commit ba3ff91f2151e3f6c3c106fd40961d5e30b537ba Author: eabdullin Date: Tue Jul 2 10:16:43 2024 +0300 Import CS-release diff --git a/SOURCES/50-redhat.conf b/SOURCES/50-redhat.conf new file mode 100644 index 0000000..a975a13 --- /dev/null +++ b/SOURCES/50-redhat.conf @@ -0,0 +1,7 @@ +# https://bugzilla.redhat.com/show_bug.cgi?id=1689346 +kernel.kptr_restrict = 1 + +# Source route verification +net.ipv4.conf.default.rp_filter = 1 +net.ipv4.conf.*.rp_filter = 1 +-net.ipv4.conf.all.rp_filter diff --git a/SOURCES/85-display-manager.preset b/SOURCES/85-display-manager.preset new file mode 100644 index 0000000..08d5060 --- /dev/null +++ b/SOURCES/85-display-manager.preset @@ -0,0 +1,11 @@ +# We enable all display managers by default. Since only one can +# actually be enabled at the same time the one which is installed +# first wins + +enable gdm.service +enable lightdm.service +enable slim.service +enable lxdm.service +enable sddm.service +enable kdm.service +enable xdm.service diff --git a/SOURCES/90-default-user.preset b/SOURCES/90-default-user.preset new file mode 100644 index 0000000..c19d1b2 --- /dev/null +++ b/SOURCES/90-default-user.preset @@ -0,0 +1,30 @@ +# Enable the D-Bus service (including its socket for socket activation) +# unconditionally. It is used throughout Fedora and required on all machines. +# https://src.fedoraproject.org/rpms/fedora-release/pull-request/4 +# https://fedoraproject.org/w/index.php?title=Starting_services_by_default&oldid=377748 +enable dbus.socket +enable dbus-broker.service + +# Socket-activated pipewire service for individual user sessions +# https://bugzilla.redhat.com/show_bug.cgi?id=1592434 +enable pipewire.socket + +# Enable the PipeWire PulseAudio compatibility socket interface +# https://bugzilla.redhat.com/show_bug.cgi?id=1904239 +# https://bugzilla.redhat.com/show_bug.cgi?id=1907906 +# https://fedoraproject.org/wiki/Changes/DefaultPipeWire +enable pipewire-pulse.socket + +# https://bugzilla.redhat.com/show_bug.cgi?id=1976006 +enable pipewire-media-session.service +# https://bugzilla.redhat.com/show_bug.cgi?id=1979419 +enable wireplumber.service + +# Enable the session agent for snaps +# https://bugzilla.redhat.com/show_bug.cgi?id=1734371 +enable snapd.session-agent.socket + +# https://src.fedoraproject.org/rpms/fedora-release/pull-request/80 +enable obex.service +enable grub-boot-success.timer +enable pulseaudio.socket diff --git a/SOURCES/90-default.preset b/SOURCES/90-default.preset new file mode 100644 index 0000000..af3d4c7 --- /dev/null +++ b/SOURCES/90-default.preset @@ -0,0 +1,469 @@ +# See https://docs.fedoraproject.org/en-US/packaging-guidelines/DefaultServices/ +# for the Fedora policy. + +# On Fedora we deviate from some upstream defaults +disable systemd-timesyncd.service +disable systemd-networkd.service +disable systemd-networkd-wait-online.service +# We want to update systemd-boot from packaging scriptlets after updates. +disable systemd-boot-update.service + +# https://fedoraproject.org/wiki/Changes/systemd-resolved +enable systemd-resolved.service + +# https://fedoraproject.org/wiki/Changes/EnableSystemdOomd +enable systemd-oomd.service + +# These presets were last validated en-masse on 2015-09-09 +# https://fedorahosted.org/fesco/ticket/1472 + +# System stuff +# https://fedoraproject.org/w/index.php?title=Starting_services_by_default&oldid=377748 +enable dbus.socket +enable dbus-broker.service +enable sshd.service + +# Locally-running services +enable atd.* +enable crond.* + +# Approved by FESCo - https://fedorahosted.org/fesco/ticket/636 +enable chronyd.service + +# https://fedoraproject.org/w/index.php?title=Starting_services_by_default&oldid=377748 +# https://bugzilla.redhat.com/show_bug.cgi?id=1455704 +enable NetworkManager.service +enable NetworkManager-wait-online.service +enable NetworkManager-dispatcher.service +enable ModemManager.service + +# Approved by FESCo - https://fedorahosted.org/fesco/ticket/1311 +enable auditd.service + +# https://bugzilla.redhat.com/show_bug.cgi?id=2258520 +enable audit-rules.service + +# Locally-running service +enable restorecond.service + +# Approved by FESCo - https://fedorahosted.org/fesco/ticket/1166 +enable bluetooth.* + +# https://fedoraproject.org/w/index.php?title=Starting_services_by_default&oldid=377748 +enable avahi-daemon.* + +# Default configuration is locally-running only +# CUPS is now socket-activatable for local use-cases, so don't enable cups.service +# https://pagure.io/fesco/issue/1701 +enable cups.socket +enable cups.path + +# RHEL-37762: We need the full service enabled to act as a print server +enable cups.service + +# The various syslog implementations +enable rsyslog.* +enable syslog-ng.* +enable sysklogd.* + +# Network facing +# https://fedoraproject.org/w/index.php?title=Starting_services_by_default&oldid=377748 +enable firewalld.service + +# Approved by FESCo - https://fedorahosted.org/fesco/ticket/2627 +# Virtualization driver specific daemons. Start by default at boot for VM +# autostart, but shutdown after 2 mins and socket activated thereafter +enable virtqemud.service +enable virtxend.service +enable virtlxcd.service +enable virtvboxd.service + +# Sockets for the services listed above, to support socket activation +# after the initial timeout +enable virtqemud.socket +enable virtqemud-ro.socket +enable virtqemud-admin.socket +enable virtxend.socket +enable virtxend-ro.socket +enable virtxend-admin.socket +enable virtlxcd.socket +enable virtlxcd-ro.socket +enable virtlxcd-admin.socket +enable virtvboxd.socket +enable virtvboxd-ro.socket +enable virtvboxd-admin.socket + +# Compatibility with libvirtd sockets for old clients (socket activated +# only when required). Note that the -tcp and -tls sockets are kept disabled +# by default, as they require additional configuration before they can work +enable virtproxyd.socket +enable virtproxyd-ro.socket +enable virtproxyd-admin.socket + +# Secondary drivers providing supporting functionality to main virtualization +# drivers (socket activated only when required) +enable virtinterfaced.socket +enable virtinterfaced-ro.socket +enable virtinterfaced-admin.socket +enable virtnetworkd.socket +enable virtnetworkd-ro.socket +enable virtnetworkd-admin.socket +enable virtnodedevd.socket +enable virtnodedevd-ro.socket +enable virtnodedevd-admin.socket +enable virtnwfilterd.socket +enable virtnwfilterd-ro.socket +enable virtnwfilterd-admin.socket +enable virtsecretd.socket +enable virtsecretd-ro.socket +enable virtsecretd-admin.socket +enable virtstoraged.socket +enable virtstoraged-ro.socket +enable virtstoraged-admin.socket + +# Non-driver support services (socket activated only when required, no +# read-only socket) +enable virtlogd.socket +enable virtlogd-admin.socket +enable virtlockd.socket +enable virtlockd-admin.socket + +# https://fedoraproject.org/w/index.php?title=Starting_services_by_default&oldid=377748 +enable xinetd.service + +# Storage +# Approved by FESCo - https://fedorahosted.org/fesco/ticket/391 +enable multipathd.service + +# Approved by FESCo - https://fedorahosted.org/fesco/ticket/876 +enable libstoragemgmt.service + +# Approved by FESCo - https://pagure.io/fesco/issue/2386 +enable iscsid.socket +enable iscsiuio.socket + +# Approved by FESCo - https://pagure.io/fesco/issue/2943 +enable iscsi-starter.service + +# iSCSI support for early-boot +# https://bugzilla.redhat.com/show_bug.cgi?id=1930470 +enable iscsi-onboot.service + +# Locally-running services +enable lvm2-monitor.* +enable lvm2-lvmetad.* +enable dm-event.* +enable dmraid-activation.service + +# https://bugzilla.redhat.com/show_bug.cgi?id=855372 +enable mdmonitor.service +enable mdmonitor-takeover.service + +# https://bugzilla.redhat.com/show_bug.cgi?id=1817491 +enable raid-check.timer + +# https://bugzilla.redhat.com/show_bug.cgi?id=876237 +enable spice-vdagentd.service + +# https://bugzilla.redhat.com/show_bug.cgi?id=885406 +enable qemu-guest-agent.service + +# https://bugzilla.redhat.com/show_bug.cgi?id=928726 +enable dnf-makecache.timer + +# https://bugzilla.redhat.com/show_bug.cgi?id=1995495 +enable rpm-ostree-countme.timer + +# https://bugzilla.redhat.com/show_bug.cgi?id=957135 +enable vmtoolsd.service + +# https://bugzilla.redhat.com/show_bug.cgi?id=976315 +enable dkms.service + +# https://bugzilla.redhat.com/show_bug.cgi?id=961878 +enable ipmi.service +enable ipmievd.service + +# https://bugzilla.redhat.com/show_bug.cgi?id=1039351 +enable x509watch.timer + +# https://bugzilla.redhat.com/show_bug.cgi?id=1060754 +enable dnssec-triggerd.service + +# https://bugzilla.redhat.com/show_bug.cgi?id=1095353 +enable uuidd.socket + +# Hardware +# Locally-running service +enable gpm.