sig_core/content-resolver-configs
8
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

init

Browse source
This commit is contained in:
Louis Abel 2024-11-26 13:21:08 -07:00
commit b47679d5ad
Signed by: label
GPG key ID: 3331F061D1D9990E
28 changed files with 664 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
README.md Normal file
View file

@ -0,0 +1,3 @@
Content resolver configurations for tiny distro builders.
This is mainly as a POC to show that it works *and* to potentially provide a way to hook in SIG data.

73
configs/base-r10s.yaml Normal file
View file

@ -0,0 +1,73 @@
---
# This configuration file defines an "Environment" in Feedback Pipeline.
# https://tiny.distro.builders
#
# Environments influence how a workload looks like when installed.
# That's achieved by including specific packages — like coreutils-single — that
# influence the result.
# Environments can also act as base images when monitoring container sizes.
document: feedback-pipeline-environment
version: 1
data:
# id is the filename — that automatically prevents collisions for free!
### MANDATORY FIELDS ###
# Name is an identifier for humans
#
# (mandatory field)
name: Rocky Linux 10 LookAhead Environment
# A short description, perhaps hinting the purpose
#
# (mandatory field)
description: Rocky Linux 10 LookAhead Environment
# Who maintains it? This is just a freeform string
# for humans to read. In Fedora, a FAS nick is recommended.
#
# (mandatory field)
maintainer: label
# Different instances of the environment, one per repository.
#
# (mandatory field)
repositories:
- repository-r10s
# Packages defining this environment.
# This list includes packages for all
# architectures — that's the one to use by default.
#
# (mandatory field)
packages:
- rocky-release
# Labels connect things together.
# Workloads get installed in environments with the same label.
# They also get included in views with the same label.
#
# (mandatory field)
labels:
- r10s
### OPTIONAL FIELDS ###
# Architecture-specific packages.
#
# (optional field)
#arch_packages:
# x86_64:
# - arch-specific-package
# Extra installation options.
# The following are now supported:
# - "include-docs" - include documentation packages
# - "include-weak-deps" - automatically pull in "recommends" weak dependencies
#
# (optional field)
#options:
#- option
...

73
configs/base-r9.yaml Normal file
View file

@ -0,0 +1,73 @@
---
# This configuration file defines an "Environment" in Feedback Pipeline.
# https://tiny.distro.builders
#
# Environments influence how a workload looks like when installed.
# That's achieved by including specific packages — like coreutils-single — that
# influence the result.
# Environments can also act as base images when monitoring container sizes.
document: feedback-pipeline-environment
version: 1
data:
# id is the filename — that automatically prevents collisions for free!
### MANDATORY FIELDS ###
# Name is an identifier for humans
#
# (mandatory field)
name: Rocky Linux 9 Environment
# A short description, perhaps hinting the purpose
#
# (mandatory field)
description: Rocky Linux 9 Environment
# Who maintains it? This is just a freeform string
# for humans to read. In Fedora, a FAS nick is recommended.
#
# (mandatory field)
maintainer: label
# Different instances of the environment, one per repository.
#
# (mandatory field)
repositories:
- repository-r9
# Packages defining this environment.
# This list includes packages for all
# architectures — that's the one to use by default.
#
# (mandatory field)
packages:
- rocky-release
# Labels connect things together.
# Workloads get installed in environments with the same label.
# They also get included in views with the same label.
#
# (mandatory field)
labels:
- r9
### OPTIONAL FIELDS ###
# Architecture-specific packages.
#
# (optional field)
#arch_packages:
# x86_64:
# - arch-specific-package
# Extra installation options.
# The following are now supported:
# - "include-docs" - include documentation packages
# - "include-weak-deps" - automatically pull in "recommends" weak dependencies
#
# (optional field)
#options:
#- option
...

