evolix/ansible-roles
22
2
Fork 2
Code Issues 61 Pull requests 16 Releases 34 Wiki Activity
3388 commits 69 branches 58 tags 128 MiB
Commit graph

319 commits

Author SHA1 Message Date
Jérémy Lecour 57ecac01ba evolinux-base: blacklist and do not install megaclisas-status package on incompatible servers
All checks were successful
continuous-integration/drone/push Build is passing
Details
2022-06-16 15:19:44 +02:00
William Hirigoyen (Evolix) c4023a4f49 Détecte automatiquement si le serveur est baremetal pour installer les outils hw, suppression de la variable evolinux_packages_hardware inutile
All checks were successful
continuous-integration/drone/push Build is passing
Details
2022-06-03 16:22:56 +02:00
Jérémy Lecour 249e53fc21 evolinux-base: add dir-check script 2022-06-01 17:24:55 +02:00
Jérémy Lecour 17a2032a10 evolinux-base: add update-evobackup-canary script
All checks were successful
continuous-integration/drone/push Build is passing
Details
2022-06-01 10:46:13 +02:00
Eric Morino c6dec34f10 Add wmware_provider.rc variable
All checks were successful
continuous-integration/drone/push Build is passing
Details
2022-05-17 15:09:16 +02:00
Eric Morino 19ca65f55f Add task for VMware provider for install open-vm-tools
All checks were successful
continuous-integration/drone/push Build is passing
Details
2022-05-17 15:05:20 +02:00
Gregory Colpart e3a75b9584 detect OOM
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-04-11 16:34:39 +02:00
Ludovic Poujol 6ab0cb4fd1 evolinux-base: Fix utils.yml -> Ne pas déplacer inutilement le script qu'on va de toute façon écraser
Some checks reported errors
continuous-integration/drone/push Build was killed
Details 
+ Correction du cas d'une machine n'ayant pas le script (fail du mv initial)
 2022-03-28 11:56:24 +02:00
Jérémy Lecour 54bf9c1854 evolinux-base: rename backup-server-state to dump-server-state
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-03-27 09:18:15 +02:00
Ludovic Poujol 17f884b04a evolinux-base: Add non-free repos & install non-free firmware on dedicated hardware
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-03-15 11:35:20 +01:00
Brice Waegeneire 6df10be6ef evolinux-base: Fix top config.
Some checks reported errors
continuous-integration/drone/push Build was killed
Details 
The wrong file was used as topdefaultrc.  And we were using the wrong
encoding, as top use ISO-8859 instead of UTF-8.
 2022-03-15 10:22:21 +01:00
Jérémy Lecour 5153b88d01 evolinux-base: option to bypass raid-related tasks 2022-02-03 14:15:33 +01:00
Jérémy Lecour bff8fcfebb apt: upgrade packages after all the configuration is done
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
continuous-integration/drone/pr Build was killed
Details
2022-01-25 18:25:47 +01:00
Jérémy Lecour 52fff750df evolinux-base: move "/sbin/deny" install to utils.yml tasks file 2022-01-25 17:44:42 +01:00
Jérémy Lecour 8f8c024163 Merge branch 'unstable' into bullseye-swap-top
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
continuous-integration/drone/pr Build was killed
Details
2022-01-25 15:13:10 +01:00
Jérémy Lecour 266289c72e whitespaces 2022-01-25 14:56:39 +01:00
William Hirigoyen (Evolix) 14883aa95e Ensure that /var is mounted with dev and exec options prior to LXC container creation.