* + +# https://bugzilla.redhat.com/show_bug.cgi?id=1066421 +enable gpsd.socket + +# https://bugzilla.redhat.com/show_bug.cgi?id=1141607 +enable x2gocleansessions.service + +# https://issues.redhat.com/browse/RHEL-35582 +enable tuned.service + +# https://bugzilla.redhat.com/show_bug.cgi?id=1215641 +enable unbound-anchor.timer + +# https://bugzilla.redhat.com/show_bug.cgi?id=1222495 +enable lvm2-lvmpolld.* + +# https://fedoraproject.org/wiki/Changes/UEFISecureBootBlacklistUpdates +enable dbxtool.service + +# Locally-running services +enable irqbalance.service +enable lm_sensors.service +enable mcelog.* +enable smartd.service +enable pcscd.socket +enable rngd.service + +# Other stuff +# Approved by FESCo - https://fedorahosted.org/fesco/ticket/937 +# Note: abrt-ccpp.service is excluded in favor of systemd-coredump. +enable abrtd.service +enable abrt-journal-core.service +enable abrt-oops.service +enable abrt-xorg.service +enable abrt-vmcore.service + +# Locally-running services +enable ksm.service +enable ksmtuned.service +enable rootfs-resize.service +enable sysstat.service +enable sysstat-collect.timer +enable sysstat-summary.timer +enable uuidd.service +enable xendomains.service +enable xenstored.service +enable xenconsoled.service + +# Desktop stuff +# Locally-running services +enable accounts-daemon.service +enable rtkit-daemon.service +enable upower.service +enable udisks2.service +enable polkit.service + +# https://bugzilla.redhat.com/show_bug.cgi?id=1187072 +enable timedatex.service + +# https://bugzilla.redhat.com/show_bug.cgi?id=1231745 +enable mlocate-updatedb.timer + +# https://src.fedoraproject.org/rpms/fedora-release/pull-request/204 +enable plocate-updatedb.timer + +# https://bugzilla.redhat.com/show_bug.cgi?id=1218999 +enable sa-update.timer + +# Hyper-V guest support daemons +# https://bugzilla.redhat.com/show_bug.cgi?id=1279322 +enable vmtoolsd.service + +# mcelog is a utility that collects and decodes Machine Check Exception data +# on x86-32 and x86-64 systems. +# https://bugzilla.redhat.com/show_bug.cgi?id=1302179 +enable mcelog.service + +# OPAL-prd is a utility specific to ppc64le systems +# It is the "OPAL Processor Recovery Diagnostics Daemon" +# https://bugzilla.redhat.com/show_bug.cgi?id=1312018 +enable opal-prd.service + +# lircd is the Linux Infrared Control daemon +# Starting with version 0.9.4, it requires no manual configuration +# https://bugzilla.redhat.com/show_bug.cgi?id=1340061 +enable lircd.socket + +# IPSec management +# https://bugzilla.redhat.com/show_bug.cgi?id=1276285 +enable pluto.socket + +# https://bugzilla.redhat.com/show_bug.cgi?id=1367932 +# Automatically refresh installed snaps +enable snapd.refresh.timer +# Socket activated daemon to manage snaps +enable snapd.socket + +# Support for dual-GPU systems +# https://bugzilla.redhat.com/show_bug.cgi?id=1389762 +enable switcheroo-control.service + +# Support for the DRBD link-cleaning service +# https://bugzilla.redhat.com/show_bug.cgi?id=1399387 +enable drbdlinksclean.service + +# Enable the System Security Services Daemon +# https://bugzilla.redhat.com/show_bug.cgi?id=1427649 +enable sssd.service + +# Enable ostree-remount on ostree-based systems +# (Does nothing on non-ostree systems) +# https://bugzilla.redhat.com/show_bug.cgi?id=1451458 +enable ostree-remount.service + +# Enable Performance Co-Pilot services +# https://bugzilla.redhat.com/show_bug.cgi?id=1472350 +enable pmcd.service +enable pmlogger.service +enable pmie.service + +# Enable SSSD Kerberos Credential Cache Server +# https://bugzilla.redhat.com/show_bug.cgi?id=1475999 +enable sssd-kcm.socket + +# sssd-secrets.socket was previously enabled, but as of +# SSSD 2.0 it is not longer needed +# https://bugzilla.redhat.com/show_bug.cgi?id=1615584 + +# A mechanism to transfer state between the initramfs and the real +# system. Obsolete since /run was introduced, but still used by some +# services. +# https://bugzilla.redhat.com/show_bug.cgi?id=1493479 +# https://bugzilla.redhat.com/show_bug.cgi?id=1584645 +enable import-state.service + +# An initscripts mechanism for readonly root +# https://bugzilla.redhat.com/show_bug.cgi?id=1493479 +# https://bugzilla.redhat.com/show_bug.cgi?id=1584645 +enable readonly-root.service + +# Ensure that any installed kmods are built for the currently-running +# kernel at boot +# https://bugzilla.redhat.com/show_bug.cgi?id=1518258 +enable akmods.service + +# virtualbox-guest-additions service, yet another virtual-machine guest +# integration agent, this is a locally-running service, Note this has a +# "ConditionVirtualization=|oracle" so it will only run under VirtualBox +# https://bugzilla.redhat.com/show_bug.cgi?id=1534595 +enable vboxservice.service + +# Mark the system for SELinux autorelabel when appropriate +# https://bugzilla.redhat.com/show_bug.cgi?id=1589720 +enable selinux-autorelabel-mark.service + +# https://bugzilla.redhat.com/show_bug.cgi?id=1623901 +enable cpi.service + +# Initialize persistent devices on s390x +enable device_cio_free.service + +# Enable the stratis daemon for managing stratis storage +# https://bugzilla.redhat.com/show_bug.cgi?id=1630514 +enable stratisd.service + +# Enable a service to finalize staged OSTree changes at shutdown +# https://bugzilla.redhat.com/show_bug.cgi?id=1639372 +enable ostree-finalize-staged.path + +# Enable the Docker daemon socket +# https://bugzilla.redhat.com/show_bug.cgi?id=1655602 +enable docker.socket + +# Enable the service for adding Fedora OCI repos to flatpak +# https://bugzilla.redhat.com/show_bug.cgi?id=1696225 +enable flatpak-add-fedora-repos.service + +# Run fstrim weekly on filesystems listed in fstab +enable fstrim.timer + +# oneshot to generate kata VM appliance at host bootup +# for the booted kernel +enable kata-osbuilder-generate.service + +# Enable rotation of system log files +# https://bugzilla.redhat.com/show_bug.cgi?id=1655153#c4 +enable logrotate.timer + +# Enable regular update of SpamAssassin data files +# https://bugzilla.redhat.com/show_bug.cgi?id=1651002 +enable sa-update.timer + +# Enable service to automatically rebuild the RPM database +# on startup when /var/lib/rpm/.rebuilddb exists +# https://bugzilla.redhat.com/show_bug.cgi?id=1826658 +enable rpmdb-rebuild.service + +# Enable service to automatically migrate the RPM database to /usr +# on startup when /var/lib/rpm/.migratedb exists +# https://bugzilla.redhat.com/show_bug.cgi?id=2044061 +enable rpmdb-migrate.service + +# Support services for Google Cloud +# Approved by FESCo: https://pagure.io/fesco/issue/2578 +enable google-guest-agent.service +enable google-startup-scripts.service +enable google-shutdown-scripts.service + +# Support service for Azure +# Approved by FESCo: https://pagure.io/fesco/issue/2849 +enable waagent.service + +# Certbot (Let's Encrypt) +# https://bugzilla.redhat.com/show_bug.cgi?id=1940211 +enable certbot-renew.timer + +# enable thermald by default for desktops +# https://pagure.io/fedora-workstation/issue/71 +enable thermald.service + +# enable uresourced by default for desktops +# https://pagure.io/fesco/issue/2457 +enable uresourced.service + +# enable power-profiles-daemon +# https://pagure.io/fedora-workstation/issue/191 +enable power-profiles-daemon.service + +# Enable clevis-luks-askpass.path +# https://bugzilla.redhat.com/show_bug.cgi?id=2101719 +enable clevis-luks-askpass.path + +# Enable livesys services for live media +# https://bugzilla.redhat.com/show_bug.cgi?id=2148790 +enable livesys.service +enable livesys-late.service + +# Enable Waydroid +# https://bugzilla.redhat.com/show_bug.cgi?id=2157810 +enable waydroid-container.service + +# Enable nmstate to apply network configuration from /etc/nmstate/*.yml +# https://github.com/coreos/fedora-coreos-tracker/issues/1175 +# https://github.com/coreos/fedora-coreos-config/pull/2269 +enable nmstate.service + +# Enable nfs-client.target +# https://bugzilla.redhat.com/show_bug.cgi?id=2218006 +enable nfs-client.target + +# Enable cloud-init services +# https://bugzilla.redhat.com/show_bug.cgi?id=2233948 +enable cloud-config.service +enable cloud-final.service +enable cloud-init.service +enable cloud-init-local.service + +# Enable kernel-bootcfg-boot-successful.service +# https://bugzilla.redhat.com/show_bug.cgi?id=2239607 +enable kernel-bootcfg-boot-successful.service + +# Enable pd-mapper service for Thinkpad X13s +# https://bugzilla.redhat.com/show_bug.cgi?id=2255318 +enable pd-mapper.service + +# The Cockpit web-based system management console +enable cockpit.socket + +# https://fedoraproject.org/wiki/Changes/EnableFwupdRefreshByDefault +enable fwupd-refresh.timer + diff --git a/SOURCES/99-default-disable.preset b/SOURCES/99-default-disable.preset new file mode 100644 index 0000000..1f29b50 --- /dev/null +++ b/SOURCES/99-default-disable.preset @@ -0,0 +1 @@ +disable * diff --git