From 4ae980f0e69f7ca770798688535308a06a8ccf74 Mon Sep 17 00:00:00 2001 From: unitexe Date: Mon, 23 Feb 2026 08:25:47 -0600 Subject: Introduce meta-unit-virtualization Primary motivation for this is removing observability containers from beaglebone black because of RAM limitations. Images can now include the observability containers by adding `observability` to `IMAGE_FEATURES`. --- .../classes/fix-home-dir-ownership.bbclass | 9 - .../fix-prometheus-conf-dir-ownership.bbclass | 6 - .../classes/fix-unitexe-home-dir-ownership.bbclass | 5 + meta-unit-core/conf/layer.conf | 6 +- .../recipes-unit/images/core-image-unit.bbappend | 1 + .../recipes-unit/images/core-image-unit.bbappend | 1 + .../recipes-extended/shadow/shadow_%.bbappend | 12 + .../recipes-unit/images/core-image-unit.bbappend | 11 + .../useradd/add-user-unitexe.bbappend | 2 + .../recipes-containers/banner/banner_git.bb | 27 - .../distribution/distribution.bb | 31 - .../recipes-containers/distribution/files/LICENSE | 202 ------- .../distribution/files/config.yml | 29 - .../distribution/files/distribution.container | 18 - .../distribution/files/prometheus-target.yml | 5 - .../recipes-containers/grafana/files/LICENSE | 661 --------------------- .../recipes-containers/grafana/files/dashboard.yml | 12 - .../grafana/files/grafana.container | 20 - .../recipes-containers/grafana/grafana.bb | 29 - .../packagegroups/packagegroup-unit-kubes.bb | 5 - .../packagegroups/packagegroup-unit-quadlets.bb | 11 - .../recipes-containers/podman/podman_%.bbappend | 18 - .../prometheus-node-exporter/files/LICENSE | 201 ------- .../files/prometheus-node-exporter.container | 28 - .../files/prometheus-target.yml | 5 - .../prometheus-node-exporter.bb | 27 - .../files/LICENSE | 201 ------- .../files/prometheus-podman-exporter.container | 23 - .../files/prometheus-target.yml | 5 - .../prometheus-podman-exporter-rootful.bb | 24 - .../files/LICENSE | 201 ------- .../files/prometheus-podman-exporter.container | 23 - .../files/prometheus-target.yml | 5 - .../prometheus-podman-exporter-rootless.bb | 27 - .../recipes-containers/prometheus/files/LICENSE | 201 ------- .../prometheus/files/prometheus.container | 21 - .../prometheus/files/prometheus.yml | 28 - .../recipes-containers/prometheus/prometheus.bb | 27 - .../recipes-containers/pubd-kube/files/pubd.kube | 15 - .../recipes-containers/pubd-kube/files/pubsubd.yml | 42 -- .../recipes-containers/pubd-kube/pubd-kube.bb | 27 - .../systemd/systemd-distribution-path.bb | 30 - .../systemd-distribution-path/distribution.path | 8 - .../recipes-core/systemd/systemd-regkeygen.bb | 31 - .../systemd/systemd-regkeygen/regkeygen.service | 19 - .../systemd/systemd-regkeygen/regkeygen.sh | 70 --- .../recipes-extended/shadow/shadow_%.bbappend | 17 - .../recipes-kernel/linux/linux-yocto_%.bbappend | 1 - .../files/datasource.yml | 8 - .../grafana-prometheus-datasource.bb | 15 - .../grafana-prometheus-podman-dashboard_git.bb | 15 - .../packagegroup-grafana-dashboards.bb | 6 - .../packagegroup-grafana-datasources.bb | 5 - .../prometheus-node-exporter-dashboard_git.bb | 15 - .../recipes-unit/images/core-image-unit.bbappend | 5 - .../recipes-users/useradd/add-user-svc.bbappend | 2 - .../useradd/add-user-unitexe.bbappend | 2 - .../recipes-unit/images/core-image-unit.bb | 2 +- .../recipes-users/useradd/add-user-svc.bb | 41 -- .../core-image-unit/whinlatter.yml | 1 + .../radxa-zero-3e/core-image-unit/whinlatter.yml | 1 + .../raspberrypi3-64/core-image-unit/whinlatter.yml | 1 + meta-unit-virtualization/LICENSE | 21 + .../fix-prometheus-conf-dir-ownership.bbclass | 6 + .../fix-svc-user-home-dir-ownership.bbclass | 5 + meta-unit-virtualization/conf/layer.conf | 16 + .../recipes-containers/banner/banner_git.bb | 27 + .../distribution/distribution.bb | 31 + .../recipes-containers/distribution/files/LICENSE | 202 +++++++ .../distribution/files/config.yml | 29 + .../distribution/files/distribution.container | 18 + .../distribution/files/prometheus-target.yml | 5 + .../recipes-containers/grafana/files/LICENSE | 661 +++++++++++++++++++++ .../recipes-containers/grafana/files/dashboard.yml | 12 + .../grafana/files/grafana.container | 20 + .../recipes-containers/grafana/grafana.bb | 29 + .../packagegroups/packagegroup-unit-kubes.bb | 5 + .../packagegroup-unit-observability-quadlets.bb | 9 + .../packagegroups/packagegroup-unit-quadlets.bb | 6 + .../recipes-containers/podman/podman_%.bbappend | 18 + .../prometheus-node-exporter/files/LICENSE | 201 +++++++ .../files/prometheus-node-exporter.container | 28 + .../files/prometheus-target.yml | 5 + .../prometheus-node-exporter.bb | 27 + .../files/LICENSE | 201 +++++++ .../files/prometheus-podman-exporter.container | 23 + .../files/prometheus-target.yml | 5 + .../prometheus-podman-exporter-rootful.bb | 24 + .../files/LICENSE | 201 +++++++ .../files/prometheus-podman-exporter.container | 23 + .../files/prometheus-target.yml | 5 + .../prometheus-podman-exporter-rootless.bb | 27 + .../recipes-containers/prometheus/files/LICENSE | 201 +++++++ .../prometheus/files/prometheus.container | 21 + .../prometheus/files/prometheus.yml | 28 + .../recipes-containers/prometheus/prometheus.bb | 27 + .../recipes-containers/pubd-kube/files/pubd.kube | 15 + .../recipes-containers/pubd-kube/files/pubsubd.yml | 42 ++ .../recipes-containers/pubd-kube/pubd-kube.bb | 27 + .../systemd/systemd-distribution-path.bb | 30 + .../systemd-distribution-path/distribution.path | 8 + .../recipes-core/systemd/systemd-regkeygen.bb | 31 + .../systemd/systemd-regkeygen/regkeygen.service | 19 + .../systemd/systemd-regkeygen/regkeygen.sh | 70 +++ .../recipes-extended/shadow/shadow_%.bbappend | 12 + .../recipes-kernel/linux/linux-yocto_%.bbappend | 1 + .../files/datasource.yml | 8 + .../grafana-prometheus-datasource.bb | 15 + .../grafana-prometheus-podman-dashboard_git.bb | 15 + .../packagegroup-grafana-dashboards.bb | 6 + .../packagegroup-grafana-datasources.bb | 5 + .../prometheus-node-exporter-dashboard_git.bb | 15 + .../recipes-users/useradd/add-user-svc.bb | 43 ++ meta-virtualization-extra/conf/layer.conf | 15 +- 114 files changed, 2574 insertions(+), 2517 deletions(-) delete mode 100644 meta-unit-core/classes/fix-home-dir-ownership.bbclass delete mode 100644 meta-unit-core/classes/fix-prometheus-conf-dir-ownership.bbclass create mode 100644 meta-unit-core/classes/fix-unitexe-home-dir-ownership.bbclass create mode 100644 meta-unit-core/dynamic-layers/rockchip/recipes-unit/images/core-image-unit.bbappend create mode 100644 meta-unit-core/dynamic-layers/unit-virtualization-layer/recipes-extended/shadow/shadow_%.bbappend create mode 100644 meta-unit-core/dynamic-layers/unit-virtualization-layer/recipes-unit/images/core-image-unit.bbappend create mode 100644 meta-unit-core/dynamic-layers/unit-virtualization-layer/recipes-users/useradd/add-user-unitexe.bbappend delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/banner/banner_git.bb delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/distribution/distribution.bb delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/distribution/files/LICENSE delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/distribution/files/config.yml delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/distribution/files/distribution.container delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/distribution/files/prometheus-target.yml delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/grafana/files/LICENSE delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/grafana/files/dashboard.yml delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/grafana/files/grafana.container delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/grafana/grafana.bb delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/packagegroups/packagegroup-unit-kubes.bb delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/packagegroups/packagegroup-unit-quadlets.bb delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/podman/podman_%.bbappend delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-node-exporter/files/LICENSE delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-node-exporter/files/prometheus-node-exporter.container delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-node-exporter/files/prometheus-target.yml delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-node-exporter/prometheus-node-exporter.bb delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootful/files/LICENSE delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootful/files/prometheus-podman-exporter.container delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootful/files/prometheus-target.yml delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootful/prometheus-podman-exporter-rootful.bb delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootless/files/LICENSE delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootless/files/prometheus-podman-exporter.container delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootless/files/prometheus-target.yml delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootless/prometheus-podman-exporter-rootless.bb delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus/files/LICENSE delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus/files/prometheus.container delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus/files/prometheus.yml delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus/prometheus.bb delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/pubd-kube/files/pubd.kube delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/pubd-kube/files/pubsubd.yml delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/pubd-kube/pubd-kube.bb delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-core/systemd/systemd-distribution-path.bb delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-core/systemd/systemd-distribution-path/distribution.path delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-core/systemd/systemd-regkeygen.bb delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-core/systemd/systemd-regkeygen/regkeygen.service delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-core/systemd/systemd-regkeygen/regkeygen.sh delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-extended/shadow/shadow_%.bbappend delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-kernel/linux/linux-yocto_%.bbappend delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/grafana-prometheus-datasource/files/datasource.yml delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/grafana-prometheus-datasource/grafana-prometheus-datasource.bb delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/grafana-prometheus-podman-dashboard/grafana-prometheus-podman-dashboard_git.bb delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/packagegroups/packagegroup-grafana-dashboards.bb delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/packagegroups/packagegroup-grafana-datasources.bb delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/prometheus-node-exporter-dashboard/prometheus-node-exporter-dashboard_git.bb delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-unit/images/core-image-unit.bbappend delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-users/useradd/add-user-svc.bbappend delete mode 100644 meta-unit-core/dynamic-layers/virtualization-layer/recipes-users/useradd/add-user-unitexe.bbappend delete mode 100644 meta-unit-core/recipes-users/useradd/add-user-svc.bb create mode 100644 meta-unit-virtualization/LICENSE create mode 100644 meta-unit-virtualization/classes/fix-prometheus-conf-dir-ownership.bbclass create mode 100644 meta-unit-virtualization/classes/fix-svc-user-home-dir-ownership.bbclass create mode 100644 meta-unit-virtualization/conf/layer.conf create mode 100644 meta-unit-virtualization/recipes-containers/banner/banner_git.bb create mode 100644 meta-unit-virtualization/recipes-containers/distribution/distribution.bb create mode 100644 meta-unit-virtualization/recipes-containers/distribution/files/LICENSE create mode 100644 meta-unit-virtualization/recipes-containers/distribution/files/config.yml create mode 100644 meta-unit-virtualization/recipes-containers/distribution/files/distribution.container create mode 100644 meta-unit-virtualization/recipes-containers/distribution/files/prometheus-target.yml create mode 100644 meta-unit-virtualization/recipes-containers/grafana/files/LICENSE create mode 100644 meta-unit-virtualization/recipes-containers/grafana/files/dashboard.yml create mode 100644 meta-unit-virtualization/recipes-containers/grafana/files/grafana.container create mode 100644 meta-unit-virtualization/recipes-containers/grafana/grafana.bb create mode 100644 meta-unit-virtualization/recipes-containers/packagegroups/packagegroup-unit-kubes.bb create mode 100644 meta-unit-virtualization/recipes-containers/packagegroups/packagegroup-unit-observability-quadlets.bb create mode 100644 meta-unit-virtualization/recipes-containers/packagegroups/packagegroup-unit-quadlets.bb create mode 100644 meta-unit-virtualization/recipes-containers/podman/podman_%.bbappend create mode 100644 meta-unit-virtualization/recipes-containers/prometheus-node-exporter/files/LICENSE create mode 100644 meta-unit-virtualization/recipes-containers/prometheus-node-exporter/files/prometheus-node-exporter.container create mode 100644 meta-unit-virtualization/recipes-containers/prometheus-node-exporter/files/prometheus-target.yml create mode 100644 meta-unit-virtualization/recipes-containers/prometheus-node-exporter/prometheus-node-exporter.bb create mode 100644 meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootful/files/LICENSE create mode 100644 meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootful/files/prometheus-podman-exporter.container create mode 100644 meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootful/files/prometheus-target.yml create mode 100644 meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootful/prometheus-podman-exporter-rootful.bb create mode 100644 meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootless/files/LICENSE create mode 100644 meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootless/files/prometheus-podman-exporter.container create mode 100644 meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootless/files/prometheus-target.yml create mode 100644 meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootless/prometheus-podman-exporter-rootless.bb create mode 100644 meta-unit-virtualization/recipes-containers/prometheus/files/LICENSE create mode 100644 meta-unit-virtualization/recipes-containers/prometheus/files/prometheus.container create mode 100644 meta-unit-virtualization/recipes-containers/prometheus/files/prometheus.yml create mode 100644 meta-unit-virtualization/recipes-containers/prometheus/prometheus.bb create mode 100644 meta-unit-virtualization/recipes-containers/pubd-kube/files/pubd.kube create mode 100644 meta-unit-virtualization/recipes-containers/pubd-kube/files/pubsubd.yml create mode 100644 meta-unit-virtualization/recipes-containers/pubd-kube/pubd-kube.bb create mode 100644 meta-unit-virtualization/recipes-core/systemd/systemd-distribution-path.bb create mode 100644 meta-unit-virtualization/recipes-core/systemd/systemd-distribution-path/distribution.path create mode 100644 meta-unit-virtualization/recipes-core/systemd/systemd-regkeygen.bb create mode 100644 meta-unit-virtualization/recipes-core/systemd/systemd-regkeygen/regkeygen.service create mode 100644 meta-unit-virtualization/recipes-core/systemd/systemd-regkeygen/regkeygen.sh create mode 100644 meta-unit-virtualization/recipes-extended/shadow/shadow_%.bbappend create mode 100644 meta-unit-virtualization/recipes-kernel/linux/linux-yocto_%.bbappend create mode 100644 meta-unit-virtualization/recipes-support/grafana-prometheus-datasource/files/datasource.yml create mode 100644 meta-unit-virtualization/recipes-support/grafana-prometheus-datasource/grafana-prometheus-datasource.bb create mode 100644 meta-unit-virtualization/recipes-support/grafana-prometheus-podman-dashboard/grafana-prometheus-podman-dashboard_git.bb create mode 100644 meta-unit-virtualization/recipes-support/packagegroups/packagegroup-grafana-dashboards.bb create mode 100644 meta-unit-virtualization/recipes-support/packagegroups/packagegroup-grafana-datasources.bb create mode 100644 meta-unit-virtualization/recipes-support/prometheus-node-exporter-dashboard/prometheus-node-exporter-dashboard_git.bb create mode 100644 meta-unit-virtualization/recipes-users/useradd/add-user-svc.bb diff --git a/meta-unit-core/classes/fix-home-dir-ownership.bbclass b/meta-unit-core/classes/fix-home-dir-ownership.bbclass deleted file mode 100644 index e55c9eb..0000000 --- a/meta-unit-core/classes/fix-home-dir-ownership.bbclass +++ /dev/null @@ -1,9 +0,0 @@ -ROOTFS_POSTPROCESS_COMMAND:append = " fix_svc_user_home_directory_ownership; fix_unitexe_user_home_directory_ownership;" - -fix_svc_user_home_directory_ownership() { - chown -R svc:svc ${IMAGE_ROOTFS}/home/svc -} - -fix_unitexe_user_home_directory_ownership() { - chown -R unitexe:unitexe ${IMAGE_ROOTFS}/home/unitexe -} diff --git a/meta-unit-core/classes/fix-prometheus-conf-dir-ownership.bbclass b/meta-unit-core/classes/fix-prometheus-conf-dir-ownership.bbclass deleted file mode 100644 index cfb2a97..0000000 --- a/meta-unit-core/classes/fix-prometheus-conf-dir-ownership.bbclass +++ /dev/null @@ -1,6 +0,0 @@ -ROOTFS_POSTPROCESS_COMMAND:append = " fix_prometheus_conf_dir_ownership;" - -fix_prometheus_conf_dir_ownership() { - chmod 755 ${IMAGE_ROOTFS}${sysconfdir}/prometheus - chmod 755 ${IMAGE_ROOTFS}${sysconfdir}/prometheus/targets.d -} diff --git a/meta-unit-core/classes/fix-unitexe-home-dir-ownership.bbclass b/meta-unit-core/classes/fix-unitexe-home-dir-ownership.bbclass new file mode 100644 index 0000000..48d2e31 --- /dev/null +++ b/meta-unit-core/classes/fix-unitexe-home-dir-ownership.bbclass @@ -0,0 +1,5 @@ +ROOTFS_POSTPROCESS_COMMAND:append = " fix_unitexe_user_home_directory_ownership;" + +fix_unitexe_user_home_directory_ownership() { + chown -R unitexe:unitexe ${IMAGE_ROOTFS}/home/unitexe +} diff --git a/meta-unit-core/conf/layer.conf b/meta-unit-core/conf/layer.conf index 7f6e371..6eaed0d 100644 --- a/meta-unit-core/conf/layer.conf +++ b/meta-unit-core/conf/layer.conf @@ -11,16 +11,18 @@ LAYERDEPENDS_unit-distro = "core yocto unit-users-layer" LAYERSERIES_COMPAT_unit-core = "whinlatter" BBFILES_DYNAMIC += " \ - virtualization-layer:${LAYERDIR}/dynamic-layers/virtualization-layer/recipes-*/*/*.bb \ - virtualization-layer:${LAYERDIR}/dynamic-layers/virtualization-layer/recipes-*/*/*.bbappend \ raspberrypi-extra-layer:${LAYERDIR}/dynamic-layers/raspberrypi-extra-layer/recipes-*/*/*.bb \ raspberrypi-extra-layer:${LAYERDIR}/dynamic-layers/raspberrypi-extra-layer/recipes-*/*/*.bbappend \ unit-profiling-layer:${LAYERDIR}/dynamic-layers/unit-profiling-layer/recipes-*/*/*.bb \ unit-profiling-layer:${LAYERDIR}/dynamic-layers/unit-profiling-layer/recipes-*/*/*.bbappend \ raspberrypi:${LAYERDIR}/dynamic-layers/raspberrypi/recipes-*/*/*.bb \ raspberrypi:${LAYERDIR}/dynamic-layers/raspberrypi/recipes-*/*/*.bbappend \ + rockchip:${LAYERDIR}/dynamic-layers/rockchip/recipes-*/*/*.bb \ + rockchip:${LAYERDIR}/dynamic-layers/rockchip/recipes-*/*/*.bbappend \ unit-graphics-layer:${LAYERDIR}/dynamic-layers/unit-graphics-layer/recipes-*/*/*.bb \ unit-graphics-layer:${LAYERDIR}/dynamic-layers/unit-graphics-layer/recipes-*/*/*.bbappend \ + unit-virtualization-layer:${LAYERDIR}/dynamic-layers/unit-virtualization-layer/recipes-*/*/*.bb \ + unit-virtualization-layer:${LAYERDIR}/dynamic-layers/unit-virtualization-layer/recipes-*/*/*.bbappend \ " UNIT_CORE_LAYERDIR = "${LAYERDIR}" diff --git a/meta-unit-core/dynamic-layers/raspberrypi/recipes-unit/images/core-image-unit.bbappend b/meta-unit-core/dynamic-layers/raspberrypi/recipes-unit/images/core-image-unit.bbappend index 8b91da8..969ad6d 100644 --- a/meta-unit-core/dynamic-layers/raspberrypi/recipes-unit/images/core-image-unit.bbappend +++ b/meta-unit-core/dynamic-layers/raspberrypi/recipes-unit/images/core-image-unit.bbappend @@ -1 +1,2 @@ IMAGE_FEATURES:append:raspberrypi3-64 = " boot-splash" +IMAGE_FEATURES:append = " observability" diff --git a/meta-unit-core/dynamic-layers/rockchip/recipes-unit/images/core-image-unit.bbappend b/meta-unit-core/dynamic-layers/rockchip/recipes-unit/images/core-image-unit.bbappend new file mode 100644 index 0000000..7c0581c --- /dev/null +++ b/meta-unit-core/dynamic-layers/rockchip/recipes-unit/images/core-image-unit.bbappend @@ -0,0 +1 @@ +IMAGE_FEATURES:append = " observability" diff --git a/meta-unit-core/dynamic-layers/unit-virtualization-layer/recipes-extended/shadow/shadow_%.bbappend b/meta-unit-core/dynamic-layers/unit-virtualization-layer/recipes-extended/shadow/shadow_%.bbappend new file mode 100644 index 0000000..7783049 --- /dev/null +++ b/meta-unit-core/dynamic-layers/unit-virtualization-layer/recipes-extended/shadow/shadow_%.bbappend @@ -0,0 +1,12 @@ +# +# Support rootless podman for users. +# +# This is explained at: +# https://github.com/containers/podman/blob/main/docs/tutorials/rootless_tutorial.md#etcsubuid-and-etcsubgid-configuration +# +do_install:append() { + echo "unitexe:100000:65536" >> ${D}${sysconfdir}/subuid + echo "" >> ${D}${sysconfdir}/subuid + echo "unitexe:100000:65536" >> ${D}${sysconfdir}/subgid + echo "" >> ${D}${sysconfdir}/subgid +} diff --git a/meta-unit-core/dynamic-layers/unit-virtualization-layer/recipes-unit/images/core-image-unit.bbappend b/meta-unit-core/dynamic-layers/unit-virtualization-layer/recipes-unit/images/core-image-unit.bbappend new file mode 100644 index 0000000..eebbff6 --- /dev/null +++ b/meta-unit-core/dynamic-layers/unit-virtualization-layer/recipes-unit/images/core-image-unit.bbappend @@ -0,0 +1,11 @@ +inherit fix-svc-user-home-dir-ownership +inherit fix-prometheus-conf-dir-ownership + +IMAGE_INSTALL:append = " packagegroup-unit-containers" + +# The only kube in here uses gRPC curl container which doesn't support armv7 +IMAGE_INSTALL:append:raspberrypi3-64 = " packagegroup-unit-kubes" +IMAGE_INSTALL:append:radxa-zero-3e = " packagegroup-unit-kubes" + +IMAGE_INSTALL:append = " packagegroup-unit-quadlets" +IMAGE_INSTALL:append = " ${@bb.utils.contains('IMAGE_FEATURES', 'observability', 'packagegroup-unit-observability-quadlets', '', d)}" diff --git a/meta-unit-core/dynamic-layers/unit-virtualization-layer/recipes-users/useradd/add-user-unitexe.bbappend b/meta-unit-core/dynamic-layers/unit-virtualization-layer/recipes-users/useradd/add-user-unitexe.bbappend new file mode 100644 index 0000000..23fe467 --- /dev/null +++ b/meta-unit-core/dynamic-layers/unit-virtualization-layer/recipes-users/useradd/add-user-unitexe.bbappend @@ -0,0 +1,2 @@ +inherit enable-linger +inherit set-xdg-env diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/banner/banner_git.bb b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/banner/banner_git.bb deleted file mode 100644 index 55363a8..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/banner/banner_git.bb +++ /dev/null @@ -1,27 +0,0 @@ -SUMMARY = "Banner application files" -DESCRIPTION = "Supporting files for a banner container that runs rootless" -LICENSE = "MIT" -LIC_FILES_CHKSUM = "file://LICENSE;md5=a77c12e0c0e8a14cebb1494195720ccc" - -SRC_URI = "\ - git://git.closedcircuitconsulting.com/banner-rs;branch=main;protocol=https \ -" - -SRCREV = "1176c69b629cb3ba045a2854ddb2a06a6f518cc3" - -PV = "0.1.0" - -RDEPENDS:${PN}:append = " podman" -RDEPENDS:${PN}:append = " add-user-svc" - -S = "${UNPACKDIR}/${PN}-${PV}" - -ROOTLESS_USER_NAME ?= "svc" - -do_install() { - install -D -m 0644 ${S}/banner.container ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/systemd/banner.container -} - -FILES:${PN} = "\ - /home/${ROOTLESS_USER_NAME}/.config/containers/systemd/banner.container \ -" diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/distribution/distribution.bb b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/distribution/distribution.bb deleted file mode 100644 index 6452836..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/distribution/distribution.bb +++ /dev/null @@ -1,31 +0,0 @@ -SUMMARY = "Distribution quadlet" -DESCRIPTION = "A quadlet for a distribution container that runs rootless" -LICENSE = "Apache-2.0" -LIC_FILES_CHKSUM = "file://${UNPACKDIR}/LICENSE;md5=d2794c0df5b907fdace235a619d80314" - -SRC_URI = "\ - file://config.yml \ - file://distribution.container \ - file://prometheus-target.yml \ - file://LICENSE \ -" - -RDEPENDS:${PN}:append = " systemd-distribution-path" -RDEPENDS:${PN}:append = " podman" -RDEPENDS:${PN}:append = " add-user-svc" - -S = "${UNPACKDIR}" - -ROOTLESS_USER_NAME ?= "svc" - -do_install() { - install -D -p -m 0644 ${UNPACKDIR}/distribution.container ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/systemd/distribution.container - install -D -p -m 0644 ${UNPACKDIR}/config.yml ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/distribution/config.yml - install -D -m 0644 ${UNPACKDIR}/prometheus-target.yml ${D}${sysconfdir}/prometheus/targets.d/distribution.yml -} - -FILES:${PN} = "\ - /home/${ROOTLESS_USER_NAME}/.config/containers/systemd/distribution.container \ - /home/${ROOTLESS_USER_NAME}/.config/containers/distribution/config.yml \ - ${sysconfdir}/prometheus/targets.d/distribution.yml \ -" diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/distribution/files/LICENSE b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/distribution/files/LICENSE deleted file mode 100644 index e06d208..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/distribution/files/LICENSE +++ /dev/null @@ -1,202 +0,0 @@ -Apache License - Version 2.0, January 2004 - http://www.apache.org/licenses/ - - TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION - - 1. Definitions. - - "License" shall mean the terms and conditions for use, reproduction, - and distribution as defined by Sections 1 through 9 of this document. - - "Licensor" shall mean the copyright owner or entity authorized by - the copyright owner that is granting the License. - - "Legal Entity" shall mean the union of the acting entity and all - other entities that control, are controlled by, or are under common - control with that entity. For the purposes of this definition, - "control" means (i) the power, direct or indirect, to cause the - direction or management of such entity, whether by contract or - otherwise, or (ii) ownership of fifty percent (50%) or more of the - outstanding shares, or (iii) beneficial ownership of such entity. - - "You" (or "Your") shall mean an individual or Legal Entity - exercising permissions granted by this License. - - "Source" form shall mean the preferred form for making modifications, - including but not limited to software source code, documentation - source, and configuration files. - - "Object" form shall mean any form resulting from mechanical - transformation or translation of a Source form, including but - not limited to compiled object code, generated documentation, - and conversions to other media types. - - "Work" shall mean the work of authorship, whether in Source or - Object form, made available under the License, as indicated by a - copyright notice that is included in or attached to the work - (an example is provided in the Appendix below). - - "Derivative Works" shall mean any work, whether in Source or Object - form, that is based on (or derived from) the Work and for which the - editorial revisions, annotations, elaborations, or other modifications - represent, as a whole, an original work of authorship. For the purposes - of this License, Derivative Works shall not include works that remain - separable from, or merely link (or bind by name) to the interfaces of, - the Work and Derivative Works thereof. - - "Contribution" shall mean any work of authorship, including - the original version of the Work and any modifications or additions - to that Work or Derivative Works thereof, that is intentionally - submitted to Licensor for inclusion in the Work by the copyright owner - or by an individual or Legal Entity authorized to submit on behalf of - the copyright owner. For the purposes of this definition, "submitted" - means any form of electronic, verbal, or written communication sent - to the Licensor or its representatives, including but not limited to - communication on electronic mailing lists, source code control systems, - and issue tracking systems that are managed by, or on behalf of, the - Licensor for the purpose of discussing and improving the Work, but - excluding communication that is conspicuously marked or otherwise - designated in writing by the copyright owner as "Not a Contribution." - - "Contributor" shall mean Licensor and any individual or Legal Entity - on behalf of whom a Contribution has been received by Licensor and - subsequently incorporated within the Work. - - 2. Grant of Copyright License. Subject to the terms and conditions of - this License, each Contributor hereby grants to You a perpetual, - worldwide, non-exclusive, no-charge, royalty-free, irrevocable - copyright license to reproduce, prepare Derivative Works of, - publicly display, publicly perform, sublicense, and distribute the - Work and such Derivative Works in Source or Object form. - - 3. Grant of Patent License. Subject to the terms and conditions of - this License, each Contributor hereby grants to You a perpetual, - worldwide, non-exclusive, no-charge, royalty-free, irrevocable - (except as stated in this section) patent license to make, have made, - use, offer to sell, sell, import, and otherwise transfer the Work, - where such license applies only to those patent claims licensable - by such Contributor that are necessarily infringed by their - Contribution(s) alone or by combination of their Contribution(s) - with the Work to which such Contribution(s) was submitted. If You - institute patent litigation against any entity (including a - cross-claim or counterclaim in a lawsuit) alleging that the Work - or a Contribution incorporated within the Work constitutes direct - or contributory patent infringement, then any patent licenses - granted to You under this License for that Work shall terminate - as of the date such litigation is filed. - - 4. Redistribution. You may reproduce and distribute copies of the - Work or Derivative Works thereof in any medium, with or without - modifications, and in Source or Object form, provided that You - meet the following conditions: - - (a) You must give any other recipients of the Work or - Derivative Works a copy of this License; and - - (b) You must cause any modified files to carry prominent notices - stating that You changed the files; and - - (c) You must retain, in the Source form of any Derivative Works - that You distribute, all copyright, patent, trademark, and - attribution notices from the Source form of the Work, - excluding those notices that do not pertain to any part of - the Derivative Works; and - - (d) If the Work includes a "NOTICE" text file as part of its - distribution, then any Derivative Works that You distribute must - include a readable copy of the attribution notices contained - within such NOTICE file, excluding those notices that do not - pertain to any part of the Derivative Works, in at least one - of the following places: within a NOTICE text file distributed - as part of the Derivative Works; within the Source form or - documentation, if provided along with the Derivative Works; or, - within a display generated by the Derivative Works, if and - wherever such third-party notices normally appear. The contents - of the NOTICE file are for informational purposes only and - do not modify the License. You may add Your own attribution - notices within Derivative Works that You distribute, alongside - or as an addendum to the NOTICE text from the Work, provided - that such additional attribution notices cannot be construed - as modifying the License. - - You may add Your own copyright statement to Your modifications and - may provide additional or different license terms and conditions - for use, reproduction, or distribution of Your modifications, or - for any such Derivative Works as a whole, provided Your use, - reproduction, and distribution of the Work otherwise complies with - the conditions stated in this License. - - 5. Submission of Contributions. Unless You explicitly state otherwise, - any Contribution intentionally submitted for inclusion in the Work - by You to the Licensor shall be under the terms and conditions of - this License, without any additional terms or conditions. - Notwithstanding the above, nothing herein shall supersede or modify - the terms of any separate license agreement you may have executed - with Licensor regarding such Contributions. - - 6. Trademarks. This License does not grant permission to use the trade - names, trademarks, service marks, or product names of the Licensor, - except as required for reasonable and customary use in describing the - origin of the Work and reproducing the content of the NOTICE file. - - 7. Disclaimer of Warranty. Unless required by applicable law or - agreed to in writing, Licensor provides the Work (and each - Contributor provides its Contributions) on an "AS IS" BASIS, - WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or - implied, including, without limitation, any warranties or conditions - of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A - PARTICULAR PURPOSE. You are solely responsible for determining the - appropriateness of using or redistributing the Work and assume any - risks associated with Your exercise of permissions under this License. - - 8. Limitation of Liability. In no event and under no legal theory, - whether in tort (including negligence), contract, or otherwise, - unless required by applicable law (such as deliberate and grossly - negligent acts) or agreed to in writing, shall any Contributor be - liable to You for damages, including any direct, indirect, special, - incidental, or consequential damages of any character arising as a - result of this License or out of the use or inability to use the - Work (including but not limited to damages for loss of goodwill, - work stoppage, computer failure or malfunction, or any and all - other commercial damages or losses), even if such Contributor - has been advised of the possibility of such damages. - - 9. Accepting Warranty or Additional Liability. While redistributing - the Work or Derivative Works thereof, You may choose to offer, - and charge a fee for, acceptance of support, warranty, indemnity, - or other liability obligations and/or rights consistent with this - License. However, in accepting such obligations, You may act only - on Your own behalf and on Your sole responsibility, not on behalf - of any other Contributor, and only if You agree to indemnify, - defend, and hold each Contributor harmless for any liability - incurred by, or claims asserted against, such Contributor by reason - of your accepting any such warranty or additional liability. - - END OF TERMS AND CONDITIONS - - APPENDIX: How to apply the Apache License to your work. - - To apply the Apache License to your work, attach the following - boilerplate notice, with the fields enclosed by brackets "{}" - replaced with your own identifying information. (Don't include - the brackets!) The text should be enclosed in the appropriate - comment syntax for the file format. We also recommend that a - file or class name and description of purpose be included on the - same "printed page" as the copyright notice for easier - identification within third-party archives. - - Copyright {yyyy} {name of copyright owner} - - Licensed under the Apache License, Version 2.0 (the "License"); - you may not use this file except in compliance with the License. - You may obtain a copy of the License at - - http://www.apache.org/licenses/LICENSE-2.0 - - Unless required by applicable law or agreed to in writing, software - distributed under the License is distributed on an "AS IS" BASIS, - WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. - See the License for the specific language governing permissions and - limitations under the License. - diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/distribution/files/config.yml b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/distribution/files/config.yml deleted file mode 100644 index ee15050..