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2022-01-11 11:02:09 +01:00
Jérémy Lecour 1893b6dea5 don't enable alert5 service in check mode
Some checks reported errors
continuous-integration/drone/push Build was killed
Details
2021-12-23 16:56:43 +01:00
Ludovic Poujol 64b632c000 evolinux-base: Donner le choix (ou non) de virer apt-listchanges
Some checks reported errors
continuous-integration/drone/push Build encountered an error
Details
2021-12-10 11:37:56 +01:00
Ludovic Poujol 8b701e615f evolinux-base: Donner le choix de changer (ou non) le motd 2021-12-10 11:37:33 +01:00
Ludovic Poujol d27d6b69cd evolinux-base: Add missing dependency dmidecode
Some checks reported errors
continuous-integration/drone/push Build encountered an error
Details
2021-12-08 18:35:55 +01:00
Jérémy Lecour 646a7b1813 evocheck: package install is not supported anymore 2021-10-25 10:08:40 +02:00
Ludovic Poujol 03f846b94b remount before the task 2021-10-22 11:56:43 +02:00
Eric Morino be5bb73675 Include role remount-usr to backup-state-server 2021-10-20 15:57:58 +02:00
Jérémy Lecour 7586881f4d fix module name 2021-10-15 10:54:39 +02:00
Jérémy Lecour bbd16dc5b4 evolinux-base: add script backup-server-state 2021-10-15 10:50:42 +02:00
Jérémy Lecour 9b479f9c05 evolinux-base: logs are rotated with dateext by default 2021-09-30 12:07:02 +02:00
Ludovic Poujol fa0c668cec evolinux-base: install freeipmi by default on dedicated hw 2021-09-16 15:58:10 +02:00
Jérémy Lecour 74ab96d67f loop syntax and whitespaces 2021-08-27 11:01:28 +02:00
Jérémy Lecour ecba57ad75 evolinux-base: install molly-guard by default 2021-08-25 17:57:38 +02:00
Jérémy Lecour 5a83a30a4c whitespace 2021-08-24 18:16:11 +02:00
Brice Waegeneire 2448168008 evolinux-base: Add swap column to htop and top
Some checks failed
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/pr Build is failing
Details
2021-08-17 18:03:00 +02:00
Jérémy Lecour 73352f55d7 evolinux-base: add tags to hardawre tasks
Some checks failed
continuous-integration/drone/push Build is failing
Details
2021-07-07 14:32:38 +02:00
Ludovic Poujol b362fadc80 typo (again) + not using trusted.gpg isn't restricted to debian 9+
All checks were successful
continuous-integration/drone/push Build is passing
Details
2021-07-06 16:22:45 +02:00
Ludovic Poujol 8e6c08b81b evolinux-base: Change the pattern of MegaRAID detect
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Seems the card names may somethings between 'MegaRAID' and 'SAS'
I'll take the short and easy path as I think MegaRAID is enough in most cases
 2021-07-06 16:12:14 +02:00
Ludovic Poujol 7a089f88af Correct typo in var name 
trusted_gpg_keyring.stat.present instead of _trusted_gpg_keyring.stat.present
 2021-07-06 16:09:54 +02:00
Ludovic Poujol 49cb5adf92 evolinux-base: Fix hw card detect 
Run the shell command as bash instead of sh; otherwise it will fail because of the set -o pipefail
 2021-07-06 16:09:17 +02:00
Jérémy Lecour 29ec7bdcf2 Remove embedded GPG keys only if legacy keyring is present
Some checks failed
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/pr Build is failing
Details
2021-07-04 22:08:47 +02:00
Jérémy Lecour 5e09906c8f fixup! temporary bulseye-detect role 2021-07-02 21:09:28 +02:00
Jérémy Lecour 008cb6a3c9 quote numeric values 2021-07-02 21:08:59 +02:00
Jérémy Lecour 2f68ae5339 Preliminary support for Bullseye 2021-07-02 20:58:09 +02:00
Jérémy Lecour b8ac36e673 Fake « testing » as Deban 11 « Bullseye » 2021-07-02 20:53:42 +02:00
Jérémy Lecour b8c5ac3097 remove whitespace for stream redirection 2021-06-28 15:56:19 +02:00
Jérémy Lecour 6d757f971e typo 2021-06-28 15:56:19 +02:00
