first

2024-01-06 01:38:28 +00:00 · 2024-01-06 01:38:28 +00:00 · b50fd16591
commit b50fd16591
197 changed files with 41663 additions and 0 deletions
--- a/vars/Debian11.yml
+++ b/vars/Debian11.yml
@ -0,0 +1,135 @@
+# -*- mode: yaml; indent-tabs-mode: nil; tab-width: 2; coding: utf-8-unix -*-
+
+# man  wget: Using --ca-directory is more efficient than --ca-certificate when many certificates are installed
+# --ca-certificate={{PLAY_CA_CERT}} --ca-directory=/etc/ssl/certs/
+BASE_WGET_ARGS: "--no-hsts --tries=1 --ca-certificate={{PLAY_CA_CERT|default('/usr/local/etc/ssl/cacert-testforge.pem')}}"
+
+BASE_TIME_DAEMON: sdwdate
+
+#PROXY_INSTALL_INSECURE
+
+# does have export
+base_etc_env_d: "profile.d"
+# im confused between default and conf.d
+ETC_CONF_D: "default"
+# definitely need export in profile.d
+etc_env_export: "export "
+
+base_sudo_group: "sudo"
+base_system_users: ['{{BASE_USER_NAME}}']
+
+base_gpg_keys_system: []
+
+base_initial_debs:
+  - adduser
+  - apt
+  - base-files
+  - base-passwd
+  - bash
+  - bind9-host
+  - bootlogd
+  - bsdutils
+  - ca-certificates
+  - coreutils
+  - curl
+  - dash
+  - debconf
+  - debian-archive-keyring
+  - debianutils
+  - devuan-keyring
+  - dialog
+  - diffutils
+  - dnsutils
+  - dpkg
+  - e2fsprogs
+  - fdisk
+  - findutils
+  - geoip-database
+  - gpgv
+  - grep
+  - gzip
+  - hostname
+  - htop
+  - ifupdown
+  - init-system-helpers
+  - initscripts
+  - insserv
+  - iproute2
+  - iputils-ping
+  - isc-dhcp-client
+  - isc-dhcp-common
+  - krb5-locales
+  - less
+  - linux-libc-dev
+  - locales
+  - login
+  - lsb-base
+  - mawk
+  - mime-support
+  - mount
+  - nano
+  - ncurses-base
+  - ncurses-bin
+  - net-tools
+  - netbase
+  - openssh-client
+  - openssl
+  - passwd
+  - perl
+  - perl-base
+  - publicsuffix
+  - rsync
+  - sed
+  - startpar
+  - sudo
+  - tar
+  - tzdata
+  - util-linux
+  - vim-common
+  - vim-tiny
+  - wget
+  - xauth
+  - xxd
+  - zlib1g
+
+base_bootstrap_debs:
+  - readline-common
+  - unzip
+
+# these were there on an lxd from linuxcontainers.o.org for DevuanBeowolf
+# /var/lib/dpkg/status
+base_lxd_debs_inst:
+  - apt
+  - bootlogd
+  - ca-certificates
+  - curl
+  - findutils
+  - grep
+  - hostname
+  - htop
+  - ifupdown
+  - init-system-helpers
+  - iproute2
+  - iputils-ping
+  - less
+  - login
+  - lsb-base
+  - mount
+  - nano
+  - ncurses-base
+  - ncurses-bin
+  - net-tools
+  - netbase
+  - openssh-client
+  - openssl
+  - passwd
+  - perl
+  - perl-base
+  - rsync
+  - sed
+  - sudo
+  - tar
+  - tzdata
+  - unzip
+  - util-linux
+  - wget
--- a/vars/Devuan5.yml
+++ b/vars/Devuan5.yml
@ -0,0 +1,135 @@
+# -*- mode: yaml; indent-tabs-mode: nil; tab-width: 2; coding: utf-8-unix -*-
+
+# man  wget: Using --ca-directory is more efficient than --ca-certificate when many certificates are installed
+# --ca-certificate={{PLAY_CA_CERT}} --ca-directory=/etc/ssl/certs/
+BASE_WGET_ARGS: "--no-hsts --tries=1 --ca-certificate={{PLAY_CA_CERT|default('/usr/local/etc/ssl/cacert-testforge.pem')}}"
+
+BASE_TIME_DAEMON: sdwdate
+
+#PROXY_INSTALL_INSECURE
+
+# does have export
+base_etc_env_d: "profile.d"
+# im confused between default and conf.d
+ETC_CONF_D: "default"
+# definitely need export in profile.d
+etc_env_export: "export "
+
+base_sudo_group: "sudo"
+base_system_users: ['{{BASE_USER_NAME}}']
+
+base_gpg_keys_system: []
