ovh/the-bastion
1
1
Fork 0
mirror of https://github.com/ovh/the-bastion.git synced 2024-09-20 23:15:58 +08:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #34 from ovh/opensuse152

Browse source 
feat: add OpenSUSE 15.2 to the officially supported distros
This commit is contained in:
Stéphane Lesimple 2020-11-05 17:15:47 +01:00 committed by GitHub
parent ae19dafe95 2a6d997b2f
commit 46ed719861
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
5 changed files with 31 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
.github/workflows/tests.yml vendored
View file

@ -6,10 +6,10 @@ on:
jobs:
tests_full:
name: functional tests on all supported distros
name: Full
strategy:
matrix:
platform: [centos7, centos8, debian10, debian8, debian9, opensuse15, opensuse151, ubuntu1404, ubuntu1604, ubuntu1804, ubuntu2004]
platform: [centos7, centos8, debian10, debian8, debian9, opensuse150, opensuse151, opensuse152, ubuntu1404, ubuntu1604, ubuntu1804, ubuntu2004]
runs-on: ubuntu-latest
if: contains(github.event.pull_request.labels.*.name, 'tests:full')
steps:
@ -20,7 +20,7 @@ jobs:
DOCKER_TTY: false
tests_short:
name: functional tests on Debian 10
name: Full on Debian 10
runs-on: ubuntu-latest
if: contains(github.event.pull_request.labels.*.name, 'tests:short')
steps:

2
README.md
View file

@ -71,7 +71,7 @@ Linux distros below are tested with each release, but as this is a security prod
- Debian 10 (Buster), 9 (Stretch), 8 (Jessie)
- RHEL/CentOS 8, 7
- Ubuntu LTS 20.04, 18.04, 16.04, 14.04*
- OpenSUSE Leap 15.1*, 15*
- OpenSUSE Leap 15.2*, 15.1*, 15.0*
*: Note that these versions have no MFA support.
Any other so-called "modern" Linux version are not tested with each release, but should work with no or minor adjustments.

2
doc/sphinx/installation/basic.rst
View file

@ -16,7 +16,7 @@ The following Linux distros are tested with each release, but as this is a secur
- Debian 10 (Buster), 9 (Stretch), 8 (Jessie)
- RHEL/CentOS 8, 7
- Ubuntu LTS 20.04, 18.04, 16.04, 14.04*
- OpenSUSE Leap 15.1*, 15*
- OpenSUSE Leap 15.2*, 15.1*, 15.0*
\*: Note that these versions have no MFA support.

0
docker/Dockerfile.opensuse15 → docker/Dockerfile.opensuse150
View file

26
docker/Dockerfile.opensuse152 Normal file
View file

@ -0,0 +1,26 @@
FROM opensuse/leap:15.2
LABEL maintainer="stephane.lesimple+bastion@ovhcloud.com"
# cache builds efficiently: just copy the scripts to install packages first
COPY bin/admin/install-ttyrec.sh bin/admin/packages-check.sh /opt/bastion/bin/admin/
COPY lib/shell /opt/bastion/lib/shell/
RUN ["/opt/bastion/bin/admin/packages-check.sh","-i","-d","-s"]
RUN ["/opt/bastion/bin/admin/install-ttyrec.sh","-r"]
# disable /dev/kmsg handling by syslog-ng and explicitely enable /dev/log
RUN test -e /etc/syslog-ng/syslog-ng.conf && \
sed -i -re 's=system\(\);=unix-stream("/dev/log");=' /etc/syslog-ng/syslog-ng.conf
# at each modification of our code, we'll start from here thanks to build cache
COPY . /opt/bastion
# tests that the environment works
RUN ["/opt/bastion/bin/dev/perl-check.sh"]
# setup ssh/sshd config and setup bastion install
RUN ["/opt/bastion/bin/admin/install","--new-install","--no-wait"]
# start at entrypoint
ENTRYPOINT /opt/bastion/docker/entrypoint.sh
# TESTENV HAS_ED25519=1 HAS_BLACKLIST=0 HAS_MFA=0 HAS_PAMTESTER=0