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/distribution/files/config.yml +++ /dev/null @@ -1,29 +0,0 @@ -version: 0.1 -storage: - delete: - enabled: true - cache: - blobdescriptor: inmemory - filesystem: - rootdirectory: /var/lib/distribution - maintenance: - uploadpurging: - enabled: false - tag: - concurrencylimit: 8 -http: - addr: 0.0.0.0:5000 - tls: - certificate: /certs/domain.crt - key: /certs/domain.key - debug: - addr: 0.0.0.0:5001 - prometheus: - enabled: true - headers: - X-Content-Type-Options: [nosniff] -health: - storagedriver: - enabled: true - interval: 10s - threshold: 3 diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/distribution/files/distribution.container b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/distribution/files/distribution.container deleted file mode 100644 index 1a97db8..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/distribution/files/distribution.container +++ /dev/null @@ -1,18 +0,0 @@ -[Unit] -Description=A distribution container -After=distribution.path - -[Container] -ContainerName=distribution -Image=docker.io/distribution/distribution:latest -PublishPort=127.0.0.1:5000:5000,127.0.0.1:5001:5001 -Volume=%h/.config/containers/distribution/certs:/certs:ro -Volume=%h/.config/containers/distribution/config.yml:/etc/distribution/config.yml:ro -Volume=distribution-data:/var/lib/distribution - -[Service] -Restart=on-failure -RestartSec=10s -RestartSteps=5 -RestartMaxDelaySec=1min -TimeoutStartSec=15min diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/distribution/files/prometheus-target.yml b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/distribution/files/prometheus-target.yml deleted file mode 100644 index c7ac184..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/distribution/files/prometheus-target.yml +++ /dev/null @@ -1,5 +0,0 @@ -- targets: - - '127.0.0.1:5001' - labels: - job: 'distribution' - context: 'rootless' diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/grafana/files/LICENSE b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/grafana/files/LICENSE deleted file mode 100644 index be3f7b2..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/grafana/files/LICENSE +++ /dev/null @@ -1,661 +0,0 @@ - GNU AFFERO GENERAL PUBLIC LICENSE - Version 3, 19 November 2007 - - Copyright (C) 2007 Free Software Foundation, Inc. - Everyone is permitted to copy and distribute verbatim copies - of this license document, but changing it is not allowed. - - Preamble - - The GNU Affero General Public License is a free, copyleft license for -software and other kinds of works, specifically designed to ensure -cooperation with the community in the case of network server software. - - The licenses for most software and other practical works are designed -to take away your freedom to share and change the works. By contrast, -our General Public Licenses are intended to guarantee your freedom to -share and change all versions of a program--to make sure it remains free -software for all its users. - - When we speak of free software, we are referring to freedom, not -price. Our General Public Licenses are designed to make sure that you -have the freedom to distribute copies of free software (and charge for -them if you wish), that you receive source code or can get it if you -want it, that you can change the software or use pieces of it in new -free programs, and that you know you can do these things. - - Developers that use our General Public Licenses protect your rights -with two steps: (1) assert copyright on the software, and (2) offer -you this License which gives you legal permission to copy, distribute -and/or modify the software. - - A secondary benefit of defending all users' freedom is that -improvements made in alternate versions of the program, if they -receive widespread use, become available for other developers to -incorporate. Many developers of free software are heartened and -encouraged by the resulting cooperation. However, in the case of -software used on network servers, this result may fail to come about. -The GNU General Public License permits making a modified version and -letting the public access it on a server without ever releasing its -source code to the public. - - The GNU Affero General Public License is designed specifically to -ensure that, in such cases, the modified source code becomes available -to the community. It requires the operator of a network server to -provide the source code of the modified version running there to the -users of that server. Therefore, public use of a modified version, on -a publicly accessible server, gives the public access to the source -code of the modified version. - - An older license, called the Affero General Public License and -published by Affero, was designed to accomplish similar goals. This is -a different license, not a version of the Affero GPL, but Affero has -released a new version of the Affero GPL which permits relicensing under -this license. - - The precise terms and conditions for copying, distribution and -modification follow. - - TERMS AND CONDITIONS - - 0. Definitions. - - "This License" refers to version 3 of the GNU Affero General Public License. - - "Copyright" also means copyright-like laws that apply to other kinds of -works, such as semiconductor masks. - - "The Program" refers to any copyrightable work licensed under this -License. Each licensee is addressed as "you". "Licensees" and -"recipients" may be individuals or organizations. - - To "modify" a work means to copy from or adapt all or part of the work -in a fashion requiring copyright permission, other than the making of an -exact copy. The resulting work is called a "modified version" of the -earlier work or a work "based on" the earlier work. - - A "covered work" means either the unmodified Program or a work based -on the Program. - - To "propagate" a work means to do anything with it that, without -permission, would make you directly or secondarily liable for -infringement under applicable copyright law, except executing it on a -computer or modifying a private copy. Propagation includes copying, -distribution (with or without modification), making available to the -public, and in some countries other activities as well. - - To "convey" a work means any kind of propagation that enables other -parties to make or receive copies. Mere interaction with a user through -a computer network, with no transfer of a copy, is not conveying. - - An interactive user interface displays "Appropriate Legal Notices" -to the extent that it includes a convenient and prominently visible -feature that (1) displays an appropriate copyright notice, and (2) -tells the user that there is no warranty for the work (except to the -extent that warranties are provided), that licensees may convey the -work under this License, and how to view a copy of this License. If -the interface presents a list of user commands or options, such as a -menu, a prominent item in the list meets this criterion. - - 1. Source Code. - - The "source code" for a work means the preferred form of the work -for making modifications to it. "Object code" means any non-source -form of a work. - - A "Standard Interface" means an interface that either is an official -standard defined by a recognized standards body, or, in the case of -interfaces specified for a particular programming language, one that -is widely used among developers working in that language. - - The "System Libraries" of an executable work include anything, other -than the work as a whole, that (a) is included in the normal form of -packaging a Major Component, but which is not part of that Major -Component, and (b) serves only to enable use of the work with that -Major Component, or to implement a Standard Interface for which an -implementation is available to the public in source code form. A -"Major Component", in this context, means a major essential component -(kernel, window system, and so on) of the specific operating system -(if any) on which the executable work runs, or a compiler used to -produce the work, or an object code interpreter used to run it. - - The "Corresponding Source" for a work in object code form means all -the source code needed to generate, install, and (for an executable -work) run the object code and to modify the work, including scripts to -control those activities. However, it does not include the work's -System Libraries, or general-purpose tools or generally available free -programs which are used unmodified in performing those activities but -which are not part of the work. For example, Corresponding Source -includes interface definition files associated with source files for -the work, and the source code for shared libraries and dynamically -linked subprograms that the work is specifically designed to require, -such as by intimate data communication or control flow between those -subprograms and other parts of the work. - - The Corresponding Source need not include anything that users -can regenerate automatically from other parts of the Corresponding -Source. - - The Corresponding Source for a work in source code form is that -same work. - - 2. Basic Permissions. - - All rights granted under this License are granted for the term of -copyright on the Program, and are irrevocable provided the stated -conditions are met. This License explicitly affirms your unlimited -permission to run the unmodified Program. The output from running a -covered work is covered by this License only if the output, given its -content, constitutes a covered work. This License acknowledges your -rights of fair use or other equivalent, as provided by copyright law. - - You may make, run and propagate covered works that you do not -convey, without conditions so long as your license otherwise remains -in force. You may convey covered works to others for the sole purpose -of having them make modifications exclusively for you, or provide you -with facilities for running those works, provided that you comply with -the terms of this License in conveying all material for which you do -not control copyright. Those thus making or running the covered works -for you must do so exclusively on your behalf, under your direction -and control, on terms that prohibit them from making any copies of -your copyrighted material outside their relationship with you. - - Conveying under any other circumstances is permitted solely under -the conditions stated below. Sublicensing is not allowed; section 10 -makes it unnecessary. - - 3. Protecting Users' Legal Rights From Anti-Circumvention Law. - - No covered work shall be deemed part of an effective technological -measure under any applicable law fulfilling obligations under article -11 of the WIPO copyright treaty adopted on 20 December 1996, or -similar laws prohibiting or restricting circumvention of such -measures. - - When you convey a covered work, you waive any legal power to forbid -circumvention of technological measures to the extent such circumvention -is effected by exercising rights under this License with respect to -the covered work, and you disclaim any intention to limit operation or -modification of the work as a means of enforcing, against the work's -users, your or third parties' legal rights to forbid circumvention of -technological measures. - - 4. Conveying Verbatim Copies. - - You may convey verbatim copies of the Program's source code as you -receive it, in any medium, provided that you conspicuously and -appropriately publish on each copy an appropriate copyright notice; -keep intact all notices stating that this License and any -non-permissive terms added in accord with section 7 apply to the code; -keep intact all notices of the absence of any warranty; and give all -recipients a copy of this License along with the Program. - - You may charge any price or no price for each copy that you convey, -and you may offer support or warranty protection for a fee. - - 5. Conveying Modified Source Versions. - - You may convey a work based on the Program, or the modifications to -produce it from the Program, in the form of source code under the -terms of section 4, provided that you also meet all of these conditions: - - a) The work must carry prominent notices stating that you modified - it, and giving a relevant date. - - b) The work must carry prominent notices stating that it is - released under this License and any conditions added under section - 7. This requirement modifies the requirement in section 4 to - "keep intact all notices". - - c) You must license the entire work, as a whole, under this - License to anyone who comes into possession of a copy. This - License will therefore apply, along with any applicable section 7 - additional terms, to the whole of the work, and all its parts, - regardless of how they are packaged. This License gives no - permission to license the work in any other way, but it does not - invalidate such permission if you have separately received it. - - d) If the work has interactive user interfaces, each must display - Appropriate Legal Notices; however, if the Program has interactive - interfaces that do not display Appropriate Legal Notices, your - work need not make them do so. - - A compilation of a covered work with other separate and independent -works, which are not by their nature extensions of the covered work, -and which are not combined with it such as to form a larger program, -in or on a volume of a storage or distribution medium, is called an -"aggregate" if the compilation and its resulting copyright are not -used to limit the access or legal rights of the compilation's users -beyond what the individual works permit. Inclusion of a covered work -in an aggregate does not cause this License to apply to the other -parts of the aggregate. - - 6. Conveying Non-Source Forms. - - You may convey a covered work in object code form under the terms -of sections 4 and 5, provided that you also convey the -machine-readable Corresponding Source under the terms of this License, -in one of these ways: - - a) Convey the object code in, or embodied in, a physical product - (including a physical distribution medium), accompanied by the - Corresponding Source fixed on a durable physical medium - customarily used for software interchange. - - b) Convey the object code in, or embodied in, a physical product - (including a physical distribution medium), accompanied by a - written offer, valid for at least three years and valid for as - long as you offer spare parts or customer support for that product - model, to give anyone who possesses the object code either (1) a - copy of the Corresponding Source for all the software in the - product that is covered by this License, on a durable physical - medium customarily used for software interchange, for a price no - more than your reasonable cost of physically performing this - conveying of source, or (2) access to copy the - Corresponding Source from a network server at no charge. - - c) Convey individual copies of the object code with a copy of the - written offer to provide the Corresponding Source. This - alternative is allowed only occasionally and noncommercially, and - only if you received the object code with such an offer, in accord - with subsection 6b. - - d) Convey the object code by offering access from a designated - place (gratis or for a charge), and offer equivalent access to the - Corresponding Source in the same way through the same place at no - further charge. You need not require recipients to copy the - Corresponding Source along with the object code. If the place to - copy the object code is a network server, the Corresponding Source - may be on a different server (operated by you or a third party) - that supports equivalent copying facilities, provided you maintain - clear directions next to the object code saying where to find the - Corresponding Source. Regardless of what server hosts the - Corresponding Source, you remain obligated to ensure that it is - available for as long as needed to satisfy these requirements. - - e) Convey the object code using peer-to-peer transmission, provided - you inform other peers where the object code and Corresponding - Source of the work are being offered to the general public at no - charge under subsection 6d. - - A separable portion of the object code, whose source code is excluded -from the Corresponding Source as a System Library, need not be -included in conveying the object code work. - - A "User Product" is either (1) a "consumer product", which means any -tangible personal property which is normally used for personal, family, -or household purposes, or (2) anything designed or sold for incorporation -into a dwelling. In determining whether a product is a consumer product, -doubtful cases shall be resolved in favor of coverage. For a particular -product received by a particular user, "normally used" refers to a -typical or common use of that class of product, regardless of the status -of the particular user or of the way in which the particular user -actually uses, or expects or is expected to use, the product. A product -is a consumer product regardless of whether the product has substantial -commercial, industrial or non-consumer uses, unless such uses represent -the only significant mode of use of the product. - - "Installation Information" for a User Product means any methods, -procedures, authorization keys, or other information required to install -and execute modified versions of a covered work in that User Product from -a modified version of its Corresponding Source. The information must -suffice to ensure that the continued functioning of the modified object -code is in no case prevented or interfered with solely because -modification has been made. - - If you convey an object code work under this section in, or with, or -specifically for use in, a User Product, and the conveying occurs as -part of a transaction in which the right of possession and use of the -User Product is transferred to the recipient in perpetuity or for a -fixed term (regardless of how the transaction is characterized), the -Corresponding Source conveyed under this section must be accompanied -by the Installation Information. But this requirement does not apply -if neither you nor any third party retains the ability to install -modified object code on the User Product (for example, the work has -been installed in ROM). - - The requirement to provide Installation Information does not include a -requirement to continue to provide support service, warranty, or updates -for a work that has been modified or installed by the recipient, or for -the User Product in which it has been modified or installed. Access to a -network may be denied when the modification itself materially and -adversely affects the operation of the network or violates the rules and -protocols for communication across the network. - - Corresponding Source conveyed, and Installation Information provided, -in accord with this section must be in a format that is publicly -documented (and with an implementation available to the public in -source code form), and must require no special password or key for -unpacking, reading or copying. - - 7. Additional Terms. - - "Additional permissions" are terms that supplement the terms of this -License by making exceptions from one or more of its conditions. -Additional permissions that are applicable to the entire Program shall -be treated as though they were included in this License, to the extent -that they are valid under applicable law. If additional permissions -apply only to part of the Program, that part may be used separately -under those permissions, but the entire Program remains governed by -this License without regard to the additional permissions. - - When you convey a copy of a covered work, you may at your option -remove any additional permissions from that copy, or from any part of -it. (Additional permissions may be written to require their own -removal in certain cases when you modify the work.) You may place -additional permissions on material, added by you to a covered work, -for which you have or can give appropriate copyright permission. - - Notwithstanding any other provision of this License, for material you -add to a covered work, you may (if authorized by the copyright holders of -that material) supplement the terms of this License with terms: - - a) Disclaiming warranty or limiting liability differently from the - terms of sections 15 and 16 of this License; or - - b) Requiring preservation of specified reasonable legal notices or - author attributions in that material or in the Appropriate Legal - Notices displayed by works containing it; or - - c) Prohibiting misrepresentation of the origin of that material, or - requiring that modified versions of such material be marked in - reasonable ways as different from the original version; or - - d) Limiting the use for publicity purposes of names of licensors or - authors of the material; or - - e) Declining to grant rights under trademark law for use of some - trade names, trademarks, or service marks; or - - f) Requiring indemnification of licensors and authors of that - material by anyone who conveys the material (or modified versions of - it) with contractual assumptions of liability to the recipient, for - any liability that these contractual assumptions directly impose on - those licensors and authors. - - All other non-permissive additional terms are considered "further -restrictions" within the meaning of section 10. If the Program as you -received it, or any part of it, contains a notice stating that it is -governed by this License along with a term that is a further -restriction, you may remove that term. If a license document contains -a further restriction but permits relicensing or conveying under this -License, you may add to a covered work material governed by the terms -of that license document, provided that the further restriction does -not survive such relicensing or conveying. - - If you add terms to a covered work in accord with this section, you -must place, in the relevant source files, a statement of the -additional terms that apply to those files, or a notice indicating -where to find the applicable terms. - - Additional terms, permissive or non-permissive, may be stated in the -form of a separately written license, or stated as exceptions; -the above requirements apply either way. - - 8. Termination. - - You may not propagate or modify a covered work except as expressly -provided under this License. Any attempt otherwise to propagate or -modify it is void, and will automatically terminate your rights under -this License (including any patent licenses granted under the third -paragraph of section 11). - - However, if you cease all violation of this License, then your -license from a particular copyright holder is reinstated (a) -provisionally, unless and until the copyright holder explicitly and -finally terminates your license, and (b) permanently, if the copyright -holder fails to notify you of the violation by some reasonable means -prior to 60 days after the cessation. - - Moreover, your license from a particular copyright holder is -reinstated permanently if the copyright holder notifies you of the -violation by some reasonable means, this is the first time you have -received notice of violation of this License (for any work) from that -copyright holder, and you cure the violation prior to 30 days after -your receipt of the notice. - - Termination of your rights under this section does not terminate the -licenses of parties who have received copies or rights from you under -this License. If your rights have been terminated and not permanently -reinstated, you do not qualify to receive new licenses for the same -material under section 10. - - 9. Acceptance Not Required for Having Copies. - - You are not required to accept this License in order to receive or -run a copy of the Program. Ancillary propagation of a covered work -occurring solely as a consequence of using peer-to-peer transmission -to receive a copy likewise does not require acceptance. However, -nothing other than this License grants you permission to propagate or -modify any covered work. These actions infringe copyright if you do -not accept this License. Therefore, by modifying or propagating a -covered work, you indicate your acceptance of this License to do so. - - 10. Automatic Licensing of Downstream Recipients. - - Each time you convey a covered work, the recipient automatically -receives a license from the original licensors, to run, modify and -propagate that work, subject to this License. You are not responsible -for enforcing compliance by third parties with this License. - - An "entity transaction" is a transaction transferring control of an -organization, or substantially all assets of one, or subdividing an -organization, or merging organizations. If propagation of a covered -work results from an entity transaction, each party to that -transaction who receives a copy of the work also receives whatever -licenses to the work the party's predecessor in interest had or could -give under the previous paragraph, plus a right to possession of the -Corresponding Source of the work from the predecessor in interest, if -the predecessor has it or can get it with reasonable efforts. - - You may not impose any further restrictions on the exercise of the -rights granted or affirmed under this License. For example, you may -not impose a license fee, royalty, or other charge for exercise of -rights granted under this License, and you may not initiate litigation -(including a cross-claim or counterclaim in a lawsuit) alleging that -any patent claim is infringed by making, using, selling, offering for -sale, or importing the Program or any portion of it. - - 11. Patents. - - A "contributor" is a copyright holder who authorizes use under this -License of the Program or a work on which the Program is based. The -work thus licensed is called the contributor's "contributor version". - - A contributor's "essential patent claims" are all patent claims -owned or controlled by the contributor, whether already acquired or -hereafter acquired, that would be infringed by some manner, permitted -by this License, of making, using, or selling its contributor version, -but do not include claims that would be infringed only as a -consequence of further modification of the contributor version. For -purposes of this definition, "control" includes the right to grant -patent sublicenses in a manner consistent with the requirements of -this License. - - Each contributor grants you a non-exclusive, worldwide, royalty-free -patent license under the contributor's essential patent claims, to -make, use, sell, offer for sale, import and otherwise run, modify and -propagate the contents of its contributor version. - - In the following three paragraphs, a "patent license" is any express -agreement or commitment, however denominated, not to enforce a patent -(such as an express permission to practice a patent or covenant not to -sue for patent infringement). To "grant" such a patent license to a -party means to make such an agreement or commitment not to enforce a -patent against the party. - - If you convey a covered work, knowingly relying on a patent license, -and the Corresponding Source of the work is not available for anyone -to copy, free of charge and under the terms of this License, through a -publicly available network server or other readily accessible means, -then you must either (1) cause the Corresponding Source to be so -available, or (2) arrange to deprive yourself of the benefit of the -patent license for this particular work, or (3) arrange, in a manner -consistent with the requirements of this License, to extend the patent -license to downstream recipients. "Knowingly relying" means you have -actual knowledge that, but for the patent license, your conveying the -covered work in a country, or your recipient's use of the covered work -in a country, would infringe one or more identifiable patents in that -country that you have reason to believe are valid. - - If, pursuant to or in connection with a single transaction or -arrangement, you convey, or propagate by procuring conveyance of, a -covered work, and grant a patent license to some of the parties -receiving the covered work authorizing them to use, propagate, modify -or convey a specific copy of the covered work, then the patent license -you grant is automatically extended to all recipients of the covered -work and works based on it. - - A patent license is "discriminatory" if it does not include within -the scope of its coverage, prohibits the exercise of, or is -conditioned on the non-exercise of one or more of the rights that are -specifically granted under this License. You may not convey a covered -work if you are a party to an arrangement with a third party that is -in the business of distributing software, under which you make payment -to the third party based on the extent of your activity of conveying -the work, and under which the third party grants, to any of the -parties who would receive the covered work from you, a discriminatory -patent license (a) in connection with copies of the covered work -conveyed by you (or copies made from those copies), or (b) primarily -for and in connection with specific products or compilations that -contain the covered work, unless you entered into that arrangement, -or that patent license was granted, prior to 28 March 2007. - - Nothing in this License shall be construed as excluding or limiting -any implied license or other defenses to infringement that may -otherwise be available to you under applicable patent law. - - 12. No Surrender of Others' Freedom. - - If conditions are imposed on you (whether by court order, agreement or -otherwise) that contradict the conditions of this License, they do not -excuse you from the conditions of this License. If you cannot convey a -covered work so as to satisfy simultaneously your obligations under this -License and any other pertinent obligations, then as a consequence you may -not convey it at all. For example, if you agree to terms that obligate you -to collect a royalty for further conveying from those to whom you convey -the Program, the only way you could satisfy both those terms and this -License would be to refrain entirely from conveying the Program. - - 13. Remote Network Interaction; Use with the GNU General Public License. - - Notwithstanding any other provision of this License, if you modify the -Program, your modified version must prominently offer all users -interacting with it remotely through a computer network (if your version -supports such interaction) an opportunity to receive the Corresponding -Source of your version by providing access to the Corresponding Source -from a network server at no charge, through some standard or customary -means of facilitating copying of software. This Corresponding Source -shall include the Corresponding Source for any work covered by version 3 -of the GNU General Public License that is incorporated pursuant to the -following paragraph. - - Notwithstanding any other provision of this License, you have -permission to link or combine any covered work with a work licensed -under version 3 of the GNU General Public License into a single -combined work, and to convey the resulting work. The terms of this -License will continue to apply to the part which is the covered work, -but the work with which it is combined will remain governed by version -3 of the GNU General Public License. - - 14. Revised Versions of this License. - - The Free Software Foundation may publish revised and/or new versions of -the GNU Affero General Public License from time to time. Such new versions -will be similar in spirit to the present version, but may differ in detail to -address new problems or concerns. - - Each version is given a distinguishing version number. If the -Program specifies that a certain numbered version of the GNU Affero General -Public License "or any later version" applies to it, you have the -option of following the terms and conditions either of that numbered -version or of any later version published by the Free Software -Foundation. If the Program does not specify a version number of the -GNU Affero General Public License, you may choose any version ever published -by the Free Software Foundation. - - If the Program specifies that a proxy can decide which future -versions of the GNU Affero General Public License can be used, that proxy's -public statement of acceptance of a version permanently authorizes you -to choose that version for the Program. - - Later license versions may give you additional or different -permissions. However, no additional obligations are imposed on any -author or copyright holder as a result of your choosing to follow a -later version. - - 15. Disclaimer of Warranty. - - THERE IS NO WARRANTY FOR THE PROGRAM, TO THE EXTENT PERMITTED BY -APPLICABLE LAW. EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT -HOLDERS AND/OR OTHER PARTIES PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY -OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, -THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR -PURPOSE. THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE PROGRAM -IS WITH YOU. SHOULD THE PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF -ALL NECESSARY SERVICING, REPAIR OR CORRECTION. - - 16. Limitation of Liability. - - IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING -WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MODIFIES AND/OR CONVEYS -THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY -GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE -USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED TO LOSS OF -DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD -PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER PROGRAMS), -EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF -SUCH DAMAGES. - - 17. Interpretation of Sections 15 and 16. - - If the disclaimer of warranty and limitation of liability provided -above cannot be given local legal effect according to their terms, -reviewing courts shall apply local law that most closely approximates -an absolute waiver of all civil liability in connection with the -Program, unless a warranty or assumption of liability accompanies a -copy of the Program in return for a fee. - - END OF TERMS AND CONDITIONS - - How to Apply These Terms to Your New Programs - - If you develop a new program, and you want it to be of the greatest -possible use to the public, the best way to achieve this is to make it -free software which everyone can redistribute and change under these terms. - - To do so, attach the following notices to the program. It is safest -to attach them to the start of each source file to most effectively -state the exclusion of warranty; and each file should have at least -the "copyright" line and a pointer to where the full notice is found. - - - Copyright (C) - - This program is free software: you can redistribute it and/or modify - it under the terms of the GNU Affero General Public License as published by - the Free Software Foundation, either version 3 of the License, or - (at your option) any later version. - - This program is distributed in the hope that it will be useful, - but WITHOUT ANY WARRANTY; without even the implied warranty of - MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the - GNU Affero General Public License for more details. - - You should have received a copy of the GNU Affero General Public License - along with this program. If not, see . - -Also add information on how to contact you by electronic and paper mail. - - If your software can interact with users remotely through a computer -network, you should also make sure that it provides a way for users to -get its source. For example, if your program is a web application, its -interface could display a "Source" link that leads users to an archive -of the code. There are many ways you could offer source, and different -solutions will be better for different programs; see section 13 for the -specific requirements. - - You should also get your employer (if you work as a programmer) or school, -if any, to sign a "copyright disclaimer" for the program, if necessary. -For more information on this, and how to apply and follow the GNU AGPL, see -. diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/grafana/files/dashboard.yml b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/grafana/files/dashboard.yml deleted file mode 100644 index be165c4..