* Mon Jun 21 2021 Miroslav Rezanina <mrezanin@redhat.com> - 21.1-2
- ci-rhel-cloud.cfg-remove-ssh_genkeytypes-in-settings.py.patch [bz#1970909] - ci-Use-_systemdgeneratordir-macro-for-cloud-init-genera.patch [bz#1971480] - Resolves: bz#1970909 ([cloud-init] From RHEL 82+ cloud-init no longer displays sshd keys fingerprints from instance launched from a backup image[rhel-9]) - Resolves: bz#1971480 (Use systemdgenerators macro in spec file)
This commit is contained in:
		
							parent
							
								
									7bbd74b19a
								
							
						
					
					
						commit
						40ec916bbb
					
				| @ -0,0 +1,65 @@ | |||||||
|  | From 5069e58c009bc8c689f00de35391ae6d860197a4 Mon Sep 17 00:00:00 2001 | ||||||
|  | From: Emanuele Giuseppe Esposito <eesposit@redhat.com> | ||||||
|  | Date: Thu, 20 May 2021 08:53:55 +0200 | ||||||
|  | Subject: [PATCH 1/2] rhel/cloud.cfg: remove ssh_genkeytypes in settings.py and | ||||||
|  |  set in cloud.cfg | ||||||
|  | 
 | ||||||
|  | RH-Author: Emanuele Giuseppe Esposito <eesposit@redhat.com> | ||||||
|  | RH-MergeRequest: 16: rhel/cloud.cfg: remove ssh_genkeytypes in settings.py and set in cloud.cfg | ||||||
|  | RH-Commit: [1/1] 67a4904f4d7918be4c9b3c3dbf340b3ecb9e8786 | ||||||
|  | RH-Bugzilla: 1970909 | ||||||
|  | RH-Acked-by: Mohamed Gamal Morsy <mmorsy@redhat.com> | ||||||
|  | RH-Acked-by: Eduardo Otubo <otubo@redhat.com> | ||||||
|  | RH-Acked-by: Vitaly Kuznetsov <vkuznets@redhat.com> | ||||||
|  | 
 | ||||||
|  | Currently genkeytypes in cloud.cfg is set to None, so together with | ||||||
|  | ssh_deletekeys=1 cloudinit on first boot it will just delete the existing | ||||||
|  | keys and not generate new ones. | ||||||
|  | 
 | ||||||
|  | Just removing that property in cloud.cfg is not enough, because | ||||||
|  | settings.py provides another empty default value that will be used | ||||||
|  | instead, resulting to no key generated even when the property is not defined. | ||||||
|  | 
 | ||||||
|  | Removing genkeytypes also in settings.py will default to GENERATE_KEY_NAMES, | ||||||
|  | but since we want only 'rsa', 'ecdsa' and 'ed25519', add back genkeytypes in | ||||||
|  | cloud.cfg with the above defaults. | ||||||
|  | 
 | ||||||
|  | Also remove ssh_deletekeys in settings.py as we always need | ||||||
|  | to 1 (and it also defaults to 1). | ||||||
|  | 
 | ||||||
|  | Signed-off-by: Emanuele Giuseppe Esposito <eesposit@redhat.com> | ||||||
|  | Signed-off-by: Miroslav Rezanina <mrezanin@redhat.com> | ||||||
|  | ---
 | ||||||
|  |  cloudinit/settings.py | 2 -- | ||||||
|  |  rhel/cloud.cfg        | 2 +- | ||||||
|  |  2 files changed, 1 insertion(+), 3 deletions(-) | ||||||
|  | 
 | ||||||
|  | diff --git a/cloudinit/settings.py b/cloudinit/settings.py
 | ||||||