a/SOURCES/Contributors b/SOURCES/Contributors new file mode 100644 index 0000000..0369b02 --- /dev/null +++ b/SOURCES/Contributors @@ -0,0 +1,70 @@ +# -*- coding: utf-8 -*- + +The CentOS distribution would not be possible without the hard work and +dedication of a large number of talented people. It's only fair that we +acknowledge the time and effort that they have put into the distribution. + +We are always in need of more volunteers. If you're interested in joining +the CentOS Project, please join us on irc.freenode.net in #centos-devel or +via the mailing list at http://lists.centos.org/pipermail/centos-devel/ + + + + +## Special Recognition ## + +One of the key reasons we got delayed on the CentOS-6 release was lack of +suitable build resources, especially when we had to repeatedly build large +chunks of code. Norwood S came forward and worked with me to +setup a large build machine, then tune the build process and help improve +the overall build, test and validate process we were using. This build +machine he donated to the project was about 5 times more capable than the +entire buildsystem we had. And he did this out of his own pocket, from +his own time, and has since upgraded the machine as well. It's now a 128GB, +48 core machine, with 4 SSD's and 4 sata disks : but the key metric is +that it can build from source, the entire CentOS-7 distro in under 22 hrs. + +Having this capability was key in our ability to build, test and deliver +CentOS-7 as rapidly as we have been able to. + +We'd like to dedicate the CentOS-7 Release to Mr Norwood S, of Phoenix, +AZ, USA for his continued support for the project. + +Contributors: + The Red Hat developers, without whom CentOS would look very different + + Akemi Matsuno-Yagi + Alain Reguera Delgado + Alan Bartlett + Andreas Thienemann + Anssi Johansson + Athmane Madjoudj + Bonnie King + Brian Stinson + Carl Trieloff + Christoph Galuschka + Fabian Arrotin + Jakub Filak + James Moger + Jeff Sheltren + Jim Perrin + Johnny Hughes Jr + Karanbir Singh + Karsten Wade + Kay Williams + Manuel Wolfshant + Matej Habrnal + Marcus Moeller + Michael Scherer + Mike McLean + Pablo Sebastián Greco + Pat Riehecky + Ralph Angenendt + Scott Robbins + Stephen John Smoogen + Trevor Hemsley + Tru Huynh + Tuomas Kuosmanen + Tuomo Soini + Tyler Parsons + diff --git a/SOURCES/EULA b/SOURCES/EULA new file mode 100644 index 0000000..2f9f25b --- /dev/null +++ b/SOURCES/EULA @@ -0,0 +1,10 @@ +CentOS Stream 10 EULA + +CentOS Stream 10 comes with no guarantees or warranties of any sorts, +either written or implied. + +The Distribution is released as GPLv2. Individual packages in the +distribution come with their own licences. A copy of the GPLv2 license +is included with the distribution media. + + diff --git a/SOURCES/LICENSE b/SOURCES/LICENSE new file mode 100644 index 0000000..d159169 --- /dev/null +++ b/SOURCES/LICENSE @@ -0,0 +1,339 @@ + GNU GENERAL PUBLIC LICENSE + Version 2, June 1991 + + Copyright (C) 1989, 1991 Free Software Foundation, Inc., + 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA + Everyone is permitted to copy and distribute verbatim copies + of this license document, but changing it is not allowed. + + Preamble + + The licenses for most software are designed to take away your +freedom to share and change it. By contrast, the GNU General Public +License is intended to guarantee your freedom to share and change free +software--to make sure the software is free for all its users. This +General Public License applies to most of the Free Software +Foundation's software and to any other program whose authors commit to +using it. (Some other Free Software Foundation software is covered by +the GNU Lesser General Public License instead.) You can apply it to +your programs, too. + + When we speak of free software, we are referring to freedom, not +price. Our General Public Licenses are designed to make sure that you +have the freedom to distribute copies of free software (and charge for +this service if you wish), that you receive source code or can get it +if you want it, that you can change the software or use pieces of it +in new free programs; and that you know you can do these things. + + To protect your rights, we need to make restrictions that forbid +anyone to deny you these rights or to ask you to surrender the rights. +These restrictions translate to certain responsibilities for you if you +distribute copies of the software, or if you modify it. + + For example, if you distribute copies of such a program, whether +gratis or for a fee, you must give the recipients all the rights that +you have. You must make sure that they, too, receive or can get the +source code. And you must show them these terms so they know their +rights. + + We protect your rights with two steps: (1) copyright the software, and +(2) offer you this license which gives you legal permission to copy, +distribute and/or modify the software. + + Also, for each author's protection and ours, we want to make certain +that everyone understands that there is no warranty for this free +software. If the software is modified by someone else and passed on, we +want its recipients to know that what they have is not the original, so +that any problems introduced by others will not reflect on the original +authors' reputations. + + Finally, any free program is threatened constantly by software +patents. We wish to avoid the danger that redistributors of a free +program will individually obtain patent licenses, in effect making the +program proprietary. To prevent this, we have made it clear that any +patent must be licensed for everyone's free use or not licensed at all. + + The precise terms and conditions for copying, distribution and +modification follow. + + GNU GENERAL PUBLIC LICENSE + TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION + + 0. This License applies to any program or other work which contains +a notice placed by the copyright holder saying it may be distributed +under the terms of this General Public License. The "Program", below, +refers to any such program or work, and a "work based on the Program" +means either the Program or any derivative work under copyright law: +that is to say, a work containing the Program or a portion of it, +either verbatim or with modifications and/or translated into another +language. (Hereinafter, translation is included without limitation in +the term "modification".) Each licensee is addressed as "you". + +Activities other than copying, distribution and modification are not +covered by this License; they are outside its scope. The act of +running the Program is not restricted, and the output from the Program +is covered only if its contents constitute a work based on the +Program (independent of having been made by running the Program). +Whether that is true depends on what the Program does. + + 1. You may copy and distribute verbatim copies of the Program's +source code as you receive it, in any medium, provided that you +conspicuously and appropriately publish on each copy an appropriate +copyright notice and disclaimer of warranty; keep intact all the +notices that refer to this License and to the absence of any warranty; +and give any other recipients of the Program a copy of this License +along with the Program. + +You may charge a fee for the physical act of transferring a copy, and +you may at your option offer warranty protection in exchange for a fee. + + 2. You may modify your copy or copies of the Program or any portion +of it, thus forming a work based on the Program, and copy and +distribute such modifications or work under the terms of Section 1 +above, provided that you also meet all of these conditions: + + a) You must cause the modified files to carry prominent notices + stating that you changed the files and the date of any change. + + b) You must cause any work that you distribute or publish, that in + whole or in part contains or is derived from the Program or any + part thereof, to be licensed as a whole at no charge to all third + parties under the terms of this License. + + c) If the modified program normally reads commands interactively + when run, you must cause it, when started running for such + interactive use in the most ordinary way, to print or display an + announcement including an appropriate copyright notice and a + notice that there is no warranty (or else, saying that you provide + a warranty) and that users may redistribute the program under + these conditions, and telling the user how to view a copy of this + License. (Exception: if the Program itself is interactive but + does not normally print such an announcement, your work based on + the Program is not required to print an announcement.) + +These requirements