56
configs/repository-r10s.yaml Normal file
View file

@ -0,0 +1,56 @@
---
document: feedback-pipeline-repository
version: 2
data:
name: Rocky Linux 10 LookAhead
description: Rocky Linux 10 LookAhead
maintainer: label
source:
repos:
BaseOS:
baseurl: https://yumrepofs.build.resf.org/v1/projects/e7b83c0a-b514-4903-b739-6943bbb307f7/repo/BaseOS/$basearch
priority: 1
AppStream:
baseurl: https://yumrepofs.build.resf.org/v1/projects/e7b83c0a-b514-4903-b739-6943bbb307f7/repo/AppStream/$basearch
priority: 1
CRB:
baseurl: https://yumrepofs.build.resf.org/v1/projects/e7b83c0a-b514-4903-b739-6943bbb307f7/repo/CRB/$basearch
priority: 1
HA:
baseurl: https://yumrepofs.build.resf.org/v1/projects/e7b83c0a-b514-4903-b739-6943bbb307f7/repo/HighAvailability/$basearch
priority: 2
NFV:
baseurl: https://yumrepofs.build.resf.org/v1/projects/e7b83c0a-b514-4903-b739-6943bbb307f7/repo/NFV/$basearch
limit_arches:
- x86_64
priority: 2
RT:
baseurl: https://yumrepofs.build.resf.org/v1/projects/e7b83c0a-b514-4903-b739-6943bbb307f7/repo/RT/$basearch
limit_arches:
- x86_64
priority: 2
SAP:
baseurl: https://yumrepofs.build.resf.org/v1/projects/e7b83c0a-b514-4903-b739-6943bbb307f7/repo/SAP/$basearch
limit_arches:
- ppc64le
- s390x
- x86_64
priority: 2
SAPHANA:
baseurl: https://yumrepofs.build.resf.org/v1/projects/e7b83c0a-b514-4903-b739-6943bbb307f7/repo/SAPHANA/$basearch
limit_arches:
- ppc64le
- x86_64
priority: 2
devel:
baseurl: https://yumrepofs.build.resf.org/v1/projects/e7b83c0a-b514-4903-b739-6943bbb307f7/repo/all/$basearch
priority: 3
releasever: "10"
architectures:
- aarch64
- ppc64le
- s390x
- x86_64
composeinfo: https://dl.rockylinux.org/stg/rocky/10/metadata/composeinfo.json
base_buildroot_override: ['bash', 'bzip2', 'coreutils', 'cpio', 'diffutils', 'findutils', 'gawk', 'glibc-minimal-langpack', 'grep', 'gzip', 'info', 'make', 'patch', 'redhat-rpm-config', 'rpm-build', 'sed', 'shadow-utils', 'tar', 'unzip', 'util-linux', 'which', 'xz']
...

63
configs/repository-r9.yaml Normal file
View file

@ -0,0 +1,63 @@
---
document: feedback-pipeline-repository
version: 2
data:
name: Rocky Linux 9
description: Rocky Linux 9
maintainer: label
source:
repos:
BaseOS:
baseurl: https://dl.rockylinux.org/stg/rocky/9/BaseOS/$basearch/os/
priority: 1
AppStream:
baseurl: https://dl.rockylinux.org/stg/rocky/9/AppStream/$basearch/os/
priority: 1
CRB:
baseurl: https://dl.rockylinux.org/stg/rocky/9/CRB/$basearch/os/
priority: 1
HA:
baseurl: https://dl.rockylinux.org/stg/rocky/9/HighAvailability/$basearch/os/
priority: 2
NFV:
baseurl: https://dl.rockylinux.org/stg/rocky/9/NFV/$basearch/os/
limit_arches:
- x86_64
priority: 2
RT:
baseurl: https://dl.rockylinux.org/stg/rocky/9/RT/$basearch/os/
limit_arches:
- x86_64
priority: 2
RS:
baseurl: https://dl.rockylinux.org/stg/rocky/9/ResilientStorage/$basearch/os/
limit_arches:
- ppc64le
- s390x
- x86_64
priority: 2
SAP:
baseurl: https://dl.rockylinux.org/stg/rocky/9/SAP/$basearch/os/
limit_arches:
- ppc64le
- s390x
- x86_64
priority: 2
SAPHANA:
baseurl: https://dl.rockylinux.org/stg/rocky/9/SAPHANA/$basearch/os/
limit_arches:
- ppc64le
- x86_64
priority: 2
devel:
baseurl: https://dl.rockylinux.org/stg/rocky/9/devel/$basearch/os/
priority: 3
releasever: "9"
architectures:
- aarch64
- ppc64le
- s390x
- x86_64
composeinfo: https://dl.rockylinux.org/stg/rocky/9/metadata/composeinfo.json
base_buildroot_override: ['bash', 'bzip2', 'coreutils', 'cpio', 'diffutils', 'findutils', 'gawk', 'glibc-minimal-langpack', 'grep', 'gzip', 'info', 'make', 'patch', 'redhat-rpm-config', 'rpm-build', 'sed', 'shadow-utils', 'tar', 'unzip', 'util-linux', 'which', 'xz']
...