+
+base_initial_debs:
+  - adduser
+  - apt
+  - base-files
+  - base-passwd
+  - bash
+  - bind9-host
+  - bootlogd
+  - bsdutils
+  - ca-certificates
+  - coreutils
+  - curl
+  - dash
+  - debconf
+  - debian-archive-keyring
+  - debianutils
+  - devuan-keyring
+  - dialog
+  - diffutils
+  - dnsutils
+  - dpkg
+  - e2fsprogs
+  - fdisk
+  - findutils
+  - geoip-database
+  - gpgv
+  - grep
+  - gzip
+  - hostname
+  - htop
+  - ifupdown
+  - init-system-helpers
+  - initscripts
+  - insserv
+  - iproute2
+  - iputils-ping
+  - isc-dhcp-client
+  - isc-dhcp-common
+  - krb5-locales
+  - less
+  - linux-libc-dev
+  - locales
+  - login
+  - lsb-base
+  - mawk
+  - mime-support
+  - mount
+  - nano
+  - ncurses-base
+  - ncurses-bin
+  - net-tools
+  - netbase
+  - openssh-client
+  - openssl
+  - passwd
+  - perl
+  - perl-base
+  - publicsuffix
+  - rsync
+  - sed
+  - startpar
+  - sudo
+  - tar
+  - tzdata
+  - util-linux
+  - vim-common
+  - vim-tiny
+  - wget
+  - xauth
+  - xxd
+  - zlib1g
+
+base_bootstrap_debs:
+  - readline-common
+  - unzip
+
+# these were there on an lxd from linuxcontainers.o.org for DevuanBeowolf
+# /var/lib/dpkg/status
+base_lxd_debs_inst:
+  - apt
+  - bootlogd
+  - ca-certificates
+  - curl
+  - findutils
+  - grep
+  - hostname
+  - htop
+  - ifupdown
+  - init-system-helpers
+  - iproute2
+  - iputils-ping
+  - less
+  - login
+  - lsb-base
+  - mount
+  - nano
+  - ncurses-base
+  - ncurses-bin
+  - net-tools
+  - netbase
+  - openssh-client
+  - openssl
+  - passwd
+  - perl
+  - perl-base
+  - rsync
+  - sed
+  - sudo
+  - tar
+  - tzdata
+  - unzip
+  - util-linux
+  - wget
--- a/vars/Gentoo2.yml
+++ b/vars/Gentoo2.yml
@ -0,0 +1,173 @@
+# -*- mode: yaml; indent-tabs-mode: nil; tab-width: 2; coding: utf-8-unix -*-
+
+# man  wget: Using --ca-directory is more efficient than --ca-certificate when many certificates are installed
+# --ca-certificate={{PLAY_CA_CERT}} --ca-directory=/etc/ssl/certs/
+BASE_WGET_ARGS: "--no-hsts --tries=1 --ca-certificate={{PLAY_CA_CERT|default('/usr/local/etc/ssl/cacert-testforge.pem')}}"
+
+BASE_TIME_DAEMON: ntp
+BASE_CURL_SSL: openssl
+
+BASE_PORTDIR: "/usr/portage"
+BASE_DISTDIR: "/usr/portage/distfiles"
+
+base_emerge_flags: "-vbk --update --changed-use --with-bdeps=y --changed-deps-report --backtrack=30 --ignore-built-slot-operator-deps=y --keep-going"
+
+base_portage_ignore_errors: "{{ ansible_virtualization_role|replace('NA', 'host') == 'guest' }}"
+
+# does have export
+base_etc_env_d: "env.d"
+ETC_CONF_D: "conf.d"
+etc_env_export: "export "
+
+base_sudo_group: "wheel"
+
+# These arent used  but make our scripts build the portage.* files for them
+# There are from /mnt/src/portage/gentoo/profiles/base/packages
+# These may differ for Funtoo Pentoo and Gentoo - we will list them all?
+
+# Gentoo Base Profile
+# NOTE: THIS IS THE BASE PROFILE FOR *ANY* GENTOO BASED OPERATING SYSTEM.
+# Please note that this file is rarely used as a package inclusion mask
+# file, because it affects EVERY SINGLE gentoo profile.   As can be seen,
+# we've limited the inclusion mask to a version of portage which supports
+# cascaded profiles, but apart from that, there should be no version
+# specific information in here. This file serves as a high level description
+# of the minimum set of packages needed for any Gentoo based system.
