xCAT/confluent
2
0
Fork 0
mirror of https://github.com/xcat2/confluent.git synced 2026-06-12 09:42:44 +00:00
Code Issues Projects Releases Wiki Activity

Switch Ubunut initramfs to ssl

Browse Source 
The busybox wget invocation of openssl is broken.

Override by stubbing it out to let openssl pick the verify
hostname instead of wget specified one, which is incorrect.
This commit is contained in:
Jarrod Johnson
2025-03-18 15:52:37 -04:00
parent 7d83a920a2
commit 1e463367fe
2 changed files with 18 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files
confluent_osdeploy/ubuntu20.04/initramfs/scripts/init-premount/confluent
+9 -2
View File
@@ -88,8 +88,15 @@ if [ ! -z "$cons" ]; then
fi
echo "Preparing to deploy $osprofile from $MGR"
echo $osprofile > /custom-installation/confluent/osprofile
echo URL=http://${MGR}/confluent-public/os/$osprofile/distribution/install.iso >> /conf/param.conf
fcmdline="$(cat /custom-installation/confluent/cmdline.orig) url=http://${MGR}/confluent-public/os/$osprofile/distribution/install.iso"
mv /usr/bin/openssl /usr/bin/ossl
echo '#!/bin/sh' > /usr/bin/openssl
echo 'args=$*' >> /usr/bin/openssl
echo 'args=$(echo $args|sed -e "s/-verify_hostname.*//")' >> /usr/bin/openssl
echo 'exec /usr/bin/ossl $args' >> /usr/bin/openssl
chmod +x /usr/bin/openssl
cp /tls/* /etc/ssl/certs/
echo URL=https://${MGR}:443/confluent-public/os/$osprofile/distribution/install.iso >> /conf/param.conf
fcmdline="$(cat /custom-installation/confluent/cmdline.orig) url=https://${MGR}:443/confluent-public/os/$osprofile/distribution/install.iso"
if [ ! -z "$cons" ]; then
fcmdline="$fcmdline console=${cons#/dev/}"
fi
confluent_osdeploy/ubuntu22.04/initramfs/scripts/init-premount/confluent
+9 -2
View File
@@ -1,3 +1,4 @@
cp /tls/* /etc/ssl/certs/
cd /sys/class/net
for nic in *; do
ip link set $nic up
@@ -91,8 +92,14 @@ echo $osprofile > /custom-installation/confluent/osprofile
. /etc/os-release
DIRECTISO=$(blkid -t TYPE=iso9660 |grep -Ei ' LABEL="Ubuntu-Server '$VERSION_ID)
if [ -z "$DIRECTISO" ]; then
echo URL=http://${MGR}/confluent-public/os/$osprofile/distribution/install.iso >> /conf/param.conf
fcmdline="$(cat /custom-installation/confluent/cmdline.orig) url=http://${MGR}/confluent-public/os/$osprofile/distribution/install.iso"
mv /usr/bin/openssl /usr/bin/ossl
echo '#!/bin/sh' > /usr/bin/openssl
echo 'args=$*' >> /usr/bin/openssl
echo 'args=$(echo $args|sed -e "s/-verify_hostname.*//")' >> /usr/bin/openssl
echo 'exec /usr/bin/ossl $args' >> /usr/bin/openssl
chmod +x /usr/bin/openssl
echo URL=https://${MGR}:443/confluent-public/os/$osprofile/distribution/install.iso >> /conf/param.conf
fcmdline="$(cat /custom-installation/confluent/cmdline.orig) url=https://${MGR}:443/confluent-public/os/$osprofile/distribution/install.iso"
fi
if [ ! -z "$cons" ]; then
fcmdline="$fcmdline console=${cons#/dev/}"