0ndDCqFkzmqABW5 15 | 4NJz+YPFdi67zFk7F14I+VEfWGLvQOg3TY756o997l5+j/DBQBISyhMCgYEAwzth 16 | Dfs0zR+7tMG5MY0ZZUKkGDOuRik9ZnD63g/nJ8TqYYD9oU8eY4kM8+jt26r4WEXj 17 | DmIu69f1OFs9UXhWObCpT05MTB0r84YN8Um5VKRL1ENEOqZkx+AIhNwSlOxw1H39 18 | ePuHQjKwrMmjKyS6Dx7sC/F74kLxAlyOtcGDO8cCgYAXyqwdtf+kEX49oDQV0heJ 19 | jxrNlroK1jFZlbc+t8EOzLgXsfwLjEEAQ8OWJwt3ps57tP4a3tQo8N3dEMmHBHjb 20 | O3vMFXgXSzfbroLDO7GCelc8j2kI4Xm8dBRaO9NQuE2SaqzdIkw/IhRRDf0+rpXV 21 | LDPL2hBeviQ5VUO+t1fcaQKBgQDAAjtO69wfTXFnsgt4f2QVofgPUWy51j9r6/ve 22 | wFdAVruJD7rilhS2IgkaLeEZZUoATyOjds7c5zVmqt1grfBnpqatt7z0MtCSHirC 23 | PxbF9xwY89s7r4B4z46xVFv2GaBSbGMJRJ/fbEk0ds9CVEmlK21Nxb9oZRvxjaRR 24 | f7OY6wKBgBTRJqmLyv1oeyrqG9lI7nNmx86O0MHmPg2gEUvTePsvsHpXRJYEWHEX 25 | pYIreL+HWpC8Z7dax6dRmplhJijvsC9czTXlZMDJddGkFZ7ubS7wP6fC9kuMzt2Y 26 | IJNywmAdKiPJTaCUdizW8sjv6QJviaSPnILG8p6tVJWrqVDsW0A2 27 | -----END RSA PRIVATE KEY----- 28 | -------------------------------------------------------------------------------- /packagingtest/focal/busybee.pub: -------------------------------------------------------------------------------- 1 | ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCdCmmPjsOBWRXc+PKdgDRrsciNjp25zTacyz8Gdkln2ma046brOYXAphhp/85DKgHtANBBt3cl4+HnpDbmAfyq2qZT7hWzAbMxtq0Sj+yyFyUdreXoe4gEKyxpV6o8p/R/XzEcawvqX/vFc5EIFmvTdamxZs9DQmOE5AZMzUB18Kerkrb0/arUcZ8iMi9Ng9a18avow+7oUFZ6Oub7ISz/dkIRojaKO/2paJZ4p+v7ZLn7Hq8TUeBkgAlx872oh8J8linhIq17zK6x4MGL8qiurp2hnfe0cuCxwcsYGy+4DfK51+E2vks6FprCIfF5hIdz26euPn67/YpM0F0b5nXF busybee@drone 2 | -------------------------------------------------------------------------------- /packagingtest/focal/setup.sh: -------------------------------------------------------------------------------- 1 | #!/bin/sh 2 | set -eu 3 | 4 | touch /1 5 | 6 | if nsenter --mount=/host/proc/1/ns/mnt -- mount | grep /sys/fs/cgroup/systemd >/dev/null 2>&1; then 7 | echo 'The systemd cgroup hierarchy is already mounted at /sys/fs/cgroup/systemd.' 8 | else 9 | if [ -d /host/sys/fs/cgroup/systemd ]; then 10 | echo 'The mount point for the systemd cgroup hierarchy already exists at /sys/fs/cgroup/systemd.' 11 | else 12 | echo 'Creating the mount point for the systemd cgroup hierarchy at /sys/fs/cgroup/systemd.' 13 | mkdir -p /host/sys/fs/cgroup/systemd 14 | fi 15 | 16 | echo 'Mounting the systemd cgroup hierarchy.' 17 | nsenter --mount=/host/proc/1/ns/mnt -- mount -t cgroup cgroup -o none,name=systemd /sys/fs/cgroup/systemd 18 | fi 19 | echo 'Your Docker host is now configured for running systemd containers!' 20 | -------------------------------------------------------------------------------- /packagingtest/jammy/Dockerfile: -------------------------------------------------------------------------------- 1 | FROM buildpack-deps:jammy 2 | 3 | ENV container docker 4 | ENV TERM xterm 5 | 6 | # Make noninteractive setting permanent 7 | ENV DEBIAN_FRONTEND noninteractive 8 | RUN echo 'debconf debconf/frontend select Noninteractive' | debconf-set-selections -v 9 | 