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/grafana/files/dashboard.yml +++ /dev/null @@ -1,12 +0,0 @@ -apiVersion: 1 - -providers: - - name: 'default' - orgId: 1 - folder: '' - type: file - disableDeletion: false - updateIntervalSeconds: 10 - allowUiUpdates: true - options: - path: /etc/grafana/provisioning/dashboards diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/grafana/files/grafana.container b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/grafana/files/grafana.container deleted file mode 100644 index 10f4935..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/grafana/files/grafana.container +++ /dev/null @@ -1,20 +0,0 @@ -[Unit] -Description=A grafana container - -[Container] -ContainerName=grafana -Image=docker.io/grafana/grafana:latest -Network=pasta:-T,9090:9090 -PublishPort=127.0.0.1:3000:3000 -Volume=grafana-data:/var/lib/grafana -Volume=%h/.config/containers/grafana/provisioning:/etc/grafana/provisioning:ro - -[Service] -Restart=on-failure -RestartSec=10s -RestartSteps=5 -RestartMaxDelaySec=1min -TimeoutStartSec=15min - -[Install] -WantedBy=default.target diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/grafana/grafana.bb b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/grafana/grafana.bb deleted file mode 100644 index a024506..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/grafana/grafana.bb +++ /dev/null @@ -1,29 +0,0 @@ -SUMMARY = "Grafana quadlet" -DESCRIPTION = "A quadlet for a grafana container that runs rootless" -LICENSE = "AGPL-3.0-only" -LIC_FILES_CHKSUM = "file://${UNPACKDIR}/LICENSE;md5=eb1e647870add0502f8f010b19de32af" - -SRC_URI = "\ - file://grafana.container \ - file://dashboard.yml \ - file://LICENSE \ -" - -RDEPENDS:${PN}:append = " podman" -RDEPENDS:${PN}:append = " add-user-svc" -RDEPENDS:${PN}:append = " packagegroup-grafana-dashboards" -RDEPENDS:${PN}:append = " packagegroup-grafana-datasources" - -S = "${UNPACKDIR}" - -ROOTLESS_USER_NAME ?= "svc" - -do_install() { - install -D -p -m 0644 ${UNPACKDIR}/grafana.container ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/systemd/grafana.container - install -D -p -m 0644 ${UNPACKDIR}/dashboard.yml ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/grafana/provisioning/dashboards/dashboard.yml -} - -FILES:${PN} = "\ - /home/${ROOTLESS_USER_NAME}/.config/containers/systemd/grafana.container \ - /home/${ROOTLESS_USER_NAME}/.config/containers/grafana/provisioning/dashboards/dashboard.yml \ -" diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/packagegroups/packagegroup-unit-kubes.bb b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/packagegroups/packagegroup-unit-kubes.bb deleted file mode 100644 index 0ab160e..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/packagegroups/packagegroup-unit-kubes.bb +++ /dev/null @@ -1,5 +0,0 @@ -SUMMARY = "Unit kube packages" - -inherit packagegroup - -RDEPENDS:${PN}:append = " pubd-kube" diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/packagegroups/packagegroup-unit-quadlets.bb b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/packagegroups/packagegroup-unit-quadlets.bb deleted file mode 100644 index 97142da..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/packagegroups/packagegroup-unit-quadlets.bb +++ /dev/null @@ -1,11 +0,0 @@ -SUMMARY = "Unit quadlet packages" - -inherit packagegroup - -RDEPENDS:${PN}:append = " banner" -RDEPENDS:${PN}:append = " distribution" -RDEPENDS:${PN}:append = " prometheus" -RDEPENDS:${PN}:append = " prometheus-podman-exporter-rootful" -RDEPENDS:${PN}:append = " prometheus-podman-exporter-rootless" -RDEPENDS:${PN}:append = " prometheus-node-exporter" -RDEPENDS:${PN}:append = " grafana" diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/podman/podman_%.bbappend b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/podman/podman_%.bbappend deleted file mode 100644 index 116f8a4..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/podman/podman_%.bbappend +++ /dev/null @@ -1,18 +0,0 @@ -# Enable rootless containers. -PACKAGECONFIG:append = " rootless" - -# Don't build and install docker wrapper. -PODMAN_FEATURES:remove = "docker" - -# Update PACKAGECONFIG to use pasta instead of slirp4netns. -# Pasta is the default network driver since Podman 5.0.0. -PACKAGECONFIG[rootless] = ",,,fuse-overlayfs passt,," - -# Update default_rootless_network_cmd to use pasta instead -# of slirp4netns. Again, Pasta is the default network driver -# since Podman 5.0.0. -do_install:append() { - if ${@bb.utils.contains('PACKAGECONFIG', 'rootless', 'true', 'false', d)}; then - sed -i 's/slirp4netns/pasta/' ${D}${sysconfdir}/containers/containers.conf - fi -} diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-node-exporter/files/LICENSE b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-node-exporter/files/LICENSE deleted file mode 100644 index 261eeb9..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-node-exporter/files/LICENSE +++ /dev/null @@ -1,201 +0,0 @@ - Apache License - Version 2.0, January 2004 - http://www.apache.org/licenses/ - - TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION - - 1. Definitions. - - "License" shall mean the terms and conditions for use, reproduction, - and distribution as defined by Sections 1 through 9 of this document. - - "Licensor" shall mean the copyright owner or entity authorized by - the copyright owner that is granting the License. - - "Legal Entity" shall mean the union of the acting entity and all - other entities that control, are controlled by, or are under common - control with that entity. For the purposes of this definition, - "control" means (i) the power, direct or indirect, to cause the - direction or management of such entity, whether by contract or - otherwise, or (ii) ownership of fifty percent (50%) or more of the - outstanding shares, or (iii) beneficial ownership of such entity. - - "You" (or "Your") shall mean an individual or Legal Entity - exercising permissions granted by this License. - - "Source" form shall mean the preferred form for making modifications, - including but not limited to software source code, documentation - source, and configuration files. - - "Object" form shall mean any form resulting from mechanical - transformation or translation of a Source form, including but - not limited to compiled object code, generated documentation, - and conversions to other media types. - - "Work" shall mean the work of authorship, whether in Source or - Object form, made available under the License, as indicated by a - copyright notice that is included in or attached to the work - (an example is provided in the Appendix below). - - "Derivative Works" shall mean any work, whether in Source or Object - form, that is based on (or derived from) the Work and for which the - editorial revisions, annotations, elaborations, or other modifications - represent, as a whole, an original work of authorship. For the purposes - of this License, Derivative Works shall not include works that remain - separable from, or merely link (or bind by name) to the interfaces of, - the Work and Derivative Works thereof. - - "Contribution" shall mean any work of authorship, including - the original version of the Work and any modifications or additions - to that Work or Derivative Works thereof, that is intentionally - submitted to Licensor for inclusion in the Work by the copyright owner - or by an individual or Legal Entity authorized to submit on behalf of - the copyright owner. For the purposes of this definition, "submitted" - means any form of electronic, verbal, or written communication sent - to the Licensor or its representatives, including but not limited to - communication on electronic mailing lists, source code control systems, - and issue tracking systems that are managed by, or on behalf of, the - Licensor for the purpose of discussing and improving the Work, but - excluding communication that is conspicuously marked or otherwise - designated in writing by the copyright owner as "Not a Contribution." - - "Contributor" shall mean Licensor and any individual or Legal Entity - on behalf of whom a Contribution has been received by Licensor and - subsequently incorporated within the Work. - - 2. Grant of Copyright License. Subject to the terms and conditions of - this License, each Contributor hereby grants to You a perpetual, - worldwide, non-exclusive, no-charge, royalty-free, irrevocable - copyright license to reproduce, prepare Derivative Works of, - publicly display, publicly perform, sublicense, and distribute the - Work and such Derivative Works in Source or Object form. - - 3. Grant of Patent License. Subject to the terms and conditions of - this License, each Contributor hereby grants to You a perpetual, - worldwide, non-exclusive, no-charge, royalty-free, irrevocable - (except as stated in this section) patent license to make, have made, - use, offer to sell, sell, import, and otherwise transfer the Work, - where such license applies only to those patent claims licensable - by such Contributor that are necessarily infringed by their - Contribution(s) alone or by combination of their Contribution(s) - with the Work to which such Contribution(s) was submitted. If You - institute patent litigation against any entity (including a - cross-claim or counterclaim in a lawsuit) alleging that the Work - or a Contribution incorporated within the Work constitutes direct - or contributory patent infringement, then any patent licenses - granted to You under this License for that Work shall terminate - as of the date such litigation is filed. - - 4. Redistribution. You may reproduce and distribute copies of the - Work or Derivative Works thereof in any medium, with or without - modifications, and in Source or Object form, provided that You - meet the following conditions: - - (a) You must give any other recipients of the Work or - Derivative Works a copy of this License; and - - (b) You must cause any modified files to carry prominent notices - stating that You changed the files; and - - (c) You must retain, in the Source form of any Derivative Works - that You distribute, all copyright, patent, trademark, and - attribution notices from the Source form of the Work, - excluding those notices that do not pertain to any part of - the Derivative Works; and - - (d) If the Work includes a "NOTICE" text file as part of its - distribution, then any Derivative Works that You distribute must - include a readable copy of the attribution notices contained - within such NOTICE file, excluding those notices that do not - pertain to any part of the Derivative Works, in at least one - of the following places: within a NOTICE text file distributed - as part of the Derivative Works; within the Source form or - documentation, if provided along with the Derivative Works; or, - within a display generated by the Derivative Works, if and - wherever such third-party notices normally appear. The contents - of the NOTICE file are for informational purposes only and - do not modify the License. You may add Your own attribution - notices within Derivative Works that You distribute, alongside - or as an addendum to the NOTICE text from the Work, provided - that such additional attribution notices cannot be construed - as modifying the License. - - You may add Your own copyright statement to Your modifications and - may provide additional or different license terms and conditions - for use, reproduction, or distribution of Your modifications, or - for any such Derivative Works as a whole, provided Your use, - reproduction, and distribution of the Work otherwise complies with - the conditions stated in this License. - - 5. Submission of Contributions. Unless You explicitly state otherwise, - any Contribution intentionally submitted for inclusion in the Work - by You to the Licensor shall be under the terms and conditions of - this License, without any additional terms or conditions. - Notwithstanding the above, nothing herein shall supersede or modify - the terms of any separate license agreement you may have executed - with Licensor regarding such Contributions. - - 6. Trademarks. This License does not grant permission to use the trade - names, trademarks, service marks, or product names of the Licensor, - except as required for reasonable and customary use in describing the - origin of the Work and reproducing the content of the NOTICE file. - - 7. Disclaimer of Warranty. Unless required by applicable law or - agreed to in writing, Licensor provides the Work (and each - Contributor provides its Contributions) on an "AS IS" BASIS, - WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or - implied, including, without limitation, any warranties or conditions - of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A - PARTICULAR PURPOSE. You are solely responsible for determining the - appropriateness of using or redistributing the Work and assume any - risks associated with Your exercise of permissions under this License. - - 8. Limitation of Liability. In no event and under no legal theory, - whether in tort (including negligence), contract, or otherwise, - unless required by applicable law (such as deliberate and grossly - negligent acts) or agreed to in writing, shall any Contributor be - liable to You for damages, including any direct, indirect, special, - incidental, or consequential damages of any character arising as a - result of this License or out of the use or inability to use the - Work (including but not limited to damages for loss of goodwill, - work stoppage, computer failure or malfunction, or any and all - other commercial damages or losses), even if such Contributor - has been advised of the possibility of such damages. - - 9. Accepting Warranty or Additional Liability. While redistributing - the Work or Derivative Works thereof, You may choose to offer, - and charge a fee for, acceptance of support, warranty, indemnity, - or other liability obligations and/or rights consistent with this - License. However, in accepting such obligations, You may act only - on Your own behalf and on Your sole responsibility, not on behalf - of any other Contributor, and only if You agree to indemnify, - defend, and hold each Contributor harmless for any liability - incurred by, or claims asserted against, such Contributor by reason - of your accepting any such warranty or additional liability. - - END OF TERMS AND CONDITIONS - - APPENDIX: How to apply the Apache License to your work. - - To apply the Apache License to your work, attach the following - boilerplate notice, with the fields enclosed by brackets "[]" - replaced with your own identifying information. (Don't include - the brackets!) The text should be enclosed in the appropriate - comment syntax for the file format. We also recommend that a - file or class name and description of purpose be included on the - same "printed page" as the copyright notice for easier - identification within third-party archives. - - Copyright [yyyy] [name of copyright owner] - - Licensed under the Apache License, Version 2.0 (the "License"); - you may not use this file except in compliance with the License. - You may obtain a copy of the License at - - http://www.apache.org/licenses/LICENSE-2.0 - - Unless required by applicable law or agreed to in writing, software - distributed under the License is distributed on an "AS IS" BASIS, - WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. - See the License for the specific language governing permissions and - limitations under the License. diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-node-exporter/files/prometheus-node-exporter.container b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-node-exporter/files/prometheus-node-exporter.container deleted file mode 100644 index fd28b26..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-node-exporter/files/prometheus-node-exporter.container +++ /dev/null @@ -1,28 +0,0 @@ -[Unit] -Description=A prometheus node exporter container (rootless) - -[Container] -ContainerName=prometheus-node-exporter -Image=quay.io/prometheus/node-exporter:latest -Network=host -PodmanArgs=--pid=host -Volume=/:/host:ro,rslave -Volume=/run/dbus/system_bus_socket:/var/run/dbus/system_bus_socket:ro -Exec=--path.rootfs=/host \ ---path.procfs=/host/proc \ ---collector.systemd \ ---collector.systemd.unit-include=".+" \ ---collector.processes \ ---collector.interrupts \ ---collector.interrupts.name-include=".+" \ ---collector.tcpstat - -[Service] -Restart=on-failure -RestartSec=10s -RestartSteps=5 -RestartMaxDelaySec=1min -TimeoutStartSec=15min - -[Install] -WantedBy=default.target diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-node-exporter/files/prometheus-target.yml b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-node-exporter/files/prometheus-target.yml deleted file mode 100644 index c419778..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-node-exporter/files/prometheus-target.yml +++ /dev/null @@ -1,5 +0,0 @@ -- targets: - - '127.0.0.1:9100' - labels: - job: 'node' - context: 'rootless' diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-node-exporter/prometheus-node-exporter.bb b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-node-exporter/prometheus-node-exporter.bb deleted file mode 100644 index 3b6837c..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-node-exporter/prometheus-node-exporter.bb +++ /dev/null @@ -1,27 +0,0 @@ -SUMMARY = "Prometheus node exporter quadlet" -DESCRIPTION = "A quadlet for a prometheus node exporter container that runs rootless" -LICENSE = "Apache-2.0" -LIC_FILES_CHKSUM = "file://${UNPACKDIR}/LICENSE;md5=86d3f3a95c324c9479bd8986968f4327" - -SRC_URI = "\ - file://prometheus-node-exporter.container \ - file://LICENSE \ - file://prometheus-target.yml \ -" - -RDEPENDS:${PN}:append = " podman" -RDEPENDS:${PN}:append = " add-user-svc" - -S = "${UNPACKDIR}" - -ROOTLESS_USER_NAME ?= "svc" - -do_install() { - install -D -p -m 0644 ${UNPACKDIR}/prometheus-node-exporter.container ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/systemd/prometheus-node-exporter.container - install -D -m 0644 ${UNPACKDIR}/prometheus-target.yml ${D}${sysconfdir}/prometheus/targets.d/node-exporter.yml -} - -FILES:${PN} = "\ - /home/${ROOTLESS_USER_NAME}/.config/containers/systemd/prometheus-node-exporter.container \ - ${sysconfdir}/prometheus/targets.d/node-exporter.yml \ -" diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootful/files/LICENSE b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootful/files/LICENSE deleted file mode 100644 index 261eeb9..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootful/files/LICENSE +++ /dev/null @@ -1,201 +0,0 @@ - Apache License - Version 2.0, January 2004 - http://www.apache.org/licenses/ - - TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION - - 1. Definitions. - - "License" shall mean the terms and conditions for use, reproduction, - and distribution as defined by Sections 1 through 9 of this document. - - "Licensor" shall mean the copyright owner or entity authorized by - the copyright owner that is granting the License. - - "Legal Entity" shall mean the union of the acting entity and all - other entities that control, are controlled by, or are under common - control with that entity. For the purposes of this definition, - "control" means (i) the power, direct or indirect, to cause the - direction or management of such entity, whether by contract or - otherwise, or (ii) ownership of fifty percent (50%) or more of the - outstanding shares, or (iii) beneficial ownership of such entity. - - "You" (or "Your") shall mean an individual or Legal Entity - exercising permissions granted by this License. - - "Source" form shall mean the preferred form for making modifications, - including but not limited to software source code, documentation - source, and configuration files. - - "Object" form shall mean any form resulting from mechanical - transformation or translation of a Source form, including but - not limited to compiled object code, generated documentation, - and conversions to other media types. - - "Work" shall mean the work of authorship, whether in Source or - Object form, made available under the License, as indicated by a - copyright notice that is included in or attached to the work - (an example is provided in the Appendix below). - - "Derivative Works" shall mean any work, whether in Source or Object - form, that is based on (or derived from) the Work and for which the - editorial revisions, annotations, elaborations, or other modifications - represent, as a whole, an original work of authorship. For the purposes - of this License, Derivative Works shall not include works that remain - separable from, or merely link (or bind by name) to the interfaces of, - the Work and Derivative Works thereof. - - "Contribution" shall mean any work of authorship, including - the original version of the Work and any modifications or additions - to that Work or Derivative Works thereof, that is intentionally - submitted to Licensor for inclusion in the Work by the copyright owner - or by an individual or Legal Entity authorized to submit on behalf of - the copyright owner. For the purposes of this definition, "submitted" - means any form of electronic, verbal, or written communication sent - to the Licensor or its representatives, including but not limited to - communication on electronic mailing lists, source code control systems, - and issue tracking systems that are managed by, or on behalf of, the - Licensor for the purpose of discussing and improving the Work, but - excluding communication that is conspicuously marked or otherwise - designated in writing by the copyright owner as "Not a Contribution." - - "Contributor" shall mean Licensor and any individual or Legal Entity - on behalf of whom a Contribution has been received by Licensor and - subsequently incorporated within the Work. - - 2. Grant of Copyright License. Subject to the terms and conditions of - this License, each Contributor hereby grants to You a perpetual, - worldwide, non-exclusive, no-charge, royalty-free, irrevocable - copyright license to reproduce, prepare Derivative Works of, - publicly display, publicly perform, sublicense, and distribute the - Work and such Derivative Works in Source or Object form. - - 3. Grant of Patent License. Subject to the terms and conditions of - this License, each Contributor hereby grants to You a perpetual, - worldwide, non-exclusive, no-charge, royalty-free, irrevocable - (except as stated in this section) patent license to make, have made, - use, offer to sell, sell, import, and otherwise transfer the Work, - where such license applies only to those patent claims licensable - by such Contributor that are necessarily infringed by their - Contribution(s) alone or by combination of their Contribution(s) - with the Work to which such Contribution(s) was submitted. If You - institute patent litigation against any entity (including a - cross-claim or counterclaim in a lawsuit) alleging that the Work - or a Contribution incorporated within the Work constitutes direct - or contributory patent infringement, then any patent licenses - granted to You under this License for that Work shall terminate - as of the date such litigation is filed. - - 4. Redistribution. You may reproduce and distribute copies of the - Work or Derivative Works thereof in any medium, with or without - modifications, and in Source or Object form, provided that You - meet the following conditions: - - (a) You must give any other recipients of the Work or - Derivative Works a copy of this License; and - - (b) You must cause any modified files to carry prominent notices - stating that You changed the files; and - - (c) You must retain, in the Source form of any Derivative Works - that You distribute, all copyright, patent, trademark, and - attribution notices from the Source form of the Work, - excluding those notices that do not pertain to any part of - the Derivative Works; and - - (d) If the Work includes a "NOTICE" text file as part of its - distribution, then any Derivative Works that You distribute must - include a readable copy of the attribution notices contained - within such NOTICE file, excluding those notices that do not - pertain to any part of the Derivative Works, in at least one - of the following places: within a NOTICE text file distributed - as part of the Derivative Works; within the Source form or - documentation, if provided along with the Derivative Works; or, - within a display generated by the Derivative Works, if and - wherever such third-party notices normally appear. The contents - of the NOTICE file are for informational purposes only and - do not modify the License. You may add Your own attribution - notices within Derivative Works that You distribute, alongside - or as an addendum to the NOTICE text from the Work, provided - that such additional attribution notices cannot be construed - as modifying the License. - - You may add Your own copyright statement to Your modifications and - may provide additional or different license terms and conditions - for use, reproduction, or distribution of Your modifications, or - for any such Derivative Works as a whole, provided Your use, - reproduction, and distribution of the Work otherwise complies with - the conditions stated in this License. - - 5. Submission of Contributions. Unless You explicitly state otherwise, - any Contribution intentionally submitted for inclusion in the Work - by You to the Licensor shall be under the terms and conditions of - this License, without any additional terms or conditions. - Notwithstanding the above, nothing herein shall supersede or modify - the terms of any separate license agreement you may have executed - with Licensor regarding such Contributions. - - 6. Trademarks. This License does not grant permission to use the trade - names, trademarks, service marks, or product names of the Licensor, - except as required for reasonable and customary use in describing the - origin of the Work and reproducing the content of the NOTICE file. - - 7. Disclaimer of Warranty. Unless required by applicable law or - agreed to in writing, Licensor provides the Work (and each - Contributor provides its Contributions) on an "AS IS" BASIS, - WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or - implied, including, without limitation, any warranties or conditions - of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A - PARTICULAR PURPOSE. You are solely responsible for determining the - appropriateness of using or redistributing the Work and assume any - risks associated with Your exercise of permissions under this License. - - 8. Limitation of Liability. In no event and under no legal theory, - whether in tort (including negligence), contract, or otherwise, - unless required by applicable law (such as deliberate and grossly - negligent acts) or agreed to in writing, shall any Contributor be - liable to You for damages, including any direct, indirect, special, - incidental, or consequential damages of any character arising as a - result of this License or out of the use or inability to use the - Work (including but not limited to damages for loss of goodwill, - work stoppage, computer failure or malfunction, or any and all - other commercial damages or losses), even if such Contributor - has been advised of the possibility of such damages. - - 9. Accepting Warranty or Additional Liability. While redistributing - the Work or Derivative Works thereof, You may choose to offer, - and charge a fee for, acceptance of support, warranty, indemnity, - or other liability obligations and/or rights consistent with this - License. However, in accepting such obligations, You may act only - on Your own behalf and on Your sole responsibility, not on behalf - of any other Contributor, and only if You agree to indemnify, - defend, and hold each Contributor harmless for any liability - incurred by, or claims asserted against, such Contributor by reason - of your accepting any such warranty or additional liability. - - END OF TERMS AND CONDITIONS - - APPENDIX: How to apply the Apache License to your work. - - To apply the Apache License to your work, attach the following - boilerplate notice, with the fields enclosed by brackets "[]" - replaced with your own identifying information. (Don't include - the brackets!) The text should be enclosed in the appropriate - comment syntax for the file format. We also recommend that a - file or class name and description of purpose be included on the - same "printed page" as the copyright notice for easier - identification within third-party archives. - - Copyright [yyyy] [name of copyright owner] - - Licensed under the Apache License, Version 2.0 (the "License"); - you may not use this file except in compliance with the License. - You may obtain a copy of the License at - - http://www.apache.org/licenses/LICENSE-2.0 - - Unless required by applicable law or agreed to in writing, software - distributed under the License is distributed on an "AS IS" BASIS, - WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. - See the License for the specific language governing permissions and - limitations under the License. diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootful/files/prometheus-podman-exporter.container b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootful/files/prometheus-podman-exporter.container deleted file mode 100644 index eb067f9..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootful/files/prometheus-podman-exporter.container +++ /dev/null @@ -1,23 +0,0 @@ -[Unit] -Description=A prometheus podman exporter container (rootful) -After=time-sync.target podman.socket -Wants=time-sync.target systemd-time-wait-sync.service podman.socket - -[Container] -ContainerName=prometheus-podman-exporter -Image=quay.io/navidys/prometheus-podman-exporter:latest -User=root -PublishPort=127.0.0.1:9882:9882 -Volume=/run/podman/podman.sock:/run/podman/podman.sock:ro -Environment=CONTAINER_HOST=unix:///run/podman/podman.sock -Exec=--collector.enable-all - -[Service] -Restart=on-failure -RestartSec=10s -RestartSteps=5 -RestartMaxDelaySec=1min -TimeoutStartSec=15min - -[Install] -WantedBy=multi-user.target default.target diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootful/files/prometheus-target.yml b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootful/files/prometheus-target.yml deleted file mode 100644 index d75f8c1..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootful/files/prometheus-target.yml +++ /dev/null @@ -1,5 +0,0 @@ -- targets: - - '127.0.0.1:9882' - labels: - job: 'podman' - context: 'rootful' diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootful/prometheus-podman-exporter-rootful.bb b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootful/prometheus-podman-exporter-rootful.bb deleted file mode 100644 index 4cd1ad5..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootful/prometheus-podman-exporter-rootful.bb +++ /dev/null @@ -1,24 +0,0 @@ -SUMMARY = "Prometheus podman exporter quadlet" -DESCRIPTION = "A quadlet for a prometheus podman exporter container that runs rootful" -LICENSE = "Apache-2.0" -LIC_FILES_CHKSUM = "file://${UNPACKDIR}/LICENSE;md5=86d3f3a95c324c9479bd8986968f4327" - -SRC_URI = "\ - file://prometheus-podman-exporter.container \ - file://LICENSE \ - file://prometheus-target.yml \ -" - -RDEPENDS:${PN}:append = " podman" - -S = "${UNPACKDIR}" - -do_install() { - install -D -p -m 0644 ${UNPACKDIR}/prometheus-podman-exporter.container ${D}${sysconfdir}/containers/systemd/prometheus-podman-exporter.container - install -D -m 0644 ${UNPACKDIR}/prometheus-target.yml ${D}${sysconfdir}/prometheus/targets.d/podman-rootful.yml -} - -FILES:${PN} = "\ - ${sysconfdir}/containers/systemd/prometheus-podman-exporter.container \ - ${sysconfdir}/prometheus/targets.d/podman-rootful.yml \ -" diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootless/files/LICENSE b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootless/files/LICENSE deleted file mode 100644 index 261eeb9..