Prefix and proxy #179
Prefix and proxy #179
Conversation
…ter_windows into prefix_and_proxy * 'prefix_and_proxy' of https://github.com/daxgames/boxcutter_windows: Update .gitignore
|
@annawake @misheska Any thoughts on this? This does not change building Windows images with Boxcutter/Windows syntax all will work as before with some enhancements. Other changes are in the description of the PR. I use it as follows: I have a repo in Github with my customizations that are business specific:
I can now use boxcutter/windows unmodified with my user customizations that have no business being in your repo and everything is still in source control. I think this is a great add to this project for users that need user customizations and don't want to fork and keep their personal repo synched with this repo. |
|
@daxgames, I'll look more into this PR once I get some status on some of the other PRs that add minor enhancements as this one changes some things and adds some capabilities that could have some potential side effects. Thanks for your patience. |
arizvisa
added
enhancement
|
So it seems that there are a number of things in this PR. Here's what I've got, let me know what I missed.
If you're not too interested in getting the whole thing merged, lmk and I'll see what we can take. |
|
Wow, I wrote all this a really long time ago.
Yes - It might be more elegant to allow this as a make argument to disable bits. Like I did with the other PR for CM_LICENSED because its not REALLY Packer config.
I would say Powershell download has proxy support added.
Not really, it will still try
This was just an effort to reduce code duplication without adding another
Yes
Yes - and it is cleaned up at the end.
This is probably outdated and needs to use whatever is in master today
Yes
I would like to see it all merged as it is backward compatible and could be useful for others. I can't be the only person that tried to use this in a corporate env behind a proxy, with man in the middle ssl certs , that made this repo impossible to use. As you have probably noticed I am obsessed with backward compatibility and not breaking/removing existing functionality. I could break it up into smaller PRs if that would help |
|
Did I mention I am excited to see this repo getting some love. It has been ignored for too long. |
|
Might also want to figure out a way to implement this |
|
Yeah, if you have the time to break it up into smaller pieces that'd be more welcomed. I can't guarantee I'll merge all of them, though. Things like configuring a proxy when provisioning are legit features that I'd really like to incorporate. But yeah, I was actually going to break it down myself if you don't since the community here has slowly been dying and the original maintainers have moved towards developing more on https://github.com/boxcutter/windows-ps which is more powershell-oriented. Some parts of this PR are distinctly separate features that I think warrant their own PR. It'd not only be easier to merge but also easier to determine whether some PRs are fine being simple fixes, or actually deserve extending in their respective direction. Like wrt some of the bitsadmin stuff, for example, I'd like to phase bitsadmin out entirely if possible since it's so unreliable. However, if it ends not possible, then maybe only use it for the older templates that require it. So I might be hesitant to immediately merge bitsadmin patches as one can expect that to change in the future.. So PRs in similar areas that people have asked for features on, might not make it through as a short PR since they'dlikely be more project-oriented Totally agreed wrt corporate environments. I work in infosec so I have to maintain my own fork of this that self-hosts things due to not being able to route. But that's why I offered to help maintain this project as I've had to do a lot of little tricks to get things working and to incorporate it into my own tools. I still think it's a good base, however. Just needs to be refined. |
|
Ah. With regards to that PR comment you linked, I'll track that in issue #124 where 2xyo first requested it. Thanks for the heads up. |
* disable-bits: (85 commits) disable bits disable bits disable bits update Makefile to allow disable bits spacing Fixed an instance of the wrong script being passed (floppy/openssh.bat) to floppy_files for the hyperv-iso builder in the win2012r2-standard-cygwin.json template. Added a missing floppy_files item for openssh.bat to the hyperv-iso builder for the eval-win7x86-enterprise-ssh.json template. Removed the floppy/oracle-cert.cer file as it's not used anymore. Removed unused reference to floppy/oracle-cert.cer from all the virtualbox builders in each of the templates. Sorted all of the floppy_files in all the templates lexicographically so that they're hella easier to compare. Updated the order of the floppy_files in all of the templates so that they begin with their Autounattend.xml script which makes the field hella easier to compare. Re-ordered some of the keys in all of the builders. Removed some stray double-quotes in script/cmtool.bat when informing the user about the Omnitruck API. Fixed the comments in script/cmtool.bat as you can't have them at the end of a conditional in batch files. Updated script/cmtool.bat to let the user know if an explicit version was chosen with the OMNITRUCK_VERSION environment variable. This case is not common and only exists to inform users that re-use this script in their own fork. Updated the documentation (README.md) to mention specifying "licensed" versus "latest" for the chef configuration management tools. Quick example of setting "latest" to the most recent free version of chef in script/cmtool.bat, and "licensed" to the most recent non-free version. Fixed the "update" user variable in wip/win2008r2-standardcore-cygwin.json so that it's a string. Re-ordered all the builders in the *-ssh.json and *-cygwin.json templates so that the ssh_username and ssh_password fields are defined near the end of the builder to help anchor (fuzzy) patches or search-replace next to the vm_name. Added the "ssh_timeout" to the hyperv-iso builder in the templates that were missing it. This option is used by packer's ssh communicator, but isn't documented in the hyperv-iso document. ...
(cherry picked from commit 6cda48c)
Ability to disable BITS so scripts can fail instead of hanging. Replaces: #85
Powershell download function with proxy support and less code duplication. Replaces: #85
ps1_download [url] [filename]function tofloppy/_packer_config.cmdps1_download [url] [filename]function fromfloppy/_packer_config.cmdin all scripts that use Powershell for downloads.http_proxyandno_proxysupport for use in corporate environments.HideWirelessSetupInOOBEto Windows 10Autounattend.xmlfiles. Necessary to make installs behind proxy unattended.floppy\_packer_config[variable].cmdand it will be processed.User customization without forking
Note: Does not affect existing
makecommands ifPREFIXis not set.Users can clone boxcutter/windows and make user specific copies of Packer templates, scripts and configs they can edit that are ignored by git.
*.jsontemplate files can be symlinks to files in another repo.floppyandscriptcannot be symlinks but can be links to files in other repos.This adds flexibility to customixe and to easily sync with the upstream repo at any time!
$(PREFIX)to theMakefilemake PREFIX=[company]. [company].[target]to build from[company].target.json.gitignorefloppy and script folders:*.*.jsonfloppy/*.*.*script/*.*.*Fix build errors in Virtualbox for Windows 10 and 2012
"VBoxInternal/CPUM/CMPXCHG16B",from Packer json files.