apply to the modified work as a whole. If +identifiable sections of that work are not derived from the Program, +and can be reasonably considered independent and separate works in +themselves, then this License, and its terms, do not apply to those +sections when you distribute them as separate works. But when you +distribute the same sections as part of a whole which is a work based +on the Program, the distribution of the whole must be on the terms of +this License, whose permissions for other licensees extend to the +entire whole, and thus to each and every part regardless of who wrote it. + +Thus, it is not the intent of this section to claim rights or contest +your rights to work written entirely by you; rather, the intent is to +exercise the right to control the distribution of derivative or +collective works based on the Program. + +In addition, mere aggregation of another work not based on the Program +with the Program (or with a work based on the Program) on a volume of +a storage or distribution medium does not bring the other work under +the scope of this License. + + 3. You may copy and distribute the Program (or a work based on it, +under Section 2) in object code or executable form under the terms of +Sections 1 and 2 above provided that you also do one of the following: + + a) Accompany it with the complete corresponding machine-readable + source code, which must be distributed under the terms of Sections + 1 and 2 above on a medium customarily used for software interchange; or, + + b) Accompany it with a written offer, valid for at least three + years, to give any third party, for a charge no more than your + cost of physically performing source distribution, a complete + machine-readable copy of the corresponding source code, to be + distributed under the terms of Sections 1 and 2 above on a medium + customarily used for software interchange; or, + + c) Accompany it with the information you received as to the offer + to distribute corresponding source code. (This alternative is + allowed only for noncommercial distribution and only if you + received the program in object code or executable form with such + an offer, in accord with Subsection b above.) + +The source code for a work means the preferred form of the work for +making modifications to it. For an executable work, complete source +code means all the source code for all modules it contains, plus any +associated interface definition files, plus the scripts used to +control compilation and installation of the executable. However, as a +special exception, the source code distributed need not include +anything that is normally distributed (in either source or binary +form) with the major components (compiler, kernel, and so on) of the +operating system on which the executable runs, unless that component +itself accompanies the executable. + +If distribution of executable or object code is made by offering +access to copy from a designated place, then offering equivalent +access to copy the source code from the same place counts as +distribution of the source code, even though third parties are not +compelled to copy the source along with the object code. + + 4. You may not copy, modify, sublicense, or distribute the Program +except as expressly provided under this License. Any attempt +otherwise to copy, modify, sublicense or distribute the Program is +void, and will automatically terminate your rights under this License. +However, parties who have received copies, or rights, from you under +this License will not have their licenses terminated so long as such +parties remain in full compliance. + + 5. You are not required to accept this License, since you have not +signed it. However, nothing else grants you permission to modify or +distribute the Program or its derivative works. These actions are +prohibited by law if you do not accept this License. Therefore, by +modifying or distributing the Program (or any work based on the +Program), you indicate your acceptance of this License to do so, and +all its terms and conditions for copying, distributing or modifying +the Program or works based on it. + + 6. Each time you redistribute the Program (or any work based on the +Program), the recipient automatically receives a license from the +original licensor to copy, distribute or modify the Program subject to +these terms and conditions. You may not impose any further +restrictions on the recipients' exercise of the rights granted herein. +You are not responsible for enforcing compliance by third parties to +this License. + + 7. If, as a consequence of a court judgment or allegation of patent +infringement or for any other reason (not limited to patent issues), +conditions are imposed on you (whether by court order, agreement or +otherwise) that contradict the conditions of this License, they do not +excuse you from the conditions of this License. If you cannot +distribute so as to satisfy simultaneously your obligations under this +License and any other pertinent obligations, then as a consequence you +may not distribute the Program at all. For example, if a patent +license would not permit royalty-free redistribution of the Program by +all those who receive copies directly or indirectly through you, then +the only way you could satisfy both it and this License would be to +refrain entirely from distribution of the Program. + +If any portion of this section is held invalid or unenforceable under +any particular circumstance, the balance of the section is intended to +apply and the section as a whole is intended to apply in other +circumstances. + +It is not the purpose of this section to induce you to infringe any +patents or other property right claims or to contest validity of any +such claims; this section has the sole purpose of protecting the +integrity of the free software distribution system, which is +implemented by public license practices. Many people have made +generous contributions to the wide range of software distributed +through that system in reliance on consistent application of that +system; it is up to the author/donor to decide if he or she is willing +to distribute software through any other system and a licensee cannot +impose that choice. + +This section is intended to make thoroughly clear what is believed to +be a consequence of the rest of this License. + + 8. If the distribution and/or use of the Program is restricted in +certain countries either by patents or by copyrighted interfaces, the +original copyright holder who places the Program under this License +may add an explicit geographical distribution limitation excluding +those countries, so that distribution is permitted only in or among +countries not thus excluded. In such case, this License incorporates +the limitation as if written in the body of this License. + + 9. The Free Software Foundation may publish revised and/or new versions +of the General Public License from time to time. Such new versions will +be similar in spirit to the present version, but may differ in detail to +address new problems or concerns. + +Each version is given a distinguishing version number. If the Program +specifies a version number of this License which applies to it and "any +later version", you have the option of following the terms and conditions +either of that version or of any later version published by the Free +Software Foundation. If the Program does not specify a version number of +this License, you may choose any version ever published by the Free Software +Foundation. + + 10. If you wish to incorporate parts of the Program into other free +programs whose distribution conditions are different, write to the author +to ask for permission. For software which is copyrighted by the Free +Software Foundation, write to the Free Software Foundation; we sometimes +make exceptions for this. Our decision will be guided by the two goals +of preserving the free status of all derivatives of our free software and +of promoting the sharing and reuse of software generally. + + NO WARRANTY + + 11. BECAUSE THE PROGRAM IS LICENSED FREE OF CHARGE, THERE IS NO WARRANTY +FOR THE PROGRAM, TO THE EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHEN +OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES +PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED +OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF +MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE ENTIRE RISK AS +TO THE QUALITY AND PERFORMANCE OF THE PROGRAM IS WITH YOU. SHOULD THE +PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING, +REPAIR OR CORRECTION. + + 12. IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING +WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/OR +REDISTRIBUTE THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, +INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING +OUT OF THE USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED +TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY +YOU OR THIRD PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER +PROGRAMS), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE +POSSIBILITY OF SUCH DAMAGES. + + END OF TERMS AND CONDITIONS + + How to Apply These Terms to Your New Programs + + If you develop a new program, and you want it to be of the greatest +possible use to the public, the best way to achieve this is to make it +free software which everyone can redistribute and change under these terms. + + To do so, attach the following notices to the program. It is safest +to attach them to the start of each source file to most effectively +convey the exclusion of warranty; and each file should have at least +the "copyright" line and a pointer to where the full notice is found. + + + Copyright (C) + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 2 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License along + with this program; if not, write to the Free Software Foundation, Inc., + 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. + +Also add information on how to contact you by electronic and paper mail. + +If the program is interactive, make it output a short notice like this +when it starts in an interactive mode: + + Gnomovision version 69, Copyright (C) year name of author + Gnomovision comes with ABSOLUTELY NO WARRANTY; for details type `show w'. + This is free software, and you are welcome to redistribute it + under certain conditions; type `show c' for details. + +The hypothetical commands `show w' and `show c' should show the appropriate +parts of the General Public License. Of course, the commands you use may +be called something other than `show w' and `show c'; they could even be +mouse-clicks or menu items--whatever suits your program. + +You should also get your employer (if you work as a programmer) or your +school, if any, to sign a "copyright disclaimer" for the program, if +necessary. Here is a sample; alter the names: + + Yoyodyne, Inc., hereby disclaims all copyright interest in the program + `Gnomovision' (which makes passes at compilers) written by James Hacker. + + , 1 April 1989 + Ty Coon, President of Vice + +This General Public License does not permit incorporating your program into +proprietary programs. If your program is a subroutine library, you may +consider it more useful to permit linking proprietary applications with the +library. If this is what you want to do, use the GNU Lesser General +Public License instead of this License. diff --git a/SOURCES/RPM-GPG-KEY-CentOS-SIG-Extras-SHA512 b/SOURCES/RPM-GPG-KEY-CentOS-SIG-Extras-SHA512 new file mode 100644 index 0000000..e15f9a8 --- /dev/null +++ b/SOURCES/RPM-GPG-KEY-CentOS-SIG-Extras-SHA512 @@ -0,0 +1,37 @@ +-----BEGIN PGP PUBLIC KEY BLOCK----- +Version: GnuPG v2.0.22 (GNU/Linux) + +mQENBGG65jsBCADef7Fspss6f2PKrlrxufWlBaQI+kcdSDbY7o/dyyjpT7dcX8t8 +Ou73irjiShK3q0pdrh1Wy/mXc7RIJwAbCt9OVgyx4PV6AW5LfU7P7xyEAbTgLhz9 +lLPjBGhBvfRpW+7naPqkTcIKxpVR8Khq6fsvThGCNzNkGa46F1srE3mf1zC9wdVR +VtXO7gHEZ2LrNcl195jZkBQOLcXANcSOFh5eRfhumULmk4XgCGmZQT5UNFofqOmn +aWQGBq3XaU7RWjl7RH+IS2EW0rAtz9Le+cH+j0aFhzo7jBMOxGYG62rUaHdxssjV +S1CrfpYT6NeG5i/1hiP4hO9suezJw4yuXNZ3ABEBAAG0VkNlbnRPUyBFeHRyYXMg +U0lHIChodHRwczovL3dpa2kuY2VudG9zLm9yZy9TcGVjaWFsSW50ZXJlc3RHcm91 +cCkgPHNlY3VyaXR5QGNlbnRvcy5vcmc+iQE5BBMBCgAjAhsvBwsJCAcDAgEGFQgC +CQoLBBYCAwECHgECF4AFAmIePKwACgkQH/aiFx2ZdmgUpAgAt1Y139EUQOLd013m +jZx3shUVHRWCU0SaWLuXLupdxqhe/Iygen48aiDWfAtWr9neAJKKZFboDXXPyxDy +9529aDgJnjwGRSFAcmvsuMaEMse6PZepTFtwhg2A/N0sDLVJSWagbQmTHdpkgEwn +rrwO/TEaqjJ2+vZG67IIvw2rgtF3sQC28I1z7c1cPH5/NNf7dOZ29vtn44juMFFs +o2Kd2FjZ0WP4wRmFF646nS5S1WHGS32K0xvDJMXO3MBXhaATVg+5i5ICA6fx6F3Y +FFLJrXjx/LBtsY3EbJ0OddeZQtaAHFM1Xm6e0UHpnfjG9EGl9QrC5qzLSng0YMrG +emhIy7kBDQRhuuY7AQgAs+enJDbwE/Iln3BnxodDQ3/1t9ULlMLJLiV+FgS7yREZ +QvhVQxFWaJqbiPV6EJVxEP5lUHND2DAE2ZTr60y0rI3ZAY52go+QYHXb+M5HC12H +HbhIDTWaETNo5heq/qyVSRT1u0g/yKCxQdyqnVsL86bro0wgrpj7XuApQifFhy16 +AkDjhcB0C0dXkfvEnHJylWiHpp7upfSgOcGwQ+yRHOZWJnyF+OMrFfNiwD74/zEN +4RoNFgpqJZ81TF0qCdllTYGAXXUdYsJlg64dH0u84naTOFIuInywCmNyPmC8e8/0 +g56hCV2L7bRJGjBCa6VH+TgvVGnkFsoMM9ijhuTIIQARAQABiQI+BBgBCgAJAhsu +BQJiHjnNASnAXSAEGQECAAYFAmG65jsACgkQi1yBEfyl0P9m/QgAh2KmBA4h/slx +aZeWLb2cV53B1jVElsrEAE/a8yKhhcNeNOQsEWwT2/i6mdWchnIQzojKs3ypoRUY +xsICIb4b4AFzc//aYhaOWThNRHh0UwaueNu0YBqVF3URUlf/Hw1Wv16v4QwkNhHQ ++EohCRltR2PBjAHRHXDImy9OxV/uTnZjTXegj2Jl3ueQ5nF4pleqUctt/V9JjqzO +YcQZW78s1jyBRzefbPxQHKKp4na6etTmIvgVDjkMChRZPRjZYEVZNi8kJM0aaK4q +ugGoL6cWBR6RYka+/eEFMd3kSrng9ahbNX0F4ztdZ2alPrrE6BvJ7n/Mt6tZKgL7 +x9V0GpbstAkQH/aiFx2ZdmgN/gf+PEUa1LT98RS28fyNPaXYGx5vLWYxUtAdeN9a +TfugGHCVhVsowbIEnuFUHE1JmTJ1hDaFYXqkgG9zDo81JVz/yCHpNIQO0YF2h+qX +BXiKP7PQ+iT/PjQHidlYUuz73hjDwRl3AhLafcwVHeD3cCgo/ZP/Vi9Y9iBFVZDl +jGHxAIe0PWbEAUuqNJOgrlVmmCtSqVkN1Neihx1zjpw3rqfUQzwvhvcsOfkKfnBs +Boc66IZ0J5pmSzgJnSbLrr2dv1/jYHaolA24vkMqMxKzJbz+GeQ/SqBZ5/rA37VL +x90Tu9UVSfbyEbwS9Zj1sVmc3mdm1kn6dmTlOfTDIqehfHBlnQ== +=jx2B +-----END PGP PUBLIC KEY BLOCK----- diff --git a/SOURCES/RPM-GPG-KEY-centosofficial-SHA256 b/SOURCES/RPM-GPG-KEY-centosofficial-SHA256 new file mode 100644 index 0000000..ceee67d --- /dev/null +++ b/SOURCES/RPM-GPG-KEY-centosofficial-SHA256 @@ -0,0 +1,30 @@ +-----BEGIN PGP PUBLIC KEY BLOCK----- +Version: GnuPG v2.0.22 (GNU/Linux) + +mQINBFzMWxkBEADHrskpBgN9OphmhRkc7P/YrsAGSvvl7kfu+e9KAaU6f5MeAVyn +rIoM43syyGkgFyWgjZM8/rur7EMPY2yt+2q/1ZfLVCRn9856JqTIq0XRpDUe4nKQ +8BlA7wDVZoSDxUZkSuTIyExbDf0cpw89Tcf62Mxmi8jh74vRlPy1PgjWL5494b3X +5fxDidH4bqPZyxTBqPrUFuo+EfUVEqiGF94Ppq6ZUvrBGOVo1V1+Ifm9CGEK597c +aevcGc1RFlgxIgN84UpuDjPR9/zSndwJ7XsXYvZ6HXcKGagRKsfYDWGPkA5cOL/e +f+yObOnC43yPUvpggQ4KaNJ6+SMTZOKikM8yciyBwLqwrjo8FlJgkv8Vfag/2UR7 +JINbyqHHoLUhQ2m6HXSwK4YjtwidF9EUkaBZWrrskYR3IRZLXlWqeOi/+ezYOW0m +vufrkcvsh+TKlVVnuwmEPjJ8mwUSpsLdfPJo1DHsd8FS03SCKPaXFdD7ePfEjiYk +nHpQaKE01aWVSLUiygn7F7rYemGqV9Vt7tBw5pz0vqSC72a5E3zFzIIuHx6aANry +Gat3aqU3qtBXOrA/dPkX9cWE+UR5wo/A2UdKJZLlGhM2WRJ3ltmGT48V9CeS6N9Y +m4CKdzvg7EWjlTlFrd/8WJ2KoqOE9leDPeXRPncubJfJ6LLIHyG09h9kKQARAQAB +tDpDZW50T1MgKENlbnRPUyBPZmZpY2lhbCBTaWduaW5nIEtleSkgPHNlY3VyaXR5 +QGNlbnRvcy5vcmc+iQI3BBMBCAAhAhsDBgsJCAcDAgYVCAIJCgsDFgIBAh4BAheA +BQJczFsaAAoJEAW1VbOEg8ZdvOgQAMFTGIQokADy5+CynFKjfO7R0VVpJxmYGVr1 +TjnKaHmjxnJaYqoha9ukGgmLu0r+lJ42Kk6nREk1vlxfRAfiWd00Zkm+K3IMq1/D +E0heC2vX8qqjsLJs3jzq0hgNvo9X0uHDaA4J1BHsD8sE5in/f4SivjbngvFovRGU +1XLNCgoqpFNcROP18LqKUw8WtqgWdnYBa5i6D5qx+WMRX0NHNwcCMy1lz+sTFxIU +9mW6cLsMaacPGD8pUXIVli8P9Vlv3jBk1wFIqRgQPW01ph/3bM7pf9hyM9FAfU4X +AFcyb1oYI4/82EkICUe6jeuZrz67dPeLVAlYrGW4hp/825g0fqJHxPDp25GS4rAa +4RqyibLzNjSGdXYeLj2NcB/8OqaP+T1hv3JDaqe70QoYa/GIC4rh15NyXVbUP+LG +V4vUiL7mb9ynzvF5zYHJbcg4R7dOsiZHrMFwy7FZesQaVrXeJlxRcEj65rpm1ZtZ +mwAE1k2LsRkvLyr9hpZkXnMeOKYIPwpdmBjXNVNVbq7097OxZOYPPos+iZKMWfl4 +UQnMsCVxonZtamdI4qEc3jMkSZPJKgOplGOms5jdY+EdSvsFWEQ0Snd3dChfU7DV +o4Rbcy5klwHrvuZIOLaovhyxuRPhP6gV9+gzpTK/7vrvDlFbbZE6s212mDZ13RWB +mTfAxz4h +=agO/ +-----END PGP PUBLIC KEY BLOCK----- diff --git a/SOURCES/centos-addons.repo b/SOURCES/centos-addons.repo new file mode 100644 index 0000000..6835c4e --- /dev/null +++ b/SOURCES/centos-addons.repo @@ -0,0 +1,131 @@ +[highavailability] +name=CentOS Stream $releasever - HighAvailability +metalink=https://mirrors.centos.org/metalink?repo=centos-highavailability-$stream&arch=$basearch&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial-SHA256 +gpgcheck=0 +repo_gpgcheck=0 +metadata_expire=6h +countme=1 +enabled=0 + +[highavailability-debuginfo] +name=CentOS Stream $releasever - HighAvailability - Debug +metalink=https://mirrors.centos.org/metalink?repo=centos-highavailability-debug-$stream&arch=$basearch&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial-SHA256 +gpgcheck=0 +repo_gpgcheck=0 +metadata_expire=6h +enabled=0 + +[highavailability-source] +name=CentOS Stream $releasever - HighAvailability - Source +metalink=https://mirrors.centos.org/metalink?repo=centos-highavailability-source-$stream&arch=source&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial-SHA256 +gpgcheck=0 +repo_gpgcheck=0 +metadata_expire=6h +enabled=0 + +[nfv] +name=CentOS Stream $releasever - NFV +metalink=https://mirrors.centos.org/metalink?repo=centos-nfv-$stream&arch=$basearch&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial-SHA256 +gpgcheck=0 +repo_gpgcheck=0 +metadata_expire=6h +countme=1 +enabled=0 + +[nfv-debuginfo] +name=CentOS Stream $releasever - NFV - Debug +metalink=https://mirrors.centos.org/metalink?repo=centos-nfv-debug-$stream&arch=$basearch&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial-SHA256 +gpgcheck=0 +repo_gpgcheck=0 +metadata_expire=6h +enabled=0 + +[nfv-source] +name=CentOS Stream $releasever - NFV - Source +metalink=https://mirrors.centos.org/metalink?repo=centos-nfv-source-$stream&arch=source&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial-SHA256 +gpgcheck=0 +repo_gpgcheck=0 +metadata_expire=6h +enabled=0 + +[rt] +name=CentOS Stream $releasever - RT +metalink=https://mirrors.centos.org/metalink?repo=centos-rt-$stream&arch=$basearch&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial-SHA256 +gpgcheck=0 +repo_gpgcheck=0 +metadata_expire=6h +countme=1 +enabled=0 + +[rt-debuginfo] +name=CentOS Stream $releasever - RT - Debug +metalink=https://mirrors.centos.org/metalink?repo=centos-rt-debug-$stream&arch=$basearch&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial-SHA256 +gpgcheck=0 +repo_gpgcheck=0 +metadata_expire=6h +enabled=0 + +[rt-source] +name=CentOS Stream $releasever - RT - Source +metalink=https://mirrors.centos.org/metalink?repo=centos-rt-source-$stream&arch=source&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial-SHA256 +gpgcheck=0 +repo_gpgcheck=0 +metadata_expire=6h +enabled=0 + +[resilientstorage] +name=CentOS Stream $releasever - ResilientStorage +metalink=https://mirrors.centos.org/metalink?repo=centos-resilientstorage-$stream&arch=$basearch&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial-SHA256 +gpgcheck=0 +repo_gpgcheck=0 +metadata_expire=6h +countme=1 +enabled=0 + +[resilientstorage-debuginfo] +name=CentOS Stream $releasever - ResilientStorage - Debug +metalink=https://mirrors.centos.org/metalink?repo=centos-resilientstorage-debug-$stream&arch=$basearch&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial-SHA256 +gpgcheck=0 +repo_gpgcheck=0 +metadata_expire=6h +enabled=0 + +[resilientstorage-source] +name=CentOS Stream $releasever - ResilientStorage - Source +metalink=https://mirrors.centos.org/metalink?repo=centos-resilientstorage-source-$stream&arch=source&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial-SHA256 +gpgcheck=0 +repo_gpgcheck=0 +metadata_expire=6h +enabled=0 + +[extras-common] +name=CentOS Stream $releasever - Extras packages +metalink=https://mirrors.centos.org/metalink?repo=centos-extras-sig-extras-common-$stream&arch=$basearch&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-SIG-Extras-SHA512 +gpgcheck=0 +repo_gpgcheck=0 +metadata_expire=6h +countme=1 +enabled=0 + +[extras-common-source] +name=CentOS Stream $releasever - Extras packages - Source +metalink=https://mirrors.centos.org/metalink?repo=centos-extras-sig-extras-common-source-$stream&arch=source&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-SIG-Extras-SHA512 +gpgcheck=0 +repo_gpgcheck=0 +metadata_expire=6h +enabled=0 + diff --git a/SOURCES/centos.repo b/SOURCES/centos.repo new file mode 100644 index 0000000..9308990 --- /dev/null +++ b/SOURCES/centos.repo @@ -0,0 +1,83 @@ +[baseos] +name=CentOS Stream $releasever - BaseOS +metalink=https://mirrors.centos.org/metalink?repo=centos-baseos-$stream&arch=$basearch&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial-SHA256 +gpgcheck=1 +repo_gpgcheck=0 +metadata_expire=6h +countme=1 +enabled=1 + +[baseos-debuginfo] +name=CentOS Stream $releasever - BaseOS - Debug +metalink=https://mirrors.centos.org/metalink?repo=centos-baseos-debug-$stream&arch=$basearch&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial-SHA256 +gpgcheck=1 +repo_gpgcheck=0 +metadata_expire=6h +enabled=0 + +[baseos-source] +name=CentOS Stream $releasever - BaseOS - Source +metalink=https://mirrors.centos.org/metalink?repo=centos-baseos-source-$stream&arch=source&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial-SHA256 +gpgcheck=1 +repo_gpgcheck=0 +metadata_expire=6h +enabled=0 + +[appstream] +name=CentOS Stream $releasever - AppStream +metalink=https://mirrors.centos.org/metalink?repo=centos-appstream-$stream&arch=$basearch&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial-SHA256 +gpgcheck=1 +repo_gpgcheck=0 +metadata_expire=6h +countme=1 +enabled=1 + +[appstream-debuginfo] +name=CentOS Stream $releasever - AppStream - Debug +metalink=https://mirrors.centos.org/metalink?repo=centos-appstream-debug-$stream&arch=$basearch&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial-SHA256 +gpgcheck=1 +repo_gpgcheck=0 +metadata_expire=6h +enabled=0 + +[appstream-source] +name=CentOS Stream $releasever - AppStream - Source +metalink=https://mirrors.centos.org/metalink?repo=centos-appstream-source-$stream&arch=source&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial-SHA256 +gpgcheck=1 +repo_gpgcheck=0 +metadata_expire=6h +enabled=0 + +[crb] +name=CentOS Stream $releasever - CRB +metalink=https://mirrors.centos.org/metalink?repo=centos-crb-$stream&arch=$basearch&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial-SHA256 +gpgcheck=1 +repo_gpgcheck=0 +metadata_expire=6h +countme=1 +enabled=0 + +[crb-debuginfo] +name=CentOS Stream $releasever - CRB - Debug +metalink=https://mirrors.centos.org/metalink?repo=centos-crb-debug-$stream&arch=$basearch&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial-SHA256 +gpgcheck=1 +repo_gpgcheck=0 +metadata_expire=6h +enabled=0 + +[crb-source] +name=CentOS Stream $releasever - CRB - Source +metalink=https://mirrors.centos.org/metalink?repo=centos-crb-source-$stream&arch=source&protocol=https,http +gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial-SHA256 +gpgcheck=1 +repo_gpgcheck=0 +metadata_expire=6h +enabled=0 diff --git a/SOURCES/centossecureboot201.cer b/SOURCES/centossecureboot201.cer new file mode 100644 index 0000000..ca3c134 Binary files /dev/null and b/SOURCES/centossecureboot201.cer differ diff --git a/SOURCES/centossecureboot202.cer b/SOURCES/centossecureboot202.cer new file mode 100644 index 0000000..ab8213c Binary files /dev/null and b/SOURCES/centossecureboot202.cer differ diff --git a/SOURCES/centossecureboot203.cer b/SOURCES/centossecureboot203.cer new file mode 100644 index 0000000..5df41c2 Binary files /dev/null and b/SOURCES/centossecureboot203.cer differ diff --git a/SOURCES/centossecureboot204.cer b/SOURCES/centossecureboot204.cer new file mode 100644 index 0000000..fd967e5 Binary files /dev/null and b/SOURCES/centossecureboot204.cer differ diff --git a/SOURCES/centossecurebootca2.cer b/SOURCES/centossecurebootca2.cer new file mode 100644 index 0000000..42bdfcf Binary files /dev/null and b/SOURCES/centossecurebootca2.cer differ diff --git a/SPECS/centos-stream-release.spec b/SPECS/centos-stream-release.spec new file mode 100644 index 0000000..93a0352 --- /dev/null +++ b/SPECS/centos-stream-release.spec @@ -0,0 +1,533 @@ +%global distro CentOS Stream +%global major 10 +%global minor 0 + +Name: centos-stream-release +Version: %{major}.%{minor} +Release: 0.14%{?dist} +Summary: %{distro} release files +License: GPLv2 +URL: https://centos.org +BuildArch: noarch + +Provides: centos-release = %{version}-%{release} + +# When running a compose for ELN, we want to make sure that we pull in the +# correct templates when lorax is installed. This Suggests: will clue +# libdnf to use this set of templates instead of lorax-templates-generic. +Suggests: lorax-templates-rhel + +# Required for a lorax run (to generate install media) +Requires: centos-stream-repos(%{major}) +Provides: centos-release-eula +Provides: redhat-release-eula + +# required by epel-release +Provides: redhat-release = %{version}-%{release} + +# required by dnf +# https://github.com/rpm-software-management/dnf/blob/4.2.23/dnf/const.py.in#L26 +Provides: system-release = %{version}-%{release} +Provides: system-release(releasever) = %{major} +Conflicts: system-release + +# required by libdnf +# https://github.com/rpm-software-management/libdnf/blob/0.48.0/libdnf/module/ModulePackage.cpp#L472 +Provides: base-module(platform:el%{major}) + +Source200: EULA +Source201: LICENSE +Source202: Contributors + +Source300: 85-display-manager.preset +Source301: 90-default.preset +Source302: 90-default-user.preset +Source303: 99-default-disable.preset +Source304: 50-redhat.conf + +Source400: centossecurebootca2.cer +# kernel signing certificate +Source401: centossecureboot201.cer +# grub2 signing certificate +Source402: centossecureboot202.cer +# Fwupd signing certificate +Source403: centossecureboot203.cer +# UKI-VIRT signing certificate +Source404: centossecureboot204.cer + +Source500: centos.repo +Source501: centos-addons.repo + +Source602: RPM-GPG-KEY-CentOS-SIG-Extras-SHA512 +Source603: RPM-GPG-KEY-centosofficial-SHA256 + + +%package -n centos-sb-certs +Summary: %{distro} public secureboot certificates +Group: System Environment/Base +Provides: system-sb-certs = %{version}-%{release} + +%package -n centos-stream-repos +Summary: CentOS Stream package repositories +Provides: system-repos = %{version}-%{release} +Provides: centos-stream-repos(%{major}) = %{version} +Requires: centos-gpg-keys = %{version}-%{release} + +%package -n centos-gpg-keys +Summary: CentOS RPM keys + + +%description +%{distro} release files. + +%description -n centos-sb-certs +%{distro} secureboot certificates + +%description -n centos-stream-repos +This package provides the package repository files for CentOS Stream. + +%description -n centos-gpg-keys +This package provides the RPM signature keys for CentOS. + + +%install +# copy license and contributors doc here for %%license and %%doc macros +mkdir -p ./docs +cp %{SOURCE201} %{SOURCE202} ./docs + +# create /etc/system-release and /etc/redhat-release +install -d -m 0755 %{buildroot}%{_sysconfdir} +echo "%{distro} release %{major}" > %{buildroot}%{_sysconfdir}/centos-release +ln -s centos-release %{buildroot}%{_sysconfdir}/system-release +ln -s centos-release %{buildroot}%{_sysconfdir}/redhat-release + +# ------------------------------------------------------------------------- +# Definitions for /etc/os-release and for macros in macros.dist. These +# macros are useful for spec files where distribution-specific identifiers +# are used to customize packages. + +# Name of vendor / name of distribution. Typically used to identify where +# the binary comes from in --help or --version messages of programs. +# Examples: gdb.spec, clang.spec +%global dist_vendor CentOS +%global dist_name %{distro} + +# URL of the homepage of the distribution +# Example: gstreamer1-plugins-base.spec +%global dist_home_url https://centos.org/ + +# Bugzilla / bug reporting URLs shown to users. +# Examples: gcc.spec +%global dist_bug_report_url https://issues.redhat.com/ + +# debuginfod server, as used in elfutils.spec. +%global dist_debuginfod_url https://debuginfod.centos.org/ +# ------------------------------------------------------------------------- + + +# Create the os-release file +install -d -m 0755 %{buildroot}%{_prefix}/lib +cat > %{buildroot}%{_prefix}/lib/os-release << EOF +NAME="%{dist_name}" +VERSION="%{major}" +ID="centos" +ID_LIKE="rhel fedora" +VERSION_ID="%{major}" +PLATFORM_ID="platform:el%{major}" +PRETTY_NAME="%{distro} %{major}" +ANSI_COLOR="0;31" +LOGO="fedora-logo-icon" +CPE_NAME="cpe:/o:centos:centos:%{major}" +HOME_URL="%{dist_home_url}" +BUG_REPORT_URL="%{dist_bug_report_url}" +REDHAT_SUPPORT_PRODUCT="Red Hat Enterprise Linux %{major}" +REDHAT_SUPPORT_PRODUCT_VERSION="%{distro}" +EOF + +# Create the symlink for /etc/os-release +ln -s ../usr/lib/os-release %{buildroot}%{_sysconfdir}/os-release + +# write cpe to /etc/system/release-cpe +echo "cpe:/o:centos:centos:%{major}" > %{buildroot}%{_sysconfdir}/system-release-cpe + +# create /etc/issue, /etc/issue.net and /etc/issue.d +echo '\S' > %{buildroot}%{_sysconfdir}/issue +echo 'Kernel \r on an \m' >> %{buildroot}%{_sysconfdir}/issue +cp %{buildroot}%{_sysconfdir}/issue{,.net} +echo >> %{buildroot}%{_sysconfdir}/issue +mkdir -p %{buildroot}%{_sysconfdir}/issue.d + +# set up the dist tag macros +mkdir -p %{buildroot}%{_rpmmacrodir} +cat > %{buildroot}%{_rpmmacrodir}/macros.dist << EOF +# dist macros. + +%%__bootstrap ~bootstrap +%%centos_ver %{major} +%%centos %{major} +%%rhel %{major} +%%el%{major} 1 +%%distcore .el%{major} +%%dist %%{!?distprefix0:%%{?distprefix}}%%{expand:%%{lua:for i=0,9999 do print("%%{?distprefix" .. i .."}") end}}%%{distcore}%%{?distsuffix}%%{?with_bootstrap:%{__bootstrap}} +%%dist_vendor %{dist_vendor} +%%dist_name %{dist_name} +%%dist_home_url %{dist_home_url} +%%dist_bug_report_url %{dist_bug_report_url} +%%dist_debuginfod_url %{dist_debuginfod_url} +EOF + +# use unbranded datadir +install -d -m 0755 %{buildroot}%{_datadir}/centos-release +ln -s centos-release %{buildroot}%{_datadir}/redhat-release +install -p -m 0644 %{SOURCE200} %{buildroot}%{_datadir}/centos-release/ + +# copy systemd presets +install -d -m 0755 %{buildroot}%{_prefix}/lib/systemd/system-preset/ +install -d -m 0755 %{buildroot}%{_prefix}/lib/systemd/user-preset +install -p -m 0644 %{SOURCE300} %{buildroot}%{_prefix}/lib/systemd/system-preset/ +install -p -m 0644 %{SOURCE301} %{buildroot}%{_prefix}/lib/systemd/system-preset/ +install -p -m 0644 %{SOURCE302} %{buildroot}%{_prefix}/lib/systemd/user-preset/ + +# installing the same file for both system and user presets to set the same behavior for both +install -p -m 0644 %{SOURCE303} %{buildroot}%{_prefix}/lib/systemd/system-preset/ +install -p -m 0644 %{SOURCE303} %{buildroot}%{_prefix}/lib/systemd/user-preset/ + +# copy sysctl presets +mkdir -p %{buildroot}/%{_prefix}/lib/sysctl.d/ +install -m 0644 %{SOURCE304} %{buildroot}/%{_prefix}/lib/sysctl.d/ + +# Create stub yum repos +mkdir %{buildroot}%{_sysconfdir}/yum.repos.d +touch %{buildroot}%{_sysconfdir}/yum.repos.d/redhat.repo + +# Copy secureboot certificates +install -d -m 0755 %{buildroot}%{_sysconfdir}/pki/sb-certs/ +install -d -m 0755 %{buildroot}%{_datadir}/pki/sb-certs/ + +# Install aarch64 certs +install -m 644 %{SOURCE400} %{buildroot}%{_datadir}/pki/sb-certs/secureboot-ca-aarch64.cer +install -m 644 %{SOURCE401} %{buildroot}%{_datadir}/pki/sb-certs/secureboot-kernel-aarch64.cer +install -m 644 %{SOURCE402} %{buildroot}%{_datadir}/pki/sb-certs/secureboot-grub2-aarch64.cer +install -m 644 %{SOURCE403} %{buildroot}%{_datadir}/pki/sb-certs/secureboot-fwupd-aarch64.cer +install -m 644 %{SOURCE404} %{buildroot}%{_datadir}/pki/sb-certs/secureboot-uki-virt-aarch64.cer + + +# Install x86_64 certs +install -m 644 %{SOURCE400} %{buildroot}%{_datadir}/pki/sb-certs/secureboot-ca-x86_64.cer +install -m 644 %{SOURCE401} %{buildroot}%{_datadir}/pki/sb-certs/secureboot-kernel-x86_64.cer +install -m 644 %{SOURCE402} %{buildroot}%{_datadir}/pki/sb-certs/secureboot-grub2-x86_64.cer +install -m 644 %{SOURCE403} %{buildroot}%{_datadir}/pki/sb-certs/secureboot-fwupd-x86_64.cer +install -m 644 %{SOURCE404} %{buildroot}%{_datadir}/pki/sb-certs/secureboot-uki-virt-x86_64.cer + +# Install ppc64le certs +install -m 644 %{SOURCE400} %{buildroot}%{_datadir}/pki/sb-certs/secureboot-ca-ppc64le.cer +install -m 644 %{SOURCE401} %{buildroot}%{_datadir}/pki/sb-certs/secureboot-kernel-ppc64le.cer +install -m 644 %{SOURCE402} %{buildroot}%{_datadir}/pki/sb-certs/secureboot-grub2-ppc64le.cer +install -m 644 %{SOURCE404} %{buildroot}%{_datadir}/pki/sb-certs/secureboot-uki-virt-ppc64le.cer + +# Install s390x certs +install -m 644 %{SOURCE400} %{buildroot}%{_datadir}/pki/sb-certs/secureboot-ca-s390x.cer +install -m 644 %{SOURCE401} %{buildroot}%{_datadir}/pki/sb-certs/secureboot-kernel-s390x.cer +install -m 644 %{SOURCE404} %{buildroot}%{_datadir}/pki/sb-certs/secureboot-uki-virt-s390x.cer + +# Link x86_64 certs +ln -sr %{buildroot}%{_datadir}/pki/sb-certs/secureboot-ca-x86_64.cer %{buildroot}%{_sysconfdir}/pki/sb-certs/secureboot-ca-x86_64.cer +ln -sr %{buildroot}%{_datadir}/pki/sb-certs/secureboot-kernel-x86_64.cer %{buildroot}%{_sysconfdir}/pki/sb-certs/secureboot-kernel-x86_64.cer +ln -sr %{buildroot}%{_datadir}/pki/sb-certs/secureboot-grub2-x86_64.cer %{buildroot}%{_sysconfdir}/pki/sb-certs/secureboot-grub2-x86_64.cer +ln -sr %{buildroot}%{_datadir}/pki/sb-certs/secureboot-fwupd-x86_64.cer %{buildroot}%{_sysconfdir}/pki/sb-certs/secureboot-fwupd-x86_64.cer +ln -sr %{buildroot}%{_datadir}/pki/sb-certs/secureboot-uki-virt-x86_64.cer %{buildroot}%{_sysconfdir}/pki/sb-certs/secureboot-uki-virt-x86_64.cer + + +# Link aarch64 certs +ln -sr %{buildroot}%{_datadir}/pki/sb-certs/secureboot-ca-aarch64.cer %{buildroot}%{_sysconfdir}/pki/sb-certs/secureboot-ca-aarch64.cer +ln -sr %{buildroot}%{_datadir}/pki/sb-certs/secureboot-kernel-aarch64.cer %{buildroot}%{_sysconfdir}/pki/sb-certs/secureboot-kernel-aarch64.cer +ln -sr %{buildroot}%{_datadir}/pki/sb-certs/secureboot-grub2-aarch64.cer %{buildroot}%{_sysconfdir}/pki/sb-certs/secureboot-grub2-aarch64.cer +ln -sr %{buildroot}%{_datadir}/pki/sb-certs/secureboot-fwupd-aarch64.cer %{buildroot}%{_sysconfdir}/pki/sb-certs/secureboot-fwupd-aarch64.cer +ln -sr %{buildroot}%{_datadir}/pki/sb-certs/secureboot-uki-virt-aarch64.cer %{buildroot}%{_sysconfdir}/pki/sb-certs/secureboot-uki-virt-aarch64.cer + +# Link ppc64le certs +ln -sr %{buildroot}%{_datadir}/pki/sb-certs/secureboot-ca-ppc64le.cer %{buildroot}%{_sysconfdir}/pki/sb-certs/secureboot-ca-ppc64le.cer +ln -sr %{buildroot}%{_datadir}/pki/sb-certs/secureboot-kernel-ppc64le.cer %{buildroot}%{_sysconfdir}/pki/sb-certs/secureboot-kernel-ppc64le.cer +ln -sr %{buildroot}%{_datadir}/pki/sb-certs/secureboot-grub2-ppc64le.cer %{buildroot}%{_sysconfdir}/pki/sb-certs/secureboot-grub2-ppc64le.cer +ln -sr %{buildroot}%{_datadir}/pki/sb-certs/secureboot-uki-virt-ppc64le.cer %{buildroot}%{_sysconfdir}/pki/sb-certs/secureboot-uki-virt-ppc64le.cer + +# Link s390x certs +ln -sr %{buildroot}%{_datadir}/pki/sb-certs/secureboot-ca-s390x.cer %{buildroot}%{_sysconfdir}/pki/sb-certs/secureboot-ca-s390x.cer +ln -sr %{buildroot}%{_datadir}/pki/sb-certs/secureboot-kernel-s390x.cer %{buildroot}%{_sysconfdir}/pki/sb-certs/secureboot-kernel-s390x.cer +ln -sr %{buildroot}%{_datadir}/pki/sb-certs/secureboot-uki-virt-s390x.cer %{buildroot}%{_sysconfdir}/pki/sb-certs/secureboot-uki-virt-s390x.cer + +# copy yum repos +install -d -m 0755 %{buildroot}%{_sysconfdir}/yum.repos.d +install -p -m 0644 %{SOURCE500} %{buildroot}%{_sysconfdir}/yum.repos.d/ +install -p -m 0644 %{SOURCE501} %{buildroot}%{_sysconfdir}/yum.repos.d/ + +# dnf variables +install -d -m 0755 %{buildroot}%{_sysconfdir}/dnf/vars +echo "%{major}-stream" > %{buildroot}%{_sysconfdir}/dnf/vars/stream + +# copy GPG keys +install -d -m 0755 %{buildroot}%{_sysconfdir}/pki/rpm-gpg +install -p -m 0644 %{SOURCE602} %{buildroot}%{_sysconfdir}/pki/rpm-gpg/ +install -p -m 0644 %{SOURCE603} %{buildroot}%{_sysconfdir}/pki/rpm-gpg/ + + +%files +%license docs/LICENSE +%doc docs/Contributors +%{_sysconfdir}/redhat-release +%{_sysconfdir}/system-release +%{_sysconfdir}/centos-release +%config(noreplace) %{_sysconfdir}/os-release +%config %{_sysconfdir}/system-release-cpe +%config(noreplace) %{_sysconfdir}/issue +%config(noreplace) %{_sysconfdir}/issue.net +%dir %{_sysconfdir}/issue.d +%dir %{_sysconfdir}/yum.repos.d +%ghost %{_sysconfdir}/yum.repos.d/redhat.repo +%{_rpmmacrodir}/macros.dist +%{_datadir}/redhat-release +%{_datadir}/centos-release +%{_prefix}/lib/os-release +%{_prefix}/lib/systemd/system-preset/* +%{_prefix}/lib/systemd/user-preset/* +%{_prefix}/lib/sysctl.d/50-redhat.conf + +%files -n centos-sb-certs +# Note to future packagers: +# resetting the symlinks in /etc/pki/sb-certs on upgrade is the intended behavior here +%dir %{_sysconfdir}/pki/sb-certs +%dir %{_datadir}/pki/sb-certs/ +%{_sysconfdir}/pki/sb-certs/*.cer +%{_datadir}/pki/sb-certs/*.cer + +%files -n centos-stream-repos +%config(noreplace) %{_sysconfdir}/yum.repos.d/centos.repo +%config(noreplace) %{_sysconfdir}/yum.repos.d/centos-addons.repo +%config(noreplace) %{_sysconfdir}/dnf/vars/stream + +%files -n centos-gpg-keys +%{_sysconfdir}/pki/rpm-gpg + + +%changelog +* Mon Jun 17 2024 Troy Dawson - 10.0-0.14 +- Change repos to point to the mirrors + +* Fri Jun 07 2024 Sandro Bonazzola - 10.0-0.13 +- Fix distcore macro initialization + +* Thu May 30 2024 Carl George - 10.0-0.12 +- Add distcore macro to allow dist overrides that don't mask distprefix, distsuffix, or bootstrap macros +- Resolves: RHEL-38900 + +* Thu May 30 2024 Stephen Gallagher - 10.0-0.11 +- Restore cups.service patch +- Resolves: RHEL-37762 + +* Thu May 30 2024 Stephen Gallagher - 10.0-0.10 +- Temporarily revert cups.service patch +- Related: RHEL-37762 + +* Wed May 29 2024 Stephen Gallagher - 10.0-0.9 +- Enable cups.service +- Resolves: RHEL-37762 + +* Tue May 28 2024 Adam Samalik - 10.0-0.8 +- Add a re-signed centosofficial keys using SHA256 +- Drop old unused keys +- Enable signature checks in repos + +* Mon May 13 2024 Stephen Gallagher - 10.0-0.7 +- Enable tuned.service +- Resolves: RHEL-35582 + +* Tue Mar 26 2024 Troy Dawson - 10.0-0.6 +- Temp change: Change repos to point to production composes + +* Wed Mar 20 2024 Stephen Gallagher - 10.0-0.4 +- Update BUG_REPORT_URL to use issues.redhat.com +- Resolves: RHEL-17456 + +* Thu Mar 14 2024 Stephen Gallagher - 10.0-0.3 +- Sync presets from Fedora 40 + +* Tue Nov 28 2023 Troy Dawson - 10.0-0.2 +- Add Suggests: lorax-templates-rhel + +* Wed Sep 20 2023 Troy Dawson - 10.0-0.1 +- Update to version 10.0 + +* Wed Aug 30 2023 Stephen Gallagher - 9.0-23 +- Add keys for UKI-VIRT +- Resolves: RHELBLD-13378 + +* Fri Jun 30 2023 Stephen Gallagher - 9.0-22 +- Fix incorrect symlink path for sbcerts +- Resolves: RHELPLAN-161305 + +* Mon Apr 03 2023 Stephen Gallagher - 9.0-21 +- Enable obex.service +- Resolves: rhbz#2181984 + +* Fri Feb 17 2023 Sayan Paul - 9.0-20 +- Remove ostree-readonly-sysroot-migration service from preset +- Resolves: rhbz#2170787 + +* Tue Feb 14 2023 Stephen Gallagher - 9.0-19 +- Enable ostree-readonly-sysroot-migration service +- Resolves: rhbz#2167344 + +* Tue Sep 06 2022 Stephen Gallagher - 9.0-18 +- Enable alternative *-release packages + +* Tue Sep 6 2022 Amit Shah - 9.0-17 +- Add new distribution-specific macros for package configurations + +* Tue Aug 30 2022 Josh Boyer - 9.0-16 +- Adjust debuginfo RPM repo names to -debuginfo + +* Thu Jul 28 2022 Stephen Gallagher - 9.0-15 +- Enable greenboot-service-monitor.service in presets +- Resolves: rhbz#2108625 + +* Thu Jul 28 2022 Stephen Gallagher - 9.0-14 +- Enable clevis-luks-askpass.path in presets +- Resolves: rhbz#2106811 + +* Thu Jun 23 2022 Maxwell G - 9.0-13 +- Include %%{?distsuffix} in %%dist definition +- Resolves: rhbz#2100579 + +* Wed Mar 02 2022 Stephen Gallagher - 9.0-12 +- The Extras key was re-signed to get rid of a SHA1 algo. + Related: rhbz#2059424 + +* Fri Feb 04 2022 Stephen Gallagher - 9.0-11 +- Enable logrotate.timer + +* Wed Feb 02 2022 Stephen Gallagher - 9.0-10 +- Enable switcheroo-control.service +- Resolves: rhbz#2049627 + +* Sun Jan 30 2022 Neal Gompa - 9.0-9 +- Restructure centos-stream-release and centos-stream-repos dependencies +- Resolves: rhbz#2048268 + +* Mon Jan 17 2022 Neal Gompa - 9.0-8 +- Use metalinks for extras-common repos +- Resolves: rhbz#2037871 + +* Thu Jan 06 2022 Fabian Arrotin - 9.0-7 +- Adding Extras-common repos for SIGs produced content +- Resolves: rhbz#2037871 + +* Mon Dec 13 2021 Neal Gompa - 9.0-6 +- Add LOGO to os-release(5) data + Resolves: rhbz#2031998 + +* Thu Nov 18 2021 Timothée Ravier - 9.0-5 +- Create and own /etc/issue.d directory + +* Fri Nov 12 2021 Stephen Gallagher - 9.0-4 +- Add preset to enable WirePlumber by default +- Related: rhbz#2022717 + +* Mon Oct 04 2021 Carl George - 9.0-3 +- Specify protocols in metalink URLs +- Related: rhbz#2006565 + +* Tue Sep 21 2021 Carl George - 9.0-2 +- Add repos and gpg-keys subpackages +- Resolves: rhbz#2006565 + +* Fri Sep 10 2021 Stephen Gallagher - 9.0-1.0.12 +- Ship public secureboot certs in a well-known location +- Related: rhbz#1997343 +- Switch to libvirt modular daemons +- Related: rhbz#1991965 + +* Thu Sep 02 2021 Stephen Gallagher - 9.0-1.0.11 +- Update EULA to refer to CentOS Stream 9 instead of CentOS Linux 8 +- Resolves: CS-798 + +* Wed Sep 01 2021 Stephen Gallagher - 9.0-1.0.10 +- Drop nfs-convert.service preset +- Related: rhbz#1937811 + +* Fri Aug 06 2021 Stephen Gallagher - 9.0-1.0.9 +- Add stub yum repo for lorax +- Fixes: rhbz#1990671 + +* Mon Jul 26 2021 Neal Gompa - 9.0-1.0.8 +- Move dist macros from /etc to /usr + +* Mon Jul 26 2021 Mikolaj Izdebski - 9.0-1.0.7 +- Define __bootstrap macro + +* Mon Jul 26 2021 Neal Gompa - 9.0-1.0.6 +- Add missing systemd user presets to enable PipeWire services + +* Fri Jul 23 2021 Neal Gompa - 9.0-1.0.5 +- Add missing presets for SDDM synced from Fedora + +* Mon Apr 05 2021 Brian Stinson - 9.0-1.0.4 +- Add some missing systemd presets + +* Tue Mar 23 2021 Josh Boyer - 9.0-1.0.3 +- Add sysctl.d presets + +* Wed Mar 17 2021 Troy Dawson - 9.0-1.0.2 +- Add distprefix to %{dist} + +* Fri Mar 12 2021 Troy Dawson - 9.0-1.0.1 +- Relax dependency for centos-repos + +* Wed Mar 03 2021 Michal Konecny - 9.0-1 +- Update to version 9.0 + +* Mon Sep 28 2020 Carl George - 8.4-1 +- Update to version 8.4 + +* Wed Sep 02 2020 Carl George - 8.3-1 +- Convert to centos-stream-release + +* Fri May 15 2020 Pablo Greco - 8-2.0.1 +- Relax dependency for centos-repos +- Remove update_boot, it was never used in 8 +- Add rootfs_expand to aarch64 +- Bump release for 8.2 + +* Thu Mar 12 2020 bstinson@centosproject.org - 8-1.0.9 +- Add the Devel repo to centos-release +- Install os-release(5) content to /usr/lib and have /etc/os-release be a symlink (ngompa)pr#9 + +* Thu Jan 02 2020 Brian Stinson - 8-1.0.8 +- Add base module platform Provides so DNF can auto-discover modular platform (ngompa)pr#6 +- Switched CR repo to mirrorlist to spread the load (arrfab)pr#5 + +* Thu Dec 19 2019 bstinson@centosproject.org - 8-1.0.7 +- Typo fixes +- Disable the HA repo by default + +* Wed Dec 18 2019 Pablo Greco - 8-1.el8 +- Fix requires in armhfp + +* Tue Dec 17 2019 bstinson@centosproject.org - 8-1.el8 +- Add the HighAvailability repository + +* Wed Aug 14 2019 Neal Gompa 8-1.el8 +- Split repositories and GPG keys out into subpackages + +* Sat Aug 10 2019 Fabian Arrotin 8-0.el8 +- modified baseurl paths, even if disabled + +* Sat Aug 10 2019 Fabian Arrotin 8-0.el8 +- Enabled Extras by default. +- Fixed sources paths for BaseOS/AppStream + +* Sat Aug 10 2019 Brian Stinson 8-0.el7 +- Update Debuginfo and fasttrack to use releasever +- Fix CentOS-media.repo to include appstream + +* Wed May 08 2019 Pablo Greco 8-0.el7 +- Initial setup for CentOS-8