Jérémy Lecour 55ad6882b5 evolinux-base: forgotten case for first-found lookup
All checks were successful
continuous-integration/drone/push Build is passing
Details
2021-06-28 15:26:54 +02:00
Jérémy Lecour 454d4c6d30 explicit permissions for APT GPG keys
All checks were successful
continuous-integration/drone/push Build is passing
Details
2021-05-26 13:47:34 +02:00
Jérémy Dubois 89b0bd5a2b Fix duplicate dict key : check_mode
All checks were successful
continuous-integration/drone/push Build is passing
Details
2021-05-19 18:19:30 +02:00
Jérémy Lecour 06b8314211 evolinux-base: fix motd lookup path 2021-05-19 17:02:20 +02:00
Jérémy Lecour 02451f1e67 add default (useless) value for file lookup
All checks were successful
continuous-integration/drone/push Build is passing
Details
2021-05-19 14:35:08 +02:00
Jérémy Lecour 4d83f25ae6 fix pipefail option for shell invocations
All checks were successful
continuous-integration/drone/push Build is passing
Details
2021-05-18 14:04:54 +02:00
Jérémy Lecour e65340cb56 Add pipefail option to shell invocations
All checks were successful
continuous-integration/drone/push Build is passing
Details
2021-05-13 15:34:27 +02:00
Jérémy Lecour 7dc6f0b849 remove trailing whitespaces 2021-05-13 15:23:39 +02:00
Jérémy Lecour 9ca68a16dd evolinux-base: quote values
All checks were successful
continuous-integration/drone/push Build is passing
Details
2021-05-10 09:07:18 +02:00
Jérémy Lecour 3c9be8d913 fix more Ansible syntax 2021-05-09 23:20:15 +02:00
Jérémy Lecour 2ed77c60f0 Improve Ansible syntax 
replace « x | changed » by « x is changed »
add explicit « bool » filter
use « length » filter instead of string comparison
 2021-05-09 23:06:42 +02:00
Jérémy Lecour 58bf79218f remove apt keys specifically from embedded database 2021-05-06 13:43:59 +02:00
Jérémy Lecour 7d08b0a30a rename the tasks for embedded GPG keys
All checks were successful
continuous-integration/drone/push Build is passing
Details
2021-05-06 11:33:19 +02:00
Jérémy Lecour 83705a48b8 remove key from trusted.gpg only if file is present
All checks were successful
continuous-integration/drone/push Build is passing
Details
2021-05-06 10:42:12 +02:00
Jérémy Lecour 5138065059 Use 'loop' syntax instead of 'with_items' 2021-05-04 14:19:18 +02:00
Jérémy Lecour debc4a82ca Use 'loop' syntax instead of 'with_first_found'
All checks were successful
continuous-integration/drone/push Build is passing
Details
2021-05-04 13:39:47 +02:00
Jérémy Lecour 9cdddd50a8 Move all trusted GPG keys to file repository
All checks were successful
continuous-integration/drone/push Build is passing
Details
2021-05-03 14:23:13 +02:00
Ludovic Poujol f9d6fe0ad4 evolinux-base: install wget
All checks were successful
continuous-integration/drone/push Build is passing
Details
2020-09-10 14:59:19 +02:00
Jérémy Lecour 37ed5dd393 evolinux-base: swappiness is customizable
All checks were successful
continuous-integration/drone/push Build is passing
Details
2020-09-01 14:08:39 +02:00
Jérémy Lecour 221e9edc10 Merge branch 'nagios-nrpe-check-hpraid' into unstable 2020-08-19 14:49:22 +02:00
Benoît S. a74f4e1890 evolinux-base/tasks/hardware.yml: Removed trailing whitespace
All checks were successful
continuous-integration/drone/push Build is passing
Details
2020-06-16 12:42:33 +09:00
Benoît S. 4bec21a9f3 evolinux-base: harware: Support HP gen >=10 RAID controller
All checks were successful
continuous-integration/drone/push Build is passing
Details
2020-06-16 12:35:56 +09:00
Jérémy Dubois 1a0872c507 nagios-nrpe / evolinux-base : new ntp server variable
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Online hosted servers must use ntp.online.net as
ntp server, because others one are rate limited.