10 | RUN apt-get -y update 11 | 12 | # Enable remote pubkey access 13 | RUN mkdir /root/.ssh && chmod 700 /root/.ssh && \ 14 | echo "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCdCmmPjsOBWRXc+PKdgDRrsciNjp25zTacyz8Gdkln2ma046brOYXAphhp/85DKgHtANBBt3cl4+HnpDbmAfyq2qZT7hWzAbMxtq0Sj+yyFyUdreXoe4gEKyxpV6o8p/R/XzEcawvqX/vFc5EIFmvTdamxZs9DQmOE5AZMzUB18Kerkrb0/arUcZ8iMi9Ng9a18avow+7oUFZ6Oub7ISz/dkIRojaKO/2paJZ4p+v7ZLn7Hq8TUeBkgAlx872oh8J8linhIq17zK6x4MGL8qiurp2hnfe0cuCxwcsYGy+4DfK51+E2vks6FprCIfF5hIdz26euPn67/YpM0F0b5nXF busybee@drone" >> /root/.ssh/authorized_keys 15 | 16 | # Create busybee credentials and make busybee pkey available for root 17 | COPY busybee* /root/.ssh/ 18 | RUN chmod 600 /root/.ssh/busybee 19 | 20 | RUN apt-get install -y openssh-server sudo && \ 21 | mkdir /var/run/sshd 22 | 23 | # install locales package and set default locale to 'UTF-8' for the test execution environment 24 | RUN apt-get -y install locales && \ 25 | locale-gen en_US.UTF-8 && \ 26 | dpkg-reconfigure locales && \ 27 | update-locale LANG=en_US.UTF-8 28 | ENV LANG en_US.UTF-8 29 | 30 | # 1. permit root logins and set simple password password and pubkey 31 | # 2. change requiretty to !requiretty in /etc/sudoers 32 | RUN sed -ri 's/^#?PermitRootLogin\s+.*/PermitRootLogin yes/' /etc/ssh/sshd_config && \ 33 | sed -ri 's/^#?PubkeyAuthentication\s+.*/PubkeyAuthentication yes/' /etc/ssh/sshd_config && \ 34 | sed -ri 's/requiretty/!requiretty/' /etc/sudoers && \ 35 | echo 'root:docker.io' | chpasswd 36 | 37 | # Enable (deprecated) RSA 38 | RUN echo 'HostKeyAlgorithms +ssh-rsa' | tee -a /etc/ssh/sshd_config && \ 39 | echo 'PubkeyAcceptedKeyTypes +ssh-rsa' | tee -a /etc/ssh/sshd_config 40 | 41 | # install core software for packaging and ssh communication 42 | RUN echo -e "#!/bin/sh\nexit 101\n" > /usr/sbin/policy-rc.d && \ 43 | apt-get -y install gdebi-core sshpass cron netcat net-tools iproute2 44 | 45 | # install apt https transport so apt sources can be added that refernece https:// URLs 46 | RUN apt-get -y install apt-transport-https ca-certificates 47 | 48 | # install netbase package (includes /etc/protocols and other files we rely on) 49 | RUN apt-get -y install netbase 50 | 51 | RUN find /etc/systemd/system \ 52 | /lib/systemd/system \ 53 | -path '*.wants/*' \ 54 | -not -name '*journald*' \ 55 | -not -name '*systemd-tmpfiles*' \ 56 | -not -name '*systemd-user-sessions*' \ 57 | -exec rm \{} \; 58 | 59 | RUN systemctl set-default multi-user.target 60 | 61 | # The base Ubuntu 18.04 image contains a file that excludes all documentation 62 | # from being installed by packages. Specifically /usr/share/doc/* 63 | # This exclusion prevents our nginx config from being installed in the 'st2' package: 64 | # /usr/share/doc/st2/conf/nginx/st2.conf 65 | # This step removes the exclusion configuration so documentation of all future packages 66 | # will be installed. 