Commit graph

634 commits

Author SHA1 Message Date
Rich Megginson
53e649f227 fix github action 2023-04-10 14:48:29 -06:00
Rich Megginson
b29e05f24d fix pipefail setting 2023-04-10 14:29:38 -06:00
Rich Megginson
70808e97fc ansible-lint - align with current Ansible recommendations
Use `true/false` instead of `yes/no`
Ensure use of FQCN for builtin modules
Use correct spacing in Jinja expressions
All tasks and plays must have a `name`, and the `name` string must begin with an uppercase letter
Use `ansible.posix.mount` instead of `ansible.builtin.mount`
Use `set -o pipefail` with `shell` module where supported by the platform shell

Signed-off-by: Rich Megginson <rmeggins@redhat.com>
2023-04-10 14:21:30 -06:00
Matt Willsher
11eb7590e9
Merge pull request #221 from richm/v0.18.2 2023-04-07 08:59:56 +00:00
Rich Megginson
01b5325438 v0.18.2 2023-04-06 14:28:24 -06:00
Matt Willsher
a32e494924
Merge pull request #218 from nhosoi/fingerprint 2023-03-29 20:06:21 +00:00
Noriko Hosoi
3bc81d9f97 Fingerprint ansible-sshd managed config files
- Add repo and role name to the generated config files.
  # willshersystems:ansible-sshd

Signed-off-by: Noriko Hosoi <nhosoi@redhat.com>
2023-03-29 10:30:06 -07:00
Jakub Jelen
806bab7720 Fedora 38 has no longer non-standard hostkey permissions
The Fedora commit introducing this change (now in Rawhide/Fedora 38
only):

7a21555354

Signed-off-by: Jakub Jelen <jjelen@redhat.com>
2023-03-02 09:49:01 +01:00
Jakub Jelen
5c1f645e08 release 0.18.1
Signed-off-by: Jakub Jelen <jjelen@redhat.com>
2023-01-18 13:22:22 +01:00
Noriko Hosoi
bcc3c75c19 Add check for non-inclusive language
Add a check for usage of terms and language that is considered
non-inclusive. We are using the woke tool for this with a wordlist
that can be found at
https://github.com/linux-system-roles/tox-lsr/blob/main/src/tox_lsr/config_files/woke.yml

Signed-off-by: Noriko Hosoi <nhosoi@redhat.com>
2023-01-17 09:36:43 +01:00
Noriko Hosoi
d67c562142 Clean up / Workaround non-inclusive words
- CHANGELOG.md
- tests/tests_include_present.yml
2023-01-17 09:36:43 +01:00
Jakub Jelen
bcd15cab9d Add the alpine also to the README and galaxy metadata 2023-01-16 15:10:28 +01:00
Jakub Jelen
54b39a2de1 Run CI also on Alpine 2023-01-16 15:10:28 +01:00
Jakub Jelen
252deda7c4 tests: Use configuration option that is not in defaults 2023-01-16 15:10:28 +01:00
Jakub Jelen
317700c72e vars: Update defaults based on alpine:latest 2023-01-16 15:10:28 +01:00
Jakub Jelen
e63d6f9e99 tests: Filter out backspace characters from manual pages in alpine 2023-01-16 15:10:28 +01:00
Jakub Jelen
2e2ab311a6 tests: Whitespace cleanup 2023-01-16 15:10:28 +01:00
Jakub Jelen
c57e15668f tests: Different test requirements for alpine 2023-01-16 15:10:28 +01:00
Jakub Jelen
04f056867c Add support for managing selinux and firewall on RHEL 2023-01-13 10:42:40 +01:00
Matt Willsher
788a3d8668
Merge pull request #212 from findmyname666/alpine_support
Initial configuration for Alpine OS
2022-12-28 09:32:09 +00:00
Adrian Eib
16b4d4150d
Add vars for Alpine OS 2022-12-27 22:17:53 +01:00
Jakub Jelen
6f4d3d8fdb tasks: Improve the order of keys and add missing name
Signed-off-by: Jakub Jelen <jjelen@redhat.com>
2022-12-13 14:13:18 +01:00
Jakub Jelen
e6d075b8f3 meta: Provide explicit namespace to avoid ansible lint errors
Signed-off-by: Jakub Jelen <jjelen@redhat.com>
2022-12-13 14:13:18 +01:00
Matt Willsher
43aac1b156
Merge pull request #208 from richm/cl-20220927
Version v0.18.0 - CHANGELOG.md [citest skip]
2022-10-10 07:23:32 +01:00
Matt Willsher
237de5ba6d
Merge pull request #207 from Jakuje/test-all
Introduce automatic test for new configuration options in OpenSSH and add missing options so far
2022-10-10 07:22:57 +01:00
Rich Megginson
59b8d3c7b9 Version v0.18.0 - CHANGELOG.md [citest skip]
[v0.18.0] - 2022-09-27
--------------------