|  | index 43a1490c..2acf2615 100644
 | ||||||
|  | --- a/cloudinit/settings.py
 | ||||||
|  | +++ b/cloudinit/settings.py
 | ||||||
|  | @@ -49,8 +49,6 @@ CFG_BUILTIN = {
 | ||||||
|  |      'def_log_file_mode': 0o600, | ||||||
|  |      'log_cfgs': [], | ||||||
|  |      'mount_default_fields': [None, None, 'auto', 'defaults,nofail', '0', '2'], | ||||||
|  | -    'ssh_deletekeys': False,
 | ||||||
|  | -    'ssh_genkeytypes': [],
 | ||||||
|  |      'syslog_fix_perms': [], | ||||||
|  |      'system_info': { | ||||||
|  |          'paths': { | ||||||
|  | diff --git a/rhel/cloud.cfg b/rhel/cloud.cfg
 | ||||||
|  | index 9ecba215..cbee197a 100644
 | ||||||
|  | --- a/rhel/cloud.cfg
 | ||||||
|  | +++ b/rhel/cloud.cfg
 | ||||||
|  | @@ -7,7 +7,7 @@ ssh_pwauth:   0
 | ||||||
|  |  mount_default_fields: [~, ~, 'auto', 'defaults,nofail,x-systemd.requires=cloud-init.service', '0', '2'] | ||||||
|  |  resize_rootfs_tmp: /dev | ||||||
|  |  ssh_deletekeys:   1 | ||||||
|  | -ssh_genkeytypes:  ~
 | ||||||
|  | +ssh_genkeytypes:  ['rsa', 'ecdsa', 'ed25519']
 | ||||||
|  |  syslog_fix_perms: ~ | ||||||
|  |  disable_vmware_customization: false | ||||||
|  |   | ||||||
|  | -- 
 | ||||||
|  | 2.27.0 | ||||||
|  | 
 | ||||||
| @ -1,6 +1,6 @@ | |||||||
| Name:           cloud-init | Name:           cloud-init | ||||||
| Version:        21.1 | Version:        21.1 | ||||||
| Release:        1%{?dist} | Release:        2%{?dist} | ||||||
| Summary:        Cloud instance init scripts | Summary:        Cloud instance init scripts | ||||||
| License:        ASL 2.0 or GPLv3 | License:        ASL 2.0 or GPLv3 | ||||||
| URL:            http://launchpad.net/cloud-init | URL:            http://launchpad.net/cloud-init | ||||||
| @ -10,6 +10,10 @@ Source1:        cloud-init-tmpfiles.conf | |||||||
| Patch0001: 0001-Add-initial-redhat-setup.patch | Patch0001: 0001-Add-initial-redhat-setup.patch | ||||||
| Patch0002: 0002-Do-not-write-NM_CONTROLLED-no-in-generated-interface.patch | Patch0002: 0002-Do-not-write-NM_CONTROLLED-no-in-generated-interface.patch | ||||||
| Patch0003: 0003-limit-permissions-on-def_log_file.patch | Patch0003: 0003-limit-permissions-on-def_log_file.patch | ||||||
|  | # For bz#1970909 - [cloud-init] From RHEL 82+ cloud-init no longer displays sshd keys fingerprints from instance launched from a backup image[rhel-9] | ||||||
|  | Patch4: ci-rhel-cloud.cfg-remove-ssh_genkeytypes-in-settings.py.patch | ||||||
|  | 
 | ||||||
|  | # Source-git patches | ||||||
| 
 | 
 | ||||||
| BuildArch:      noarch | BuildArch:      noarch | ||||||
| 
 | 
 | ||||||
| @ -106,9 +110,9 @@ mv $RPM_BUILD_ROOT/etc/NetworkManager/dispatcher.d/hook-network-manager \ | |||||||
| mkdir -p $RPM_BUILD_ROOT%{_unitdir} | mkdir -p $RPM_BUILD_ROOT%{_unitdir} | ||||||
