107 lines
2.9 KiB
Plaintext
107 lines
2.9 KiB
Plaintext
# We have a conf and classes directory, add to BBPATH
|
|
BBPATH .= ":${LAYERDIR}"
|
|
|
|
# We have recipes-* directories, add to BBFILES
|
|
BBFILES += "${LAYERDIR}/recipes-*/*/*.bb \
|
|
${LAYERDIR}/recipes-*/*/*.bbappend"
|
|
|
|
BBFILE_COLLECTIONS += "stx-layer"
|
|
BBFILE_PATTERN_stx-layer := "^${LAYERDIR}/"
|
|
BBFILE_PRIORITY_stx-layer = "5"
|
|
|
|
DISTRO_FEATURES_append = " x11 opengl"
|
|
EXTRA_IMAGE_FEATURES_append = " x11-base"
|
|
VIRTUAL-RUNTIME_graphical_init_manager = "lxdm"
|
|
|
|
# INITRAMFS_IMAGE = "secure-core-image-initramfs"
|
|
DISTRO_FEATURES_NATIVE_append += "systemd ima tpm tpm2 efi-secure-boot luks"
|
|
DISTRO_FEATURES_append += "systemd ima tpm tpm2 efi-secure-boot luks"
|
|
#DISTRO_FEATURES_append += "systemd ima tpm tpm2 efi-secure-boot luks modsign"
|
|
MACHINE_FEATURES_NATIVE_append += "efi"
|
|
MACHINE_FEATURES_append += "efi"
|
|
#PACKAGE_CLASSES = "package_rpm"
|
|
#INHERIT += "sign_rpm_ext"
|
|
|
|
INHERIT += " stx-postrun"
|
|
|
|
INHERIT += " extrausers"
|
|
EXTRA_USERS_PARAMS = "\
|
|
useradd -p '' sysadmin; \
|
|
groupadd sysadmin; \
|
|
usermod -a -G sysadmin sysadmin; \
|
|
"
|
|
|
|
EXTRA_IMAGE_FEATURES += " empty-root-password"
|
|
EXTRA_IMAGE_FEATURES += " allow-empty-password"
|
|
EXTRA_IMAGE_FEATURES += " allow-root-login"
|
|
|
|
#SECURE_CORE_IMAGE_EXTRA_INSTALL ?= "\
|
|
# packagegroup-efi-secure-boot \
|
|
# packagegroup-tpm \
|
|
# packagegroup-tpm2 \
|
|
# packagegroup-ima \
|
|
# packagegroup-luks \
|
|
# "
|
|
|
|
# For iso image
|
|
#KERNEL_FEATURES += "features/overlayfs/overlayfs.scc"
|
|
|
|
#INITRAMFS_SCRIPTS = "initramfs-live-boot \
|
|
# initramfs-live-install \
|
|
# initramfs-live-install-efi \
|
|
# "
|
|
|
|
LAYERDEPENDS_stx-layer = "\
|
|
core \
|
|
networking-layer \
|
|
openembedded-layer \
|
|
networking-layer \
|
|
filesystems-layer \
|
|
perl-layer \
|
|
meta-python \
|
|
webserver \
|
|
virtualization-layer \
|
|
cloud-services-layer \
|
|
openstack-layer \
|
|
openstack-aio-deploy-layer \
|
|
openstack-compute-deploy-layer \
|
|
openstack-controller-deploy-layer \
|
|
openstack-qemu-layer \
|
|
openstack-swift-deploy-layer \
|
|
signing-key \
|
|
efi-secure-boot \
|
|
encrypted-storage \
|
|
integrity \
|
|
tpm2 \
|
|
secure-core \
|
|
selinux \
|
|
"
|
|
# This should only be incremented on significant changes that will
|
|
# cause compatibility issues with other layers
|
|
LAYERVERSION_stx-version = "1"
|
|
LAYERSERIES_COMPAT_stx-layer = "thud"
|
|
|
|
VIRTUAL-RUNTIME_init_manager = "systemd"
|
|
DISTRO_FEATURES_append = " systemd"
|
|
DISTRO_FEATURES_BACKFILL_CONSIDERED += "sysvinit"
|
|
|
|
DISTRO_FEATURES_append = " bluez pam largefile opengl"
|
|
DISTRO_FEATURES_append = " virtualization"
|
|
DISTRO_FEATURES_append = " openstack"
|
|
DISTRO_FEATURES_append = " selinux"
|
|
DISTRO_FEATURES_append = " kvm"
|
|
|
|
PREFERRED_PROVIDER_virtual/containerd = "containerd-opencontainers"
|
|
PREFERRED_PROVIDER_virtual/kernel = "linux-yocto"
|
|
|
|
PREFERRED_VERSION_keyutils = "1.5.10"
|
|
PREFERRED_VERSION_python3-cherrypy = "git"
|
|
PREFERRED_VERSION_python-cheroot = "git"
|
|
PREFERRED_VERSION_python3-cheroot = "git"
|
|
PREFERRED_VERSION_python-cherrypy = "git"
|
|
|
|
# Used by:
|
|
# neutron-init
|
|
# glance-init
|
|
CONTROLLER_IP = "0.0.0.0"
|