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootless/files/LICENSE +++ /dev/null @@ -1,201 +0,0 @@ - Apache License - Version 2.0, January 2004 - http://www.apache.org/licenses/ - - TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION - - 1. Definitions. - - "License" shall mean the terms and conditions for use, reproduction, - and distribution as defined by Sections 1 through 9 of this document. - - "Licensor" shall mean the copyright owner or entity authorized by - the copyright owner that is granting the License. - - "Legal Entity" shall mean the union of the acting entity and all - other entities that control, are controlled by, or are under common - control with that entity. For the purposes of this definition, - "control" means (i) the power, direct or indirect, to cause the - direction or management of such entity, whether by contract or - otherwise, or (ii) ownership of fifty percent (50%) or more of the - outstanding shares, or (iii) beneficial ownership of such entity. - - "You" (or "Your") shall mean an individual or Legal Entity - exercising permissions granted by this License. - - "Source" form shall mean the preferred form for making modifications, - including but not limited to software source code, documentation - source, and configuration files. - - "Object" form shall mean any form resulting from mechanical - transformation or translation of a Source form, including but - not limited to compiled object code, generated documentation, - and conversions to other media types. - - "Work" shall mean the work of authorship, whether in Source or - Object form, made available under the License, as indicated by a - copyright notice that is included in or attached to the work - (an example is provided in the Appendix below). - - "Derivative Works" shall mean any work, whether in Source or Object - form, that is based on (or derived from) the Work and for which the - editorial revisions, annotations, elaborations, or other modifications - represent, as a whole, an original work of authorship. For the purposes - of this License, Derivative Works shall not include works that remain - separable from, or merely link (or bind by name) to the interfaces of, - the Work and Derivative Works thereof. - - "Contribution" shall mean any work of authorship, including - the original version of the Work and any modifications or additions - to that Work or Derivative Works thereof, that is intentionally - submitted to Licensor for inclusion in the Work by the copyright owner - or by an individual or Legal Entity authorized to submit on behalf of - the copyright owner. For the purposes of this definition, "submitted" - means any form of electronic, verbal, or written communication sent - to the Licensor or its representatives, including but not limited to - communication on electronic mailing lists, source code control systems, - and issue tracking systems that are managed by, or on behalf of, the - Licensor for the purpose of discussing and improving the Work, but - excluding communication that is conspicuously marked or otherwise - designated in writing by the copyright owner as "Not a Contribution." - - "Contributor" shall mean Licensor and any individual or Legal Entity - on behalf of whom a Contribution has been received by Licensor and - subsequently incorporated within the Work. - - 2. Grant of Copyright License. Subject to the terms and conditions of - this License, each Contributor hereby grants to You a perpetual, - worldwide, non-exclusive, no-charge, royalty-free, irrevocable - copyright license to reproduce, prepare Derivative Works of, - publicly display, publicly perform, sublicense, and distribute the - Work and such Derivative Works in Source or Object form. - - 3. Grant of Patent License. Subject to the terms and conditions of - this License, each Contributor hereby grants to You a perpetual, - worldwide, non-exclusive, no-charge, royalty-free, irrevocable - (except as stated in this section) patent license to make, have made, - use, offer to sell, sell, import, and otherwise transfer the Work, - where such license applies only to those patent claims licensable - by such Contributor that are necessarily infringed by their - Contribution(s) alone or by combination of their Contribution(s) - with the Work to which such Contribution(s) was submitted. If You - institute patent litigation against any entity (including a - cross-claim or counterclaim in a lawsuit) alleging that the Work - or a Contribution incorporated within the Work constitutes direct - or contributory patent infringement, then any patent licenses - granted to You under this License for that Work shall terminate - as of the date such litigation is filed. - - 4. Redistribution. You may reproduce and distribute copies of the - Work or Derivative Works thereof in any medium, with or without - modifications, and in Source or Object form, provided that You - meet the following conditions: - - (a) You must give any other recipients of the Work or - Derivative Works a copy of this License; and - - (b) You must cause any modified files to carry prominent notices - stating that You changed the files; and - - (c) You must retain, in the Source form of any Derivative Works - that You distribute, all copyright, patent, trademark, and - attribution notices from the Source form of the Work, - excluding those notices that do not pertain to any part of - the Derivative Works; and - - (d) If the Work includes a "NOTICE" text file as part of its - distribution, then any Derivative Works that You distribute must - include a readable copy of the attribution notices contained - within such NOTICE file, excluding those notices that do not - pertain to any part of the Derivative Works, in at least one - of the following places: within a NOTICE text file distributed - as part of the Derivative Works; within the Source form or - documentation, if provided along with the Derivative Works; or, - within a display generated by the Derivative Works, if and - wherever such third-party notices normally appear. The contents - of the NOTICE file are for informational purposes only and - do not modify the License. You may add Your own attribution - notices within Derivative Works that You distribute, alongside - or as an addendum to the NOTICE text from the Work, provided - that such additional attribution notices cannot be construed - as modifying the License. - - You may add Your own copyright statement to Your modifications and - may provide additional or different license terms and conditions - for use, reproduction, or distribution of Your modifications, or - for any such Derivative Works as a whole, provided Your use, - reproduction, and distribution of the Work otherwise complies with - the conditions stated in this License. - - 5. Submission of Contributions. Unless You explicitly state otherwise, - any Contribution intentionally submitted for inclusion in the Work - by You to the Licensor shall be under the terms and conditions of - this License, without any additional terms or conditions. - Notwithstanding the above, nothing herein shall supersede or modify - the terms of any separate license agreement you may have executed - with Licensor regarding such Contributions. - - 6. Trademarks. This License does not grant permission to use the trade - names, trademarks, service marks, or product names of the Licensor, - except as required for reasonable and customary use in describing the - origin of the Work and reproducing the content of the NOTICE file. - - 7. Disclaimer of Warranty. Unless required by applicable law or - agreed to in writing, Licensor provides the Work (and each - Contributor provides its Contributions) on an "AS IS" BASIS, - WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or - implied, including, without limitation, any warranties or conditions - of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A - PARTICULAR PURPOSE. You are solely responsible for determining the - appropriateness of using or redistributing the Work and assume any - risks associated with Your exercise of permissions under this License. - - 8. Limitation of Liability. In no event and under no legal theory, - whether in tort (including negligence), contract, or otherwise, - unless required by applicable law (such as deliberate and grossly - negligent acts) or agreed to in writing, shall any Contributor be - liable to You for damages, including any direct, indirect, special, - incidental, or consequential damages of any character arising as a - result of this License or out of the use or inability to use the - Work (including but not limited to damages for loss of goodwill, - work stoppage, computer failure or malfunction, or any and all - other commercial damages or losses), even if such Contributor - has been advised of the possibility of such damages. - - 9. Accepting Warranty or Additional Liability. While redistributing - the Work or Derivative Works thereof, You may choose to offer, - and charge a fee for, acceptance of support, warranty, indemnity, - or other liability obligations and/or rights consistent with this - License. However, in accepting such obligations, You may act only - on Your own behalf and on Your sole responsibility, not on behalf - of any other Contributor, and only if You agree to indemnify, - defend, and hold each Contributor harmless for any liability - incurred by, or claims asserted against, such Contributor by reason - of your accepting any such warranty or additional liability. - - END OF TERMS AND CONDITIONS - - APPENDIX: How to apply the Apache License to your work. - - To apply the Apache License to your work, attach the following - boilerplate notice, with the fields enclosed by brackets "[]" - replaced with your own identifying information. (Don't include - the brackets!) The text should be enclosed in the appropriate - comment syntax for the file format. We also recommend that a - file or class name and description of purpose be included on the - same "printed page" as the copyright notice for easier - identification within third-party archives. - - Copyright [yyyy] [name of copyright owner] - - Licensed under the Apache License, Version 2.0 (the "License"); - you may not use this file except in compliance with the License. - You may obtain a copy of the License at - - http://www.apache.org/licenses/LICENSE-2.0 - - Unless required by applicable law or agreed to in writing, software - distributed under the License is distributed on an "AS IS" BASIS, - WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. - See the License for the specific language governing permissions and - limitations under the License. diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootless/files/prometheus-podman-exporter.container b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootless/files/prometheus-podman-exporter.container deleted file mode 100644 index 0cdfb0b..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootless/files/prometheus-podman-exporter.container +++ /dev/null @@ -1,23 +0,0 @@ -[Unit] -Description=A prometheus podman exporter container (rootless) -After=podman.socket -Wants=podman.socket - -[Container] -ContainerName=prometheus-podman-exporter-rootless -Image=quay.io/navidys/prometheus-podman-exporter:latest -PublishPort=127.0.0.1:9883:9882 -Volume=%t/podman/podman.sock:/run/podman/podman.sock:ro -Environment=CONTAINER_HOST=unix:///run/podman/podman.sock -PodmanArgs=--userns=keep-id:uid=65534 -Exec=--collector.enable-all - -[Service] -Restart=on-failure -RestartSec=10s -RestartSteps=5 -RestartMaxDelaySec=1min -TimeoutStartSec=15min - -[Install] -WantedBy=default.target diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootless/files/prometheus-target.yml b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootless/files/prometheus-target.yml deleted file mode 100644 index a3bdf42..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootless/files/prometheus-target.yml +++ /dev/null @@ -1,5 +0,0 @@ -- targets: - - '127.0.0.1:9883' - labels: - job: 'podman' - context: 'rootless' diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootless/prometheus-podman-exporter-rootless.bb b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootless/prometheus-podman-exporter-rootless.bb deleted file mode 100644 index 6911425..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus-podman-exporter-rootless/prometheus-podman-exporter-rootless.bb +++ /dev/null @@ -1,27 +0,0 @@ -SUMMARY = "Prometheus podman exporter quadlet" -DESCRIPTION = "A quadlet for a prometheus podman exporter container that runs rootless" -LICENSE = "Apache-2.0" -LIC_FILES_CHKSUM = "file://${UNPACKDIR}/LICENSE;md5=86d3f3a95c324c9479bd8986968f4327" - -SRC_URI = "\ - file://prometheus-podman-exporter.container \ - file://LICENSE \ - file://prometheus-target.yml \ -" - -RDEPENDS:${PN}:append = " podman" -RDEPENDS:${PN}:append = " add-user-svc" - -S = "${UNPACKDIR}" - -ROOTLESS_USER_NAME ?= "svc" - -do_install() { - install -D -p -m 0644 ${UNPACKDIR}/prometheus-podman-exporter.container ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/systemd/prometheus-podman-exporter.container - install -D -m 0644 ${UNPACKDIR}/prometheus-target.yml ${D}${sysconfdir}/prometheus/targets.d/podman-rootless.yml -} - -FILES:${PN} = "\ - /home/${ROOTLESS_USER_NAME}/.config/containers/systemd/prometheus-podman-exporter.container \ - ${sysconfdir}/prometheus/targets.d/podman-rootless.yml \ -" diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus/files/LICENSE b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus/files/LICENSE deleted file mode 100644 index 261eeb9..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus/files/LICENSE +++ /dev/null @@ -1,201 +0,0 @@ - Apache License - Version 2.0, January 2004 - http://www.apache.org/licenses/ - - TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION - - 1. Definitions. - - "License" shall mean the terms and conditions for use, reproduction, - and distribution as defined by Sections 1 through 9 of this document. - - "Licensor" shall mean the copyright owner or entity authorized by - the copyright owner that is granting the License. - - "Legal Entity" shall mean the union of the acting entity and all - other entities that control, are controlled by, or are under common - control with that entity. For the purposes of this definition, - "control" means (i) the power, direct or indirect, to cause the - direction or management of such entity, whether by contract or - otherwise, or (ii) ownership of fifty percent (50%) or more of the - outstanding shares, or (iii) beneficial ownership of such entity. - - "You" (or "Your") shall mean an individual or Legal Entity - exercising permissions granted by this License. - - "Source" form shall mean the preferred form for making modifications, - including but not limited to software source code, documentation - source, and configuration files. - - "Object" form shall mean any form resulting from mechanical - transformation or translation of a Source form, including but - not limited to compiled object code, generated documentation, - and conversions to other media types. - - "Work" shall mean the work of authorship, whether in Source or - Object form, made available under the License, as indicated by a - copyright notice that is included in or attached to the work - (an example is provided in the Appendix below). - - "Derivative Works" shall mean any work, whether in Source or Object - form, that is based on (or derived from) the Work and for which the - editorial revisions, annotations, elaborations, or other modifications - represent, as a whole, an original work of authorship. For the purposes - of this License, Derivative Works shall not include works that remain - separable from, or merely link (or bind by name) to the interfaces of, - the Work and Derivative Works thereof. - - "Contribution" shall mean any work of authorship, including - the original version of the Work and any modifications or additions - to that Work or Derivative Works thereof, that is intentionally - submitted to Licensor for inclusion in the Work by the copyright owner - or by an individual or Legal Entity authorized to submit on behalf of - the copyright owner. For the purposes of this definition, "submitted" - means any form of electronic, verbal, or written communication sent - to the Licensor or its representatives, including but not limited to - communication on electronic mailing lists, source code control systems, - and issue tracking systems that are managed by, or on behalf of, the - Licensor for the purpose of discussing and improving the Work, but - excluding communication that is conspicuously marked or otherwise - designated in writing by the copyright owner as "Not a Contribution." - - "Contributor" shall mean Licensor and any individual or Legal Entity - on behalf of whom a Contribution has been received by Licensor and - subsequently incorporated within the Work. - - 2. Grant of Copyright License. Subject to the terms and conditions of - this License, each Contributor hereby grants to You a perpetual, - worldwide, non-exclusive, no-charge, royalty-free, irrevocable - copyright license to reproduce, prepare Derivative Works of, - publicly display, publicly perform, sublicense, and distribute the - Work and such Derivative Works in Source or Object form. - - 3. Grant of Patent License. Subject to the terms and conditions of - this License, each Contributor hereby grants to You a perpetual, - worldwide, non-exclusive, no-charge, royalty-free, irrevocable - (except as stated in this section) patent license to make, have made, - use, offer to sell, sell, import, and otherwise transfer the Work, - where such license applies only to those patent claims licensable - by such Contributor that are necessarily infringed by their - Contribution(s) alone or by combination of their Contribution(s) - with the Work to which such Contribution(s) was submitted. If You - institute patent litigation against any entity (including a - cross-claim or counterclaim in a lawsuit) alleging that the Work - or a Contribution incorporated within the Work constitutes direct - or contributory patent infringement, then any patent licenses - granted to You under this License for that Work shall terminate - as of the date such litigation is filed. - - 4. Redistribution. You may reproduce and distribute copies of the - Work or Derivative Works thereof in any medium, with or without - modifications, and in Source or Object form, provided that You - meet the following conditions: - - (a) You must give any other recipients of the Work or - Derivative Works a copy of this License; and - - (b) You must cause any modified files to carry prominent notices - stating that You changed the files; and - - (c) You must retain, in the Source form of any Derivative Works - that You distribute, all copyright, patent, trademark, and - attribution notices from the Source form of the Work, - excluding those notices that do not pertain to any part of - the Derivative Works; and - - (d) If the Work includes a "NOTICE" text file as part of its - distribution, then any Derivative Works that You distribute must - include a readable copy of the attribution notices contained - within such NOTICE file, excluding those notices that do not - pertain to any part of the Derivative Works, in at least one - of the following places: within a NOTICE text file distributed - as part of the Derivative Works; within the Source form or - documentation, if provided along with the Derivative Works; or, - within a display generated by the Derivative Works, if and - wherever such third-party notices normally appear. The contents - of the NOTICE file are for informational purposes only and - do not modify the License. You may add Your own attribution - notices within Derivative Works that You distribute, alongside - or as an addendum to the NOTICE text from the Work, provided - that such additional attribution notices cannot be construed - as modifying the License. - - You may add Your own copyright statement to Your modifications and - may provide additional or different license terms and conditions - for use, reproduction, or distribution of Your modifications, or - for any such Derivative Works as a whole, provided Your use, - reproduction, and distribution of the Work otherwise complies with - the conditions stated in this License. - - 5. Submission of Contributions. Unless You explicitly state otherwise, - any Contribution intentionally submitted for inclusion in the Work - by You to the Licensor shall be under the terms and conditions of - this License, without any additional terms or conditions. - Notwithstanding the above, nothing herein shall supersede or modify - the terms of any separate license agreement you may have executed - with Licensor regarding such Contributions. - - 6. Trademarks. This License does not grant permission to use the trade - names, trademarks, service marks, or product names of the Licensor, - except as required for reasonable and customary use in describing the - origin of the Work and reproducing the content of the NOTICE file. - - 7. Disclaimer of Warranty. Unless required by applicable law or - agreed to in writing, Licensor provides the Work (and each - Contributor provides its Contributions) on an "AS IS" BASIS, - WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or - implied, including, without limitation, any warranties or conditions - of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A - PARTICULAR PURPOSE. You are solely responsible for determining the - appropriateness of using or redistributing the Work and assume any - risks associated with Your exercise of permissions under this License. - - 8. Limitation of Liability. In no event and under no legal theory, - whether in tort (including negligence), contract, or otherwise, - unless required by applicable law (such as deliberate and grossly - negligent acts) or agreed to in writing, shall any Contributor be - liable to You for damages, including any direct, indirect, special, - incidental, or consequential damages of any character arising as a - result of this License or out of the use or inability to use the - Work (including but not limited to damages for loss of goodwill, - work stoppage, computer failure or malfunction, or any and all - other commercial damages or losses), even if such Contributor - has been advised of the possibility of such damages. - - 9. Accepting Warranty or Additional Liability. While redistributing - the Work or Derivative Works thereof, You may choose to offer, - and charge a fee for, acceptance of support, warranty, indemnity, - or other liability obligations and/or rights consistent with this - License. However, in accepting such obligations, You may act only - on Your own behalf and on Your sole responsibility, not on behalf - of any other Contributor, and only if You agree to indemnify, - defend, and hold each Contributor harmless for any liability - incurred by, or claims asserted against, such Contributor by reason - of your accepting any such warranty or additional liability. - - END OF TERMS AND CONDITIONS - - APPENDIX: How to apply the Apache License to your work. - - To apply the Apache License to your work, attach the following - boilerplate notice, with the fields enclosed by brackets "[]" - replaced with your own identifying information. (Don't include - the brackets!) The text should be enclosed in the appropriate - comment syntax for the file format. We also recommend that a - file or class name and description of purpose be included on the - same "printed page" as the copyright notice for easier - identification within third-party archives. - - Copyright [yyyy] [name of copyright owner] - - Licensed under the Apache License, Version 2.0 (the "License"); - you may not use this file except in compliance with the License. - You may obtain a copy of the License at - - http://www.apache.org/licenses/LICENSE-2.0 - - Unless required by applicable law or agreed to in writing, software - distributed under the License is distributed on an "AS IS" BASIS, - WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. - See the License for the specific language governing permissions and - limitations under the License. diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus/files/prometheus.container b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus/files/prometheus.container deleted file mode 100644 index 7aa2d98..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus/files/prometheus.container +++ /dev/null @@ -1,21 +0,0 @@ -[Unit] -Description=A prometheus container - -[Container] -ContainerName=prometheus -Image=docker.io/prom/prometheus:latest -Network=pasta:-T,9091:9091,-T,9882:9882,-T,9883:9883,-T,9100:9100,-T,5001:5001 -PublishPort=127.0.0.1:9090:9090 -Volume=prometheus-data:/var/lib/prometheus -Volume=%h/.config/containers/prometheus/prometheus.yml:/etc/prometheus/prometheus.yml:ro -Volume=/etc/prometheus/targets.d:/etc/prometheus/targets.d:ro - -[Service] -Restart=on-failure -RestartSec=10s -RestartSteps=5 -RestartMaxDelaySec=1min -TimeoutStartSec=15min - -[Install] -WantedBy=default.target diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus/files/prometheus.yml b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus/files/prometheus.yml deleted file mode 100644 index f4b09a4..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus/files/prometheus.yml +++ /dev/null @@ -1,28 +0,0 @@ -global: - scrape_interval: 15s # By default, scrape targets every 15 seconds. - - # Attach these labels to any time series or alerts when communicating with - # external systems (federation, remote storage, Alertmanager). - external_labels: - monitor: 'prometheus-monitor' - -# A scrape configuration containing exactly one endpoint to scrape: -# Here it's Prometheus itself. -scrape_configs: - # The job name is added as a label `job=` to any timeseries scraped from this config. - - job_name: 'prometheus' - - # Override the global default and scrape targets from this job every 5 seconds. - scrape_interval: 5s - - static_configs: - - targets: ['localhost:9090'] - - # https://prometheus.io/docs/prometheus/latest/configuration/configuration/#file_sd_config - - job_name: 'file-based-discovery' - file_sd_configs: - - files: - - '/etc/prometheus/targets.d/*.yml' - - '/etc/prometheus/targets.d/*.yaml' - - '/etc/prometheus/targets.d/*.json' - refresh_interval: 5m diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus/prometheus.bb b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus/prometheus.bb deleted file mode 100644 index 5eadf25..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/prometheus/prometheus.bb +++ /dev/null @@ -1,27 +0,0 @@ -SUMMARY = "Prometheus quadlet" -DESCRIPTION = "A quadlet for a prometheus container that runs rootless" -LICENSE = "Apache-2.0" -LIC_FILES_CHKSUM = "file://${UNPACKDIR}/LICENSE;md5=86d3f3a95c324c9479bd8986968f4327" - -SRC_URI = "\ - file://prometheus.container \ - file://LICENSE \ - file://prometheus.yml \ -" - -RDEPENDS:${PN}:append = " podman" -RDEPENDS:${PN}:append = " add-user-svc" - -S = "${UNPACKDIR}" - -ROOTLESS_USER_NAME ?= "svc" - -do_install() { - install -D -p -m 0644 ${UNPACKDIR}/prometheus.container ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/systemd/prometheus.container - install -D -p -m 0644 ${UNPACKDIR}/prometheus.yml ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/prometheus/prometheus.yml -} - -FILES:${PN} = "\ - /home/${ROOTLESS_USER_NAME}/.config/containers/systemd/prometheus.container \ - /home/${ROOTLESS_USER_NAME}/.config/containers/prometheus/prometheus.yml \ -" diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/pubd-kube/files/pubd.kube b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/pubd-kube/files/pubd.kube deleted file mode 100644 index 3ee4930..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/pubd-kube/files/pubd.kube +++ /dev/null @@ -1,15 +0,0 @@ -[Unit] -Description=A pubsub multi-container application - -[Kube] -Yaml=/home/svc/.config/containers/kube/pubsubd.yml - -[Service] -Restart=on-failure -RestartSec=10s -RestartSteps=5 -RestartMaxDelaySec=1min -TimeoutStartSec=15min - -[Install] -WantedBy=default.target diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/pubd-kube/files/pubsubd.yml b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/pubd-kube/files/pubsubd.yml deleted file mode 100644 index 58b2e1b..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/pubd-kube/files/pubsubd.yml +++ /dev/null @@ -1,42 +0,0 @@ -# Save the output of this file and use kubectl create -f to import -# it into Kubernetes. -# -# Created with podman-5.6.2 -apiVersion: v1 -kind: Pod -metadata: - annotations: - io.kubernetes.cri-o.SandboxID/grpcurl-client: 817d1ab354c6fa173eb343fa4454496907e13462228109fdc6c4e053b976815c - io.kubernetes.cri-o.SandboxID/pubd: 817d1ab354c6fa173eb343fa4454496907e13462228109fdc6c4e053b976815c - creationTimestamp: "2026-01-16T04:27:46Z" - labels: - app: pubsubd - name: pubsubd -spec: - containers: - - image: ghcr.io/closedcircuitconsulting/pubd:latest - name: pubd - ports: - - containerPort: 60069 - - args: - - -plaintext - - -import-path - - /proto - - -proto - - countah.proto - - -d - - '{}' - - localhost:60069 - - unit.countah.v0.Countah.Counter - image: docker.io/fullstorydev/grpcurl:latest-alpine - name: grpcurl-client - securityContext: {} - volumeMounts: - - mountPath: /proto - name: pubd-proto - readOnly: true - volumes: - - hostPath: - path: /home/svc/.config/proto/pubd - type: Directory - name: pubd-proto diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/pubd-kube/pubd-kube.bb b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/pubd-kube/pubd-kube.bb deleted file mode 100644 index 9a5c291..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-containers/pubd-kube/pubd-kube.bb +++ /dev/null @@ -1,27 +0,0 @@ -SUMMARY = "Pubd kube" -DESCRIPTION = "A kube for running a multi-container application (pubsub) that runs rootless" -LICENSE = "MIT" -LIC_FILES_CHKSUM = "file://${UNIT_CORE_LAYERDIR}/LICENSE;md5=38bf13be5d6979b28bd8adddb2f2f9b3" - -SRC_URI = "\ - file://pubd.kube \ - file://pubsubd.yml \ -" - -RDEPENDS:${PN}:append = " podman" -RDEPENDS:${PN}:append = " add-user-svc" -RDEPENDS:${PN}:append = " pubd" - -S = "${UNPACKDIR}" - -ROOTLESS_USER_NAME ?= "svc" - -do_install() { - install -D -m 0644 ${UNPACKDIR}/pubd.kube ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/systemd/pubd.kube - install -D -m 0644 ${UNPACKDIR}/pubsubd.yml ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/kube/pubsubd.yml -} - -FILES:${PN} = "\ - /home/${ROOTLESS_USER_NAME}/.config/containers/systemd/pubd.kube \ - /home/${ROOTLESS_USER_NAME}/.config/containers/kube/pubsubd.yml \ -" diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-core/systemd/systemd-distribution-path.bb b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-core/systemd/systemd-distribution-path.bb deleted file mode 100644 index ae47e27..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-core/systemd/systemd-distribution-path.bb +++ /dev/null @@ -1,30 +0,0 @@ -SUMMARY = "Systemd path unit to wait for TLS key and cert generation for distribution" -LICENSE = "MIT" -LIC_FILES_CHKSUM = "file://${UNIT_CORE_LAYERDIR}/LICENSE;md5=38bf13be5d6979b28bd8adddb2f2f9b3" - -inherit systemd - -SRC_URI = "\ - file://distribution.path \ -" - -RDEPENDS:${PN}:append = " add-user-svc" -RDEPENDS:${PN}:append = " systemd-regkeygen" - -S = "${UNPACKDIR}" - -SYSTEMD_USER = "svc" -SYSTEMD_USER_UNITDIR = "/home/${SYSTEMD_USER}/.config/systemd/user" - -do_install() { - install -D -p -m0644 ${UNPACKDIR}/distribution.path ${D}${SYSTEMD_USER_UNITDIR}/distribution.path - - # Auto-enable systemd unit by creating the appropriate symlink - install -d ${D}${SYSTEMD_USER_UNITDIR}/default.target.wants - ln -sf ${SYSTEMD_USER_UNITDIR}/distribution.path ${D}${SYSTEMD_USER_UNITDIR}/default.target.wants/distribution.path -} - -FILES:${PN} = "\ - ${SYSTEMD_USER_UNITDIR}/distribution.path \ - ${SYSTEMD_USER_UNITDIR}/default.target.wants/distribution.path \ -" diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-core/systemd/systemd-distribution-path/distribution.path b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-core/systemd/systemd-distribution-path/distribution.path deleted file mode 100644 index d29fbd7..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-core/systemd/systemd-distribution-path/distribution.path +++ /dev/null @@ -1,8 +0,0 @@ -[Unit] -Description=Wait for TLS cert and key - -[Path] -PathExists=%h/.local/share/distribution/certs-ready-signal - -[Install] -WantedBy=default.target diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-core/systemd/systemd-regkeygen.bb b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-core/systemd/systemd-regkeygen.bb deleted file mode 100644 index dc925d7..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-core/systemd/systemd-regkeygen.bb +++ /dev/null @@ -1,31 +0,0 @@ -SUMMARY = "Systemd service for generating TLS key and cert for distribution" -LICENSE = "MIT" -LIC_FILES_CHKSUM = "file://${UNIT_CORE_LAYERDIR}/LICENSE;md5=38bf13be5d6979b28bd8adddb2f2f9b3" - -SYSTEMD_SERVICE:${PN} = "regkeygen.service" - -SRC_URI = "\ - file://regkeygen.service \ - file://regkeygen.sh \ -" - -RDEPENDS:${PN}:append = " add-user-svc" - -S = "${UNPACKDIR}" - -do_install() { - install -D -p -m0644 ${UNPACKDIR}/regkeygen.service ${D}${systemd_system_unitdir}/regkeygen.service - install -D -p -m0755 ${UNPACKDIR}/regkeygen.sh ${D}${bindir}/regkeygen.sh -} - -inherit systemd - -FILES:${PN} = "\ - ${systemd_system_unitdir} \ - ${bindir} \ -" - -RDEPENDS:${PN} = "\ - openssl \ - ca-certificates \ -" diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-core/systemd/systemd-regkeygen/regkeygen.service b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-core/systemd/systemd-regkeygen/regkeygen.service deleted file mode 100644 index e5f2cab..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-core/systemd/systemd-regkeygen/regkeygen.service +++ /dev/null @@ -1,19 +0,0 @@ -[Unit] -Description=Generate registry TLS keys for device -ConditionPathExists=!/home/svc/.config/containers/distribution/certs/domain.crt -ConditionPathExists=!/home/svc/.config/containers/distribution/certs/domain.key -ConditionPathExists=!/usr/local/share/ca-certificates/registry.crt -ConditionPathExists=!/etc/containers/certs.d/localhost:5000/ca.crt -ConditionPathExists=!/home/svc/.config/containers/certs.d/localhost:5000/ca.crt -ConditionPathExists=!/home/svc/.local/share/distribution/certs-ready-signal -After=time-sync.target -Wants=time-sync.target systemd-time-wait-sync.service - -[Service] -Type=oneshot -ExecStart=/usr/bin/regkeygen.sh -Environment="TARGET_USR=svc" -Environment="DISTRIBUTION_REGISTRY_URL=localhost:5000" - -[Install] -WantedBy=multi-user.target diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-core/systemd/systemd-regkeygen/regkeygen.sh b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-core/systemd/systemd-regkeygen/regkeygen.sh deleted file mode 100644 index f1286dd..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-core/systemd/systemd-regkeygen/regkeygen.sh +++ /dev/null @@ -1,70 +0,0 @@ -#!/bin/sh - -XDG_LOCAL_HOME="/home/$TARGET_USR/.local" -XDG_CONFIG_HOME="/home/$TARGET_USR/.config" - -set -e - -echo "Cleaning up any previous artifacts..." - -rm -f "$XDG_CONFIG_HOME/containers/distribution/certs/domain.key" -rm -f "$XDG_CONFIG_HOME/containers/distribution/certs/domain.crt" -rm -f /usr/local/share/ca-certificates/registry.crt -rm -f "/etc/containers/certs.d/$DISTRIBUTION_REGISTRY_URL/ca.crt" -rm -f "$XDG_CONFIG_HOME/containers/certs.d/$DISTRIBUTION_REGISTRY_URL/ca.crt" -rm -f "$XDG_LOCAL_HOME/share/distribution/certs-ready-signal" - -echo "Creating necessary system directories..." - -mkdir -p "/etc/containers/certs.d/$DISTRIBUTION_REGISTRY_URL/" -mkdir -p /usr/local/share/ca-certificates - -echo "Creating necessary user directories..." - -mkdir -p "$XDG_CONFIG_HOME/containers/distribution/certs" -mkdir -p "$XDG_CONFIG_HOME/containers/certs.d/$DISTRIBUTION_REGISTRY_URL" -mkdir -p "$XDG_LOCAL_HOME/share/distribution" - -echo "Generating TLS certificate and key for local registry..." - -openssl req -x509 -newkey ec \ - -pkeyopt ec_paramgen_curve:P-256 \ - -keyout "$XDG_CONFIG_HOME/containers/distribution/certs/domain.key" \ - -out "$XDG_CONFIG_HOME/containers/distribution/certs/domain.crt" \ - -days 365 \ - -nodes \ - -subj '/C=US/ST=Minnesota/L=St. Paul/O=Closed Circuit Consulting/OU=R&D/CN=localhost/emailAddress=unitexe70@gmail.com' \ - -addext 'subjectAltName=DNS:localhost,IP:127.0.0.1,IP:::1' - -echo "Setting permissions on generated artifacts..." - -chown $TARGET_USR:$TARGET_USR "$XDG_CONFIG_HOME/containers/distribution/certs/domain.key" -chown $TARGET_USR:$TARGET_USR "$XDG_CONFIG_HOME/containers/distribution/certs/domain.crt" -chmod 640 "$XDG_CONFIG_HOME/containers/distribution/certs/domain.key" -chmod 644 "$XDG_CONFIG_HOME/containers/distribution/certs/domain.crt" - -echo "Adding CA to system trust store..." - -cp -f "$XDG_CONFIG_HOME/containers/distribution/certs/domain.crt" /usr/local/share/ca-certificates/registry.crt -update-ca-certificates - -echo "Adding CA to containers trust store..." - -cp -f "$XDG_CONFIG_HOME/containers/distribution/certs/domain.crt" "/etc/containers/certs.d/$DISTRIBUTION_REGISTRY_URL/ca.crt" - -echo "Adding CA to user containers trust store..." - -chown -R $TARGET_USR:$TARGET_USR "$XDG_CONFIG_HOME/containers/certs.d" -chmod 755 "$XDG_CONFIG_HOME/containers/certs.d/$DISTRIBUTION_REGISTRY_URL" - -cp -f "$XDG_CONFIG_HOME/containers/distribution/certs/domain.crt" "$XDG_CONFIG_HOME/containers/certs.d/$DISTRIBUTION_REGISTRY_URL/ca.crt" -chown $TARGET_USR:$TARGET_USR "$XDG_CONFIG_HOME/containers/certs.d/$DISTRIBUTION_REGISTRY_URL/ca.crt" -chmod 644 "$XDG_CONFIG_HOME/containers/certs.d/$DISTRIBUTION_REGISTRY_URL/ca.crt" - -echo "Creating signal file..." - -chown -R $TARGET_USR:$TARGET_USR "$XDG_LOCAL_HOME/share/distribution" -touch "$XDG_LOCAL_HOME/share/distribution/certs-ready-signal" -chmod 644 "$XDG_LOCAL_HOME/share/distribution/certs-ready-signal" - -echo "Registry TLS configuration created and ready for use" diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-extended/shadow/shadow_%.bbappend b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-extended/shadow/shadow_%.bbappend deleted file mode 100644 index 6b57651..