125 lines
4.6 KiB
YAML
125 lines
4.6 KiB
YAML
#cloud-config
|
|
# vim: ft=yaml
|
|
|
|
bootcmd:
|
|
- cat /etc/resolv.conf
|
|
- uname -r
|
|
- timedatectl set-ntp 1
|
|
- timedatectl set-timezone Europe/Bratislava
|
|
- systemctl disable --now systemd-resolved
|
|
- unlink /etc/resolv.conf || true
|
|
- echo "nameserver 84.200.69.80" > /etc/resolv.conf
|
|
- systemctl disable --now snapd
|
|
- systemctl disable --now snapd.socket
|
|
- sleep 10
|
|
|
|
runcmd:
|
|
- sleep 10
|
|
- cat /etc/resolv.conf
|
|
- uname -r
|
|
- apt update
|
|
- apt upgrade -y && apt dist-upgrade -y
|
|
- ldconfig
|
|
- sed -i "s/ext4\tdefaults\t0 1/ext4 defaults,noatime 0 0/" /etc/fstab
|
|
- touch /.plsgo
|
|
|
|
write_files:
|
|
- content: |
|
|
/usr/local/lib
|
|
path: /etc/ld.so.conf.d/local.conf
|
|
owner: root:root
|
|
permissions: '0644'
|
|
|
|
ssh_pwauth: true
|
|
chpasswd:
|
|
list: |
|
|
root:1234
|
|
expire: false
|
|
|
|
users:
|
|
- name: root
|
|
ssh_authorized_keys:
|
|
- ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBtG6NCgdLHX4ztpfvYNRaslKWZcl6KdTc1DehVH4kAL
|
|
- ssh-rsa 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
|
|
- name: ansible
|
|
ssh_authorized_keys:
|
|
- ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBtG6NCgdLHX4ztpfvYNRaslKWZcl6KdTc1DehVH4kAL
|
|
- ssh-rsa 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
|
|
# the tf-ansible key
|
|
- ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJ9JEzfMs+O6I5JYRQ+gHWClvCqaNTdop8ncDeSj+RWs
|
|
sudo: ['ALL=(ALL) NOPASSWD:ALL']
|
|
shell: /bin/bash
|
|
groups: wheel
|
|
- name: los
|
|
ssh_authorized_keys:
|
|
- ssh-rsa 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
|
|
- ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBtG6NCgdLHX4ztpfvYNRaslKWZcl6KdTc1DehVH4kAL
|
|
# the tf-ansible key
|
|
- ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJ9JEzfMs+O6I5JYRQ+gHWClvCqaNTdop8ncDeSj+RWs
|
|
sudo: ['ALL=(ALL) NOPASSWD:ALL']
|
|
shell: /bin/bash
|
|
groups: wheel
|
|
|
|
ssh_publish_hostkeys:
|
|
enabled: false
|
|
ssh:
|
|
emit_keys_to_console: false
|
|
|
|
# hostname is set based on main.tf variables
|
|
preserve_hostname: false
|
|
fqdn: ${hostname}.${domainname}
|
|
hostname: ${hostname}
|
|
|
|
|
|
# reboot after fqdn is set to update the info in libvirt's dnsmasq
|
|
power_state:
|
|
delay: "+1"
|
|
mode: reboot
|
|
condition: true
|
|
timeout: 600 # seconds
|
|
|
|
packages:
|
|
- adb
|
|
- ccache
|
|
- lld
|
|
- htop
|
|
- python3 # for ansible
|
|
- python-is-python3 # for ansible
|
|
- sudo
|
|
- tcpdump
|
|
- vim
|
|
- zstd
|
|
#
|
|
- bc
|
|
- bison
|
|
- build-essential
|
|
- curl
|
|
- flex
|
|
- g++-multilib
|
|
- gcc-multilib
|
|
- git
|
|
- gnupg
|
|
- gperf
|
|
- imagemagick
|
|
- lib32ncurses5-dev
|
|
- lib32readline-dev
|
|
- lib32z1-dev
|
|
- liblz4-tool
|
|
- libncurses5
|
|
- libncurses5-dev
|
|
- libsdl1.2-dev
|
|
- libssl-dev
|
|
- libxml2
|
|
- libxml2-utils
|
|
- lzop
|
|
- pngcrush
|
|
- rsync
|
|
- schedtool
|
|
- squashfs-tools
|
|
- xsltproc
|
|
- zip
|
|
- zlib1g-dev
|
|
|
|
package_upgrade: true
|
|
package_reboot_if_required: true
|