67 | RUN rm -rf /etc/dpkg/dpkg.cfg.d/excludes 68 | 69 | COPY setup.sh /sbin/ 70 | 71 | RUN systemctl preset ssh; 72 | 73 | # we can have ssh 74 | EXPOSE 22 75 | 76 | VOLUME [ "/sys/fs/cgroup" ] 77 | CMD [ "/sbin/init" ] 78 | -------------------------------------------------------------------------------- /packagingtest/jammy/busybee: -------------------------------------------------------------------------------- 1 | -----BEGIN RSA PRIVATE KEY----- 2 | MIIEowIBAAKCAQEAnQppj47DgVkV3PjynYA0a7HIjY6duc02nMs/BnZJZ9pmtOOm 3 | 6zmFwKYYaf/OQyoB7QDQQbd3JePh56Q25gH8qtqmU+4VswGzMbatEo/sshclHa3l 4 | 6HuIBCssaVeqPKf0f18xHGsL6l/7xXORCBZr03WpsWbPQ0JjhOQGTM1AdfCnq5K2 5 | 9P2q1HGfIjIvTYPWtfGr6MPu6FBWejrm+yEs/3ZCEaI2ijv9qWiWeKfr+2S5+x6v 6 | E1HgZIAJcfO9qIfCfJYp4SKte8yuseDBi/Korq6doZ33tHLgscHLGBsvuA3yudfh 7 | Nr5LOhaawiHxeYSHc9unrj5+u/2KTNBdG+Z1xQIDAQABAoIBAAHd3NFbBhHkiDD/ 8 | OIsMuhLJozOjjVZnDQ4iEFa4UzkLzIq75gEHxwI6NzITW1VLC4jQqKkPUDhAFDBX 9 | sFtdjK5POQjoXJOrIoElxbrhwROA2O0YYxI3Xa+G/9kktJ5R9MMK05+d2h9oEqsP 10 | K5soARIbZO/5497NzDcJKtYA3pJITEE4eTGTnrMfgZhDew6ENghnj8FgpedA5+JU 11 | ygBohAAoSnmGXTTTsT14M43SFAdneEef7mEVlrz8LcexEWS9v5C7CelbuAg7fijh 12 | wtsA5c3QaFNZT2q4PY4oObg6/BVtTDbgY+qtIHyvLBoCAbj/qtN9jySVm2gvZdJA 13 | qXmfkyUCgYEAzevYy3cNdUmCvhaBwkVr5+Ha1XPiTReJhsw7p0B/4ixR1MuFH4UX 14 | AetN0zDf57wMhs/IR0zqfWXKpcCplAPIRe2TQaG/P4mBYf2DX0ndDCqFkzmqABW5 15 | 4NJz+YPFdi67zFk7F14I+VEfWGLvQOg3TY756o997l5+j/DBQBISyhMCgYEAwzth 16 | Dfs0zR+7tMG5MY0ZZUKkGDOuRik9ZnD63g/nJ8TqYYD9oU8eY4kM8+jt26r4WEXj 17 | DmIu69f1OFs9UXhWObCpT05MTB0r84YN8Um5VKRL1ENEOqZkx+AIhNwSlOxw1H39 18 | ePuHQjKwrMmjKyS6Dx7sC/F74kLxAlyOtcGDO8cCgYAXyqwdtf+kEX49oDQV0heJ 19 | jxrNlroK1jFZlbc+t8EOzLgXsfwLjEEAQ8OWJwt3ps57tP4a3tQo8N3dEMmHBHjb 20 | O3vMFXgXSzfbroLDO7GCelc8j2kI4Xm8dBRaO9NQuE2SaqzdIkw/IhRRDf0+rpXV 21 | LDPL2hBeviQ5VUO+t1fcaQKBgQDAAjtO69wfTXFnsgt4f2QVofgPUWy51j9r6/ve 22 | wFdAVruJD7rilhS2IgkaLeEZZUoATyOjds7c5zVmqt1grfBnpqatt7z0MtCSHirC 23 | PxbF9xwY89s7r4B4z46xVFv2GaBSbGMJRJ/fbEk0ds9CVEmlK21Nxb9oZRvxjaRR 24 | f7OY6wKBgBTRJqmLyv1oeyrqG9lI7nNmx86O0MHmPg2gEUvTePsvsHpXRJYEWHEX 25 | pYIreL+HWpC8Z7dax6dRmplhJijvsC9czTXlZMDJddGkFZ7ubS7wP6fC9kuMzt2Y 26 | IJNywmAdKiPJTaCUdizW8sjv6QJviaSPnILG8p6tVJWrqVDsW0A2 27 | -----END RSA PRIVATE KEY----- 28 | -------------------------------------------------------------------------------- /packagingtest/jammy/busybee.pub: -------------------------------------------------------------------------------- 1 | ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCdCmmPjsOBWRXc+PKdgDRrsciNjp25zTacyz8Gdkln2ma046brOYXAphhp/85DKgHtANBBt3cl4+HnpDbmAfyq2qZT7hWzAbMxtq0Sj+yyFyUdreXoe4gEKyxpV6o8p/R/XzEcawvqX/vFc5EIFmvTdamxZs9DQmOE5AZMzUB18Kerkrb0/arUcZ8iMi9Ng9a18avow+7oUFZ6Oub7ISz/dkIRojaKO/2paJZ4p+v7ZLn7Hq8TUeBkgAlx872oh8J8linhIq17zK6x4MGL8qiurp2hnfe0cuCxwcsYGy+4DfK51+E2vks6FprCIfF5hIdz26euPn67/YpM0F0b5nXF busybee@drone 2 | -------------------------------------------------------------------------------- /packagingtest/jammy/setup.sh: -------------------------------------------------------------------------------- 1 | #!