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-extended/shadow/shadow_%.bbappend +++ /dev/null @@ -1,17 +0,0 @@ -# -# Support rootless podman for users. -# -# This is explained at: -# https://github.com/containers/podman/blob/main/docs/tutorials/rootless_tutorial.md#etcsubuid-and-etcsubgid-configuration -# -do_install:append() { - echo "unitexe:100000:65536" >> ${D}${sysconfdir}/subuid - echo "" >> ${D}${sysconfdir}/subuid - echo "unitexe:100000:65536" >> ${D}${sysconfdir}/subgid - echo "" >> ${D}${sysconfdir}/subgid - - echo "svc:200000:65536" >> ${D}${sysconfdir}/subuid - echo "" >> ${D}${sysconfdir}/subuid - echo "svc:200000:65536" >> ${D}${sysconfdir}/subgid - echo "" >> ${D}${sysconfdir}/subgid -} diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-kernel/linux/linux-yocto_%.bbappend b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-kernel/linux/linux-yocto_%.bbappend deleted file mode 100644 index 37d2edd..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-kernel/linux/linux-yocto_%.bbappend +++ /dev/null @@ -1 +0,0 @@ -SRC_URI:append = " file://netfilter_xt_match.cfg" diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/grafana-prometheus-datasource/files/datasource.yml b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/grafana-prometheus-datasource/files/datasource.yml deleted file mode 100644 index f0131f0..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/grafana-prometheus-datasource/files/datasource.yml +++ /dev/null @@ -1,8 +0,0 @@ -apiVersion: 1 - -datasources: - - name: Prometheus Node Exporter - type: prometheus - access: proxy - url: http://127.0.0.1:9090 - isDefault: true diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/grafana-prometheus-datasource/grafana-prometheus-datasource.bb b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/grafana-prometheus-datasource/grafana-prometheus-datasource.bb deleted file mode 100644 index 1450fb9..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/grafana-prometheus-datasource/grafana-prometheus-datasource.bb +++ /dev/null @@ -1,15 +0,0 @@ -SUMMARY = "Grafana prometheus data source drop-in" -LICENSE = "MIT" -LIC_FILES_CHKSUM = "file://${UNIT_CORE_LAYERDIR}/LICENSE;md5=38bf13be5d6979b28bd8adddb2f2f9b3" - -SRC_URI = "file://datasource.yml" - -ROOTLESS_USER_NAME ?= "svc" - -S = "${UNPACKDIR}" - -do_install() { - install -D -m 0644 ${S}/datasource.yml ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/grafana/provisioning/datasources/prometheus.yml -} - -FILES:${PN} = "/home/${ROOTLESS_USER_NAME}/.config/containers/grafana/provisioning/datasources/prometheus.yml" diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/grafana-prometheus-podman-dashboard/grafana-prometheus-podman-dashboard_git.bb b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/grafana-prometheus-podman-dashboard/grafana-prometheus-podman-dashboard_git.bb deleted file mode 100644 index 4a0d1a4..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/grafana-prometheus-podman-dashboard/grafana-prometheus-podman-dashboard_git.bb +++ /dev/null @@ -1,15 +0,0 @@ -SUMMARY = "Podman exporter grafana dashboard" -LICENSE = "Apache-2.0" -LIC_FILES_CHKSUM = "file://LICENSE;md5=e647d8f671db610bae37c03003d77b7e" - -SRC_URI = "git://git.closedcircuitconsulting.com/grafana-prometheus-podman-dashboard;branch=main;protocol=https" - -SRCREV = "ae0f243eda1b57ca73ef5c87032287fe8cf46ae3" - -ROOTLESS_USER_NAME ?= "svc" - -do_install() { - install -D -m 0644 ${S}/podman.json ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/grafana/provisioning/dashboards/podman-exporter.json -} - -FILES:${PN} = "/home/${ROOTLESS_USER_NAME}/.config/containers/grafana/provisioning/dashboards/podman-exporter.json" diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/packagegroups/packagegroup-grafana-dashboards.bb b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/packagegroups/packagegroup-grafana-dashboards.bb deleted file mode 100644 index 435e524..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/packagegroups/packagegroup-grafana-dashboards.bb +++ /dev/null @@ -1,6 +0,0 @@ -SUMMARY = "Grafana provisioning dashboards" - -inherit packagegroup - -RDEPENDS:${PN}:append = " prometheus-node-exporter-dashboard" -RDEPENDS:${PN}:append = " grafana-prometheus-podman-dashboard" diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/packagegroups/packagegroup-grafana-datasources.bb b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/packagegroups/packagegroup-grafana-datasources.bb deleted file mode 100644 index 73b4607..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/packagegroups/packagegroup-grafana-datasources.bb +++ /dev/null @@ -1,5 +0,0 @@ -SUMMARY = "Grafana provisioning data sources" - -inherit packagegroup - -RDEPENDS:${PN}:append = " grafana-prometheus-datasource" diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/prometheus-node-exporter-dashboard/prometheus-node-exporter-dashboard_git.bb b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/prometheus-node-exporter-dashboard/prometheus-node-exporter-dashboard_git.bb deleted file mode 100644 index 82944b6..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-support/prometheus-node-exporter-dashboard/prometheus-node-exporter-dashboard_git.bb +++ /dev/null @@ -1,15 +0,0 @@ -SUMMARY = "Node exporter grafana dashboard" -LICENSE = "Apache-2.0" -LIC_FILES_CHKSUM = "file://LICENSE;md5=dab0ea9d34dd9846f799c0fc52e5c58a" - -SRC_URI = "git://github.com/rfmoz/grafana-dashboards;branch=master;protocol=https" - -SRCREV = "0ea0f0652e41f73bd41b82769baa32912184152b" - -ROOTLESS_USER_NAME ?= "svc" - -do_install() { - install -D -m 0644 ${S}/prometheus/node-exporter-full.json ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/grafana/provisioning/dashboards/prometheus-node-exporter.json -} - -FILES:${PN} = "/home/${ROOTLESS_USER_NAME}/.config/containers/grafana/provisioning/dashboards/prometheus-node-exporter.json" diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-unit/images/core-image-unit.bbappend b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-unit/images/core-image-unit.bbappend deleted file mode 100644 index 275fe97..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-unit/images/core-image-unit.bbappend +++ /dev/null @@ -1,5 +0,0 @@ -inherit fix-prometheus-conf-dir-ownership - -IMAGE_INSTALL:append = " packagegroup-unit-containers" -IMAGE_INSTALL:append = " packagegroup-unit-kubes" -IMAGE_INSTALL:append = " packagegroup-unit-quadlets" diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-users/useradd/add-user-svc.bbappend b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-users/useradd/add-user-svc.bbappend deleted file mode 100644 index 23fe467..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-users/useradd/add-user-svc.bbappend +++ /dev/null @@ -1,2 +0,0 @@ -inherit enable-linger -inherit set-xdg-env diff --git a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-users/useradd/add-user-unitexe.bbappend b/meta-unit-core/dynamic-layers/virtualization-layer/recipes-users/useradd/add-user-unitexe.bbappend deleted file mode 100644 index 23fe467..0000000 --- a/meta-unit-core/dynamic-layers/virtualization-layer/recipes-users/useradd/add-user-unitexe.bbappend +++ /dev/null @@ -1,2 +0,0 @@ -inherit enable-linger -inherit set-xdg-env diff --git a/meta-unit-core/recipes-unit/images/core-image-unit.bb b/meta-unit-core/recipes-unit/images/core-image-unit.bb index d133554..8dea4ce 100644 --- a/meta-unit-core/recipes-unit/images/core-image-unit.bb +++ b/meta-unit-core/recipes-unit/images/core-image-unit.bb @@ -2,6 +2,6 @@ SUMMARY = "Unit image" LICENSE = "MIT" -inherit fix-home-dir-ownership +inherit fix-unitexe-home-dir-ownership require unit-image-base.inc diff --git a/meta-unit-core/recipes-users/useradd/add-user-svc.bb b/meta-unit-core/recipes-users/useradd/add-user-svc.bb deleted file mode 100644 index a1d44fa..0000000 --- a/meta-unit-core/recipes-users/useradd/add-user-svc.bb +++ /dev/null @@ -1,41 +0,0 @@ -SUMMARY = "Add service user" -LICENSE = "MIT" - -EXCLUDE_FROM_WORLD = "1" - -inherit useradd -inherit extrausers - -RDEPENDS:${PN}:append = " base-passwd" -RDEPENDS:${PN}:append = " busybox" -RDEPENDS:${PN}:append = " shadow" -RDEPENDS:${PN}:append = " systemd" - -USERADD_PACKAGES = "${PN}" - -USER_TO_ADD_NAME ?= "svc" -USER_TO_ADD_UID ?= "50556" -USER_TO_ADD_PASSWORD_HASHED ?= "\$6\$1TQs7iLskyTyCjoL\$xhngcFWaPRsoaZCwLSsYXUrRcVdR19zV2vBEzrzSEVu8zbqDlfKu4HLwzsZfiqJCiWqiu9qirD4Ym12CMf7D7." -COMMA_SEPARATED_LIST_OF_GROUPS_TO_ADD_USER_TO ?= "systemd-journal" - -USERADD_PARAM:${PN} = "-u ${USER_TO_ADD_UID} -d /home/${USER_TO_ADD_NAME} -s ${base_bindir}/sh -G ${COMMA_SEPARATED_LIST_OF_GROUPS_TO_ADD_USER_TO} -p '${USER_TO_ADD_PASSWORD_HASHED}' ${USER_TO_ADD_NAME}" - -INHIBIT_PACKAGE_DEBUG_SPLIT = "1" - -do_install() { - # Note: Use of .profile here assumes busybox shell. - install -D -m 0644 /dev/null ${D}/home/${USER_TO_ADD_NAME}/.profile - - # User is not part of sudo group and therefore doesn't - # have sbin in path, add it for access to common commands. - cat > ${D}/home/${USER_TO_ADD_NAME}/.profile << 'EOF' -export PATH="${sbindir}:/sbin:$PATH" -EOF -} - -# Prior to useradd being performed on the sysroot a couple things must happen: -# 1. Need the systemd recipe to create the systemd-journal group -# 2. Need busybox shell present -do_prepare_recipe_sysroot[depends] += "systemd:do_populate_sysroot busybox:do_populate_sysroot" - -FILES:${PN}:append = " /home/${USER_TO_ADD_NAME}/.profile" diff --git a/meta-unit-kas/images/unit-poky/beaglebone-yocto/core-image-unit/whinlatter.yml b/meta-unit-kas/images/unit-poky/beaglebone-yocto/core-image-unit/whinlatter.yml index 704abda..702deac 100644 --- a/meta-unit-kas/images/unit-poky/beaglebone-yocto/core-image-unit/whinlatter.yml +++ b/meta-unit-kas/images/unit-poky/beaglebone-yocto/core-image-unit/whinlatter.yml @@ -28,4 +28,5 @@ repos: meta-unit-distro: meta-unit-profiling: meta-unit-users: + meta-unit-virtualization: meta-virtualization-extra: diff --git a/meta-unit-kas/images/unit-poky/radxa-zero-3e/core-image-unit/whinlatter.yml b/meta-unit-kas/images/unit-poky/radxa-zero-3e/core-image-unit/whinlatter.yml index 0df2ff5..8bd6091 100644 --- a/meta-unit-kas/images/unit-poky/radxa-zero-3e/core-image-unit/whinlatter.yml +++ b/meta-unit-kas/images/unit-poky/radxa-zero-3e/core-image-unit/whinlatter.yml @@ -38,4 +38,5 @@ repos: meta-unit-distro: meta-unit-profiling: meta-unit-users: + meta-unit-virtualization: meta-virtualization-extra: diff --git a/meta-unit-kas/images/unit-poky/raspberrypi3-64/core-image-unit/whinlatter.yml b/meta-unit-kas/images/unit-poky/raspberrypi3-64/core-image-unit/whinlatter.yml index 349fe75..397c78d 100644 --- a/meta-unit-kas/images/unit-poky/raspberrypi3-64/core-image-unit/whinlatter.yml +++ b/meta-unit-kas/images/unit-poky/raspberrypi3-64/core-image-unit/whinlatter.yml @@ -39,4 +39,5 @@ repos: meta-unit-graphics: meta-unit-profiling: meta-unit-users: + meta-unit-virtualization: meta-virtualization-extra: diff --git a/meta-unit-virtualization/LICENSE b/meta-unit-virtualization/LICENSE new file mode 100644 index 0000000..52686ad --- /dev/null +++ b/meta-unit-virtualization/LICENSE @@ -0,0 +1,21 @@ +MIT License + +Copyright (c) 2025 Closed Circuit Consulting + +Permission is hereby granted, free of charge, to any person obtaining a copy +of this software and associated documentation files (the "Software"), to deal +in the Software without restriction, including without limitation the rights +to use, copy, modify, merge, publish, distribute, sublicense, and/or sell +copies of the Software, and to permit persons to whom the Software is +furnished to do so, subject to the following conditions: + +The above copyright notice and this permission notice shall be included in all +copies or substantial portions of the Software. + +THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR +IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, +FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE +AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER +LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, +OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE +SOFTWARE. \ No newline at end of file diff --git a/meta-unit-virtualization/classes/fix-prometheus-conf-dir-ownership.bbclass b/meta-unit-virtualization/classes/fix-prometheus-conf-dir-ownership.bbclass new file mode 100644 index 0000000..cfb2a97 --- /dev/null +++ b/meta-unit-virtualization/classes/fix-prometheus-conf-dir-ownership.bbclass @@ -0,0 +1,6 @@ +ROOTFS_POSTPROCESS_COMMAND:append = " fix_prometheus_conf_dir_ownership;" + +fix_prometheus_conf_dir_ownership() { + chmod 755 ${IMAGE_ROOTFS}${sysconfdir}/prometheus + chmod 755 ${IMAGE_ROOTFS}${sysconfdir}/prometheus/targets.d +} diff --git a/meta-unit-virtualization/classes/fix-svc-user-home-dir-ownership.bbclass b/meta-unit-virtualization/classes/fix-svc-user-home-dir-ownership.bbclass new file mode 100644 index 0000000..f7113d5 --- /dev/null +++ b/meta-unit-virtualization/classes/fix-svc-user-home-dir-ownership.bbclass @@ -0,0 +1,5 @@ +ROOTFS_POSTPROCESS_COMMAND:append = " fix_svc_user_home_directory_ownership;" + +fix_svc_user_home_directory_ownership() { + chown -R svc:svc ${IMAGE_ROOTFS}/home/svc +} diff --git a/meta-unit-virtualization/conf/layer.conf b/meta-unit-virtualization/conf/layer.conf new file mode 100644 index 0000000..e91b8c3 --- /dev/null +++ b/meta-unit-virtualization/conf/layer.conf @@ -0,0 +1,16 @@ +BBPATH .= ":${LAYERDIR}" + +BBFILES += "\ + ${LAYERDIR}/recipes-*/*/*.bb \ + ${LAYERDIR}/recipes-*/*/*.bbappend \ +" + +BBFILE_COLLECTIONS += "unit-virtualization-layer" +BBFILE_PATTERN_unit-virtualization-layer = "^${LAYERDIR}/" +BBFILE_PRIORITY_unit-virtualization-layer = "10" + +LAYERDEPENDS_unit-virtualization-layer += "virtualization-layer virtualization-extra-layer unit-users-layer" + +LAYERSERIES_COMPAT_unit-virtualization-layer = "whinlatter" + +UNIT_VIRTUALIZATION_LAYERDIR = "${LAYERDIR}" diff --git a/meta-unit-virtualization/recipes-containers/banner/banner_git.bb b/meta-unit-virtualization/recipes-containers/banner/banner_git.bb new file mode 100644 index 0000000..55363a8 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/banner/banner_git.bb @@ -0,0 +1,27 @@ +SUMMARY = "Banner application files" +DESCRIPTION = "Supporting files for a banner container that runs rootless" +LICENSE = "MIT" +LIC_FILES_CHKSUM = "file://LICENSE;md5=a77c12e0c0e8a14cebb1494195720ccc" + +SRC_URI = "\ + git://git.closedcircuitconsulting.com/banner-rs;branch=main;protocol=https \ +" + +SRCREV = "1176c69b629cb3ba045a2854ddb2a06a6f518cc3" + +PV = "0.1.0" + +RDEPENDS:${PN}:append = " podman" +RDEPENDS:${PN}:append = " add-user-svc" + +S = "${UNPACKDIR}/${PN}-${PV}" + +ROOTLESS_USER_NAME ?= "svc" + +do_install() { + install -D -m 0644 ${S}/banner.container ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/systemd/banner.container +} + +FILES:${PN} = "\ + /home/${ROOTLESS_USER_NAME}/.config/containers/systemd/banner.container \ +" diff --git a/meta-unit-virtualization/recipes-containers/distribution/distribution.bb b/meta-unit-virtualization/recipes-containers/distribution/distribution.bb new file mode 100644 index 0000000..6452836 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/distribution/distribution.bb @@ -0,0 +1,31 @@ +SUMMARY = "Distribution quadlet" +DESCRIPTION = "A quadlet for a distribution container that runs rootless" +LICENSE = "Apache-2.0" +LIC_FILES_CHKSUM = "file://${UNPACKDIR}/LICENSE;md5=d2794c0df5b907fdace235a619d80314" + +SRC_URI = "\ + file://config.yml \ + file://distribution.container \ + file://prometheus-target.yml \ + file://LICENSE \ +" + +RDEPENDS:${PN}:append = " systemd-distribution-path" +RDEPENDS:${PN}:append = " podman" +RDEPENDS:${PN}:append = " add-user-svc" + +S = "${UNPACKDIR}" + +ROOTLESS_USER_NAME ?= "svc" + +do_install() { + install -D -p -m 0644 ${UNPACKDIR}/distribution.container ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/systemd/distribution.container + install -D -p -m 0644 ${UNPACKDIR}/config.yml ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/distribution/config.yml + install -D -m 0644 ${UNPACKDIR}/prometheus-target.yml ${D}${sysconfdir}/prometheus/targets.d/distribution.yml +} + +FILES:${PN} = "\ + /home/${ROOTLESS_USER_NAME}/.config/containers/systemd/distribution.container \ + /home/${ROOTLESS_USER_NAME}/.config/containers/distribution/config.yml \ + ${sysconfdir}/prometheus/targets.d/distribution.yml \ +" diff --git a/meta-unit-virtualization/recipes-containers/distribution/files/LICENSE b/meta-unit-virtualization/recipes-containers/distribution/files/LICENSE new file mode 100644 index 0000000..e06d208 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/distribution/files/LICENSE @@ -0,0 +1,202 @@ +Apache License + Version 2.0, January 2004 + http://www.apache.org/licenses/ + + TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION + + 1. Definitions. + + "License" shall mean the terms and conditions for use, reproduction, + and distribution as defined by Sections 1 through 9 of this document. + + "Licensor" shall mean the copyright owner or entity authorized by + the copyright owner that is granting the License. + + "Legal Entity" shall mean the union of the acting entity and all + other entities that control, are controlled by, or are under common + control with that entity. For the purposes of this definition, + "control" means (i) the power, direct or indirect, to cause the + direction or management of such entity, whether by contract or + otherwise, or (ii) ownership of fifty percent (50%) or more of the + outstanding shares, or (iii) beneficial ownership of such entity. + + "You" (or "Your") shall mean an individual or Legal Entity + exercising permissions granted by this License. + + "Source" form shall mean the preferred form for making modifications, + including but not limited to software source code, documentation + source, and configuration files. + + "Object" form shall mean any form resulting from mechanical + transformation or translation of a Source form, including but + not limited to compiled object code, generated documentation, + and conversions to other media types. + + "Work" shall mean the work of authorship, whether in Source or + Object form, made available under the License, as indicated by a + copyright notice that is included in or attached to the work + (an example is provided in the Appendix below). + + "Derivative Works" shall mean any work, whether in Source or Object + form, that is based on (or derived from) the Work and for which the + editorial revisions, annotations, elaborations, or other modifications + represent, as a whole, an original work of authorship. For the purposes + of this License, Derivative Works shall not include works that remain + separable from, or merely link (or bind by name) to the interfaces of, + the Work and Derivative Works thereof. + + "Contribution" shall mean any work of authorship, including + the original version of the Work and any modifications or additions + to that Work or Derivative Works thereof, that is intentionally + submitted to Licensor for inclusion in the Work by the copyright owner + or by an individual or Legal Entity authorized to submit on behalf of + the copyright owner. For the purposes of this definition, "submitted" + means any form of electronic, verbal, or written communication sent + to the Licensor or its representatives, including but not limited to + communication on electronic mailing lists, source code control systems, + and issue tracking systems that are managed by, or on behalf of, the + Licensor for the purpose of discussing and improving the Work, but + excluding communication that is conspicuously marked or otherwise + designated in writing by the copyright owner as "Not a Contribution." + + "Contributor" shall mean Licensor and any individual or Legal Entity + on behalf of whom a Contribution has been received by Licensor and + subsequently incorporated within the Work. + + 2. Grant of Copyright License. Subject to the terms and conditions of + this License, each Contributor hereby grants to You a perpetual, + worldwide, non-exclusive, no-charge, royalty-free, irrevocable + copyright license to reproduce, prepare Derivative Works of, + publicly display, publicly perform, sublicense, and distribute the + Work and such Derivative Works in Source or Object form. + + 3. Grant of Patent License. Subject to the terms and conditions of + this License, each Contributor hereby grants to You a perpetual, + worldwide, non-exclusive, no-charge, royalty-free, irrevocable + (except as stated in this section) patent license to make, have made, + use, offer to sell, sell, import, and otherwise transfer the Work, + where such license applies only to those patent claims licensable + by such Contributor that are necessarily infringed by their + Contribution(s) alone or by combination of their Contribution(s) + with the Work to which such Contribution(s) was submitted. If You + institute patent litigation against any entity (including a + cross-claim or counterclaim in a lawsuit) alleging that the Work + or a Contribution incorporated within the Work constitutes direct + or contributory patent infringement, then any patent licenses + granted to You under this License for that Work shall terminate + as of the date such litigation is filed. + + 4. Redistribution. You may reproduce and distribute copies of the + Work or Derivative Works thereof in any medium, with or without + modifications, and in Source or Object form, provided that You + meet the following conditions: + + (a) You must give any other recipients of the Work or + Derivative Works a copy of this License; and + + (b) You must cause any modified files to carry prominent notices + stating that You changed the files; and + + (c) You must retain, in the Source form of any Derivative Works + that You distribute, all copyright, patent, trademark, and + attribution notices from the Source form of the Work, + excluding those notices that do not pertain to any part of + the Derivative Works; and + + (d) If the Work includes a "NOTICE" text file as part of its + distribution, then any Derivative Works that You distribute must + include a readable copy of the attribution notices contained + within such NOTICE file, excluding those notices that do not + pertain to any part of the Derivative Works, in at least one + of the following places: within a NOTICE text file distributed + as part of the Derivative Works; within the Source form or + documentation, if provided along with the Derivative Works; or, + within a display generated by the Derivative Works, if and + wherever such third-party notices normally appear. The contents + of the NOTICE file are for informational purposes only and + do not modify the License. You may add Your own attribution + notices within Derivative Works that You distribute, alongside + or as an addendum to the NOTICE text from the Work, provided + that such additional attribution notices cannot be construed + as modifying the License. + + You may add Your own copyright statement to Your modifications and + may provide additional or different license terms and conditions + for use, reproduction, or distribution of Your modifications, or + for any such Derivative Works as a whole, provided Your use, + reproduction, and distribution of the Work otherwise complies with + the conditions stated in this License. + + 5. Submission of Contributions. Unless You explicitly state otherwise, + any Contribution intentionally submitted for inclusion in the Work + by You to the Licensor shall be under the terms and conditions of + this License, without any additional terms or conditions. + Notwithstanding the above, nothing herein shall supersede or modify + the terms of any separate license agreement you may have executed + with Licensor regarding such Contributions. + + 6. Trademarks. This License does not grant permission to use the trade + names, trademarks, service marks, or product names of the Licensor, + except as required for reasonable and customary use in describing the + origin of the Work and reproducing the content of the NOTICE file. + + 7. Disclaimer of Warranty. Unless required by applicable law or + agreed to in writing, Licensor provides the Work (and each + Contributor provides its Contributions) on an "AS IS" BASIS, + WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or + implied, including, without limitation, any warranties or conditions + of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A + PARTICULAR PURPOSE. You are solely responsible for determining the + appropriateness of using or redistributing the Work and assume any + risks associated with Your exercise of permissions under this License. + + 8. Limitation of Liability. In no event and under no legal theory, + whether in tort (including negligence), contract, or otherwise, + unless required by applicable law (such as deliberate and grossly + negligent acts) or agreed to in writing, shall any Contributor be + liable to You for damages, including any direct, indirect, special, + incidental, or consequential damages of any character arising as a + result of this License or out of the use or inability to use the + Work (including but not limited to damages for loss of goodwill, + work stoppage, computer failure or malfunction, or any and all + other commercial damages or losses), even if such Contributor + has been advised of the possibility of such damages. + + 9. Accepting Warranty or Additional Liability. While redistributing + the Work or Derivative Works thereof, You may choose to offer, + and charge a fee for, acceptance of support, warranty, indemnity, + or other liability obligations and/or rights consistent with this + License. However, in accepting such obligations, You may act only + on Your own behalf and on Your sole responsibility, not on behalf + of any other Contributor, and only if You agree to indemnify, + defend, and hold each Contributor harmless for any liability + incurred by, or claims asserted against, such Contributor by reason + of your accepting any such warranty or additional liability. + + END OF TERMS AND CONDITIONS + + APPENDIX: How to apply the Apache License to your work. + + To apply the Apache License to your work, attach the following + boilerplate notice, with the fields enclosed by brackets "{}" + replaced with your own identifying information. (Don't include + the brackets!) The text should be enclosed in the appropriate + comment syntax for the file format. We also recommend that a + file or class name and description of purpose be included on the + same "printed page" as the copyright notice for easier + identification within third-party archives. + + Copyright {yyyy} {name of copyright owner} + + Licensed under the Apache License, Version 2.0 (the "License"); + you may not use this file except in compliance with the License. + You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + + Unless required by applicable law or agreed to in writing, software + distributed under the License is distributed on an "AS IS" BASIS, + WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + See the License for the specific language governing permissions and + limitations under the License. + diff --git a/meta-unit-virtualization/recipes-containers/distribution/files/config.yml b/meta-unit-virtualization/recipes-containers/distribution/files/config.yml new file mode 100644 index 0000000..ee15050 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/distribution/files/config.yml @@ -0,0 +1,29 @@ +version: 0.1 +storage: + delete: + enabled: true + cache: + blobdescriptor: inmemory + filesystem: + rootdirectory: /var/lib/distribution + maintenance: + uploadpurging: + enabled: false + tag: + concurrencylimit: 8 +http: + addr: 0.0.0.0:5000 + tls: + certificate: /certs/domain.crt + key: /certs/domain.key + debug: + addr: 0.0.0.0:5001 + prometheus: + enabled: true + headers: + X-Content-Type-Options: [nosniff] +health: + storagedriver: + enabled: true + interval: 10s + threshold: 3 diff --git a/meta-unit-virtualization/recipes-containers/distribution/files/distribution.container b/meta-unit-virtualization/recipes-containers/distribution/files/distribution.container new file mode 100644 index 0000000..1a97db8 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/distribution/files/distribution.container @@ -0,0 +1,18 @@ +[Unit] +Description=A distribution container +After=distribution.path + +[Container] +ContainerName=distribution +Image=docker.io/distribution/distribution:latest +PublishPort=127.0.0.1:5000:5000,127.0.0.1:5001:5001 +Volume=%h/.config/containers/distribution/certs:/certs:ro +Volume=%h/.config/containers/distribution/config.yml:/etc/distribution/config.yml:ro +Volume=distribution-data:/var/lib/distribution + +[Service] +Restart=on-failure +RestartSec=10s +RestartSteps=5 +RestartMaxDelaySec=1min +TimeoutStartSec=15min diff --git a/meta-unit-virtualization/recipes-containers/distribution/files/prometheus-target.yml b/meta-unit-virtualization/recipes-containers/distribution/files/prometheus-target.yml new file mode 100644 index 0000000..c7ac184 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/distribution/files/prometheus-target.yml @@ -0,0 +1,5 @@ +- targets: + - '127.0.0.1:5001' + labels: + job: 'distribution' + context: 'rootless' diff --git a/meta-unit-virtualization/recipes-containers/grafana/files/LICENSE b/meta-unit-virtualization/recipes-containers/grafana/files/LICENSE new file mode 100644 index 0000000..be3f7b2 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/grafana/files/LICENSE @@ -0,0 +1,661 @@ + GNU AFFERO GENERAL PUBLIC LICENSE + Version 3, 19 November 2007 + + Copyright (C) 2007 Free Software Foundation, Inc. + Everyone is permitted to copy and distribute verbatim copies + of this license document, but changing it is not allowed. + + Preamble + + The GNU Affero General Public License is a free, copyleft license for +software and other kinds of works, specifically designed to ensure +cooperation with the community in the case of network server software. + + The licenses for most software and other practical works are designed +to take away your freedom to share and change the works. By contrast, +our General Public Licenses are intended to guarantee your freedom to +share and change all versions of a program--to make sure it remains free +software for all its users. + + When we speak of free software, we are referring to freedom, not +price. Our General Public Licenses are designed to make sure that you +have the freedom to distribute copies of free software (and charge for +them if you wish), that you receive source code or can get it if you +want it, that you can change the software or use pieces of it in new +free programs, and that you know you can do these things. + + Developers that use our General Public Licenses protect your rights +with two steps: (1) assert copyright on the software, and (2) offer +you this License which gives you legal permission to copy, distribute +and/or modify the software. + + A secondary benefit of defending all users' freedom is that +improvements made in alternate versions of the program, if they +receive widespread use, become available for other developers to +incorporate. Many developers of free software are heartened and +encouraged by the resulting cooperation. However, in the case of +software used on network servers, this result may fail to come about. +The GNU General Public License permits making a modified version and +letting the public access it on a server without ever releasing its +source code to the public. + + The GNU Affero General Public License is designed specifically to +ensure that, in such cases, the modified source code becomes available +to the community. It requires the operator of a network server to +provide the source code of the modified version running there to the +users of that server. Therefore, public use of a modified version, on +a publicly accessible server, gives the public access to the source +code of the modified version. + + An older license, called the Affero General Public License and +published by Affero, was designed to accomplish similar goals. This is +a different license, not a version of the Affero GPL, but Affero has +released a new version of the Affero GPL which permits relicensing under +this license. + + The precise terms and conditions for copying, distribution and +modification follow. + + TERMS AND CONDITIONS + + 0. Definitions. + + "This License" refers to version 3 of the GNU Affero General Public License. + + "Copyright" also means copyright-like laws that apply to other kinds of +works, such as semiconductor masks. + + "The Program" refers to any copyrightable work licensed under this +License. Each licensee is addressed as "you". "Licensees" and +"recipients" may be individuals or organizations. + + To "modify" a work means to copy from or adapt all or part of the work +in a fashion requiring copyright permission, other than the making of an +exact copy. The resulting work is called a "modified version" of the +earlier work or a work "based on" the earlier work. + + A "covered work" means either the unmodified Program or a work based +on the Program. + + To "propagate" a work means to do anything with it that, without +permission, would make you directly or secondarily liable for +infringement under applicable copyright law, except executing it on a +computer or modifying a private copy. Propagation includes copying, +distribution (with or without modification), making available to the +public, and in some countries other activities as well. + + To "convey" a work means any kind of propagation that enables other +parties to make or receive copies. Mere interaction with a user through +a computer network, with no transfer of a copy, is not conveying. + + An interactive user interface displays "Appropriate Legal Notices" +to the extent that it includes a convenient and prominently visible +feature that (1) displays an appropriate copyright notice, and (2) +tells the user that there is no warranty for the work (except to the +extent that warranties are provided), that licensees may convey the +work under this License, and how to view a copy of this License. If +the interface presents a list of user commands or options, such as a +menu, a prominent item in the list meets this criterion. + + 1. Source Code. + + The "source code" for a work means the preferred form of the work +for making modifications to it. "Object code" means any non-source +form of a work. + + A "Standard Interface" means an interface that either is an official +standard defined by a recognized standards body, or, in the case of +interfaces specified for a particular programming language, one that +is widely used among developers working in that language. + + The "System Libraries" of an executable work include anything, other +than the work as a whole, that (a) is included in the normal form of +packaging a Major Component, but which is not part of that Major +Component, and (b) serves only to enable use of the work with that +Major Component, or to implement a Standard Interface for which an +implementation is available to the public in source code form. A +"Major Component", in this context, means a major essential component +(kernel, window system, and so on) of the specific operating system +(if any) on which the executable work runs, or a compiler used to +produce the work, or an object code interpreter used to run it. + + The "Corresponding