Default ntp server is pool.ntp.org, and a custom
one can be set with the nagios_nrpe_ntp_server
variable.
 2020-06-04 10:55:48 +02:00
Jérémy Lecour f2613e91aa evolinux-base: configure cciss-vol-statusd in the proper file
All checks were successful
continuous-integration/drone/push Build is passing
Details 
The default file should be used for configuration instead of the init 
script.
 2020-04-10 11:36:03 +02:00
Jérémy Lecour 4ad785abaf evolinux-base: simplify sshd syntax validation
All checks were successful
continuous-integration/drone/push Build is passing
Details
2020-03-12 17:04:08 +01:00
Jérémy Lecour ac98aa2d18 evolinux-base: install Evocheck (default: True)
All checks were successful
continuous-integration/drone/push Build is passing
Details
2020-03-09 17:02:23 +01:00
Jérémy Lecour 7283e34077 Replace version_compare() with version() 2020-02-25 10:45:35 +01:00
Jérémy Lecour 80081aa26e evolinux-base: remove the chrony package
Some checks failed
continuous-integration/drone/push Build is failing
Details
2020-01-16 10:57:47 +01:00
Jérémy Lecour 6801f4e00e Add names to many blocks 2019-12-31 16:56:03 +01:00
Jérémy Lecour 27e217467e Change "|changed" with "is changed" 2019-12-31 16:18:56 +01:00
Jérémy Lecour e04d881988 replace "with_items" in apt modules 2019-12-31 16:18:56 +01:00
Jérémy Lecour 79bb6103b8 Change "|version_compare" with "is version_compare" 2019-12-31 10:18:19 +01:00
Victor LABORIE 2a1e0b7ef6 evolinux-base: install ssacli for HP Smart Array
All checks were successful
continuous-integration/drone/push Build is passing
Details
2019-12-13 11:00:20 +01:00
Victor LABORIE 6f5e13f8b8 Add evolix prefix to include_role 2019-11-29 14:00:25 +01:00
Ludovic Poujol 6e918d166e
evolinux-base: Don't make alert5.service executable
All checks were successful
continuous-integration/drone/push Build is passing
Details 
Every 3 mins, systemd complain that the service file is marked as
executable, and asks the executable bit to be remove.

Nov 27 01:35:11 foo systemd[1]: Configuration file /etc/systemd/system/alert5.service is marked executable. Please remove executable permission bits. Proceeding anyway.
 2019-11-28 10:59:29 +01:00
Ludovic Poujol dc1c78e08a evolinux-base: Fix our zsyslog rotate config that doesn't work on Debian 10
All checks were successful
continuous-integration/drone/push Build is passing
Details 
I've noticed that some log files, especially /var/log/syslog were empty.
After investigating, I've realized that it was happening after a log
rotation by logrotate.

The old mechanism, `invoke-rc.d rsyslog rotate` isn't working anymore on
Debian 10. It will fail with a not so explicit message :

[FAIL] Closing open files: rsyslogd failed!

Long story short, it seems that the pid file (`/run/rsyslogd.pid`) isn't
created any more, so start-stop-daemon as used by /etc/init.d/rsyslog
will fail. Explaining the error message.

Debian 10 rsyslog now brings `/usr/lib/rsyslog/rsyslog-rotate` that is
used by logrotate. It will send the signal HUP the 'right' way, so
rsyslog will be aware of the log rotation.

Sadly, this script isn't present in Debian 9 nor 8, so the logrotate
configuration for rsyslog is now a template, using the right command for
the right version.