/bin/sh 2 | set -eu 3 | 4 | touch /1 5 | 6 | if nsenter --mount=/host/proc/1/ns/mnt -- mount | grep /sys/fs/cgroup/systemd >/dev/null 2>&1; then 7 | echo 'The systemd cgroup hierarchy is already mounted at /sys/fs/cgroup/systemd.' 8 | else 9 | if [ -d /host/sys/fs/cgroup/systemd ]; then 10 | echo 'The mount point for the systemd cgroup hierarchy already exists at /sys/fs/cgroup/systemd.' 11 | else 12 | echo 'Creating the mount point for the systemd cgroup hierarchy at /sys/fs/cgroup/systemd.' 13 | mkdir -p /host/sys/fs/cgroup/systemd 14 | fi 15 | 16 | echo 'Mounting the systemd cgroup hierarchy.' 17 | nsenter --mount=/host/proc/1/ns/mnt -- mount -t cgroup cgroup -o none,name=systemd /sys/fs/cgroup/systemd 18 | fi 19 | echo 'Your Docker host is now configured for running systemd containers!' 20 | -------------------------------------------------------------------------------- /packagingtest/rockylinux8/Dockerfile: -------------------------------------------------------------------------------- 1 | FROM rockylinux:8 2 | 3 | # Download tools 4 | RUN yum -y install \ 5 | ca-certificates \ 6 | curl \ 7 | wget 8 | 9 | RUN yum -y install \ 10 | git \ 11 | iproute \ 12 | mercurial \ 13 | openssh \ 14 | procps \ 15 | subversion \ 16 | setup 17 | 18 | RUN yum install -y yum-utils \ 19 | && dnf config-manager --enable powertools \ 20 | && yum install -y epel-release \ 21 | && yum -y install \ 22 | ImageMagick \ 23 | ImageMagick-devel \ 24 | libyaml-devel \ 25 | libffi-devel \ 26 | glibc-langpack-en \ 27 | && dnf config-manager --disable powertools \ 28 | && yum remove -y epel-release yum-utils 29 | 30 | # Build tools 31 | RUN yum -y install \ 32 | autoconf \ 33 | automake \ 34 | bzip2 \ 35 | bzip2-devel \ 36 | file \ 37 | gcc \ 38 | gcc-c++ \ 39 | glib2-devel \ 40 | glibc-devel \ 41 | libcurl-devel \ 42 | libevent-devel \ 43 | libjpeg-devel \ 44 | libtool \ 45 | libwebp-devel \ 46 | libxml2-devel \ 47 | libxslt-devel \ 48 | make \ 49 | mysql-devel \ 50 | ncurses-devel \ 51 | openssl-devel \ 52 | patch \ 53 | postgresql-devel \ 54 | readline-devel \ 55 | sqlite-devel \ 56 | xz \ 57 | xz-devel \ 58 | zlib-devel \ 59 | python38 \ 60 | python38-devel \ 61 | openssl-devel \ 62 | pam \ 63 | openssh-server \ 64 | openssh-clients \ 65 | setup \ 66 | zip \ 67 | unzip 68 | 69 | 70 | 71 | # St2 package build debs 72 | RUN yum -y install \ 73 | openldap-devel 74 | 75 | # Enable remote pubkey access 76 | RUN mkdir /root/.ssh && chmod 700 /root/.ssh && \ 77 | echo "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCdCmmPjsOBWRXc+PKdgDRrsciNjp25zTacyz8Gdkln2ma046brOYXAphhp/85DKgHtANBBt3cl4+HnpDbmAfyq2qZT7hWzAbMxtq0Sj+yyFyUdreXoe4gEKyxpV6o8p/R/XzEcawvqX/vFc5EIFmvTdamxZs9DQmOE5AZMzUB18Kerkrb0/arUcZ8iMi9Ng9a18avow+7oUFZ6Oub7ISz/dkIRojaKO/2paJZ4p+v7ZLn7Hq8TUeBkgAlx872oh8J8linhIq17zK6x4MGL8qiurp2hnfe0cuCxwcsYGy+4DfK51+E2vks6FprCIfF5hIdz26euPn67/YpM0F0b5nXF busybee@drone" >> /root/.ssh/authorized_keys 78 | 79 | # Create