Source" for a work in object code form means all +the source code needed to generate, install, and (for an executable +work) run the object code and to modify the work, including scripts to +control those activities. However, it does not include the work's +System Libraries, or general-purpose tools or generally available free +programs which are used unmodified in performing those activities but +which are not part of the work. For example, Corresponding Source +includes interface definition files associated with source files for +the work, and the source code for shared libraries and dynamically +linked subprograms that the work is specifically designed to require, +such as by intimate data communication or control flow between those +subprograms and other parts of the work. + + The Corresponding Source need not include anything that users +can regenerate automatically from other parts of the Corresponding +Source. + + The Corresponding Source for a work in source code form is that +same work. + + 2. Basic Permissions. + + All rights granted under this License are granted for the term of +copyright on the Program, and are irrevocable provided the stated +conditions are met. This License explicitly affirms your unlimited +permission to run the unmodified Program. The output from running a +covered work is covered by this License only if the output, given its +content, constitutes a covered work. This License acknowledges your +rights of fair use or other equivalent, as provided by copyright law. + + You may make, run and propagate covered works that you do not +convey, without conditions so long as your license otherwise remains +in force. You may convey covered works to others for the sole purpose +of having them make modifications exclusively for you, or provide you +with facilities for running those works, provided that you comply with +the terms of this License in conveying all material for which you do +not control copyright. Those thus making or running the covered works +for you must do so exclusively on your behalf, under your direction +and control, on terms that prohibit them from making any copies of +your copyrighted material outside their relationship with you. + + Conveying under any other circumstances is permitted solely under +the conditions stated below. Sublicensing is not allowed; section 10 +makes it unnecessary. + + 3. Protecting Users' Legal Rights From Anti-Circumvention Law. + + No covered work shall be deemed part of an effective technological +measure under any applicable law fulfilling obligations under article +11 of the WIPO copyright treaty adopted on 20 December 1996, or +similar laws prohibiting or restricting circumvention of such +measures. + + When you convey a covered work, you waive any legal power to forbid +circumvention of technological measures to the extent such circumvention +is effected by exercising rights under this License with respect to +the covered work, and you disclaim any intention to limit operation or +modification of the work as a means of enforcing, against the work's +users, your or third parties' legal rights to forbid circumvention of +technological measures. + + 4. Conveying Verbatim Copies. + + You may convey verbatim copies of the Program's source code as you +receive it, in any medium, provided that you conspicuously and +appropriately publish on each copy an appropriate copyright notice; +keep intact all notices stating that this License and any +non-permissive terms added in accord with section 7 apply to the code; +keep intact all notices of the absence of any warranty; and give all +recipients a copy of this License along with the Program. + + You may charge any price or no price for each copy that you convey, +and you may offer support or warranty protection for a fee. + + 5. Conveying Modified Source Versions. + + You may convey a work based on the Program, or the modifications to +produce it from the Program, in the form of source code under the +terms of section 4, provided that you also meet all of these conditions: + + a) The work must carry prominent notices stating that you modified + it, and giving a relevant date. + + b) The work must carry prominent notices stating that it is + released under this License and any conditions added under section + 7. This requirement modifies the requirement in section 4 to + "keep intact all notices". + + c) You must license the entire work, as a whole, under this + License to anyone who comes into possession of a copy. This + License will therefore apply, along with any applicable section 7 + additional terms, to the whole of the work, and all its parts, + regardless of how they are packaged. This License gives no + permission to license the work in any other way, but it does not + invalidate such permission if you have separately received it. + + d) If the work has interactive user interfaces, each must display + Appropriate Legal Notices; however, if the Program has interactive + interfaces that do not display Appropriate Legal Notices, your + work need not make them do so. + + A compilation of a covered work with other separate and independent +works, which are not by their nature extensions of the covered work, +and which are not combined with it such as to form a larger program, +in or on a volume of a storage or distribution medium, is called an +"aggregate" if the compilation and its resulting copyright are not +used to limit the access or legal rights of the compilation's users +beyond what the individual works permit. Inclusion of a covered work +in an aggregate does not cause this License to apply to the other +parts of the aggregate. + + 6. Conveying Non-Source Forms. + + You may convey a covered work in object code form under the terms +of sections 4 and 5, provided that you also convey the +machine-readable Corresponding Source under the terms of this License, +in one of these ways: + + a) Convey the object code in, or embodied in, a physical product + (including a physical distribution medium), accompanied by the + Corresponding Source fixed on a durable physical medium + customarily used for software interchange. + + b) Convey the object code in, or embodied in, a physical product + (including a physical distribution medium), accompanied by a + written offer, valid for at least three years and valid for as + long as you offer spare parts or customer support for that product + model, to give anyone who possesses the object code either (1) a + copy of the Corresponding Source for all the software in the + product that is covered by this License, on a durable physical + medium customarily used for software interchange, for a price no + more than your reasonable cost of physically performing this + conveying of source, or (2) access to copy the + Corresponding Source from a network server at no charge. + + c) Convey individual copies of the object code with a copy of the + written offer to provide the Corresponding Source. This + alternative is allowed only occasionally and noncommercially, and + only if you received the object code with such an offer, in accord + with subsection 6b. + + d) Convey the object code by offering access from a designated + place (gratis or for a charge), and offer equivalent access to the + Corresponding Source in the same way through the same place at no + further charge. You need not require recipients to copy the + Corresponding Source along with the object code. If the place to + copy the object code is a network server, the Corresponding Source + may be on a different server (operated by you or a third party) + that supports equivalent copying facilities, provided you maintain + clear directions next to the object code saying where to find the + Corresponding Source. Regardless of what server hosts the + Corresponding Source, you remain obligated to ensure that it is + available for as long as needed to satisfy these requirements. + + e) Convey the object code using peer-to-peer transmission, provided + you inform other peers where the object code and Corresponding + Source of the work are being offered to the general public at no + charge under subsection 6d. + + A separable portion of the object code, whose source code is excluded +from the Corresponding Source as a System Library, need not be +included in conveying the object code work. + + A "User Product" is either (1) a "consumer product", which means any +tangible personal property which is normally used for personal, family, +or household purposes, or (2) anything designed or sold for incorporation +into a dwelling. In determining whether a product is a consumer product, +doubtful cases shall be resolved in favor of coverage. For a particular +product received by a particular user, "normally used" refers to a +typical or common use of that class of product, regardless of the status +of the particular user or of the way in which the particular user +actually uses, or expects or is expected to use, the product. A product +is a consumer product regardless of whether the product has substantial +commercial, industrial or non-consumer uses, unless such uses represent +the only significant mode of use of the product. + + "Installation Information" for a User Product means any methods, +procedures, authorization keys, or other information required to install +and execute modified versions of a covered work in that User Product from +a modified version of its Corresponding Source. The information must +suffice to ensure that the continued functioning of the modified object +code is in no case prevented or interfered with solely because +modification has been made. + + If you convey an object code work under this section in, or with, or +specifically for use in, a User Product, and the conveying occurs as +part of a transaction in which the right of possession and use of the +User Product is transferred to the recipient in perpetuity or for a +fixed term (regardless of how the transaction is characterized), the +Corresponding Source conveyed under this section must be accompanied +by the Installation Information. But this requirement does not apply +if neither you nor any third party retains the ability to install +modified object code on the User Product (for example, the work has +been installed in ROM). + + The requirement to provide Installation Information does not include a +requirement to continue to provide support service, warranty, or updates +for a work that has been modified or installed by the recipient, or for +the User Product in which it has been modified or installed. Access to a +network may be denied when the modification itself materially and +adversely affects the operation of the network or violates the rules and +protocols for communication across the network. + + Corresponding Source conveyed, and Installation Information provided, +in accord with this section must be in a format that is publicly +documented (and with an implementation available to the public in +source code form), and must require no special password or key for +unpacking, reading or copying. + + 7. Additional Terms. + + "Additional permissions" are terms that supplement the terms of this +License by making exceptions from one or more of its conditions. +Additional permissions that are applicable to the entire Program shall +be treated as though they were included in this License, to the extent +that they are valid under applicable law. If additional permissions +apply only to part of the Program, that part may be used separately +under those permissions, but the entire Program remains governed by +this License without regard to the additional permissions. + + When you convey a copy of a covered work, you may at your option +remove any additional permissions from that copy, or from any part of +it. (Additional permissions may be written to require their own +removal in certain cases when you modify the work.) You may place +additional permissions on material, added by you to a covered work, +for which you have or can give appropriate copyright permission. + + Notwithstanding any other provision of this License, for material you +add to a covered work, you may (if authorized by the copyright holders of +that material) supplement the terms of this License with terms: + + a) Disclaiming warranty or limiting liability differently from the + terms of sections 15 and 16 of this License; or + + b) Requiring preservation of specified reasonable legal notices or + author attributions in that material or in the Appropriate Legal + Notices displayed by works containing it; or + + c) Prohibiting misrepresentation of the origin of that material, or + requiring that modified versions of such material be marked in + reasonable ways as different from the original version; or + + d) Limiting the use for publicity purposes of names of licensors or + authors of the material; or + + e) Declining to grant rights under trademark law for use of some + trade names, trademarks, or service marks; or + + f) Requiring indemnification of licensors and authors of that + material by anyone who conveys the material (or modified versions of + it) with contractual assumptions of liability to the recipient, for + any liability that these contractual assumptions directly impose on + those licensors and authors. + + All other non-permissive additional terms are considered "further +restrictions" within the meaning of section 10. If the Program as you +received it, or any part of it, contains a notice stating that it is +governed by this License along with a term that is a further +restriction, you may remove that term. If a license document contains +a further restriction but permits relicensing or conveying under this +License, you may add to a covered work material governed by the terms +of that license document, provided that the further restriction does +not survive such relicensing or conveying. + + If you add terms to a covered work in accord with this section, you +must place, in the relevant source files, a statement of the +additional terms that apply to those files, or a notice indicating +where to find the applicable terms. + + Additional terms, permissive or non-permissive, may be stated in the +form of a separately written license, or stated as exceptions; +the above requirements apply either way. + + 8. Termination. + + You may not propagate or modify a covered work except as expressly +provided under this License. Any attempt otherwise to propagate or +modify it is void, and will automatically terminate your rights under +this License (including any patent licenses granted under the third +paragraph of section 11). + + However, if you cease all violation of this License, then your +license from a particular copyright holder is reinstated (a) +provisionally, unless and until the copyright holder explicitly and +finally terminates your license, and (b) permanently, if the copyright +holder fails to notify you of the violation by some reasonable means +prior to 60 days after the cessation. + + Moreover, your license from a particular copyright holder is +reinstated permanently if the copyright holder notifies you of the +violation by some reasonable means, this is the first time you have +received notice of violation of this License (for any work) from that +copyright holder, and you cure the violation prior to 30 days after +your receipt of the notice. + + Termination of your rights under this section does not terminate the +licenses of parties who have received copies or rights from you under +this License. If your rights have been terminated and not permanently +reinstated, you do not qualify to receive new licenses for the same +material under section 10. + + 9. Acceptance Not Required for Having Copies. + + You are not required to accept this License in order to receive or +run a copy of the Program. Ancillary propagation of a covered work +occurring solely as a consequence of using peer-to-peer transmission +to receive a copy likewise does not require acceptance. However, +nothing other than this License grants you permission to propagate or +modify any covered work. These actions infringe copyright if you do +not accept this License. Therefore, by modifying or propagating a +covered work, you indicate your acceptance of this License to do so. + + 10. Automatic Licensing of Downstream Recipients. + + Each time you convey a covered work, the recipient automatically +receives a license from the original licensors, to run, modify and +propagate that work, subject to this License. You are not responsible +for enforcing compliance by third parties with this License. + + An "entity transaction" is a transaction transferring control of an +organization, or substantially all assets of one, or subdividing an +organization, or merging organizations. If propagation of a covered +work results from an entity transaction, each party to that +transaction who receives a copy of the work also receives whatever +licenses to the work the party's predecessor in interest had or could +give under the previous paragraph, plus a right to possession of the +Corresponding Source of the work from the predecessor in interest, if +the predecessor has it or can get it with reasonable efforts. + + You may not impose any further restrictions on the exercise of the +rights granted or affirmed under this License. For example, you may +not impose a license fee, royalty, or other charge for exercise of +rights granted under this License, and you may not initiate litigation +(including a cross-claim or counterclaim in a lawsuit) alleging that +any patent claim is infringed by making, using, selling, offering for +sale, or importing the Program or any portion of it. + + 11. Patents. + + A "contributor" is a copyright holder who authorizes use under this +License of the Program or a work on which the Program is based. The +work thus licensed is called the contributor's "contributor version". + + A contributor's "essential patent claims" are all patent claims +owned or controlled by the contributor, whether already acquired or +hereafter acquired, that would be infringed by some manner, permitted +by this License, of making, using, or selling its contributor version, +but do not include claims that would be infringed only as a +consequence of further modification of the contributor version. For +purposes of this definition, "control" includes the right to grant +patent sublicenses in a manner consistent with the requirements of +this License. + + Each contributor grants you a non-exclusive, worldwide, royalty-free +patent license under the contributor's essential patent claims, to +make, use, sell, offer for sale, import and otherwise run, modify and +propagate the contents of its contributor version. + + In the following three paragraphs, a "patent license" is any express +agreement or commitment, however denominated, not to enforce a patent +(such as an express permission to practice a patent or covenant not to +sue for patent infringement). To "grant" such a patent license to a +party means to make such an agreement or commitment not to enforce a +patent against the party. + + If you convey a covered work, knowingly relying on a patent license, +and the Corresponding Source of the work is not available for anyone +to copy, free of charge and under the terms of this License, through a +publicly available network server or other readily accessible means, +then you must either (1) cause the Corresponding Source to be so +available, or (2) arrange to deprive yourself of the benefit of the +patent license for this particular work, or (3) arrange, in a manner +consistent with the requirements of this License, to extend the patent +license to downstream recipients. "Knowingly relying" means you have +actual knowledge that, but for the patent license, your conveying the +covered work in a country, or your recipient's use of the covered work +in a country, would infringe one or more identifiable patents in that +country that you have reason to believe are valid. + + If, pursuant to or in connection with a single transaction or +arrangement, you convey, or propagate by procuring conveyance of, a +covered work, and grant a patent license to some of the parties +receiving the covered work authorizing them to use, propagate, modify +or convey a specific copy of the covered work, then the patent license +you grant is automatically extended to all recipients of the covered +work and works based on it. + + A patent license is "discriminatory" if it does not include within +the scope of its coverage, prohibits the exercise of, or is +conditioned on the non-exercise of one or more of the rights that are +specifically granted under this License. You may not convey a covered +work if you are a party to an arrangement with a third party that is +in the business of distributing software, under which you make payment +to the third party based on the extent of your activity of conveying +the work, and under which the third party grants, to any of the +parties who would receive the covered work from you, a discriminatory +patent license (a) in connection with copies of the covered work +conveyed by you (or copies made from those copies), or (b) primarily +for and in connection with specific products or compilations that +contain the covered work, unless you entered into that arrangement, +or that patent license was granted, prior to 28 March 2007. + + Nothing in this License shall be construed as excluding or limiting +any implied license or other defenses to infringement that may +otherwise be available to you under applicable patent law. + + 12. No Surrender of Others' Freedom. + + If conditions are imposed on you (whether by court order, agreement or +otherwise) that contradict the conditions of this License, they do not +excuse you from the conditions of this License. If you cannot convey a +covered work so as to satisfy simultaneously your obligations under this +License and any other pertinent obligations, then as a consequence you may +not convey it at all. For example, if you agree to terms that obligate you +to collect a royalty for further conveying from those to whom you convey +the Program, the only way you could satisfy both those terms and this +License would be to refrain entirely from conveying the Program. + + 13. Remote Network Interaction; Use with the GNU General Public License. + + Notwithstanding any other provision of this License, if you modify the +Program, your modified version must prominently offer all users +interacting with it remotely through a computer network (if your version +supports such interaction) an opportunity to receive the Corresponding +Source of your version by providing access to the Corresponding Source +from a network server at no charge, through some standard or customary +means of facilitating copying of software. This Corresponding Source +shall include the Corresponding Source for any work covered by version 3 +of the GNU General Public License that is incorporated pursuant to the +following paragraph. + + Notwithstanding any other provision of this License, you have +permission to link or combine any covered work with a work licensed +under version 3 of the GNU General Public License into a single +combined work, and to convey the resulting work. The terms of this +License will continue to apply to the part which is the covered work, +but the work with which it is combined will remain governed by version +3 of the GNU General Public License. + + 14. Revised Versions of this License. + + The Free Software Foundation may publish revised and/or new versions of +the GNU Affero General Public License from time to time. Such new versions +will be similar in spirit to the present version, but may differ in detail to +address new problems or concerns. + + Each version is given a distinguishing version number. If the +Program specifies that a certain numbered version of the GNU Affero General +Public License "or any later version" applies to it, you have the +option of following the terms and conditions either of that numbered +version or of any later version published by the Free Software +Foundation. If the Program does not specify a version number of the +GNU Affero General Public License, you may choose any version ever published +by the Free Software Foundation. + + If the Program specifies that a proxy can decide which future +versions of the GNU Affero General Public License can be used, that proxy's +public statement of acceptance of a version permanently authorizes you +to choose that version for the Program. + + Later license versions may give you additional or different +permissions. However, no additional obligations are imposed on any +author or copyright holder as a result of your choosing to follow a +later version. + + 15. Disclaimer of Warranty. + + THERE IS NO WARRANTY FOR THE PROGRAM, TO THE EXTENT PERMITTED BY +APPLICABLE LAW. EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT +HOLDERS AND/OR OTHER PARTIES PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY +OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, +THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR +PURPOSE. THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE PROGRAM +IS WITH YOU. SHOULD THE PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF +ALL NECESSARY SERVICING, REPAIR OR CORRECTION. + + 16. Limitation of Liability. + + IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING +WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MODIFIES AND/OR CONVEYS +THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY +GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE +USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED TO LOSS OF +DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD +PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER PROGRAMS), +EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF +SUCH DAMAGES. + + 17. Interpretation of Sections 15 and 16. + + If the disclaimer of warranty and limitation of liability provided +above cannot be given local legal effect according to their terms, +reviewing courts shall apply local law that most closely approximates +an absolute waiver of all civil liability in connection with the +Program, unless a warranty or assumption of liability accompanies a +copy of the Program in return for a fee. + + END OF TERMS AND CONDITIONS + + How to Apply These Terms to Your New Programs + + If you develop a new program, and you want it to be of the greatest +possible use to the public, the best way to achieve this is to make it +free software which everyone can redistribute and change under these terms. + + To do so, attach the following notices to the program. It is safest +to attach them to the start of each source file to most effectively +state the exclusion of warranty; and each file should have at least +the "copyright" line and a pointer to where the full notice is found. + + + Copyright (C) + + This program is free software: you can redistribute it and/or modify + it under the terms of the GNU Affero General Public License as published by + the Free Software Foundation, either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU Affero General Public License for more details. + + You should have received a copy of the GNU Affero General Public License + along with this program. If not, see . + +Also add information on how to contact you by electronic and paper mail. + + If your software can interact with users remotely through a computer +network, you should also make sure that it provides a way for users to +get its source. For example, if your program is a web application, its +interface could display a "Source" link that leads users to an archive +of the code. There are many ways you could offer source, and different +solutions will be better for different programs; see section 13 for the +specific requirements. + + You should also get your employer (if you work as a programmer) or school, +if any, to sign a "copyright disclaimer" for the program, if necessary. +For more information on this, and how to apply and follow the GNU AGPL, see +. diff --git a/meta-unit-virtualization/recipes-containers/grafana/files/dashboard.yml b/meta-unit-virtualization/recipes-containers/grafana/files/dashboard.yml new file mode 100644 index 0000000..be165c4 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/grafana/files/dashboard.yml @@ -0,0 +1,12 @@ +apiVersion: 1 + +providers: + - name: 'default' + orgId: 1 + folder: '' + type: file + disableDeletion: false + updateIntervalSeconds: 10 + allowUiUpdates: true + options: + path: /etc/grafana/provisioning/dashboards diff --git a/meta-unit-virtualization/recipes-containers/grafana/files/grafana.container b/meta-unit-virtualization/recipes-containers/grafana/files/grafana.container new file mode 100644 index 0000000..10f4935 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/grafana/files/grafana.container @@ -0,0 +1,20 @@ +[Unit] +Description=A grafana container + +[Container] +ContainerName=grafana +Image=docker.io/grafana/grafana:latest +Network=pasta:-T,9090:9090 +PublishPort=127.0.0.1:3000:3000 +Volume=grafana-data:/var/lib/grafana +Volume=%h/.config/containers/grafana/provisioning:/etc/grafana/provisioning:ro + +[Service] +Restart=on-failure +RestartSec=10s +RestartSteps=5 +RestartMaxDelaySec=1min +TimeoutStartSec=15min + +[Install] +WantedBy=default.target diff --git a/meta-unit-virtualization/recipes-containers/grafana/grafana.bb b/meta-unit-virtualization/recipes-containers/grafana/grafana.bb new file mode 100644 index 0000000..a024506 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/grafana/grafana.bb @@ -0,0 +1,29 @@ +SUMMARY = "Grafana quadlet" +DESCRIPTION = "A quadlet for a grafana container that runs rootless" +LICENSE = "AGPL-3.0-only" +LIC_FILES_CHKSUM = "file://${UNPACKDIR}/LICENSE;md5=eb1e647870add0502f8f010b19de32af" + +SRC_URI = "\ + file://grafana.container \ + file://dashboard.yml \ + file://LICENSE \ +" + +RDEPENDS:${PN}:append = " podman" +RDEPENDS:${PN}:append = " add-user-svc" +RDEPENDS:${PN}:append = " packagegroup-grafana-dashboards" +RDEPENDS:${PN}:append = " packagegroup-grafana-datasources" + +S = "${UNPACKDIR}" + +ROOTLESS_USER_NAME ?= "svc" + +do_install() { + install -D -p -m 0644 ${UNPACKDIR}/grafana.container ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/systemd/grafana.container + install -D -p -m 0644 ${UNPACKDIR}/dashboard.yml ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/grafana/provisioning/dashboards/dashboard.yml +} + +FILES:${PN} = "\ + /home/${ROOTLESS_USER_NAME}/.config/containers/systemd/grafana.container \ + /home/${ROOTLESS_USER_NAME}/.config/containers/grafana/provisioning/dashboards/dashboard.yml \ +" diff --git a/meta-unit-virtualization/recipes-containers/packagegroups/packagegroup-unit-kubes.bb b/meta-unit-virtualization/recipes-containers/packagegroups/packagegroup-unit-kubes.bb new file mode 100644 index 0000000..0ab160e --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/packagegroups/packagegroup-unit-kubes.bb @@ -0,0 +1,5 @@ +SUMMARY = "Unit kube packages" + +inherit packagegroup + +RDEPENDS:${PN}:append = " pubd-kube" diff --git a/meta-unit-virtualization/recipes-containers/packagegroups/packagegroup-unit-observability-quadlets.bb b/meta-unit-virtualization/recipes-containers/packagegroups/packagegroup-unit-observability-quadlets.bb new file mode 100644 index 0000000..abe00af --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/packagegroups/packagegroup-unit-observability-quadlets.bb @@ -0,0 +1,9 @@ +SUMMARY = "Unit observability quadlets" + +inherit packagegroup + +RDEPENDS:${PN}:append = " prometheus" +RDEPENDS:${PN}:append = " prometheus-podman-exporter-rootful" +RDEPENDS:${PN}:append = " prometheus-podman-exporter-rootless" +RDEPENDS:${PN}:append = " prometheus-node-exporter" +RDEPENDS:${PN}:append = " grafana" diff --git a/meta-unit-virtualization/recipes-containers/packagegroups/packagegroup-unit-quadlets.bb b/meta-unit-virtualization/recipes-containers/packagegroups/packagegroup-unit-quadlets.bb new file mode 100644 index 0000000..52c9d2c --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/packagegroups/packagegroup-unit-quadlets.bb @@ -0,0 +1,6 @@ +SUMMARY = "Unit quadlet packages" + +inherit packagegroup + +RDEPENDS:${PN}:append = " banner" +RDEPENDS:${PN}:append = " distribution" diff --git a/meta-unit-virtualization/recipes-containers/podman/podman_%.bbappend b/meta-unit-virtualization/recipes-containers/podman/podman_%.bbappend new file mode 100644 index 0000000..116f8a4 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/podman/podman_%.bbappend @@ -0,0 +1,18 @@ +# Enable rootless containers. +PACKAGECONFIG:append = " rootless" + +# Don't build and install docker wrapper. +PODMAN_FEATURES:remove = "docker" + +# Update PACKAGECONFIG to use pasta instead of slirp4netns. +# Pasta is the default network driver since Podman 5.0.0. +PACKAGECONFIG[rootless] = ",,,fuse-overlayfs passt,," + +# Update default_rootless_network_cmd to use pasta instead +# of slirp4netns. Again, Pasta is the default network driver +# since Podman 5.0.0. +do_install:append() { + if ${@bb.utils.contains('PACKAGECONFIG', 'rootless', 'true', 'false', d)}; then + sed -i 's/slirp4netns/pasta/' ${D}${sysconfdir}/containers/containers.conf + fi +} diff --git a/meta-unit-virtualization/recipes-containers/prometheus-node-exporter/files/LICENSE b/meta-unit-virtualization/recipes-containers/prometheus-node-exporter/files/LICENSE new file mode 100644 index 0000000..261eeb9 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/prometheus-node-exporter/files/LICENSE @@ -0,0 +1,201 @@ + Apache License + Version 2.0, January 2004 + http://www.apache.org/licenses/ + + TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION + + 1. Definitions. + + "License" shall mean the terms and conditions for use, reproduction, + and distribution as defined by Sections 1 through 9 of this document. + + "Licensor" shall mean the copyright owner or entity authorized by + the copyright owner that is granting the License. + + "Legal Entity" shall mean the union of the acting entity and all + other entities that control, are controlled by, or are under common + control with that entity. For the purposes of this definition, + "control" means (i) the power, direct or indirect, to cause the + direction or management of such entity, whether by contract or + otherwise, or (ii) ownership of fifty percent (50%) or more of the + outstanding shares, or (iii) beneficial ownership of such entity. + + "You" (or "Your") shall mean an individual or Legal Entity + exercising permissions granted by this License. + + "Source" form shall mean the preferred form for making modifications, + including but not limited to software source code, documentation + source, and configuration files. + + "Object" form shall mean any form resulting from mechanical + transformation or translation of a Source form, including but + not limited to compiled object code, generated documentation, + and conversions to other media types. + + "Work" shall mean the work of authorship, whether in Source or + Object form, made available under the License, as indicated by a + copyright notice that is included in or attached to the work + (an example is provided in the Appendix below). + + "Derivative Works" shall mean any work, whether in Source or Object + form, that is based on (or derived from) the Work and for which the + editorial revisions, annotations, elaborations, or other modifications + represent, as a whole, an original work of authorship. For the purposes + of this License, Derivative Works shall not include works that remain + separable from, or merely link (or bind by name) to the interfaces of, + the Work and Derivative Works thereof. + + "Contribution" shall mean any work