12
configs/ssg_idm-ansible-freeipa.yaml Normal file
View file

@ -0,0 +1,12 @@
document: feedback-pipeline-workload
version: 1
data:
name: FreeIPA Ansible collection
description: Ansible roles and modules to install, uninstall and manage FreeIPA
maintainer: ssg_idm
packages:
- ansible-freeipa
- ipa-selinux # rich dependency that is otherwise unmet
labels:
- r9
- r10s

13
configs/ssg_idm-freeipa-client-samba.yaml Normal file
View file

@ -0,0 +1,13 @@
document: feedback-pipeline-workload
version: 1
data:
name: FreeIPA Client - Samba domain member
description: Samba domain member on FreeIPA client
maintainer: ssg_idm
packages:
- ipa-client
- ipa-client-samba
- ipa-selinux # rich dependency that is otherwise unmet
labels:
- r9
- r10s

12
configs/ssg_idm-freeipa-client.yaml Normal file
View file

@ -0,0 +1,12 @@
document: feedback-pipeline-workload
version: 1
data:
name: FreeIPA Client - minimal
description: FreeIPA client
maintainer: ssg_idm
packages:
- ipa-client
- ipa-selinux # rich dependency that is otherwise unmet
labels:
- r9
- r10s

14
configs/ssg_idm-freeipa-server-dc.yaml Normal file
View file

@ -0,0 +1,14 @@
document: feedback-pipeline-workload
version: 1
data:
name: FreeIPA Server - Domain Controller
description: FreeIPA Server - Domain Controller
maintainer: ssg_idm
packages:
- ipa-server
- ipa-server-trust-ad
- ipa-healthcheck
- ipa-selinux # rich dependency that is otherwise unmet
labels:
- r9
- r10s

15
configs/ssg_idm-freeipa-server-full.yaml Normal file
View file

@ -0,0 +1,15 @@
document: feedback-pipeline-workload
version: 1
data:
name: FreeIPA Server - Full
description: FreeIPA Server - all modules
maintainer: ssg_idm
packages:
- ipa-server
- ipa-server-trust-ad
- ipa-server-dns
- ipa-healthcheck
- ipa-selinux # rich dependency that is otherwise unmet
labels:
- r9
- r10s

16
configs/ssg_idm-freeipa-server.yaml Normal file
View file

@ -0,0 +1,16 @@
document: feedback-pipeline-workload
version: 1
data:
name: FreeIPA Server
description: FreeIPA Server and all modules
maintainer: label
packages:
- ipa-server
- ipa-server-trust-ad
- ipa-server-dns
- ipa-healthcheck
- ipa-selinux
labels:
- r9
- r10s
...

17
configs/ssg_idm-freeradius-server.yaml Normal file
View file

@ -0,0 +1,17 @@
document: feedback-pipeline-workload
version: 1
data:
name: FreeRADIUS Server
description: An open source implementation of RADIUS, the IETF protocol for AAA (Authorisation, Authentication, and Accounting).
maintainer: ssg_idm
packages:
- freeradius
- freeradius-devel
- freeradius-doc
- freeradius-ldap
- freeradius-krb5
- freeradius-utils
- python3-freeradius
labels:
- r9
- r10s

22
configs/ssg_idm-idm-client-tools.yaml Normal file
View file

@ -0,0 +1,22 @@
document: feedback-pipeline-workload
version: 1
data:
name: IdM Client Tools
description: General software for enrolling system with external Identity Management server
maintainer: ssg_idm
packages:
- ipa-healthcheck
- ipa-client-epn
- sssd-tools
- realmd
- adcli
- krb5-workstation
- openldap-clients
- tlog
- cockpit-session-recording
- gssproxy
- certmonger
- ipa-selinux # rich dependency that is otherwise unmet
labels:
- r9
- r10s