busybee credentials and make busybee pkey available for root 80 | COPY busybee* /root/.ssh/ 81 | RUN chmod 600 /root/.ssh/busybee 82 | 83 | RUN yum -y install openssh-server sudo && \ 84 | ssh-keygen -t rsa -N '' -f /etc/ssh/ssh_host_rsa_key 85 | 86 | # 1. small fix for SSH in ubuntu 13.10 (that's harmless everywhere else) 87 | # 2. permit root logins and set simple password password and pubkey 88 | # 3. change requiretty to !requiretty in /etc/sudoers 89 | RUN sed -ri 's/^session\s+required\s+pam_loginuid.so$/session optional pam_loginuid.so/' /etc/pam.d/sshd && \ 90 | sed -ri 's/^#?PermitRootLogin\s+.*/PermitRootLogin yes/' /etc/ssh/sshd_config && \ 91 | sed -ri 's/^#?PubkeyAuthentication\s+.*/PubkeyAuthentication yes/' /etc/ssh/sshd_config && \ 92 | sed -ri 's/requiretty/!requiretty/' /etc/sudoers && \ 93 | echo 'root:docker.io' | chpasswd 94 | 95 | RUN yum -y install nc net-tools glibc-locale-source && \ 96 | # -i: specify the locale definition file 97 | # -f: specify the character set 98 | localedef -i en_US -f UTF-8 en_US.UTF-8 99 | 100 | ENV LANG=en_US.UTF-8 101 | ENV LANGUAGE en_US:en 102 | ENV LC_ALL en_US.UTF-8 103 | 104 | ENV container docker 105 | 106 | RUN yum -y update; \ 107 | yum -y install systemd; yum clean all 108 | 109 | RUN cd /lib/systemd/system/sysinit.target.wants/; ls -1 | grep -v systemd-tmpfiles-setup.service | xargs rm; \ 110 | rm -f /etc/systemd/system/*.wants/*;\ 111 | rm -f /lib/systemd/system/local-fs.target.wants/*; \ 112 | rm -f /lib/systemd/system/sockets.target.wants/*udev*; \ 113 | rm -f /lib/systemd/system/sockets.target.wants/*initctl*; \ 114 | rm -f /lib/systemd/system/basic.target.wants/*;\ 115 | rm -f /lib/systemd/system/anaconda.target.wants/*;\ 116 | systemctl preset sshd; 117 | 118 | # install doc files (/usr/share/docs) when installing yum packages 119 | # otherwise /usr/share/docs/st2/conf/nginx/st2.conf won't be present 120 | # https://github.com/docker-library/docs/tree/master/centos#package-documentation 121 | RUN sed -i '/nodocs/d' /etc/yum.conf 122 | 123 | # we can have ssh 124 | EXPOSE 22 125 | 126 | VOLUME [ "/sys/fs/cgroup" ] 127 | CMD [ "/usr/sbin/init" ] 128 | -------------------------------------------------------------------------------- /packagingtest/rockylinux8/busybee: -------------------------------------------------------------------------------- 1 | -----BEGIN RSA PRIVATE KEY----- 2 | MIIEowIBAAKCAQEAnQppj47DgVkV3PjynYA0a7HIjY6duc02nMs/BnZJZ9pmtOOm 3 | 6zmFwKYYaf/OQyoB7QDQQbd3JePh56Q25gH8qtqmU+4VswGzMbatEo/sshclHa3l 4 | 6HuIBCssaVeqPKf0f18xHGsL6l/7xXORCBZr03WpsWbPQ0JjhOQGTM1AdfCnq5K2 5 | 9P2q1HGfIjIvTYPWtfGr6MPu6FBWejrm+yEs/3ZCEaI2ijv9qWiWeKfr+2S5+x6v 6 | E1HgZIAJcfO9qIfCfJYp4SKte8yuseDBi/Korq6doZ33tHLgscHLGBsvuA3yudfh 7 | Nr5LOhaawiHxeYSHc9unrj5+u/2KTNBdG+Z1xQIDAQABAoIBAAHd3NFbBhHkiDD/ 8 | OIsMuhLJozOjjVZnDQ4iEFa4UzkLzIq75gEHxwI6NzITW1VLC4jQqKkPUDhAFDBX 9 | sFtdjK5POQjoXJOrIoElxbrhwROA2O0YYxI3Xa+G/9kktJ5R9MMK05+d2h9oEqsP 10 | K5soARIbZO/5497NzDcJKtYA3pJITEE4eTGTnrMfgZhDew6ENghnj8FgpedA5+JU 11 | ygBohAAoSnmGXTTTsT14M43SFAdneEef7mEVlrz8LcexEWS9v5C7CelbuAg7fijh 12 | wtsA5c3QaFNZT2q4PY4oObg6/BVtTDbgY+qtIHyvLBoCAbj/qtN9jySVm2gvZdJA 13 | qXmfkyUCgYEAzevYy3cNdUmCvhaBwkVr5+Ha1XPiTReJhsw7p0B/4ixR1MuFH4UX 14 | AetN0zDf57wMhs/IR0zqfWXKpcCplAPIRe2TQaG/P4mBYf2DX0ndDCqFkzmqABW5 15 | 4NJz+YPFdi67zFk7F14I+VEfWGLvQOg3TY756o997l5+j/DBQBISyhMCgYEAwzth 16 | Dfs0zR+7tMG5MY0ZZUKkGDOuRik9ZnD63g/nJ8TqYYD9oU8eY4kM8+jt26r4WEXj 17 | DmIu69f1OFs9UXhWObCpT05MTB0r84YN8Um5VKRL1ENEOqZkx+AIhNwSlOxw1H39 18 | ePuHQjKwrMmjKyS6Dx7sC/F74kLxAlyOtcGDO8cCgYAXyqwdtf+kEX49oDQV0heJ 19 | jxrNlroK1jFZlbc+t8EOzLgXsfwLjEEAQ8OWJwt3ps57tP4a3tQo8N3dEMmHBHjb 20 | O3vMFXgXSzfbroLDO7GCelc8j2kI4Xm8dBRaO9NQuE2SaqzdIkw/IhRRDf0+rpXV 21 | LDPL2hBeviQ5VUO+t1fcaQKBgQDAAjtO69wfTXFnsgt4f2QVofgPUWy51j9r6/ve 22 | wFdAVruJD7rilhS2IgkaLeEZZUoATyOjds7c5zVmqt1grfBnpqatt7z0MtCSHirC 23 | PxbF9xwY89s7r4B4z46xVFv2GaBSbGMJRJ/fbEk0ds9CVEmlK21Nxb9oZRvxjaRR 24 | f7OY6wKBgBTRJqmLyv1oeyrqG9lI7nNmx86O0MHmPg2gEUvTePsvsHpXRJYEWHEX 25 | pYIreL+HWpC8Z7dax6dRmplhJijvsC9czTXlZMDJddGkFZ7ubS7wP6fC9kuMzt2Y 26 | IJNywmAdKiPJTaCUdizW8sjv6QJviaSPnILG8p6tVJWrqVDsW0A2 27 | -----END RSA PRIVATE KEY----- 28 | -------------------------------------------------------------------------------- /packagingtest/rockylinux8/busybee.pub: -------------------------------------------------------------------------------- 1 | ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCdCmmPjsOBWRXc+PKdgDRrsciNjp25zTacyz8Gdkln2ma046brOYXAphhp/85DKgHtANBBt3cl4+HnpDbmAfyq2qZT7hWzAbMxtq0Sj+yyFyUdreXoe4gEKyxpV6o8p/R/XzEcawvqX/vFc5EIFmvTdamxZs9DQmOE5AZMzUB18Kerkrb0/arUcZ8iMi9Ng9a18avow+7oUFZ6Oub7ISz/dkIRojaKO/2paJZ4p+v7ZLn7Hq8TUeBkgAlx872oh8J8linhIq17zK6x4MGL8qiurp2hnfe0cuCxwcsYGy+4DfK51+E2vks6FprCIfF5hIdz26euPn67/YpM0F0b5nXF busybee@drone 2 | -------------------------------------------------------------------------------- /packagingtest/rockylinux9/Dockerfile: -------------------------------------------------------------------------------- 1 | FROM rockylinux:9 2 | 3 | # Download tools 4 | RUN yum -y install \ 5 | ca-certificates \ 6 | wget 7 | 8 | RUN yum -y install \ 9 | git \ 10 | iproute \ 11 | openssh \ 12 | procps \ 13 | subversion \ 14 | setup 15 | 16 | RUN yum install -y yum-utils \ 17 | && dnf install -y dnf-plugin-config-manager \ 18 | && dnf config-manager --enable crb \ 19 | && yum install -y epel-release \ 20 | && yum -y install \ 21 | mercurial \ 22 | ImageMagick \ 23 | ImageMagick-devel \ 24 | libyaml-devel \ 25 | libffi-devel \ 26 | glibc-langpack-en \ 27 | && yum remove -y epel-release yum-utils 28 | 29 | # Build tools 30 | RUN yum -y install \ 31 | autoconf \ 32 | automake \ 33 | bzip2 \ 34 | bzip2-devel \ 35 | file \ 36 | gcc \ 37 | gcc-c++ \ 38 | glib2-devel \ 39 | glibc-devel \ 40 | libcurl-devel \ 41 | libevent-devel \ 42 | libjpeg-devel \ 43 | libtool \ 44 | libwebp-devel \ 45 | libxml2-devel \ 46 | libxslt-devel \ 47 | make \ 48 | mysql-devel \ 49 | ncurses-devel \ 50 | openssl-devel \ 51 | patch \ 52 | postgresql-devel \ 53 | readline-devel \ 54 | sqlite-devel \ 55 | xz \ 56 | xz-devel \ 57 | zlib-devel \ 58 | python39 \ 59 | python3-devel \ 60 | openssl-devel \ 61 | pam \ 62 | openssh-server \ 63 | openssh-clients \ 64 | setup \ 65 | zip \ 66 | unzip 67 | 68 | 69 | 70 | # St2 package build debs 71 | RUN yum -y install \ 72 | openldap-devel 73 | 74 | # Enable remote pubkey access 75 | RUN mkdir -p /root/.ssh && chmod 700 /root/.ssh && \ 76 | echo "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCdCmmPjsOBWRXc+PKdgDRrsciNjp25zTacyz8Gdkln2ma046brOYXAphhp/85DKgHtANBBt3cl4+HnpDbmAfyq2qZT7hWzAbMxtq0Sj+yyFyUdreXoe4gEKyxpV6o8p/R/XzEcawvqX/vFc5EIFmvTdamxZs9DQmOE5AZMzUB18Kerkrb0/arUcZ8iMi9Ng9a18avow+7oUFZ6Oub7ISz/dkIRojaKO/2paJZ4p+v7ZLn7Hq8TUeBkgAlx872oh8J8linhIq17zK6x4MGL8qiurp2hnfe0cuCxwcsYGy+4DfK51+E2vks6FprCIfF5hIdz26euPn67/YpM0F0b5nXF busybee@drone" >> /root/.ssh/authorized_keys 77 | 78 | # Create busybee credentials and make busybee pkey available for root 79 | COPY busybee* /root/.ssh/ 80 | RUN chmod 600 /root/.ssh/busybee 81 | 82 | RUN yum -y install openssh-server sudo && \ 83 | ssh-keygen -t rsa -N '' -f /etc/ssh/ssh_host_rsa_key 84 | 85 | # 1. small fix for SSH in ubuntu 13.10 (that's harmless everywhere else) 86 | # 2. permit root logins and set simple password password and pubkey 87 | # 3. change requiretty to !requiretty in /etc/sudoers 88 | RUN sed -ri 's/^session\s+required\s+pam_loginuid.so$/session optional pam_loginuid.so/' /etc/pam.d/sshd && \ 89 | sed -ri 's/^#?PermitRootLogin\s+.*/PermitRootLogin yes/' /etc/ssh/sshd_config && \ 90 | sed -ri 's/^#?PubkeyAuthentication\s+.*/PubkeyAuthentication yes/' /etc/ssh/sshd_config && \ 91 | sed -ri 's/requiretty/!requiretty/' /etc/sudoers && \ 92 | echo 'root:docker.io' | chpasswd 93 | 94 | RUN yum -y install nc net-tools glibc-locale-source && \ 95 | # -i: specify the locale definition file 96 | # -f: specify the character set 97 | localedef -i en_US -f UTF-8 en_US.UTF-8 98 | 99 | #EL9 enable RSA 100 | RUN update-crypto-policies --set DEFAULT:SHA1 101 | 102 | ENV LANG=en_US.UTF-8 103 | ENV LANGUAGE en_US:en 104 | ENV LC_ALL en_US.UTF-8 105 | 106 | ENV container docker 107 | 108 | RUN yum -y update; \ 109 | yum -y install systemd; yum clean all 110 | 111 | RUN cd /lib/systemd/system/sysinit.target.wants/; ls -1 | grep -v systemd-tmpfiles-setup.service | xargs rm; \ 112 | rm -f /etc/systemd/system/*.wants/*;\ 113 | rm -f /lib/systemd/system/local-fs.target.wants/*; \ 114 | rm -f /lib/systemd/system/sockets.target.wants/*udev*; \ 115 | rm -f /lib/systemd/system/sockets.target.wants/*initctl*; \ 116 | rm -f /lib/systemd/system/basic.target.wants/*;\ 117 | rm -f /lib/systemd/system/anaconda.target.wants/*;\ 118 | systemctl preset sshd; 119 | 120 | # install doc files (/usr/share/docs) when installing yum packages 121 | # otherwise /usr/share/docs/st2/conf/nginx/st2.conf won't be present 