diff options
author | Lars Wirzenius <lwirzenius@wikimedia.org> | 2020-09-18 17:01:21 +0300 |
---|---|---|
committer | Lars Wirzenius <lwirzenius@wikimedia.org> | 2020-09-18 17:01:21 +0300 |
commit | 438bf651758828a3ff3dca4297cb5891b1aa05fc (patch) | |
tree | a1b501821fe345d6c4db9417f3d95576d582013f | |
parent | 2b9719221ae89cf395da8e774b4f8c183c357f52 (diff) | |
download | ick-contractor-438bf651758828a3ff3dca4297cb5891b1aa05fc.tar.gz |
stash
-rw-r--r-- | ansible.hosts | 1 | ||||
-rw-r--r-- | ansible.yml | 69 | ||||
-rw-r--r-- | hello.yaml | 17 | ||||
-rw-r--r-- | ssh.config | 8 | ||||
-rw-r--r-- | test.yaml | 3 |
5 files changed, 98 insertions, 0 deletions
diff --git a/ansible.hosts b/ansible.hosts new file mode 100644 index 0000000..0b24237 --- /dev/null +++ b/ansible.hosts @@ -0,0 +1 @@ +contractor diff --git a/ansible.yml b/ansible.yml new file mode 100644 index 0000000..f84b205 --- /dev/null +++ b/ansible.yml @@ -0,0 +1,69 @@ +- hosts: contractor + remote_user: debian + become: yes + tasks: + - copy: + content: | + options kvm-intel nested=1 + options kvm-intel enable_shadow_vmcs=1 + options kvm-intel enable_apicv=1 + options kvm-intel ept=1 + dest: /etc/modprobe.d/kvm-nested.conf + - apt: + name: + - ssh + - sudo + - qemu-system-x86 + - virtinst + - libvirt-daemon-system + - libvirt-clients + - locales-all + - jq + - rsync + - kpartx + - name: "modify libvirt to use a non-standard IP range for guests" + shell: + sed -i 's/192\.168\.122\./192.168.99\./g' /etc/libvirt/qemu/networks/default.xml + args: + warn: no + - user: + comment: "Manager" + name: manager + shell: /bin/bash + groups: + - libvirt + - authorized_key: + user: manager + key: "{{ user_pub }}" + - copy: + content: | + manager ALL=(ALL:ALL) NOPASSWD: ALL + dest: /etc/sudoers.d/manager + owner: root + group: root + mode: 0600 + - file: + state: directory + path: /home/manager/.ssh + owner: manager + group: manager + mode: 0700 + - copy: + src: "{{ item }}" + dest: "/home/manager/.ssh/{{ item }}" + owner: manager + group: manager + mode: 0600 + with_items: + - manager.key + - manager.key.pub + - copy: + src: manager-ssh-config + dest: /home/manager/.ssh/config + owner: manager + group: manager + mode: 0600 + vars: + ansible_python_interpreter: /usr/bin/python3 + user_pub: | + ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAACAQDAlECa3tbFGXhB3Zh/4/GhM11THOThVfiuLqqJ2dpWHEClzpKJHpzzwWt7g9z/MMQNMsUJLy+okz+De6hdjjmYJ9kG9Sr3H4YKq6itGQMj7L/cH3WS3ynp0uy0oW3hf932vDZKQ8iy9vczXH+ERYl+4TYae1Jp4Hyf4/2IYxEfuhKctvSvqySST3Qk9JNZ71HFGOWhjH/MmoCLoT1v+HkqmHdYf/GMKGRo3gqCEGgCgNErYYIyKm3OF3dHXK+hyGLE/cZNu6fU5woW3rvtUCFt08Ri2pm0cnXXJn9jQIMxfS5Kkf64svwgzKmPqgX1f4flopYPlsBXduCgzbJvj+lpgauAk/i1A5B01CFa9sI4C6pHZmwk1qxRwN+4IXL2CQt+tDgYC84ZDDd8R7cNyL22a3KhMQmdHtvog1beAa3Ab+J+cafkXXN+Es9f1wQjzk7DiHupmJIVofBvPP+cRcB46rwha6ati8Fa5QkT9rXFNqQsKk7jq8TIi54Bm15OOa0jInGG3TM17b9Ftu2WTJSAaqgBnDfZiInK7HEvC6K/IBljrN3oGagmFZPrAvzw7d6C2/nKFAQtfoMcE5oWVDrJyjsmJ8oaru0E8rwj7mMvyKPgEMnXTGXLWDgEo50+i291m4bkCxVwiOPbPRvdMll1Y8qfBAPT76sY4Ikgcw/2iw== openpgp:0xBBE80E50 diff --git a/hello.yaml b/hello.yaml new file mode 100644 index 0000000..9366cea --- /dev/null +++ b/hello.yaml @@ -0,0 +1,17 @@ +worker-image: /mnt/debian-10-openstack-amd64.qcow2 +ansible: + - hosts: worker + remote_user: debian + become: yes + tasks: + - apt: + name: + - build-essential + vars: + ansible_python_interpreter: /usr/bin/python3 +source: . +build: | + git clone git://git.liw/fi/heippa + cd heippa + make + ./heippa diff --git a/ssh.config b/ssh.config new file mode 100644 index 0000000..ed86f20 --- /dev/null +++ b/ssh.config @@ -0,0 +1,8 @@ +host contractor +hostname localhost +user debian +port 2222 +userknownhostsfile /dev/null +stricthostkeychecking accept-new +controlmaster auto +controlpersist 60s diff --git a/test.yaml b/test.yaml new file mode 100644 index 0000000..4461a8e --- /dev/null +++ b/test.yaml @@ -0,0 +1,3 @@ +manager_address: contractor +verbose: yes +log: ~/contractor.log |