11
configs/ssg_idm-kerberos-server.yaml Normal file
View file

@ -0,0 +1,11 @@
document: feedback-pipeline-workload
version: 1
data:
name: Kerberos Server
description: Stand-alone Kerberos server
maintainer: ssg_idm
packages:
- krb5-server
labels:
- r9
- r10s

13
configs/ssg_idm-python-gssapi.yaml Normal file
View file

@ -0,0 +1,13 @@
document: feedback-pipeline-workload
version: 1
data:
name: Python GSSAPI
description: Tools for using GSSAPI in Python applications
maintainer: ssg_idm
packages:
- python3-gssapi
- python3-requests-gssapi
- python3-urllib-gssapi
labels:
- r9
- r10s

11
configs/ssg_idm-smart-cards-unwanted.yaml Normal file
View file

@ -0,0 +1,11 @@
document: feedback-pipeline-unwanted
version: 1
data:
name: IdM Smart Cards unwanted (RHCS specific)
description: Specific packages for client-side smart card enrollment on RHEL.
maintainer: ssg_idm
unwanted_packages:
- esc
labels:
- r9
- r10s

18
configs/ssg_idm-smb-client.yaml Normal file
View file

@ -0,0 +1,18 @@
---
document: feedback-pipeline-workload
version: 1
data:
name: Samba FS Client
description: SMB/CIFS clients to complement the built-in SMB/CIFS filesystem in Linux. These clients allow access of SMB/CIFS shares and printing to SMB/CIFS printers.
maintainer: ssg_idm
packages:
- samba-client
- cifs-utils
- samba-winbind
- samba-winbind-clients
- samba-winbind-krb5-locator
- samba-krb5-printing
- cepces
labels:
- r9
- r10s

18
configs/ssg_idm-smb-server.yaml Normal file
View file

@ -0,0 +1,18 @@
document: feedback-pipeline-workload
version: 1
data:
name: Samba FS Server
description: SMB/CIFS share server
maintainer: ssg_idm
packages:
- samba
- samba-client
- cifs-utils
- samba-winbind
- samba-winbind-clients
- samba-winbind-krb5-locator
- samba-krb5-printing
- ctdb
labels:
- r9
- r10s

39
configs/ssg_idm-unwanted.yaml Normal file
View file

@ -0,0 +1,39 @@
document: feedback-pipeline-unwanted
version: 1
data:
name: Unwanted Packages - ssg_idm
description: Packages that the Identity Management subsystem does not want to distribute
maintainer: ssg_idm
unwanted_packages:
# Removed in RHEL 10
- python3-netifaces
# Drop support from RHEL-9 (replaced by SSSD)
- nss-pam-ldapd
# Winbind is required in Samba in RHEL-8, SSSD integrates with it directly
- sssd-libwbclient
# Removed in RHEL-8.0, see https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.8_release_notes/deprecated_functionality#deprecated_packages
- sssd-secrets
- authconfig
- pam_pkcs11
- pam_krb5
- openldap-servers
- mod_auth_kerb
- python-kerberos
- python-krbV
- python-requests-kerberos
- mod_nss
- mod_revocator
- pam_radius
- freeradius-client
# Not supported in RHEL (https://bugzilla.redhat.com/show_bug.cgi?id=910464)
- samba-dc
# Not supported in RHEL - call libkrb5 directly instead
- golang-github-jcmturner-gokrb5
# Deprecated (see https://pypi.org/project/pytest-runner/) and vulnerable
# Removed dependency from IdM (https://bugzilla.redhat.com/show_bug.cgi?id=1961613)
- python-pytest-runner
# Custodia was merged into IPA, https://pagure.io/freeipa/issue/8882
- custodia
labels:
- r9
- r10s

16
configs/ssg_idm-web-extensions.yaml Normal file
View file

@ -0,0 +1,16 @@
document: feedback-pipeline-workload
version: 1
data:
name: IdM Web Extensions
description: Specific Apache extensions that are required for client web server IdM experience, whether it is authentication, authorization or extended identity operation
maintainer: ssg_idm
packages:
- mod_auth_gssapi
- mod_auth_openidc
- mod_authnz_pam
- mod_intercept_form_submit
- mod_lookup_identity
- keycloak-httpd-client-install
labels:
- r9
- r10s

