Jarrod Johnson
305a3a06d2
Ensure $HOME is set during firstboot
...
systemd tends not to set environment variables. However some firstboot
scripts generally expect $HOME to be correct.
2023-04-12 11:22:27 -04:00
Jarrod Johnson
872718c658
Add notation about alternate location of ansible plays
...
Make it known that plays may now be private.
2023-03-16 15:19:15 -04:00
Jarrod Johnson
a385b1e93d
Try strategy to have confignet run
...
confignet is special, it is designed
to work when networking
isn't right. So have it run during firstboot
in case post fouled up
the network for firstboot.
2023-02-28 12:12:36 -05:00
Jarrod Johnson
bb7a72db65
Fix for ipv6 deployment
...
Need to avoid double-bracketing of the server and also disable globbing
so curl does not mistake the ip address for a glob attempt.
2023-02-13 09:36:42 -05:00
Jarrod Johnson
648290ffbc
Begin implementing aarch64 deploy support
2023-01-27 08:00:38 -05:00
Jarrod Johnson
03fcd3f568
Fix indentation mistake in add_local_repositories
2023-01-11 09:53:01 -05:00
Jarrod Johnson
cc0962f5e5
Fix add_local_repositories in v6 environment
2023-01-06 15:35:36 -05:00
Jarrod Johnson
a5ee3a425f
Provide full path to DSA key for deletion
2022-12-14 16:15:30 -05:00
Jarrod Johnson
f524114e56
Remove DSA key from install
2022-12-14 13:00:24 -05:00
Jarrod Johnson
0a9fd8351b
Correct firstboot on remote media deployment
2022-12-09 11:19:06 -05:00
Jarrod Johnson
f55c25a52c
Avoid mangling ipv4 in url in media deployment
2022-12-09 10:59:50 -05:00
Jarrod Johnson
93f6641a16
Carry deployment hook through to firstboot
2022-12-09 10:33:23 -05:00
Jarrod Johnson
7e2ae4de62
Restore ipv4-only media based deployment
2022-12-09 10:11:09 -05:00
Jarrod Johnson
20e6e1e521
Refresh functions to cope with v6-only usage
2022-11-08 08:52:29 -05:00
Jarrod Johnson
fd14221ab5
Avoid truncating console logging of firstboot
...
With significant firstboot output, there was a tendency
for tail to be killed before it relayed all the content.
Change to run the firstboot in a subshell in the background,
and have tail explicitly run until that subshell naturally
exits and then tail will cleanly exit
2022-10-28 09:30:12 -04:00
Jarrod Johnson
5794cd5d12
Modify firstboot to fall through to ipv6 if ipv4 failed
2022-10-25 08:21:42 -04:00
Jarrod Johnson
9964b33414
Fall back to v6 in more scenarios
2022-10-24 17:03:00 -04:00
Jarrod Johnson
6eb4bf28e5
Another iteration to try to have IP adaptive syncfiles
...
It is likely that a client connects from fe80::, which
is explicitly omitted from ssh principals.
This time, have the client provide all currently set IP addresses
and the server will make a determination.
There remains the possibility it misconfigures a nic and tries to use that,
inducing failure. One strategy would be to filter the addresses and
only provide from the 'current' interface. Another is to just take
the hit as the node is likely going to suffer a lot from such a
misconfiguration anyway.
2022-10-05 12:23:47 -04:00
Jarrod Johnson
b98759698a
Sync up getinstalldisk and add another m.2 model
2022-09-01 13:22:50 -04:00
Jarrod Johnson
789def17d1
Do not tail old content from firstboot
...
Tail only new content being fleshly logged
2022-07-18 09:35:40 -04:00
Jarrod Johnson
bfecaa389d
Adjust to correct ntp for 9 and up
2022-06-17 09:06:33 -04:00
Jarrod Johnson
b32c343a0c
Switch to importlib for newer python
...
imp is deprecated, despite being much simpler,
so use importlib in python3.6+ distributions.
2022-06-07 10:35:08 -04:00
Jarrod Johnson
272398884c
Appl consistent name to apiclient for EL8
2022-04-13 11:27:30 -04:00
Jarrod Johnson
8c54b6eaf8
Fix path to apiclient in add_local_repositories
2022-04-13 09:48:33 -04:00
Jarrod Johnson
8a3688c1d6
Fix mistake in pre.sh for relocation of apiclient
2022-03-18 12:09:43 -04:00
Jarrod Johnson
b6034f2e71
Update to fix new profiles and accomodate old profiles
...