### New Features

- Adding support for OpenWrt 21.03

- Add final version of RequiredRSASize

Keep the old version for backward compatibility

Upstream commit:
https://github.com/openssh/openssh-portable/commit/1875042c

### Bug Fixes

- Update source template to match generated files

### Other Changes

- Remove legacy files

- Update pre-commit plugins to latest

- Linting fixes

- keep v prefix in version/tag

Keep the `v` prefix in the version/tag

Signed-off-by: Rich Megginson <rmeggins@redhat.com>
2022-09-27 14:45:14 -06:00
Jakub Jelen
7fb18bd3b8 tests: Introduce test for all documented options of the OS 2022-09-27 22:32:57 +02:00
Jakub Jelen
1c4197e341 Add configuration options from EL7 2022-09-27 22:32:57 +02:00
Jakub Jelen
ddb286111f Add missing configuration options from EL8 2022-09-27 22:32:57 +02:00
Jakub Jelen
c201ba2060 Support __sshd_supports_validate 2022-09-27 22:32:57 +02:00
Jakub Jelen
1cf57fe318 Document internal __sshd_runtime_directory variable and use it in the service files 2022-09-27 22:32:57 +02:00
Jakub Jelen
1ae6284951 Add final version of RequiredRSASize
Keep the old version for backward compatibility

Upstream commit:
https://github.com/openssh/openssh-portable/commit/1875042c
2022-09-27 22:22:58 +02:00
Jakub Jelen
e8e583b20a Update source template to match generated files 2022-09-27 22:22:58 +02:00
Matt Willsher
2e2e831c4d
Merge pull request #205 from sscheib/master 2022-09-26 08:10:13 +01:00
Steffen Scheib
6819be90d3 - Adding support for OpenWrt 21.03 2022-09-24 21:42:01 +02:00
Matt Willsher
2da40a9e66
Merge pull request #204 from richm/allow-v-prefix-in-version
keep v prefix in version/tag
2022-09-09 10:23:50 +01:00
Matt Willsher
29eec237be
Merge pull request #203 from willshersystems/housekeeping
Housekeeping
2022-09-09 10:23:09 +01:00
Rich Megginson
e35e56e8f0 keep v prefix in version/tag
Keep the `v` prefix in the version/tag
2022-09-07 07:09:14 -06:00
Matt Willsher
abe2b26a89 Linting fixes 2022-09-07 09:33:33 +01:00
Matt Willsher
ac6dcd0cfc Update pre-commit plugins to latest 2022-09-07 09:06:00 +01:00
Matt Willsher
6c482485b7 Remove legacy files 2022-09-07 09:05:35 +01:00
Matt Willsher
e5df814ae6
Merge pull request #202 from richm/cl-20220831
Version v0.17.0 - CHANGELOG.md [citest skip]
2022-09-07 08:26:15 +01:00
Rich Megginson
606ed47dd1 Version v0.17.0 - CHANGELOG.md [citest skip]
[v0.17.0] - 2022-08-31
--------------------

- Make drop-in config file functionality configurable by user

This PR simplifies the logic behind the drop-in config files and also
allows the user to use drop-in configs even if the distribution does not
support it out of the box.

- Allow user to override variables

A previous commit hardcoded many variables to the values under vars/,
making it impossible for the user to parameterize things like the systemd
service name. The assumption was that the __sshd_* variables were useless
in an effort to blindly adhere to best practices, but they were crucial in
allowing flexibility to the user.

- none
2022-09-01 07:27:24 -06:00
Matt Willsher
1731328cc5
Merge pull request #200 from nkakouros/drop-in 2022-08-29 09:59:16 +01:00
Nikolaos Kakouros
6bb0d7b456 tMakes drop-in functionality configurable by the user 2022-08-26 20:23:51 +00:00
Nikolaos Kakouros
5f67c9b3d2 Backups relevant files 2022-08-23 15:18:41 +02:00
Nikolaos Kakouros
735afa580c Address comment 2022-08-23 15:18:41 +02:00
Nikolaos Kakouros
7866c6bc29 Fix tests 2022-08-23 15:18:41 +02:00
Nikolaos Kakouros
221a801260 Adds workaround for CentOS6 2022-08-23 15:18:41 +02:00
Nikolaos Kakouros
c8d7c25be3 Defaults __sshd_testing when not testing 2022-08-23 15:18:41 +02:00