122 | # https://github.com/docker-library/docs/tree/master/centos#package-documentation 123 | RUN sed -i '/nodocs/d' /etc/yum.conf 124 | 125 | # we can have ssh 126 | EXPOSE 22 127 | 128 | VOLUME [ "/sys/fs/cgroup" ] 129 | CMD [ "/usr/sbin/init" ] 130 | -------------------------------------------------------------------------------- /packagingtest/rockylinux9/busybee: -------------------------------------------------------------------------------- 1 | -----BEGIN RSA PRIVATE KEY----- 2 | MIIEowIBAAKCAQEAnQppj47DgVkV3PjynYA0a7HIjY6duc02nMs/BnZJZ9pmtOOm 3 | 6zmFwKYYaf/OQyoB7QDQQbd3JePh56Q25gH8qtqmU+4VswGzMbatEo/sshclHa3l 4 | 6HuIBCssaVeqPKf0f18xHGsL6l/7xXORCBZr03WpsWbPQ0JjhOQGTM1AdfCnq5K2 5 | 9P2q1HGfIjIvTYPWtfGr6MPu6FBWejrm+yEs/3ZCEaI2ijv9qWiWeKfr+2S5+x6v 6 | E1HgZIAJcfO9qIfCfJYp4SKte8yuseDBi/Korq6doZ33tHLgscHLGBsvuA3yudfh 7 | Nr5LOhaawiHxeYSHc9unrj5+u/2KTNBdG+Z1xQIDAQABAoIBAAHd3NFbBhHkiDD/ 8 | OIsMuhLJozOjjVZnDQ4iEFa4UzkLzIq75gEHxwI6NzITW1VLC4jQqKkPUDhAFDBX 9 | sFtdjK5POQjoXJOrIoElxbrhwROA2O0YYxI3Xa+G/9kktJ5R9MMK05+d2h9oEqsP 10 | K5soARIbZO/5497NzDcJKtYA3pJITEE4eTGTnrMfgZhDew6ENghnj8FgpedA5+JU 11 | ygBohAAoSnmGXTTTsT14M43SFAdneEef7mEVlrz8LcexEWS9v5C7CelbuAg7fijh 12 | wtsA5c3QaFNZT2q4PY4oObg6/BVtTDbgY+qtIHyvLBoCAbj/qtN9jySVm2gvZdJA 13 | qXmfkyUCgYEAzevYy3cNdUmCvhaBwkVr5+Ha1XPiTReJhsw7p0B/4ixR1MuFH4UX 14 | AetN0zDf57wMhs/IR0zqfWXKpcCplAPIRe2TQaG/P4mBYf2DX0ndDCqFkzmqABW5 15 | 4NJz+YPFdi67zFk7F14I+VEfWGLvQOg3TY756o997l5+j/DBQBISyhMCgYEAwzth 16 | Dfs0zR+7tMG5MY0ZZUKkGDOuRik9ZnD63g/nJ8TqYYD9oU8eY4kM8+jt26r4WEXj 17 | DmIu69f1OFs9UXhWObCpT05MTB0r84YN8Um5VKRL1ENEOqZkx+AIhNwSlOxw1H39 18 | ePuHQjKwrMmjKyS6Dx7sC/F74kLxAlyOtcGDO8cCgYAXyqwdtf+kEX49oDQV0heJ 19 | jxrNlroK1jFZlbc+t8EOzLgXsfwLjEEAQ8OWJwt3ps57tP4a3tQo8N3dEMmHBHjb 20 | O3vMFXgXSzfbroLDO7GCelc8j2kI4Xm8dBRaO9NQuE2SaqzdIkw/IhRRDf0+rpXV 21 | LDPL2hBeviQ5VUO+t1fcaQKBgQDAAjtO69wfTXFnsgt4f2QVofgPUWy51j9r6/ve 22 | wFdAVruJD7rilhS2IgkaLeEZZUoATyOjds7c5zVmqt1grfBnpqatt7z0MtCSHirC 23 | PxbF9xwY89s7r4B4z46xVFv2GaBSbGMJRJ/fbEk0ds9CVEmlK21Nxb9oZRvxjaRR 24 | f7OY6wKBgBTRJqmLyv1oeyrqG9lI7nNmx86O0MHmPg2gEUvTePsvsHpXRJYEWHEX 25 | pYIreL+HWpC8Z7dax6dRmplhJijvsC9czTXlZMDJddGkFZ7ubS7wP6fC9kuMzt2Y 26 | IJNywmAdKiPJTaCUdizW8sjv6QJviaSPnILG8p6tVJWrqVDsW0A2 27 | -----END RSA PRIVATE KEY----- 28 | -------------------------------------------------------------------------------- /packagingtest/rockylinux9/busybee.pub: -------------------------------------------------------------------------------- 1 | ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCdCmmPjsOBWRXc+PKdgDRrsciNjp25zTacyz8Gdkln2ma046brOYXAphhp/85DKgHtANBBt3cl4+HnpDbmAfyq2qZT7hWzAbMxtq0Sj+yyFyUdreXoe4gEKyxpV6o8p/R/XzEcawvqX/vFc5EIFmvTdamxZs9DQmOE5AZMzUB18Kerkrb0/arUcZ8iMi9Ng9a18avow+7oUFZ6Oub7ISz/dkIRojaKO/2paJZ4p+v7ZLn7Hq8TUeBkgAlx872oh8J8linhIq17zK6x4MGL8qiurp2hnfe0cuCxwcsYGy+4DfK51+E2vks6FprCIfF5hIdz26euPn67/YpM0F0b5nXF busybee@drone 2 | --------------------------------------------------------------------------------