11
configs/sst_cs_base_utils-mutt.yaml Normal file
View file

@ -0,0 +1,11 @@
document: feedback-pipeline-workload
version: 1
data:
name: mutt mail client
description: A popular command-line e-mail client
maintainer: sst_cs_base_utils
packages:
- mutt
labels:
- r9
- r10s

14
configs/sst_cs_databases-db-postgresql-libs.yaml Normal file
View file

@ -0,0 +1,14 @@
document: feedback-pipeline-workload
version: 1
data:
name: PostgreSQL libraries
description: Client libraries for PostgreSQL
maintainer: sst_cs_databases
packages:
- libpq
- libpq-devel
- libecpg
- libecpg-devel
labels:
- r9
- r10s

25
configs/sst_cs_databases-db-postgresql.yaml Normal file
View file

@ -0,0 +1,25 @@
document: feedback-pipeline-workload
version: 1
data:
name: PostgreSQL client and server
description: Client tools and a server daemon for PostgreSQL, with some plugins
maintainer: sst_cs_databases
packages:
- postgresql
- postgresql-contrib
- postgresql-plperl
- postgresql-plpython3
- postgresql-pltcl
- postgresql-server
- postgresql-server-devel
- postgresql-static
- postgresql-test
- postgresql-upgrade
- postgresql-upgrade-devel
- pgaudit
- pg_repack
- pgvector
- postgres-decoderbufs
labels:
- r9
- r10s

11
configs/sst_cs_databases-unwanted-postgresql.yaml Normal file
View file

@ -0,0 +1,11 @@
document: feedback-pipeline-unwanted
version: 1
data:
name: Unwanted packages for PostgreSQL
description: Packages we do not want to ship for PostgreSQL
maintainer: sst_cs_databases
unwanted_packages:
- postgresql-llvmjit
labels:
- r9
- r10s

51
configs/sst_filesystems-userspace.yaml Normal file
View file

@ -0,0 +1,51 @@
document: feedback-pipeline-workload
version: 1
data:
name: Filesystems
description: Filesystems needed packages
maintainer: label
packages:
- autofs
- blktrace
- cachefilesd
- cifs-utils
- cifs-utils-devel
- e2fsprogs
- erofs-utils
- fio
- fio-engine-http
- fio-engine-libaio
- fio-engine-nbd
- fio-engine-rados
- fio-engine-rbd
- fio-engine-rdma
- fuse
- fuse-common
- fuse-devel
- fuse-libs
- fuse3
- fuse3-devel
- fuse3-libs
- inih
- inih-devel
- keyutils
- keyutils-libs
- keyutils-libs-devel
- ktls-utils
- libnfsidmap
- libnfsidmap-devel
- libtirpc
- libtirpc-devel
- nfs-utils
- nfs-utils-coreos
- nfs4-acl-tools
- pam_cifscreds
- rpcbind
- rpcgen
- rpcsvc-proto-devel
- xfsdump
- xfsprogs
- xfsprogs-xfs_scrub
labels:
- r9
- r10s

11
configs/sst_idm_sssd-python-pam.yaml Normal file
View file

@ -0,0 +1,11 @@
document: feedback-pipeline-workload
version: 1
data:
name: python-pam
description: Python bindings for libpam.
maintainer: sst_idm_sssd
packages:
- python3-pam
labels:
- r9
- r10s

13
configs/view-r10s.yaml Normal file
View file

@ -0,0 +1,13 @@
---
document: feedback-pipeline-compose-view
version: 1
data:
name: Rocky Linux 10 LookAhead Package Set
description: Rocky Linux 10 LookAhead Package Set
maintainer: label
labels:
- r10s
repository: repository-r10s
buildroot_strategy: none
...

13
configs/view-r9.yaml Normal file
View file

@ -0,0 +1,13 @@
---
document: feedback-pipeline-compose-view
version: 1
data:
name: Rocky Linux 9 Package Set
description: Rocky Linux 9 Package Set
maintainer: label
labels:
- r9
repository: repository-r9
buildroot_strategy: none
...