+base_pkgs_Gentoo:
+  # https://wiki.gentoo.org/wiki/Portage_Security#git-mirror_repositories
+  - sec-keys/openpgp-keys-gentoo-release
+  - app-arch/bzip2
+  - app-arch/gzip
+  - app-arch/tar
+  - app-arch/xz-utils
+  - app-shells/bash
+  - net-misc/rsync
+  - net-misc/wget
+  - sys-apps/coreutils
+  - sys-apps/diffutils
+  - sys-apps/findutils
+  - sys-apps/gawk
+  - sys-apps/grep
+  - sys-apps/kbd
+  - sys-apps/less
+  - sys-process/procps
+  - sys-process/psmisc
+  - sys-apps/sed
+  - sys-apps/which
+  - sys-devel/binutils
+  - sys-devel/gcc
+  - sys-devel/gnuconfig
+  - sys-devel/make
+  - sys-devel/patch
+  - sys-fs/e2fsprogs
+  - virtual/dev-manager
+  - virtual/editor
+  - virtual/libc
+  - virtual/man
+  - virtual/modutils
+  - virtual/os-headers
+  - virtual/package-manager
+  - virtual/pager
+  - virtual/service-manager
+  - virtual/shadow
+  - virtual/ssh
+  - sys-fs/lvm2
+  # required by sys-fs/cryptsetup-1.6.1[udev,-static-libs,static]
+  - dev-libs/libgpg-error
+  #? - virtual/udev
+  # required by sys-fs/cryptsetup-1.6.1[udev,-static-libs,static]
+  - sys-libs/e2fsprogs-libs
+  # required by sys-fs/cryptsetup-1.6.1[udev,-static-libs,static]
+  - dev-libs/popt
+  # required by sys-fs/cryptsetup-1.6.1[udev,-static-libs,static]
+  - dev-libs/libgcrypt
+  - sys-fs/cryptsetup
+  - sys-libs/ncurses
+  - sys-libs/glibc
+  - sys-libs/libxcrypt
+  - sys-apps/shadow
+  - net-libs/gnutls
+
+base_pkgs_Stage3:
+  - sys-apps/baselayout
+  - sys-apps/portage
+  - app-editors/nano
+  - app-admin/perl-cleaner
+  - app-arch/libarchive
+  - app-eselect/eselect-python
+  - app-misc/ca-certificates
+  - app-portage/elt-patches
+  - dev-lang/perl
+  - dev-libs/glib
+  - dev-libs/libpcre2
+  - dev-libs/libxml2
+  - sys-devel/libtool
+  - dev-libs/openssl
+  - dev-python/pyblake2
+  - dev-python/setuptools
+  - dev-util/desktop-file-utils
+  - dev-util/gtk-doc-am
+  - media-libs/fontconfig
+  - net-misc/dhcp
+  - net-misc/openssh
+  - sys-auth/pambase
+  - sys-devel/autoconf
+  - sys-devel/gettext
+  - sys-libs/pam
+  - sys-libs/zlib
+  - dev-libs/libpcre
+  - sys-apps/acl
+  - sys-apps/attr
+  - dev-lang/python-exec
+  - dev-lang/python:{{BASE_PYTHON2_MINOR}}
+  - dev-lang/python:{{BASE_PYTHON3_MINOR}}
+
+base_pkgs_Clipos:
+  - sys-kernel/clipos-kernel-sources
+  - app-arch/lz4
+  - sys-devel/bc
+  - sys-apps/net-tools
+  - virtual/libelf
+
+base_pkgs_Funtoo:
+  - app-admin/ego
+
+base_pkgs_provided:
+  # dev-python/wheel-0.32.2
+#?  - dev-python/pip-9.0.1-r2
+  #dev-python/jinja-2.10
+  #dev-python/pynacl-1.2.1
+  #dev-python/asn1crypto-0.24.0
+  # 3.16
+  #dev-python/bcrypt-3.1.4-r1
+  #dev-python/cffi-1.11.5
+  #dev-python/idna-2.7
+  #dev-python/paramiko-2.4.1
+  #dev-python/pyasn1-0.4.2
+  #dev-python/setuptools-40.0.0
+  - app-admin/ansible-{{BOX_ANSIBLE_VERSION}}
+
+base_pkgs_bootstrap:
+  - sys-kernel/gentoo-sources
+  - sys-apps/util-linux
+  - sys-boot/boot-update
+  - dev-util/kbuild
+  - sys-apps/kmod
+
+base_pkgs_systemd:
+  - sys-apps/systemd
+#no  - sys-fs/udev
+
+base_pkgs_openrc:
+  - sys-apps/sysvinit
+  - sys-apps/openrc
+  - sys-auth/elogind
+  - sys-fs/eudev
+#no sys-fs/udev-init-scripts
+
+base_system_users: ['{{BASE_USER_NAME}}']
+
+base_gpg_keys_system:
+
+  - uid: DCD05B71EAB94199527F44ACDB6B8C1F96D8BF6D