of authorship, including + the original version of the Work and any modifications or additions + to that Work or Derivative Works thereof, that is intentionally + submitted to Licensor for inclusion in the Work by the copyright owner + or by an individual or Legal Entity authorized to submit on behalf of + the copyright owner. For the purposes of this definition, "submitted" + means any form of electronic, verbal, or written communication sent + to the Licensor or its representatives, including but not limited to + communication on electronic mailing lists, source code control systems, + and issue tracking systems that are managed by, or on behalf of, the + Licensor for the purpose of discussing and improving the Work, but + excluding communication that is conspicuously marked or otherwise + designated in writing by the copyright owner as "Not a Contribution." + + "Contributor" shall mean Licensor and any individual or Legal Entity + on behalf of whom a Contribution has been received by Licensor and + subsequently incorporated within the Work. + + 2. Grant of Copyright License. Subject to the terms and conditions of + this License, each Contributor hereby grants to You a perpetual, + worldwide, non-exclusive, no-charge, royalty-free, irrevocable + copyright license to reproduce, prepare Derivative Works of, + publicly display, publicly perform, sublicense, and distribute the + Work and such Derivative Works in Source or Object form. + + 3. Grant of Patent License. Subject to the terms and conditions of + this License, each Contributor hereby grants to You a perpetual, + worldwide, non-exclusive, no-charge, royalty-free, irrevocable + (except as stated in this section) patent license to make, have made, + use, offer to sell, sell, import, and otherwise transfer the Work, + where such license applies only to those patent claims licensable + by such Contributor that are necessarily infringed by their + Contribution(s) alone or by combination of their Contribution(s) + with the Work to which such Contribution(s) was submitted. If You + institute patent litigation against any entity (including a + cross-claim or counterclaim in a lawsuit) alleging that the Work + or a Contribution incorporated within the Work constitutes direct + or contributory patent infringement, then any patent licenses + granted to You under this License for that Work shall terminate + as of the date such litigation is filed. + + 4. Redistribution. You may reproduce and distribute copies of the + Work or Derivative Works thereof in any medium, with or without + modifications, and in Source or Object form, provided that You + meet the following conditions: + + (a) You must give any other recipients of the Work or + Derivative Works a copy of this License; and + + (b) You must cause any modified files to carry prominent notices + stating that You changed the files; and + + (c) You must retain, in the Source form of any Derivative Works + that You distribute, all copyright, patent, trademark, and + attribution notices from the Source form of the Work, + excluding those notices that do not pertain to any part of + the Derivative Works; and + + (d) If the Work includes a "NOTICE" text file as part of its + distribution, then any Derivative Works that You distribute must + include a readable copy of the attribution notices contained + within such NOTICE file, excluding those notices that do not + pertain to any part of the Derivative Works, in at least one + of the following places: within a NOTICE text file distributed + as part of the Derivative Works; within the Source form or + documentation, if provided along with the Derivative Works; or, + within a display generated by the Derivative Works, if and + wherever such third-party notices normally appear. The contents + of the NOTICE file are for informational purposes only and + do not modify the License. You may add Your own attribution + notices within Derivative Works that You distribute, alongside + or as an addendum to the NOTICE text from the Work, provided + that such additional attribution notices cannot be construed + as modifying the License. + + You may add Your own copyright statement to Your modifications and + may provide additional or different license terms and conditions + for use, reproduction, or distribution of Your modifications, or + for any such Derivative Works as a whole, provided Your use, + reproduction, and distribution of the Work otherwise complies with + the conditions stated in this License. + + 5. Submission of Contributions. Unless You explicitly state otherwise, + any Contribution intentionally submitted for inclusion in the Work + by You to the Licensor shall be under the terms and conditions of + this License, without any additional terms or conditions. + Notwithstanding the above, nothing herein shall supersede or modify + the terms of any separate license agreement you may have executed + with Licensor regarding such Contributions. + + 6. Trademarks. This License does not grant permission to use the trade + names, trademarks, service marks, or product names of the Licensor, + except as required for reasonable and customary use in describing the + origin of the Work and reproducing the content of the NOTICE file. + + 7. Disclaimer of Warranty. Unless required by applicable law or + agreed to in writing, Licensor provides the Work (and each + Contributor provides its Contributions) on an "AS IS" BASIS, + WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or + implied, including, without limitation, any warranties or conditions + of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A + PARTICULAR PURPOSE. You are solely responsible for determining the + appropriateness of using or redistributing the Work and assume any + risks associated with Your exercise of permissions under this License. + + 8. Limitation of Liability. In no event and under no legal theory, + whether in tort (including negligence), contract, or otherwise, + unless required by applicable law (such as deliberate and grossly + negligent acts) or agreed to in writing, shall any Contributor be + liable to You for damages, including any direct, indirect, special, + incidental, or consequential damages of any character arising as a + result of this License or out of the use or inability to use the + Work (including but not limited to damages for loss of goodwill, + work stoppage, computer failure or malfunction, or any and all + other commercial damages or losses), even if such Contributor + has been advised of the possibility of such damages. + + 9. Accepting Warranty or Additional Liability. While redistributing + the Work or Derivative Works thereof, You may choose to offer, + and charge a fee for, acceptance of support, warranty, indemnity, + or other liability obligations and/or rights consistent with this + License. However, in accepting such obligations, You may act only + on Your own behalf and on Your sole responsibility, not on behalf + of any other Contributor, and only if You agree to indemnify, + defend, and hold each Contributor harmless for any liability + incurred by, or claims asserted against, such Contributor by reason + of your accepting any such warranty or additional liability. + + END OF TERMS AND CONDITIONS + + APPENDIX: How to apply the Apache License to your work. + + To apply the Apache License to your work, attach the following + boilerplate notice, with the fields enclosed by brackets "[]" + replaced with your own identifying information. (Don't include + the brackets!) The text should be enclosed in the appropriate + comment syntax for the file format. We also recommend that a + file or class name and description of purpose be included on the + same "printed page" as the copyright notice for easier + identification within third-party archives. + + Copyright [yyyy] [name of copyright owner] + + Licensed under the Apache License, Version 2.0 (the "License"); + you may not use this file except in compliance with the License. + You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + + Unless required by applicable law or agreed to in writing, software + distributed under the License is distributed on an "AS IS" BASIS, + WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + See the License for the specific language governing permissions and + limitations under the License. diff --git a/meta-unit-virtualization/recipes-containers/prometheus-node-exporter/files/prometheus-node-exporter.container b/meta-unit-virtualization/recipes-containers/prometheus-node-exporter/files/prometheus-node-exporter.container new file mode 100644 index 0000000..fd28b26 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/prometheus-node-exporter/files/prometheus-node-exporter.container @@ -0,0 +1,28 @@ +[Unit] +Description=A prometheus node exporter container (rootless) + +[Container] +ContainerName=prometheus-node-exporter +Image=quay.io/prometheus/node-exporter:latest +Network=host +PodmanArgs=--pid=host +Volume=/:/host:ro,rslave +Volume=/run/dbus/system_bus_socket:/var/run/dbus/system_bus_socket:ro +Exec=--path.rootfs=/host \ +--path.procfs=/host/proc \ +--collector.systemd \ +--collector.systemd.unit-include=".+" \ +--collector.processes \ +--collector.interrupts \ +--collector.interrupts.name-include=".+" \ +--collector.tcpstat + +[Service] +Restart=on-failure +RestartSec=10s +RestartSteps=5 +RestartMaxDelaySec=1min +TimeoutStartSec=15min + +[Install] +WantedBy=default.target diff --git a/meta-unit-virtualization/recipes-containers/prometheus-node-exporter/files/prometheus-target.yml b/meta-unit-virtualization/recipes-containers/prometheus-node-exporter/files/prometheus-target.yml new file mode 100644 index 0000000..c419778 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/prometheus-node-exporter/files/prometheus-target.yml @@ -0,0 +1,5 @@ +- targets: + - '127.0.0.1:9100' + labels: + job: 'node' + context: 'rootless' diff --git a/meta-unit-virtualization/recipes-containers/prometheus-node-exporter/prometheus-node-exporter.bb b/meta-unit-virtualization/recipes-containers/prometheus-node-exporter/prometheus-node-exporter.bb new file mode 100644 index 0000000..3b6837c --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/prometheus-node-exporter/prometheus-node-exporter.bb @@ -0,0 +1,27 @@ +SUMMARY = "Prometheus node exporter quadlet" +DESCRIPTION = "A quadlet for a prometheus node exporter container that runs rootless" +LICENSE = "Apache-2.0" +LIC_FILES_CHKSUM = "file://${UNPACKDIR}/LICENSE;md5=86d3f3a95c324c9479bd8986968f4327" + +SRC_URI = "\ + file://prometheus-node-exporter.container \ + file://LICENSE \ + file://prometheus-target.yml \ +" + +RDEPENDS:${PN}:append = " podman" +RDEPENDS:${PN}:append = " add-user-svc" + +S = "${UNPACKDIR}" + +ROOTLESS_USER_NAME ?= "svc" + +do_install() { + install -D -p -m 0644 ${UNPACKDIR}/prometheus-node-exporter.container ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/systemd/prometheus-node-exporter.container + install -D -m 0644 ${UNPACKDIR}/prometheus-target.yml ${D}${sysconfdir}/prometheus/targets.d/node-exporter.yml +} + +FILES:${PN} = "\ + /home/${ROOTLESS_USER_NAME}/.config/containers/systemd/prometheus-node-exporter.container \ + ${sysconfdir}/prometheus/targets.d/node-exporter.yml \ +" diff --git a/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootful/files/LICENSE b/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootful/files/LICENSE new file mode 100644 index 0000000..261eeb9 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootful/files/LICENSE @@ -0,0 +1,201 @@ + Apache License + Version 2.0, January 2004 + http://www.apache.org/licenses/ + + TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION + + 1. Definitions. + + "License" shall mean the terms and conditions for use, reproduction, + and distribution as defined by Sections 1 through 9 of this document. + + "Licensor" shall mean the copyright owner or entity authorized by + the copyright owner that is granting the License. + + "Legal Entity" shall mean the union of the acting entity and all + other entities that control, are controlled by, or are under common + control with that entity. For the purposes of this definition, + "control" means (i) the power, direct or indirect, to cause the + direction or management of such entity, whether by contract or + otherwise, or (ii) ownership of fifty percent (50%) or more of the + outstanding shares, or (iii) beneficial ownership of such entity. + + "You" (or "Your") shall mean an individual or Legal Entity + exercising permissions granted by this License. + + "Source" form shall mean the preferred form for making modifications, + including but not limited to software source code, documentation + source, and configuration files. + + "Object" form shall mean any form resulting from mechanical + transformation or translation of a Source form, including but + not limited to compiled object code, generated documentation, + and conversions to other media types. + + "Work" shall mean the work of authorship, whether in Source or + Object form, made available under the License, as indicated by a + copyright notice that is included in or attached to the work + (an example is provided in the Appendix below). + + "Derivative Works" shall mean any work, whether in Source or Object + form, that is based on (or derived from) the Work and for which the + editorial revisions, annotations, elaborations, or other modifications + represent, as a whole, an original work of authorship. For the purposes + of this License, Derivative Works shall not include works that remain + separable from, or merely link (or bind by name) to the interfaces of, + the Work and Derivative Works thereof. + + "Contribution" shall mean any work of authorship, including + the original version of the Work and any modifications or additions + to that Work or Derivative Works thereof, that is intentionally + submitted to Licensor for inclusion in the Work by the copyright owner + or by an individual or Legal Entity authorized to submit on behalf of + the copyright owner. For the purposes of this definition, "submitted" + means any form of electronic, verbal, or written communication sent + to the Licensor or its representatives, including but not limited to + communication on electronic mailing lists, source code control systems, + and issue tracking systems that are managed by, or on behalf of, the + Licensor for the purpose of discussing and improving the Work, but + excluding communication that is conspicuously marked or otherwise + designated in writing by the copyright owner as "Not a Contribution." + + "Contributor" shall mean Licensor and any individual or Legal Entity + on behalf of whom a Contribution has been received by Licensor and + subsequently incorporated within the Work. + + 2. Grant of Copyright License. Subject to the terms and conditions of + this License, each Contributor hereby grants to You a perpetual, + worldwide, non-exclusive, no-charge, royalty-free, irrevocable + copyright license to reproduce, prepare Derivative Works of, + publicly display, publicly perform, sublicense, and distribute the + Work and such Derivative Works in Source or Object form. + + 3. Grant of Patent License. Subject to the terms and conditions of + this License, each Contributor hereby grants to You a perpetual, + worldwide, non-exclusive, no-charge, royalty-free, irrevocable + (except as stated in this section) patent license to make, have made, + use, offer to sell, sell, import, and otherwise transfer the Work, + where such license applies only to those patent claims licensable + by such Contributor that are necessarily infringed by their + Contribution(s) alone or by combination of their Contribution(s) + with the Work to which such Contribution(s) was submitted. If You + institute patent litigation against any entity (including a + cross-claim or counterclaim in a lawsuit) alleging that the Work + or a Contribution incorporated within the Work constitutes direct + or contributory patent infringement, then any patent licenses + granted to You under this License for that Work shall terminate + as of the date such litigation is filed. + + 4. Redistribution. You may reproduce and distribute copies of the + Work or Derivative Works thereof in any medium, with or without + modifications, and in Source or Object form, provided that You + meet the following conditions: + + (a) You must give any other recipients of the Work or + Derivative Works a copy of this License; and + + (b) You must cause any modified files to carry prominent notices + stating that You changed the files; and + + (c) You must retain, in the Source form of any Derivative Works + that You distribute, all copyright, patent, trademark, and + attribution notices from the Source form of the Work, + excluding those notices that do not pertain to any part of + the Derivative Works; and + + (d) If the Work includes a "NOTICE" text file as part of its + distribution, then any Derivative Works that You distribute must + include a readable copy of the attribution notices contained + within such NOTICE file, excluding those notices that do not + pertain to any part of the Derivative Works, in at least one + of the following places: within a NOTICE text file distributed + as part of the Derivative Works; within the Source form or + documentation, if provided along with the Derivative Works; or, + within a display generated by the Derivative Works, if and + wherever such third-party notices normally appear. The contents + of the NOTICE file are for informational purposes only and + do not modify the License. You may add Your own attribution + notices within Derivative Works that You distribute, alongside + or as an addendum to the NOTICE text from the Work, provided + that such additional attribution notices cannot be construed + as modifying the License. + + You may add Your own copyright statement to Your modifications and + may provide additional or different license terms and conditions + for use, reproduction, or distribution of Your modifications, or + for any such Derivative Works as a whole, provided Your use, + reproduction, and distribution of the Work otherwise complies with + the conditions stated in this License. + + 5. Submission of Contributions. Unless You explicitly state otherwise, + any Contribution intentionally submitted for inclusion in the Work + by You to the Licensor shall be under the terms and conditions of + this License, without any additional terms or conditions. + Notwithstanding the above, nothing herein shall supersede or modify + the terms of any separate license agreement you may have executed + with Licensor regarding such Contributions. + + 6. Trademarks. This License does not grant permission to use the trade + names, trademarks, service marks, or product names of the Licensor, + except as required for reasonable and customary use in describing the + origin of the Work and reproducing the content of the NOTICE file. + + 7. Disclaimer of Warranty. Unless required by applicable law or + agreed to in writing, Licensor provides the Work (and each + Contributor provides its Contributions) on an "AS IS" BASIS, + WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or + implied, including, without limitation, any warranties or conditions + of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A + PARTICULAR PURPOSE. You are solely responsible for determining the + appropriateness of using or redistributing the Work and assume any + risks associated with Your exercise of permissions under this License. + + 8. Limitation of Liability. In no event and under no legal theory, + whether in tort (including negligence), contract, or otherwise, + unless required by applicable law (such as deliberate and grossly + negligent acts) or agreed to in writing, shall any Contributor be + liable to You for damages, including any direct, indirect, special, + incidental, or consequential damages of any character arising as a + result of this License or out of the use or inability to use the + Work (including but not limited to damages for loss of goodwill, + work stoppage, computer failure or malfunction, or any and all + other commercial damages or losses), even if such Contributor + has been advised of the possibility of such damages. + + 9. Accepting Warranty or Additional Liability. While redistributing + the Work or Derivative Works thereof, You may choose to offer, + and charge a fee for, acceptance of support, warranty, indemnity, + or other liability obligations and/or rights consistent with this + License. However, in accepting such obligations, You may act only + on Your own behalf and on Your sole responsibility, not on behalf + of any other Contributor, and only if You agree to indemnify, + defend, and hold each Contributor harmless for any liability + incurred by, or claims asserted against, such Contributor by reason + of your accepting any such warranty or additional liability. + + END OF TERMS AND CONDITIONS + + APPENDIX: How to apply the Apache License to your work. + + To apply the Apache License to your work, attach the following + boilerplate notice, with the fields enclosed by brackets "[]" + replaced with your own identifying information. (Don't include + the brackets!) The text should be enclosed in the appropriate + comment syntax for the file format. We also recommend that a + file or class name and description of purpose be included on the + same "printed page" as the copyright notice for easier + identification within third-party archives. + + Copyright [yyyy] [name of copyright owner] + + Licensed under the Apache License, Version 2.0 (the "License"); + you may not use this file except in compliance with the License. + You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + + Unless required by applicable law or agreed to in writing, software + distributed under the License is distributed on an "AS IS" BASIS, + WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + See the License for the specific language governing permissions and + limitations under the License. diff --git a/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootful/files/prometheus-podman-exporter.container b/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootful/files/prometheus-podman-exporter.container new file mode 100644 index 0000000..eb067f9 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootful/files/prometheus-podman-exporter.container @@ -0,0 +1,23 @@ +[Unit] +Description=A prometheus podman exporter container (rootful) +After=time-sync.target podman.socket +Wants=time-sync.target systemd-time-wait-sync.service podman.socket + +[Container] +ContainerName=prometheus-podman-exporter +Image=quay.io/navidys/prometheus-podman-exporter:latest +User=root +PublishPort=127.0.0.1:9882:9882 +Volume=/run/podman/podman.sock:/run/podman/podman.sock:ro +Environment=CONTAINER_HOST=unix:///run/podman/podman.sock +Exec=--collector.enable-all + +[Service] +Restart=on-failure +RestartSec=10s +RestartSteps=5 +RestartMaxDelaySec=1min +TimeoutStartSec=15min + +[Install] +WantedBy=multi-user.target default.target diff --git a/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootful/files/prometheus-target.yml b/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootful/files/prometheus-target.yml new file mode 100644 index 0000000..d75f8c1 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootful/files/prometheus-target.yml @@ -0,0 +1,5 @@ +- targets: + - '127.0.0.1:9882' + labels: + job: 'podman' + context: 'rootful' diff --git a/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootful/prometheus-podman-exporter-rootful.bb b/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootful/prometheus-podman-exporter-rootful.bb new file mode 100644 index 0000000..4cd1ad5 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootful/prometheus-podman-exporter-rootful.bb @@ -0,0 +1,24 @@ +SUMMARY = "Prometheus podman exporter quadlet" +DESCRIPTION = "A quadlet for a prometheus podman exporter container that runs rootful" +LICENSE = "Apache-2.0" +LIC_FILES_CHKSUM = "file://${UNPACKDIR}/LICENSE;md5=86d3f3a95c324c9479bd8986968f4327" + +SRC_URI = "\ + file://prometheus-podman-exporter.container \ + file://LICENSE \ + file://prometheus-target.yml \ +" + +RDEPENDS:${PN}:append = " podman" + +S = "${UNPACKDIR}" + +do_install() { + install -D -p -m 0644 ${UNPACKDIR}/prometheus-podman-exporter.container ${D}${sysconfdir}/containers/systemd/prometheus-podman-exporter.container + install -D -m 0644 ${UNPACKDIR}/prometheus-target.yml ${D}${sysconfdir}/prometheus/targets.d/podman-rootful.yml +} + +FILES:${PN} = "\ + ${sysconfdir}/containers/systemd/prometheus-podman-exporter.container \ + ${sysconfdir}/prometheus/targets.d/podman-rootful.yml \ +" diff --git a/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootless/files/LICENSE b/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootless/files/LICENSE new file mode 100644 index 0000000..261eeb9 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootless/files/LICENSE @@ -0,0 +1,201 @@ + Apache License + Version 2.0, January 2004 + http://www.apache.org/licenses/ + + TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION + + 1. Definitions. + + "License" shall mean the terms and conditions for use, reproduction, + and distribution as defined by Sections 1 through 9 of this document. + + "Licensor" shall mean the copyright owner or entity authorized by + the copyright owner that is granting the License. + + "Legal Entity" shall mean the union of the acting entity and all + other entities that control, are controlled by, or are under common + control with that entity. For the purposes of this definition, + "control" means (i) the power, direct or indirect, to cause the + direction or management of such entity, whether by contract or + otherwise, or (ii) ownership of fifty percent (50%) or more of the + outstanding shares, or (iii) beneficial ownership of such entity. + + "You" (or "Your") shall mean an individual or Legal Entity + exercising permissions granted by this License. + + "Source" form shall mean the preferred form for making modifications, + including but not limited to software source code, documentation + source, and configuration files. + + "Object" form shall mean any form resulting from mechanical + transformation or translation of a Source form, including but + not limited to compiled object code, generated documentation, + and conversions to other media types. + + "Work" shall mean the work of authorship, whether in Source or + Object form, made available under the License, as indicated by a + copyright notice that is included in or attached to the work + (an example is provided in the Appendix below). + + "Derivative Works" shall mean any work, whether in Source or Object + form, that is based on (or derived from) the Work and for which the + editorial revisions, annotations, elaborations, or other modifications + represent, as a whole, an original work of authorship. For the purposes + of this License, Derivative Works shall not include works that remain + separable from, or merely link (or bind by name) to the interfaces of, + the Work and Derivative Works thereof. + + "Contribution" shall mean any work of authorship, including + the original version of the Work and any modifications or additions + to that Work or Derivative Works thereof, that is intentionally + submitted to Licensor for inclusion in the Work by the copyright owner + or by an individual or Legal Entity authorized to submit on behalf of + the copyright owner. For the purposes of this definition, "submitted" + means any form of electronic, verbal, or written communication sent + to the Licensor or its representatives, including but not limited to + communication on electronic mailing lists, source code control systems, + and issue tracking systems that are managed by, or on behalf of, the + Licensor for the purpose of discussing and improving the Work, but + excluding communication that is conspicuously marked or otherwise + designated in writing by the copyright owner as "Not a Contribution." + + "Contributor" shall mean Licensor and any individual or Legal Entity + on behalf of whom a Contribution has been received by Licensor and + subsequently incorporated within the Work. + + 2. Grant of Copyright License. Subject to the terms and conditions of + this License, each Contributor hereby grants to You a perpetual, + worldwide, non-exclusive, no-charge, royalty-free, irrevocable + copyright license to reproduce, prepare Derivative Works of, + publicly display, publicly perform, sublicense, and distribute the + Work and such Derivative Works in Source or Object form. + + 3. Grant of Patent License. Subject to the terms and conditions of + this License, each Contributor hereby grants to You a perpetual, + worldwide, non-exclusive, no-charge, royalty-free, irrevocable + (except as stated in this section) patent license to make, have made, + use, offer to sell, sell, import, and otherwise transfer the Work, + where such license applies only to those patent claims licensable + by such Contributor that are necessarily infringed by their + Contribution(s) alone or by combination of their Contribution(s) + with the Work to which such Contribution(s) was submitted. If You + institute patent litigation against any entity (including a + cross-claim or counterclaim in a lawsuit) alleging that the Work + or a Contribution incorporated within the Work constitutes direct + or contributory patent infringement, then any patent licenses + granted to You under this License for that Work shall terminate + as of the date such litigation is filed. + + 4. Redistribution. You may reproduce and distribute copies of the + Work or Derivative Works thereof in any medium, with or without + modifications, and in Source or Object form, provided that You + meet the following conditions: + + (a) You must give any other recipients of the Work or + Derivative Works a copy of this License; and + + (b) You must cause any modified files to carry prominent notices + stating that You changed the files; and + + (c) You must retain, in the Source form of any Derivative Works + that You distribute, all copyright, patent, trademark, and + attribution notices from the Source form of the Work, + excluding those notices that do not pertain to any part of + the Derivative Works; and + + (d) If the Work includes a "NOTICE" text file as part of its + distribution, then any Derivative Works that You distribute must + include a readable copy of the attribution notices contained + within such NOTICE file, excluding those notices that do not + pertain to any part of the Derivative Works, in at least one + of the following places: within a NOTICE text file distributed + as part of the Derivative Works; within the Source form or + documentation, if provided along with the Derivative Works; or, + within a display generated by the Derivative Works, if and + wherever such third-party notices normally appear. The contents + of the NOTICE file are for informational purposes only and + do not modify the License. You may add Your own attribution + notices within Derivative Works that You distribute, alongside + or as an addendum to the NOTICE text from the Work, provided + that such additional attribution notices cannot be construed + as modifying the License. + + You may add Your own copyright statement to Your modifications and + may provide additional or different license terms and conditions + for use, reproduction, or distribution of Your modifications, or + for any such Derivative Works as a whole, provided Your use, + reproduction, and distribution of the Work otherwise complies with + the conditions stated in this License. + + 5. Submission of Contributions. Unless You explicitly state otherwise, + any Contribution intentionally submitted for inclusion in the Work + by You to the Licensor shall be under the terms and conditions of + this License, without any additional terms or conditions. + Notwithstanding the above, nothing herein shall supersede or modify + the terms of any separate license agreement you may have executed + with Licensor regarding such Contributions. + + 6. Trademarks. This License does not grant permission to use the trade + names, trademarks, service marks, or product names of the Licensor, + except as required for reasonable and customary use in describing the + origin of the Work and reproducing the content of the NOTICE file. + + 7. Disclaimer of Warranty. Unless required by applicable law or + agreed to in writing, Licensor provides the Work (and each + Contributor provides its Contributions) on an "AS IS" BASIS, + WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or + implied, including, without limitation, any warranties or conditions + of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A + PARTICULAR PURPOSE. You are solely responsible for determining the + appropriateness of using or redistributing the Work and assume any + risks associated with Your exercise of permissions under this License. + + 8. Limitation of Liability. In no event and under no legal theory, + whether in tort (including negligence), contract, or otherwise, + unless required by applicable law (such as deliberate and grossly + negligent acts) or agreed to in writing, shall any Contributor be + liable to You for damages, including any direct, indirect, special, + incidental, or consequential damages of any character arising as a + result of this License or out of the use or inability to use the + Work (including but not limited to damages for loss of goodwill, + work stoppage, computer failure or malfunction, or any and all + other commercial damages or losses), even if such Contributor + has been advised of the possibility of such damages. + + 9. Accepting Warranty or Additional Liability. While redistributing + the Work or Derivative Works thereof, You may choose to offer, + and charge a fee for, acceptance of support, warranty, indemnity, + or other liability obligations and/or rights consistent with this + License. However, in accepting such obligations, You may act only + on Your own behalf and on Your sole responsibility, not on behalf + of any other Contributor, and only if You agree to indemnify, + defend, and hold each Contributor harmless for any liability + incurred by, or claims asserted against, such Contributor by reason + of your accepting any such warranty or additional liability. + + END OF TERMS AND CONDITIONS + + APPENDIX: How to apply the Apache License to your work. + + To apply the Apache License to your work, attach the following + boilerplate notice, with the fields enclosed by brackets "[]" + replaced with your own identifying information. (Don't include + the brackets!) The text should be enclosed in the appropriate + comment syntax for the file format. We also recommend that a + file or class name and description of purpose be included on the + same "printed page" as the copyright notice for easier + identification within third-party archives. + + Copyright [yyyy] [name of copyright owner] + + Licensed under the Apache License, Version 2.0 (the "License"); + you may not use this file except in compliance with the License. + You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + + Unless required by applicable law or agreed to in writing, software + distributed under the License is distributed on an "AS IS" BASIS, + WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + See the License for the specific language governing permissions and + limitations under the License. diff --git a/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootless/files/prometheus-podman-exporter.container b/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootless/files/prometheus-podman-exporter.container new file mode 100644 index 0000000..0cdfb0b --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootless/files/prometheus-podman-exporter.container @@ -0,0 +1,23 @@ +[Unit] +Description=A prometheus podman exporter container (rootless) +After=podman.socket +Wants=podman.socket + +[Container] +ContainerName=prometheus-podman-exporter-rootless +Image=quay.io/navidys/prometheus-podman-exporter:latest +PublishPort=127.0.0.1:9883:9882 +Volume=%t/podman/podman.sock:/run/podman/podman.sock:ro +Environment=CONTAINER_HOST=unix:///run/podman/podman.sock +PodmanArgs=--userns=keep-id:uid=65534 +Exec=--collector.enable-all + +[Service] +Restart=on-failure +RestartSec=10s +RestartSteps=5 +RestartMaxDelaySec=1min +TimeoutStartSec=15min + +[Install] +WantedBy=default.target diff --git a/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootless/files/prometheus-target.yml b/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootless/files/prometheus-target.yml new file mode 100644 index 0000000..a3bdf42 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootless/files/prometheus-target.yml @@ -0,0 +1,5 @@ +- targets: + - '127.0.0.1:9883' + labels: + job: 'podman' + context: 'rootless' diff --git a/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootless/prometheus-podman-exporter-rootless.bb b/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootless/prometheus-podman-exporter-rootless.bb new file mode 100644 index 0000000..6911425 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/prometheus-podman-exporter-rootless/prometheus-podman-exporter-rootless.bb @@ -0,0 +1,27 @@ +SUMMARY = "Prometheus podman exporter quadlet" +DESCRIPTION = "A quadlet for a prometheus podman exporter container that runs rootless" +LICENSE = "Apache-2.0" +LIC_FILES_CHKSUM = "file://${UNPACKDIR}/LICENSE;md5=86d3f3a95c324c9479bd8986968f4327" + +SRC_URI = "\ + file://prometheus-podman-exporter.container \ + file://LICENSE \ + file://prometheus-target.yml \ +" + +RDEPENDS:${PN}:append = " podman" +RDEPENDS:${PN}:append = " add-user-svc" + +S = "${UNPACKDIR}" + +ROOTLESS_USER_NAME ?