/etc/confluent/apiclient is expected by older profiles
2022-03-16 09:40:55 -04:00
Jarrod Johnson
5f610b64b7
Place Confluent CA certs into TLS anchors
...
When processes may update the certificate authorities, the confluent
CA trust would be lost. Place it appropriately so that
update-ca-trust will keep it in the appropriate place.
2022-03-02 08:40:27 -05:00
Jarrod Johnson
9f071c1fdb
Provide more details in example syncfiles
2022-01-20 14:10:30 -05:00
Jarrod Johnson
181f704331
Correct configbmc misidentification of lan chan
...
The lan channel get mac address was incorrect, change
to correctly request.
2022-01-10 09:29:40 -05:00
Jarrod Johnson
c2de127947
Bring el8 completely over to prefer ipv4
2021-12-09 08:31:07 -05:00
Jarrod Johnson
02da50af8b
Tighter permissions on /var/log/confluent
2021-12-08 07:42:19 -05:00
Jarrod Johnson
77de3ab25b
Apply more restrictive permissions to /var/log/confluent/
...
While confluent shouldn't put anything sensitive in the log, custom
content may. To mitigate the risk, it will now lock down the
log permissions.
2021-12-07 07:21:04 -05:00
Jarrod Johnson
61eecd672c
Add confignet to default firstboot/onboot as appropriate for el8 and
...
suse15
2021-11-08 16:34:26 -05:00
Jarrod Johnson
224663d0c8
Fix execution of confluent functions after run_remote_python
2021-10-29 13:50:04 -04:00
Jarrod Johnson
729408a0cb
Fix run_remote aafter the cleanup was added
...
The removal of the temp dir needed to be linked with
whether the script was dedicated or shared tmp with a run_remote_parts.
2021-10-29 13:01:59 -04:00
Jarrod Johnson
8eb6ce0b69
Specify absolute path for mktemp
...
mktemp defaults to relative, to produce the correct
behavior, must be absolute template.
2021-10-25 12:03:26 -04:00
Jarrod Johnson
81675faec1
Avoid clearing disk if autopartition is not to be used
2021-10-25 10:05:15 -04:00
Jarrod Johnson
957679db3c
Update syncfile examples and el7 support
2021-10-15 16:24:22 -04:00
Jarrod Johnson
2e7b315f29
Add 'APPENDONCE:' section to syncfiles
...
This will APPEND if the target file doesn't
already have the entire source contents in
a contiguous location already. This makes
it more safe to rerun without negative consequence.
2021-10-15 15:48:49 -04:00
Jarrod Johnson
f33ed9b4d9
Cleanup after script execution
...
Leave cleaner tmp directories when functions are ran.
2021-10-15 12:16:48 -04:00
Jarrod Johnson
351d6a85ee
Fix firstboot with ipv6 deployment in el8
2021-10-12 17:23:18 -04:00
Jarrod Johnson
fda61bd354
Attempt to extend the v6 deployment support in el8
2021-10-12 16:58:42 -04:00
Jarrod Johnson
58cf220203
Mask spurious output on disk cleanup
2021-10-11 13:30:31 -04:00
Jarrod Johnson
57f346fa4c
Implement syncfiles parameters
...
chmod and chown as directed
by the syncfiles file if present
2021-10-08 10:27:57 -04:00
Jarrod Johnson
3b7e7afc24
Fix inconsistent handling of marginal id in syncfileclient
...
Also, resynchronize syncfileclient across the distributions.
2021-10-07 12:36:52 -04:00
Jarrod Johnson
d23f9db6e0
Syncronize diskfull and diskless el8 and el9 functions
2021-10-07 08:38:29 -04:00
Jarrod Johnson
172008f942
Attempt to cover centos stream 9 by el8
...
At first glance, there should be similarities,
apart from python differences and need for
different clortho build due to library mismatch.
2021-10-06 16:59:47 -04:00
Jarrod Johnson
1c69700e1d
Fix missing port 22
...
Either this was overlooked or the sshd_config stopped including
Port 22. Fix by putting in port 22. If port 22 already existed,
sshd is fine with the configuration being configured twice.
2021-10-01 08:34:51 -04:00
Jarrod Johnson
d899cfbf1a
Clean disk to install in pre
...
Installers frequently fail if there's a derelict lvm on disk.
Explicitly remove the on-disk content and deactive lvm to let
anaconda work reliably.
2021-09-29 14:31:18 -04:00
Jarrod Johnson
6acd3c2b7d
Add ability to execute functions as a command
...
This gives easier access over nodeshell and similar to run functions by executing the
functions as a script with arguments.
2021-09-20 08:00:35 -04:00