 2019-11-22 16:48:19 +01:00
Eric Morino c15f8963e4 Add compatibility for debian 9 and debian 10 in HW tool and megacli package
All checks were successful
continuous-integration/drone/push Build is passing
Details
2019-11-14 14:29:04 +01:00
Ludovic Poujol 174bfa5ba0 Fix a syntax error in a task name (a missplaced double quote)
All checks were successful
continuous-integration/drone/push Build is passing
Details
2019-11-12 17:59:36 +01:00
Jérémy Lecour f2dacac139 evolinux-base: add /usr/share/scripts in root's PATH (Debian 10+) 2019-10-30 14:32:32 +01:00
Jérémy Lecour 8679da4cb6 evolinux-base: install /sbin/deny 2019-10-30 14:32:32 +01:00
Jérémy Lecour 78ea4a61e1 typo 2019-10-30 14:32:32 +01:00
Jérémy Lecour 24edbd680a Add crontabs only when cron package is installed (many roles)
All checks were successful
continuous-integration/drone/push Build is passing
Details
2019-10-21 15:26:03 +02:00
Jérémy Lecour bea11352be Merge branch 'buster' into unstable 2019-09-23 18:34:35 +02:00
Jérémy Lecour b31159c9d2 evolinux-base: use "evolinux_internal_group" for SSH authentication 2019-09-22 22:26:21 +02:00
Ludovic Poujol f630d93587 evolinux-base: On debian 10 and later, add noexec on /dev/shm
Some checks reported errors
continuous-integration/drone/push Build encountered an error
Details
2019-07-23 18:18:29 +02:00
Benoît S. d5751150af evolinux-base: spectre-meltdown-checker need binutils
Some checks reported errors
continuous-integration/drone/push Build encountered an error
Details
continuous-integration/drone/pr Build is passing
Details
2019-07-03 09:56:17 +02:00
Benoît S. 771c75c1de all-roles: Dot not use ansible_lsb as it is deprecated
Some checks reported errors
continuous-integration/drone/push Build encountered an error
Details
continuous-integration/drone/pr Build is passing
Details 
We move from `ansible_lsb.codename` to `ansible_distribution_release`.
 2019-07-03 09:41:35 +02:00
Jérémy Lecour fecdbb0406 evolinux-base: use the variable for the "ssh" group name
Some checks reported errors
continuous-integration/drone/pr Build encountered an error
Details
continuous-integration/drone/push Build is passing
Details
2019-06-24 17:08:01 +02:00
Jérémy Lecour a8ef97fcde Revert "evolinux-base: install "spectre-meltdown-checker" (Debian 9 and later)" 
This reverts commit 65414d8ae7.
 2019-06-20 17:29:48 +02:00
Jérémy Lecour b362f422df evolinux-base: packages for Buster and later
All checks were successful
continuous-integration/drone/push Build is passing
Details
2019-06-19 15:08:54 +02:00
Jérémy Lecour bee57a0b3c change distribution release codename
Some checks reported errors
continuous-integration/drone/push Build encountered an error
Details
continuous-integration/drone/pr Build is failing
Details 
Ansible 2.2 is too old to know about buster.
Let's use LSB for that.
 2019-06-18 17:35:28 +02:00
Jérémy Lecour 65414d8ae7 evolinux-base: install "spectre-meltdown-checker" (Debian 9 and later)
All checks were successful
continuous-integration/drone/push Build is passing
Details
2019-06-17 14:22:00 +02:00
Ludovic Poujol 75a8c90258 evolinux-base: Ensure rename is present 2019-06-17 09:58:10 +02:00
Ludovic Poujol 334b8a3f0d evolinux-base: Validate sshd config with "sshd -t" 
See #52 - It seems the behaviour changed with the recent releases, -T 
that does an extended test now fails on "Match" blocks when no context 
is given through -C
 2019-06-17 09:47:22 +02:00
Jérémy Lecour 3e37800994 evolinux-base: remove apt-listchanges on Stretch and later 2019-03-05 11:10:12 +01:00
Jérémy Lecour a94c94018c normalize some arguments positions 2019-01-01 20:02:50 +01:00