a12d2fce2b
We have identified an issue with stevedore < 3.3.0 where the
cloud-launcher, running under ansible, makes stevedore hashe a /tmp
path into a entry-point cache file it makes, causing a never-ending
expansion.
This appears to be fixed by [1] which is available in 3.3.0. Ensure
we install this on bridge. For good measure, add a ".disable" file as
we don't really need caches here.
There's currently 491,089 leaked files, so I didn't think it wise to
delete these in a ansible loop as it will probably time out the job.
We can do this manually once we stop creating them :)
[1] d7cfadbb7d
Change-Id: If5773613f953f64941a1d8cc779e893e0b2dd516
71 lines
1.5 KiB
YAML
71 lines
1.5 KiB
YAML
- name: Install base packages
|
|
package:
|
|
state: present
|
|
name: "{{ base_packages }}"
|
|
|
|
- name: Include OS-specific variables
|
|
include_vars: "{{ lookup('first_found', params) }}"
|
|
vars:
|
|
params:
|
|
files: "{{ distro_lookup_path }}"
|
|
paths:
|
|
- 'vars'
|
|
|
|
- name: Install distro specific packages
|
|
package:
|
|
state: present
|
|
name: "{{ distro_packages }}"
|
|
|
|
- name: Increase syslog message size in order to capture python tracebacks
|
|
copy:
|
|
content: '$MaxMessageSize 6k'
|
|
dest: /etc/rsyslog.d/99-maxsize.conf
|
|
mode: 0644
|
|
notify: Restart rsyslog
|
|
|
|
- name: Ensure rsyslog is running
|
|
service:
|
|
name: rsyslog
|
|
enabled: yes
|
|
state: started
|
|
|
|
- name: Set ssh key for management
|
|
authorized_key:
|
|
state: present
|
|
user: root
|
|
exclusive: "{{ bastion_key_exclusive }}"
|
|
key: "{{ bastion_public_key }}"
|
|
key_options: |
|
|
from="{{ bastion_ipv4 }},{{ bastion_ipv6 }},localhost"
|
|
|
|
- name: Install sshd config
|
|
template:
|
|
src: sshd_config.j2
|
|
dest: /etc/ssh/sshd_config
|
|
owner: root
|
|
group: root
|
|
mode: 0444
|
|
notify: Restart ssh
|
|
|
|
- name: Disable byobu
|
|
file:
|
|
path: /etc/profile.d/Z98-byobu.sh
|
|
state: absent
|
|
|
|
- name: Setup RFC3339 bash history timestamps
|
|
copy:
|
|
mode: 0644
|
|
src: bash-history.sh
|
|
dest: /etc/profile.d/bash-history.sh
|
|
|
|
- name: Ensure root cache directory
|
|
file:
|
|
path: /root/.cache
|
|
state: directory
|
|
mode: 0700
|
|
|
|
- name: Include OS-specific tasks
|
|
include_tasks: "{{ lookup('first_found', file_list) }}"
|
|
vars:
|
|
file_list: "{{ distro_lookup_path }}"
|