| cp rhel/systemd/* $RPM_BUILD_ROOT%{_unitdir}/ | cp rhel/systemd/* $RPM_BUILD_ROOT%{_unitdir}/ | ||||||
| 
 | 
 | ||||||
| [ ! -d $RPM_BUILD_ROOT/usr/lib/systemd/system-generators ] && mkdir -p $RPM_BUILD_ROOT/usr/lib/systemd/system-generators | [ ! -d $RPM_BUILD_ROOT%{_systemdgeneratordir} ] && mkdir -p $RPM_BUILD_ROOT%{_systemdgeneratordir} | ||||||
| python3 tools/render-cloudcfg --variant rhel systemd/cloud-init-generator.tmpl > $RPM_BUILD_ROOT/usr/lib/systemd/system-generators/cloud-init-generator | python3 tools/render-cloudcfg --variant rhel systemd/cloud-init-generator.tmpl > $RPM_BUILD_ROOT%{_systemdgeneratordir}/cloud-init-generator | ||||||
| chmod 755 $RPM_BUILD_ROOT/usr/lib/systemd/system-generators/cloud-init-generator | chmod 755 $RPM_BUILD_ROOT%{_systemdgeneratordir}/cloud-init-generator | ||||||
| 
 | 
 | ||||||
| [ ! -d $RPM_BUILD_ROOT/usr/lib/%{name} ] && mkdir -p $RPM_BUILD_ROOT/usr/lib/%{name} | [ ! -d $RPM_BUILD_ROOT/usr/lib/%{name} ] && mkdir -p $RPM_BUILD_ROOT/usr/lib/%{name} | ||||||
| cp -p tools/ds-identify $RPM_BUILD_ROOT%{_libexecdir}/%{name}/ds-identify | cp -p tools/ds-identify $RPM_BUILD_ROOT%{_libexecdir}/%{name}/ds-identify | ||||||
| @ -195,13 +199,21 @@ fi | |||||||
| %{_sysconfdir}/bash_completion.d/cloud-init | %{_sysconfdir}/bash_completion.d/cloud-init | ||||||
| %{_bindir}/cloud-id | %{_bindir}/cloud-id | ||||||
| %{_libexecdir}/%{name}/ds-identify | %{_libexecdir}/%{name}/ds-identify | ||||||
| /usr/lib/systemd/system-generators/cloud-init-generator | %{_systemdgeneratordir}/cloud-init-generator | ||||||
| 
 | 
 | ||||||
| 
 | 
 | ||||||
| %dir %{_sysconfdir}/rsyslog.d | %dir %{_sysconfdir}/rsyslog.d | ||||||
| %config(noreplace) %{_sysconfdir}/rsyslog.d/21-cloudinit.conf | %config(noreplace) %{_sysconfdir}/rsyslog.d/21-cloudinit.conf | ||||||
| 
 | 
 | ||||||
| %changelog | %changelog | ||||||
|  | * Mon Jun 21 2021 Miroslav Rezanina <mrezanin@redhat.com> - 21.1-2 | ||||||
|  | - ci-rhel-cloud.cfg-remove-ssh_genkeytypes-in-settings.py.patch [bz#1970909] | ||||||
|  | - ci-Use-_systemdgeneratordir-macro-for-cloud-init-genera.patch [bz#1971480] | ||||||
|  | - Resolves: bz#1970909 | ||||||
|  |   ([cloud-init] From RHEL 82+ cloud-init no longer displays sshd keys fingerprints from instance launched from a backup image[rhel-9]) | ||||||
|  | - Resolves: bz#1971480 | ||||||
|  |   (Use systemdgenerators macro in spec file) | ||||||
|  | 
 | ||||||
| * Thu Jun 10 2021 Miroslav Rezanina <mrezanin@redhat.com> - 21.1-1 | * Thu Jun 10 2021 Miroslav Rezanina <mrezanin@redhat.com> - 21.1-1 | ||||||
| - Rebase to 21.1 [bz#1958209] | - Rebase to 21.1 [bz#1958209] | ||||||
| - Resolves: bz#1958209 | - Resolves: bz#1958209 | ||||||
|  | |||||||
		Loading…
	
		Reference in New Issue
	
	Block a user