+    name: "Gentoo ebuild repository signing key (Automated Signing Key) <infrastructure@gentoo.org>"
--- a/vars/Linux.yml
+++ b/vars/Linux.yml
@ -0,0 +1,51 @@
+# -*- mode: yaml; indent-tabs-mode: nil; tab-width: 2; coding: utf-8-unix -*-
+
+base_pip_ignore_errors: true
+
+base_rsync_opts_linux:
+      - "-i"
+# Unexpected remote arg:  u'--chown=root:adm'
+      - "{{ '-4' if ansible_distribution == 'Debian' else '--chown=root:' + BOX_ALSO_GROUP }}"
+#      - "--relative"
+      - "--copy-links"
+      - "--perms"
+      - "--times"
+      - "--update"
+# rsync: --inplace cannot be used with --delay-updates which is hard-coded
+#      - "--inplace"
+      - "--exclude=*~"
+      - "--exclude=*.bak"
+      - "--exclude=*.junk"
+      - "--exclude=.#*"
+
+base_rsync_opts_msys:
+      - "-i"
+# Unexpected remote arg:  u'--chown=root:adm'
+      - "{{ '-4' if ansible_distribution == 'Debian' else '--chown=root:' + BOX_ALSO_GROUP }}"
+      - "--copy-links"
+      - "--times"
+      - "--update"
+# rsync: --inplace cannot be used with --delay-updates which is hard-coded
+#      - "--inplace"
+      - "--exclude=*~"
+      - "--exclude=*.bak"
+      - "--exclude=*.junk"
+      - "--exclude=.#*"
+
+base_rsync_opts: "{{ base_rsync_opts_msys if ansible_distribution == 'Msys' else base_rsync_opts_linux }}"
+
+# The subsystem type we run in.
+#
+# Options:
+#   ''      - Nothing special
+#   lxc     - Linux Containers
+#   openvz  - Linux OpenVZ
+#   prefix  - Prefix
+#   uml     - Usermode Linux
+#   vserver - Linux vserver
+#   xen0    - Xen0 Domain
+#   xenU    - XenU Domain
+rc_subsystem_type: "{{ ansible_virtualization_type | replace('NA', '') }}"
+
+base_reinstall_pip_vendor: "{{ ansible_distribution == 'Msys'  }}"
+base_also_users: "{{BASE_ALSO_USERS}}"
--- a/vars/Msys8.yml
+++ b/vars/Msys8.yml
@ -0,0 +1,21 @@
+# -*- mode: yaml; indent-tabs-mode: nil; tab-width: 2; coding: utf-8-unix -*-
+
+# man  wget: Using --ca-directory is more efficient than --ca-certificate when many certificates are installed
+# --ca-certificate={{PLAY_CA_CERT}} --ca-directory=/etc/ssl/certs/
+BASE_WGET_ARGS: "--no-hsts --tries=1 --ca-certificate={{PLAY_CA_CERT|default('/usr/local/etc/ssl/cacert-testforge.pem')}}"
+
+BASE_TIME_DAEMON: ""
+
+#PROXY_INSTALL_INSECURE
+
+# does have export
+base_etc_env_d: "profile.d"
+# im confused between default and conf.d
+ETC_CONF_D: "default"
+# definitely need export in profile.d
+etc_env_export: "export "
+
+base_system_users: []
+base_sudo_group: ""
+
+base_gpg_keys_system: []
--- a/vars/Ubuntu18.yml
+++ b/vars/Ubuntu18.yml
@ -0,0 +1,22 @@
+# -*- mode: yaml; indent-tabs-mode: nil; tab-width: 2; coding: utf-8-unix -*-
+
+# man  wget: Using --ca-directory is more efficient than --ca-certificate when many certificates are installed
+# --ca-certificate={{PLAY_CA_CERT}} --ca-directory=/etc/ssl/certs/
+BASE_WGET_ARGS: "--no-hsts --tries=1 --ca-certificate={{PLAY_CA_CERT|default('/usr/local/etc/ssl/cacert-testforge.pem')}}"
+
+BASE_TIME_DAEMON: ntp
+
+#PROXY_INSTALL_INSECURE
+
+# does have export
+base_etc_env_d: "profile.d"
+# im confused between default and conf.d
+ETC_CONF_D: "default"
+# definitely need export in profile.d
+etc_env_export: "export "
+
+base_sudo_group: "sudo"
+
+base_system_users: ['{{BASE_USER_NAME}}']
+
+base_gpg_keys_system: []