wallenstein/algo
1
0
Fork 0
mirror of https://github.com/trailofbits/algo.git synced 2025-06-06 15:13:56 +02:00
Code Issues Projects Releases Wiki Activity

Multiple Azure fixes (#1908)

Browse source 
* Multiple Azure fixes

* back to azure daily
This commit is contained in:
Jack Ivanov 2020-10-31 19:40:09 +00:00 committed by GitHub
parent bf6b969f0c
commit ebec20ed36
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
5 changed files with 21 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
Dockerfile
View file

@ -1,8 +1,7 @@
FROM python:3-alpine FROM python:3-alpine
ARG VERSION="git" ARG VERSION="git"
ARG PACKAGES="bash libffi openssh-client openssl rsync tini" ARG PACKAGES="bash libffi openssh-client openssl rsync tini gcc libffi-dev linux-headers make musl-dev openssl-dev"
ARG BUILD_PACKAGES="gcc libffi-dev linux-headers make musl-dev openssl-dev"
LABEL name="algo" \ LABEL name="algo" \
version="${VERSION}" \ version="${VERSION}" \
@ -15,13 +14,11 @@ RUN mkdir -p /algo && mkdir -p /algo/configs
WORKDIR /algo WORKDIR /algo
COPY requirements.txt . COPY requirements.txt .
RUN apk --no-cache add ${BUILD_PACKAGES} && \ RUN python3 -m pip --no-cache-dir install -U pip && \
python3 -m pip --no-cache-dir install -U pip && \
python3 -m pip --no-cache-dir install virtualenv && \ python3 -m pip --no-cache-dir install virtualenv && \
python3 -m virtualenv .env && \ python3 -m virtualenv .env && \
source .env/bin/activate && \ source .env/bin/activate && \
python3 -m pip --no-cache-dir install -r requirements.txt && \ python3 -m pip --no-cache-dir install -r requirements.txt
apk del ${BUILD_PACKAGES}
COPY . . COPY . .
RUN chmod 0755 /algo/algo-docker.sh RUN chmod 0755 /algo/algo-docker.sh

1
config.cfg
View file

@ -92,6 +92,7 @@ dnscrypt_servers:
- cloudflare-ipv6 - cloudflare-ipv6
# DNS servers which will be used if 'dns_encryption' is 'false'. # DNS servers which will be used if 'dns_encryption' is 'false'.
# Fallback resolvers for systemd-resolved
# The default is to use Cloudflare. # The default is to use Cloudflare.
dns_servers: dns_servers:
ipv4: ipv4:

3
roles/cloud-azure/tasks/venv.yml
View file

@ -4,6 +4,7 @@
name: name:
- packaging - packaging
- requests[security] - requests[security]
- xmltodict
- azure-cli-core==2.0.35 - azure-cli-core==2.0.35
- azure-cli-nspkg==3.0.2 - azure-cli-nspkg==3.0.2
- azure-common==1.1.11 - azure-common==1.1.11
@ -38,5 +39,7 @@
- azure-mgmt-hdinsight==0.1.0 - azure-mgmt-hdinsight==0.1.0
- azure-mgmt-devtestlabs==3.0.0 - azure-mgmt-devtestlabs==3.0.0
- azure-mgmt-loganalytics==0.2.0 - azure-mgmt-loganalytics==0.2.0
- azure-mgmt-automation==0.1.1
- azure-mgmt-iothub==0.7.0
state: latest state: latest
virtualenv_python: python3 virtualenv_python: python3

5
roles/common/handlers/main.yml
View file

@ -13,6 +13,11 @@
state: restarted state: restarted
daemon_reload: true daemon_reload: true
- name: restart systemd-resolved
systemd:
name: systemd-resolved
state: restarted
- name: restart loopback bsd - name: restart loopback bsd
shell: > shell: >
ifconfig lo100 destroy || true && ifconfig lo100 destroy || true &&

9
roles/common/tasks/ubuntu.yml
View file

@ -45,6 +45,15 @@
- { regexp: '^session.*optional.*pam_motd.so.*', line: '# MOTD DISABLED', file: '/etc/pam.d/login' } - { regexp: '^session.*optional.*pam_motd.so.*', line: '# MOTD DISABLED', file: '/etc/pam.d/login' }
- { regexp: '^session.*optional.*pam_motd.so.*', line: '# MOTD DISABLED', file: '/etc/pam.d/sshd' } - { regexp: '^session.*optional.*pam_motd.so.*', line: '# MOTD DISABLED', file: '/etc/pam.d/sshd' }
- name: Ensure fallback resolvers are set
ini_file:
path: /etc/systemd/resolved.conf
section: Resolve
option: FallbackDNS
value: "{{ dns_servers.ipv4 | join(' ') }}"
notify:
- restart systemd-resolved
- name: Loopback for services configured - name: Loopback for services configured
template: template:
src: 10-algo-lo100.network.j2 src: 10-algo-lo100.network.j2