= "svc" + +do_install() { + install -D -p -m 0644 ${UNPACKDIR}/prometheus-podman-exporter.container ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/systemd/prometheus-podman-exporter.container + install -D -m 0644 ${UNPACKDIR}/prometheus-target.yml ${D}${sysconfdir}/prometheus/targets.d/podman-rootless.yml +} + +FILES:${PN} = "\ + /home/${ROOTLESS_USER_NAME}/.config/containers/systemd/prometheus-podman-exporter.container \ + ${sysconfdir}/prometheus/targets.d/podman-rootless.yml \ +" diff --git a/meta-unit-virtualization/recipes-containers/prometheus/files/LICENSE b/meta-unit-virtualization/recipes-containers/prometheus/files/LICENSE new file mode 100644 index 0000000..261eeb9 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/prometheus/files/LICENSE @@ -0,0 +1,201 @@ + Apache License + Version 2.0, January 2004 + http://www.apache.org/licenses/ + + TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION + + 1. Definitions. + + "License" shall mean the terms and conditions for use, reproduction, + and distribution as defined by Sections 1 through 9 of this document. + + "Licensor" shall mean the copyright owner or entity authorized by + the copyright owner that is granting the License. + + "Legal Entity" shall mean the union of the acting entity and all + other entities that control, are controlled by, or are under common + control with that entity. For the purposes of this definition, + "control" means (i) the power, direct or indirect, to cause the + direction or management of such entity, whether by contract or + otherwise, or (ii) ownership of fifty percent (50%) or more of the + outstanding shares, or (iii) beneficial ownership of such entity. + + "You" (or "Your") shall mean an individual or Legal Entity + exercising permissions granted by this License. + + "Source" form shall mean the preferred form for making modifications, + including but not limited to software source code, documentation + source, and configuration files. + + "Object" form shall mean any form resulting from mechanical + transformation or translation of a Source form, including but + not limited to compiled object code, generated documentation, + and conversions to other media types. + + "Work" shall mean the work of authorship, whether in Source or + Object form, made available under the License, as indicated by a + copyright notice that is included in or attached to the work + (an example is provided in the Appendix below). + + "Derivative Works" shall mean any work, whether in Source or Object + form, that is based on (or derived from) the Work and for which the + editorial revisions, annotations, elaborations, or other modifications + represent, as a whole, an original work of authorship. For the purposes + of this License, Derivative Works shall not include works that remain + separable from, or merely link (or bind by name) to the interfaces of, + the Work and Derivative Works thereof. + + "Contribution" shall mean any work of authorship, including + the original version of the Work and any modifications or additions + to that Work or Derivative Works thereof, that is intentionally + submitted to Licensor for inclusion in the Work by the copyright owner + or by an individual or Legal Entity authorized to submit on behalf of + the copyright owner. For the purposes of this definition, "submitted" + means any form of electronic, verbal, or written communication sent + to the Licensor or its representatives, including but not limited to + communication on electronic mailing lists, source code control systems, + and issue tracking systems that are managed by, or on behalf of, the + Licensor for the purpose of discussing and improving the Work, but + excluding communication that is conspicuously marked or otherwise + designated in writing by the copyright owner as "Not a Contribution." + + "Contributor" shall mean Licensor and any individual or Legal Entity + on behalf of whom a Contribution has been received by Licensor and + subsequently incorporated within the Work. + + 2. Grant of Copyright License. Subject to the terms and conditions of + this License, each Contributor hereby grants to You a perpetual, + worldwide, non-exclusive, no-charge, royalty-free, irrevocable + copyright license to reproduce, prepare Derivative Works of, + publicly display, publicly perform, sublicense, and distribute the + Work and such Derivative Works in Source or Object form. + + 3. Grant of Patent License. Subject to the terms and conditions of + this License, each Contributor hereby grants to You a perpetual, + worldwide, non-exclusive, no-charge, royalty-free, irrevocable + (except as stated in this section) patent license to make, have made, + use, offer to sell, sell, import, and otherwise transfer the Work, + where such license applies only to those patent claims licensable + by such Contributor that are necessarily infringed by their + Contribution(s) alone or by combination of their Contribution(s) + with the Work to which such Contribution(s) was submitted. If You + institute patent litigation against any entity (including a + cross-claim or counterclaim in a lawsuit) alleging that the Work + or a Contribution incorporated within the Work constitutes direct + or contributory patent infringement, then any patent licenses + granted to You under this License for that Work shall terminate + as of the date such litigation is filed. + + 4. Redistribution. You may reproduce and distribute copies of the + Work or Derivative Works thereof in any medium, with or without + modifications, and in Source or Object form, provided that You + meet the following conditions: + + (a) You must give any other recipients of the Work or + Derivative Works a copy of this License; and + + (b) You must cause any modified files to carry prominent notices + stating that You changed the files; and + + (c) You must retain, in the Source form of any Derivative Works + that You distribute, all copyright, patent, trademark, and + attribution notices from the Source form of the Work, + excluding those notices that do not pertain to any part of + the Derivative Works; and + + (d) If the Work includes a "NOTICE" text file as part of its + distribution, then any Derivative Works that You distribute must + include a readable copy of the attribution notices contained + within such NOTICE file, excluding those notices that do not + pertain to any part of the Derivative Works, in at least one + of the following places: within a NOTICE text file distributed + as part of the Derivative Works; within the Source form or + documentation, if provided along with the Derivative Works; or, + within a display generated by the Derivative Works, if and + wherever such third-party notices normally appear. The contents + of the NOTICE file are for informational purposes only and + do not modify the License. You may add Your own attribution + notices within Derivative Works that You distribute, alongside + or as an addendum to the NOTICE text from the Work, provided + that such additional attribution notices cannot be construed + as modifying the License. + + You may add Your own copyright statement to Your modifications and + may provide additional or different license terms and conditions + for use, reproduction, or distribution of Your modifications, or + for any such Derivative Works as a whole, provided Your use, + reproduction, and distribution of the Work otherwise complies with + the conditions stated in this License. + + 5. Submission of Contributions. Unless You explicitly state otherwise, + any Contribution intentionally submitted for inclusion in the Work + by You to the Licensor shall be under the terms and conditions of + this License, without any additional terms or conditions. + Notwithstanding the above, nothing herein shall supersede or modify + the terms of any separate license agreement you may have executed + with Licensor regarding such Contributions. + + 6. Trademarks. This License does not grant permission to use the trade + names, trademarks, service marks, or product names of the Licensor, + except as required for reasonable and customary use in describing the + origin of the Work and reproducing the content of the NOTICE file. + + 7. Disclaimer of Warranty. Unless required by applicable law or + agreed to in writing, Licensor provides the Work (and each + Contributor provides its Contributions) on an "AS IS" BASIS, + WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or + implied, including, without limitation, any warranties or conditions + of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A + PARTICULAR PURPOSE. You are solely responsible for determining the + appropriateness of using or redistributing the Work and assume any + risks associated with Your exercise of permissions under this License. + + 8. Limitation of Liability. In no event and under no legal theory, + whether in tort (including negligence), contract, or otherwise, + unless required by applicable law (such as deliberate and grossly + negligent acts) or agreed to in writing, shall any Contributor be + liable to You for damages, including any direct, indirect, special, + incidental, or consequential damages of any character arising as a + result of this License or out of the use or inability to use the + Work (including but not limited to damages for loss of goodwill, + work stoppage, computer failure or malfunction, or any and all + other commercial damages or losses), even if such Contributor + has been advised of the possibility of such damages. + + 9. Accepting Warranty or Additional Liability. While redistributing + the Work or Derivative Works thereof, You may choose to offer, + and charge a fee for, acceptance of support, warranty, indemnity, + or other liability obligations and/or rights consistent with this + License. However, in accepting such obligations, You may act only + on Your own behalf and on Your sole responsibility, not on behalf + of any other Contributor, and only if You agree to indemnify, + defend, and hold each Contributor harmless for any liability + incurred by, or claims asserted against, such Contributor by reason + of your accepting any such warranty or additional liability. + + END OF TERMS AND CONDITIONS + + APPENDIX: How to apply the Apache License to your work. + + To apply the Apache License to your work, attach the following + boilerplate notice, with the fields enclosed by brackets "[]" + replaced with your own identifying information. (Don't include + the brackets!) The text should be enclosed in the appropriate + comment syntax for the file format. We also recommend that a + file or class name and description of purpose be included on the + same "printed page" as the copyright notice for easier + identification within third-party archives. + + Copyright [yyyy] [name of copyright owner] + + Licensed under the Apache License, Version 2.0 (the "License"); + you may not use this file except in compliance with the License. + You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + + Unless required by applicable law or agreed to in writing, software + distributed under the License is distributed on an "AS IS" BASIS, + WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + See the License for the specific language governing permissions and + limitations under the License. diff --git a/meta-unit-virtualization/recipes-containers/prometheus/files/prometheus.container b/meta-unit-virtualization/recipes-containers/prometheus/files/prometheus.container new file mode 100644 index 0000000..7aa2d98 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/prometheus/files/prometheus.container @@ -0,0 +1,21 @@ +[Unit] +Description=A prometheus container + +[Container] +ContainerName=prometheus +Image=docker.io/prom/prometheus:latest +Network=pasta:-T,9091:9091,-T,9882:9882,-T,9883:9883,-T,9100:9100,-T,5001:5001 +PublishPort=127.0.0.1:9090:9090 +Volume=prometheus-data:/var/lib/prometheus +Volume=%h/.config/containers/prometheus/prometheus.yml:/etc/prometheus/prometheus.yml:ro +Volume=/etc/prometheus/targets.d:/etc/prometheus/targets.d:ro + +[Service] +Restart=on-failure +RestartSec=10s +RestartSteps=5 +RestartMaxDelaySec=1min +TimeoutStartSec=15min + +[Install] +WantedBy=default.target diff --git a/meta-unit-virtualization/recipes-containers/prometheus/files/prometheus.yml b/meta-unit-virtualization/recipes-containers/prometheus/files/prometheus.yml new file mode 100644 index 0000000..f4b09a4 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/prometheus/files/prometheus.yml @@ -0,0 +1,28 @@ +global: + scrape_interval: 15s # By default, scrape targets every 15 seconds. + + # Attach these labels to any time series or alerts when communicating with + # external systems (federation, remote storage, Alertmanager). + external_labels: + monitor: 'prometheus-monitor' + +# A scrape configuration containing exactly one endpoint to scrape: +# Here it's Prometheus itself. +scrape_configs: + # The job name is added as a label `job=` to any timeseries scraped from this config. + - job_name: 'prometheus' + + # Override the global default and scrape targets from this job every 5 seconds. + scrape_interval: 5s + + static_configs: + - targets: ['localhost:9090'] + + # https://prometheus.io/docs/prometheus/latest/configuration/configuration/#file_sd_config + - job_name: 'file-based-discovery' + file_sd_configs: + - files: + - '/etc/prometheus/targets.d/*.yml' + - '/etc/prometheus/targets.d/*.yaml' + - '/etc/prometheus/targets.d/*.json' + refresh_interval: 5m diff --git a/meta-unit-virtualization/recipes-containers/prometheus/prometheus.bb b/meta-unit-virtualization/recipes-containers/prometheus/prometheus.bb new file mode 100644 index 0000000..5eadf25 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/prometheus/prometheus.bb @@ -0,0 +1,27 @@ +SUMMARY = "Prometheus quadlet" +DESCRIPTION = "A quadlet for a prometheus container that runs rootless" +LICENSE = "Apache-2.0" +LIC_FILES_CHKSUM = "file://${UNPACKDIR}/LICENSE;md5=86d3f3a95c324c9479bd8986968f4327" + +SRC_URI = "\ + file://prometheus.container \ + file://LICENSE \ + file://prometheus.yml \ +" + +RDEPENDS:${PN}:append = " podman" +RDEPENDS:${PN}:append = " add-user-svc" + +S = "${UNPACKDIR}" + +ROOTLESS_USER_NAME ?= "svc" + +do_install() { + install -D -p -m 0644 ${UNPACKDIR}/prometheus.container ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/systemd/prometheus.container + install -D -p -m 0644 ${UNPACKDIR}/prometheus.yml ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/prometheus/prometheus.yml +} + +FILES:${PN} = "\ + /home/${ROOTLESS_USER_NAME}/.config/containers/systemd/prometheus.container \ + /home/${ROOTLESS_USER_NAME}/.config/containers/prometheus/prometheus.yml \ +" diff --git a/meta-unit-virtualization/recipes-containers/pubd-kube/files/pubd.kube b/meta-unit-virtualization/recipes-containers/pubd-kube/files/pubd.kube new file mode 100644 index 0000000..3ee4930 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/pubd-kube/files/pubd.kube @@ -0,0 +1,15 @@ +[Unit] +Description=A pubsub multi-container application + +[Kube] +Yaml=/home/svc/.config/containers/kube/pubsubd.yml + +[Service] +Restart=on-failure +RestartSec=10s +RestartSteps=5 +RestartMaxDelaySec=1min +TimeoutStartSec=15min + +[Install] +WantedBy=default.target diff --git a/meta-unit-virtualization/recipes-containers/pubd-kube/files/pubsubd.yml b/meta-unit-virtualization/recipes-containers/pubd-kube/files/pubsubd.yml new file mode 100644 index 0000000..58b2e1b --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/pubd-kube/files/pubsubd.yml @@ -0,0 +1,42 @@ +# Save the output of this file and use kubectl create -f to import +# it into Kubernetes. +# +# Created with podman-5.6.2 +apiVersion: v1 +kind: Pod +metadata: + annotations: + io.kubernetes.cri-o.SandboxID/grpcurl-client: 817d1ab354c6fa173eb343fa4454496907e13462228109fdc6c4e053b976815c + io.kubernetes.cri-o.SandboxID/pubd: 817d1ab354c6fa173eb343fa4454496907e13462228109fdc6c4e053b976815c + creationTimestamp: "2026-01-16T04:27:46Z" + labels: + app: pubsubd + name: pubsubd +spec: + containers: + - image: ghcr.io/closedcircuitconsulting/pubd:latest + name: pubd + ports: + - containerPort: 60069 + - args: + - -plaintext + - -import-path + - /proto + - -proto + - countah.proto + - -d + - '{}' + - localhost:60069 + - unit.countah.v0.Countah.Counter + image: docker.io/fullstorydev/grpcurl:latest-alpine + name: grpcurl-client + securityContext: {} + volumeMounts: + - mountPath: /proto + name: pubd-proto + readOnly: true + volumes: + - hostPath: + path: /home/svc/.config/proto/pubd + type: Directory + name: pubd-proto diff --git a/meta-unit-virtualization/recipes-containers/pubd-kube/pubd-kube.bb b/meta-unit-virtualization/recipes-containers/pubd-kube/pubd-kube.bb new file mode 100644 index 0000000..ed1e4e1 --- /dev/null +++ b/meta-unit-virtualization/recipes-containers/pubd-kube/pubd-kube.bb @@ -0,0 +1,27 @@ +SUMMARY = "Pubd kube" +DESCRIPTION = "A kube for running a multi-container application (pubsub) that runs rootless" +LICENSE = "MIT" +LIC_FILES_CHKSUM = "file://${UNIT_VIRTUALIZATION_LAYERDIR}/LICENSE;md5=a77c12e0c0e8a14cebb1494195720ccc" + +SRC_URI = "\ + file://pubd.kube \ + file://pubsubd.yml \ +" + +RDEPENDS:${PN}:append = " podman" +RDEPENDS:${PN}:append = " add-user-svc" +RDEPENDS:${PN}:append = " pubd" + +S = "${UNPACKDIR}" + +ROOTLESS_USER_NAME ?= "svc" + +do_install() { + install -D -m 0644 ${UNPACKDIR}/pubd.kube ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/systemd/pubd.kube + install -D -m 0644 ${UNPACKDIR}/pubsubd.yml ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/kube/pubsubd.yml +} + +FILES:${PN} = "\ + /home/${ROOTLESS_USER_NAME}/.config/containers/systemd/pubd.kube \ + /home/${ROOTLESS_USER_NAME}/.config/containers/kube/pubsubd.yml \ +" diff --git a/meta-unit-virtualization/recipes-core/systemd/systemd-distribution-path.bb b/meta-unit-virtualization/recipes-core/systemd/systemd-distribution-path.bb new file mode 100644 index 0000000..d9bd67b --- /dev/null +++ b/meta-unit-virtualization/recipes-core/systemd/systemd-distribution-path.bb @@ -0,0 +1,30 @@ +SUMMARY = "Systemd path unit to wait for TLS key and cert generation for distribution" +LICENSE = "MIT" +LIC_FILES_CHKSUM = "file://${UNIT_VIRTUALIZATION_LAYERDIR}/LICENSE;md5=a77c12e0c0e8a14cebb1494195720ccc" + +inherit systemd + +SRC_URI = "\ + file://distribution.path \ +" + +RDEPENDS:${PN}:append = " add-user-svc" +RDEPENDS:${PN}:append = " systemd-regkeygen" + +S = "${UNPACKDIR}" + +SYSTEMD_USER = "svc" +SYSTEMD_USER_UNITDIR = "/home/${SYSTEMD_USER}/.config/systemd/user" + +do_install() { + install -D -p -m0644 ${UNPACKDIR}/distribution.path ${D}${SYSTEMD_USER_UNITDIR}/distribution.path + + # Auto-enable systemd unit by creating the appropriate symlink + install -d ${D}${SYSTEMD_USER_UNITDIR}/default.target.wants + ln -sf ${SYSTEMD_USER_UNITDIR}/distribution.path ${D}${SYSTEMD_USER_UNITDIR}/default.target.wants/distribution.path +} + +FILES:${PN} = "\ + ${SYSTEMD_USER_UNITDIR}/distribution.path \ + ${SYSTEMD_USER_UNITDIR}/default.target.wants/distribution.path \ +" diff --git a/meta-unit-virtualization/recipes-core/systemd/systemd-distribution-path/distribution.path b/meta-unit-virtualization/recipes-core/systemd/systemd-distribution-path/distribution.path new file mode 100644 index 0000000..d29fbd7 --- /dev/null +++ b/meta-unit-virtualization/recipes-core/systemd/systemd-distribution-path/distribution.path @@ -0,0 +1,8 @@ +[Unit] +Description=Wait for TLS cert and key + +[Path] +PathExists=%h/.local/share/distribution/certs-ready-signal + +[Install] +WantedBy=default.target diff --git a/meta-unit-virtualization/recipes-core/systemd/systemd-regkeygen.bb b/meta-unit-virtualization/recipes-core/systemd/systemd-regkeygen.bb new file mode 100644 index 0000000..ee53401 --- /dev/null +++ b/meta-unit-virtualization/recipes-core/systemd/systemd-regkeygen.bb @@ -0,0 +1,31 @@ +SUMMARY = "Systemd service for generating TLS key and cert for distribution" +LICENSE = "MIT" +LIC_FILES_CHKSUM = "file://${UNIT_VIRTUALIZATION_LAYERDIR}/LICENSE;md5=a77c12e0c0e8a14cebb1494195720ccc" + +SYSTEMD_SERVICE:${PN} = "regkeygen.service" + +SRC_URI = "\ + file://regkeygen.service \ + file://regkeygen.sh \ +" + +RDEPENDS:${PN}:append = " add-user-svc" + +S = "${UNPACKDIR}" + +do_install() { + install -D -p -m0644 ${UNPACKDIR}/regkeygen.service ${D}${systemd_system_unitdir}/regkeygen.service + install -D -p -m0755 ${UNPACKDIR}/regkeygen.sh ${D}${bindir}/regkeygen.sh +} + +inherit systemd + +FILES:${PN} = "\ + ${systemd_system_unitdir} \ + ${bindir} \ +" + +RDEPENDS:${PN} = "\ + openssl \ + ca-certificates \ +" diff --git a/meta-unit-virtualization/recipes-core/systemd/systemd-regkeygen/regkeygen.service b/meta-unit-virtualization/recipes-core/systemd/systemd-regkeygen/regkeygen.service new file mode 100644 index 0000000..e5f2cab --- /dev/null +++ b/meta-unit-virtualization/recipes-core/systemd/systemd-regkeygen/regkeygen.service @@ -0,0 +1,19 @@ +[Unit] +Description=Generate registry TLS keys for device +ConditionPathExists=!/home/svc/.config/containers/distribution/certs/domain.crt +ConditionPathExists=!/home/svc/.config/containers/distribution/certs/domain.key +ConditionPathExists=!/usr/local/share/ca-certificates/registry.crt +ConditionPathExists=!/etc/containers/certs.d/localhost:5000/ca.crt +ConditionPathExists=!/home/svc/.config/containers/certs.d/localhost:5000/ca.crt +ConditionPathExists=!/home/svc/.local/share/distribution/certs-ready-signal +After=time-sync.target +Wants=time-sync.target systemd-time-wait-sync.service + +[Service] +Type=oneshot +ExecStart=/usr/bin/regkeygen.sh +Environment="TARGET_USR=svc" +Environment="DISTRIBUTION_REGISTRY_URL=localhost:5000" + +[Install] +WantedBy=multi-user.target diff --git a/meta-unit-virtualization/recipes-core/systemd/systemd-regkeygen/regkeygen.sh b/meta-unit-virtualization/recipes-core/systemd/systemd-regkeygen/regkeygen.sh new file mode 100644 index 0000000..f1286dd --- /dev/null +++ b/meta-unit-virtualization/recipes-core/systemd/systemd-regkeygen/regkeygen.sh @@ -0,0 +1,70 @@ +#!/bin/sh + +XDG_LOCAL_HOME="/home/$TARGET_USR/.local" +XDG_CONFIG_HOME="/home/$TARGET_USR/.config" + +set -e + +echo "Cleaning up any previous artifacts..." + +rm -f "$XDG_CONFIG_HOME/containers/distribution/certs/domain.key" +rm -f "$XDG_CONFIG_HOME/containers/distribution/certs/domain.crt" +rm -f /usr/local/share/ca-certificates/registry.crt +rm -f "/etc/containers/certs.d/$DISTRIBUTION_REGISTRY_URL/ca.crt" +rm -f "$XDG_CONFIG_HOME/containers/certs.d/$DISTRIBUTION_REGISTRY_URL/ca.crt" +rm -f "$XDG_LOCAL_HOME/share/distribution/certs-ready-signal" + +echo "Creating necessary system directories..." + +mkdir -p "/etc/containers/certs.d/$DISTRIBUTION_REGISTRY_URL/" +mkdir -p /usr/local/share/ca-certificates + +echo "Creating necessary user directories..." + +mkdir -p "$XDG_CONFIG_HOME/containers/distribution/certs" +mkdir -p "$XDG_CONFIG_HOME/containers/certs.d/$DISTRIBUTION_REGISTRY_URL" +mkdir -p "$XDG_LOCAL_HOME/share/distribution" + +echo "Generating TLS certificate and key for local registry..." + +openssl req -x509 -newkey ec \ + -pkeyopt ec_paramgen_curve:P-256 \ + -keyout "$XDG_CONFIG_HOME/containers/distribution/certs/domain.key" \ + -out "$XDG_CONFIG_HOME/containers/distribution/certs/domain.crt" \ + -days 365 \ + -nodes \ + -subj '/C=US/ST=Minnesota/L=St. Paul/O=Closed Circuit Consulting/OU=R&D/CN=localhost/emailAddress=unitexe70@gmail.com' \ + -addext 'subjectAltName=DNS:localhost,IP:127.0.0.1,IP:::1' + +echo "Setting permissions on generated artifacts..." + +chown $TARGET_USR:$TARGET_USR "$XDG_CONFIG_HOME/containers/distribution/certs/domain.key" +chown $TARGET_USR:$TARGET_USR "$XDG_CONFIG_HOME/containers/distribution/certs/domain.crt" +chmod 640 "$XDG_CONFIG_HOME/containers/distribution/certs/domain.key" +chmod 644 "$XDG_CONFIG_HOME/containers/distribution/certs/domain.crt" + +echo "Adding CA to system trust store..." + +cp -f "$XDG_CONFIG_HOME/containers/distribution/certs/domain.crt" /usr/local/share/ca-certificates/registry.crt +update-ca-certificates + +echo "Adding CA to containers trust store..." + +cp -f "$XDG_CONFIG_HOME/containers/distribution/certs/domain.crt" "/etc/containers/certs.d/$DISTRIBUTION_REGISTRY_URL/ca.crt" + +echo "Adding CA to user containers trust store..." + +chown -R $TARGET_USR:$TARGET_USR "$XDG_CONFIG_HOME/containers/certs.d" +chmod 755 "$XDG_CONFIG_HOME/containers/certs.d/$DISTRIBUTION_REGISTRY_URL" + +cp -f "$XDG_CONFIG_HOME/containers/distribution/certs/domain.crt" "$XDG_CONFIG_HOME/containers/certs.d/$DISTRIBUTION_REGISTRY_URL/ca.crt" +chown $TARGET_USR:$TARGET_USR "$XDG_CONFIG_HOME/containers/certs.d/$DISTRIBUTION_REGISTRY_URL/ca.crt" +chmod 644 "$XDG_CONFIG_HOME/containers/certs.d/$DISTRIBUTION_REGISTRY_URL/ca.crt" + +echo "Creating signal file..." + +chown -R $TARGET_USR:$TARGET_USR "$XDG_LOCAL_HOME/share/distribution" +touch "$XDG_LOCAL_HOME/share/distribution/certs-ready-signal" +chmod 644 "$XDG_LOCAL_HOME/share/distribution/certs-ready-signal" + +echo "Registry TLS configuration created and ready for use" diff --git a/meta-unit-virtualization/recipes-extended/shadow/shadow_%.bbappend b/meta-unit-virtualization/recipes-extended/shadow/shadow_%.bbappend new file mode 100644 index 0000000..76fbacb --- /dev/null +++ b/meta-unit-virtualization/recipes-extended/shadow/shadow_%.bbappend @@ -0,0 +1,12 @@ +# +# Support rootless podman for users. +# +# This is explained at: +# https://github.com/containers/podman/blob/main/docs/tutorials/rootless_tutorial.md#etcsubuid-and-etcsubgid-configuration +# +do_install:append() { + echo "svc:200000:65536" >> ${D}${sysconfdir}/subuid + echo "" >> ${D}${sysconfdir}/subuid + echo "svc:200000:65536" >> ${D}${sysconfdir}/subgid + echo "" >> ${D}${sysconfdir}/subgid +} diff --git a/meta-unit-virtualization/recipes-kernel/linux/linux-yocto_%.bbappend b/meta-unit-virtualization/recipes-kernel/linux/linux-yocto_%.bbappend new file mode 100644 index 0000000..37d2edd --- /dev/null +++ b/meta-unit-virtualization/recipes-kernel/linux/linux-yocto_%.bbappend @@ -0,0 +1 @@ +SRC_URI:append = " file://netfilter_xt_match.cfg" diff --git a/meta-unit-virtualization/recipes-support/grafana-prometheus-datasource/files/datasource.yml b/meta-unit-virtualization/recipes-support/grafana-prometheus-datasource/files/datasource.yml new file mode 100644 index 0000000..f0131f0 --- /dev/null +++ b/meta-unit-virtualization/recipes-support/grafana-prometheus-datasource/files/datasource.yml @@ -0,0 +1,8 @@ +apiVersion: 1 + +datasources: + - name: Prometheus Node Exporter + type: prometheus + access: proxy + url: http://127.0.0.1:9090 + isDefault: true diff --git a/meta-unit-virtualization/recipes-support/grafana-prometheus-datasource/grafana-prometheus-datasource.bb b/meta-unit-virtualization/recipes-support/grafana-prometheus-datasource/grafana-prometheus-datasource.bb new file mode 100644 index 0000000..ce9fa50 --- /dev/null +++ b/meta-unit-virtualization/recipes-support/grafana-prometheus-datasource/grafana-prometheus-datasource.bb @@ -0,0 +1,15 @@ +SUMMARY = "Grafana prometheus data source drop-in" +LICENSE = "MIT" +LIC_FILES_CHKSUM = "file://${UNIT_VIRTUALIZATION_LAYERDIR}/LICENSE;md5=a77c12e0c0e8a14cebb1494195720ccc" + +SRC_URI = "file://datasource.yml" + +ROOTLESS_USER_NAME ?= "svc" + +S = "${UNPACKDIR}" + +do_install() { + install -D -m 0644 ${S}/datasource.yml ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/grafana/provisioning/datasources/prometheus.yml +} + +FILES:${PN} = "/home/${ROOTLESS_USER_NAME}/.config/containers/grafana/provisioning/datasources/prometheus.yml" diff --git a/meta-unit-virtualization/recipes-support/grafana-prometheus-podman-dashboard/grafana-prometheus-podman-dashboard_git.bb b/meta-unit-virtualization/recipes-support/grafana-prometheus-podman-dashboard/grafana-prometheus-podman-dashboard_git.bb new file mode 100644 index 0000000..4a0d1a4 --- /dev/null +++ b/meta-unit-virtualization/recipes-support/grafana-prometheus-podman-dashboard/grafana-prometheus-podman-dashboard_git.bb @@ -0,0 +1,15 @@ +SUMMARY = "Podman exporter grafana dashboard" +LICENSE = "Apache-2.0" +LIC_FILES_CHKSUM = "file://LICENSE;md5=e647d8f671db610bae37c03003d77b7e" + +SRC_URI = "git://git.closedcircuitconsulting.com/grafana-prometheus-podman-dashboard;branch=main;protocol=https" + +SRCREV = "ae0f243eda1b57ca73ef5c87032287fe8cf46ae3" + +ROOTLESS_USER_NAME ?= "svc" + +do_install() { + install -D -m 0644 ${S}/podman.json ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/grafana/provisioning/dashboards/podman-exporter.json +} + +FILES:${PN} = "/home/${ROOTLESS_USER_NAME}/.config/containers/grafana/provisioning/dashboards/podman-exporter.json" diff --git a/meta-unit-virtualization/recipes-support/packagegroups/packagegroup-grafana-dashboards.bb b/meta-unit-virtualization/recipes-support/packagegroups/packagegroup-grafana-dashboards.bb new file mode 100644 index 0000000..435e524 --- /dev/null +++ b/meta-unit-virtualization/recipes-support/packagegroups/packagegroup-grafana-dashboards.bb @@ -0,0 +1,6 @@ +SUMMARY = "Grafana provisioning dashboards" + +inherit packagegroup + +RDEPENDS:${PN}:append = " prometheus-node-exporter-dashboard" +RDEPENDS:${PN}:append = " grafana-prometheus-podman-dashboard" diff --git a/meta-unit-virtualization/recipes-support/packagegroups/packagegroup-grafana-datasources.bb b/meta-unit-virtualization/recipes-support/packagegroups/packagegroup-grafana-datasources.bb new file mode 100644 index 0000000..73b4607 --- /dev/null +++ b/meta-unit-virtualization/recipes-support/packagegroups/packagegroup-grafana-datasources.bb @@ -0,0 +1,5 @@ +SUMMARY = "Grafana provisioning data sources" + +inherit packagegroup + +RDEPENDS:${PN}:append = " grafana-prometheus-datasource" diff --git a/meta-unit-virtualization/recipes-support/prometheus-node-exporter-dashboard/prometheus-node-exporter-dashboard_git.bb b/meta-unit-virtualization/recipes-support/prometheus-node-exporter-dashboard/prometheus-node-exporter-dashboard_git.bb new file mode 100644 index 0000000..82944b6 --- /dev/null +++ b/meta-unit-virtualization/recipes-support/prometheus-node-exporter-dashboard/prometheus-node-exporter-dashboard_git.bb @@ -0,0 +1,15 @@ +SUMMARY = "Node exporter grafana dashboard" +LICENSE = "Apache-2.0" +LIC_FILES_CHKSUM = "file://LICENSE;md5=dab0ea9d34dd9846f799c0fc52e5c58a" + +SRC_URI = "git://github.com/rfmoz/grafana-dashboards;branch=master;protocol=https" + +SRCREV = "0ea0f0652e41f73bd41b82769baa32912184152b" + +ROOTLESS_USER_NAME ?= "svc" + +do_install() { + install -D -m 0644 ${S}/prometheus/node-exporter-full.json ${D}/home/${ROOTLESS_USER_NAME}/.config/containers/grafana/provisioning/dashboards/prometheus-node-exporter.json +} + +FILES:${PN} = "/home/${ROOTLESS_USER_NAME}/.config/containers/grafana/provisioning/dashboards/prometheus-node-exporter.json" diff --git a/meta-unit-virtualization/recipes-users/useradd/add-user-svc.bb b/meta-unit-virtualization/recipes-users/useradd/add-user-svc.bb new file mode 100644 index 0000000..dbbc0c5 --- /dev/null +++ b/meta-unit-virtualization/recipes-users/useradd/add-user-svc.bb @@ -0,0 +1,43 @@ +SUMMARY = "Add service user" +LICENSE = "MIT" + +EXCLUDE_FROM_WORLD = "1" + +inherit useradd +inherit extrausers +inherit enable-linger +inherit set-xdg-env + +RDEPENDS:${PN}:append = " base-passwd" +RDEPENDS:${PN}:append = " busybox" +RDEPENDS:${PN}:append = " shadow" +RDEPENDS:${PN}:append = " systemd" + +USERADD_PACKAGES = "${PN}" + +USER_TO_ADD_NAME ?= "svc" +USER_TO_ADD_UID ?= "50556" +USER_TO_ADD_PASSWORD_HASHED ?= "\$6\$1TQs7iLskyTyCjoL\$xhngcFWaPRsoaZCwLSsYXUrRcVdR19zV2vBEzrzSEVu8zbqDlfKu4HLwzsZfiqJCiWqiu9qirD4Ym12CMf7D7." +COMMA_SEPARATED_LIST_OF_GROUPS_TO_ADD_USER_TO ?= "systemd-journal" + +USERADD_PARAM:${PN} = "-u ${USER_TO_ADD_UID} -d /home/${USER_TO_ADD_NAME} -s ${base_bindir}/sh -G ${COMMA_SEPARATED_LIST_OF_GROUPS_TO_ADD_USER_TO} -p '${USER_TO_ADD_PASSWORD_HASHED}' ${USER_TO_ADD_NAME}" + +INHIBIT_PACKAGE_DEBUG_SPLIT = "1" + +do_install() { + # Note: Use of .profile here assumes busybox shell. + install -D -m 0644 /dev/null ${D}/home/${USER_TO_ADD_NAME}/.profile + + # User is not part of sudo group and therefore doesn't + # have sbin in path, add it for access to common commands. + cat > ${D}/home/${USER_TO_ADD_NAME}/.profile << 'EOF' +export PATH="${sbindir}:/sbin:$PATH" +EOF +} + +# Prior to useradd being performed on the sysroot a couple things must happen: +# 1. Need the systemd recipe to create the systemd-journal group +# 2. Need busybox shell present +do_prepare_recipe_sysroot[depends] += "systemd:do_populate_sysroot busybox:do_populate_sysroot" + +FILES:${PN}:append = " /home/${USER_TO_ADD_NAME}/.profile" diff --git a/meta-virtualization-extra/conf/layer.conf b/meta-virtualization-extra/conf/layer.conf index 89b40b7..eca715a 100644 --- a/meta-virtualization-extra/conf/layer.conf +++ b/meta-virtualization-extra/conf/layer.conf @@ -5,17 +5,12 @@ BBFILES += "\ ${LAYERDIR}/recipes-*/*/*.bbappend \ " -BBFILE_COLLECTIONS += "meta-virtualization-extra" -BBFILE_PATTERN_meta-virtualization-extra = "^${LAYERDIR}/" -BBFILE_PRIORITY_meta-virtualization-extra = "9" +BBFILE_COLLECTIONS += "virtualization-extra-layer" +BBFILE_PATTERN_virtualization-extra-layer = "^${LAYERDIR}/" +BBFILE_PRIORITY_virtualization-extra-layer = "9" -LAYERDEPENDS_meta-virtualization-extra += "core openembedded-layer virtualization-layer" +LAYERDEPENDS_virtualization-extra-layer += "core openembedded-layer virtualization-layer" -LAYERSERIES_COMPAT_meta-virtualization-extra = "whinlatter" +LAYERSERIES_COMPAT_virtualization-extra-layer = "whinlatter" VIRTUALIZATION_EXTRA_LAYERDIR = "${LAYERDIR}" - -BBFILES_DYNAMIC += " \ - freescale-layer:${LAYERDIR}/dynamic-layers/freescale-layer/*/*/*.bb \ - freescale-layer:${LAYERDIR}/dynamic-layers/freescale-layer/*/*/*.bbappend \ -" -- cgit v1.2.3