starlingx/ansible-playbooks
Code Issues Proposed changes
2,159 Commits 19 Branches 16 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Rodrigo Tavares 511746493d Ansible Playbook to add cert to UEFI Secure Boot 
This commit adds an Ansible Playbook that installs a new certificate to
UEFI secure boot trusted certificates DB in all available hosts and,
optionally, in all subclouds.

Test Plan:
PASS: Build playbookconfig package and image.
PASS: Run playbook in an AIO-SX and check that it added the certificate.
PASS: Run playbook in an AIO-DX and check that it added the certificate
      to both controllers.
PASS: Run playbook in a DC and check it added the cert to subcloud
      controllers.
PASS: Run playbook in a DC with a subcloud containing a worker node and
      check that it added the certificate to all hosts, including
      subcloud worker node.
PASS: Run playbook in a DC containing a host with secure boot disabled
      and check that it skips that host without failing.
PASS: Run playbook with an expired certificate as input and see it fail.

Story: 2011352
Task: 51687

Change-Id: Ie72fb67059addbe3f0fa341c81d0143c035e3e3d
Signed-off-by: Rodrigo Tavares <Rodrigo.DosSantosTavares@windriver.com>
2025-03-18 16:02:18 -03:00
examples
Ansible Playbook to add cert to UEFI Secure Boot
2025-03-18 16:02:18 -03:00
playbookconfig
Ansible Playbook to add cert to UEFI Secure Boot
2025-03-18 16:02:18 -03:00
.ansible-lint
Fix zuul failures from new release of ansible-lint
2020-08-18 10:49:30 -05:00
.gitignore
Fixing up tox -e cover for stx-config
2018-12-20 08:53:15 -06:00
.gitreview
Added .gitreview
2019-06-15 14:03:07 -05:00
.yamllint
Enable yamllint for ansible playbook .yml files
2019-06-24 13:27:26 -05:00
.zuul.yaml
Zuul: Set all nodesets to debian-bullseye
2024-12-02 22:19:26 +00:00
CONTRIBUTORS.wrs
Clean up repo import
2019-06-15 14:21:19 -05:00
debian_build_layer.cfg
Add debian_build_layer.cfg file
2021-10-05 14:04:06 -04:00
debian_iso_image.inc
Add debian_iso_image.inc file
2021-10-27 01:56:02 -04:00
debian_pkg_dirs
Add debian package for playbookconfig
2021-09-29 18:32:15 +03:00
LICENSE
Clean up repo import
2019-06-15 14:21:19 -05:00
README.rst
starlingx/ansible-playbooks README improvement
2023-07-19 12:13:55 -03:00
requirements.txt
Fix remote play for backup and restore
2022-08-17 14:51:35 -03:00
test-requirements.txt
Fix tox ansible lint failure due to a new module
2022-01-10 11:04:20 -06:00
tox.ini
Prestaging support for --for-sw-deploy/--for-install
2024-06-19 00:38:00 +00:00

README.rst

stx-ansible-playbooks

StarlingX Bootstrap and Deployment Ansible1 Playbooks

Execution environment

  • Unix like OS (recent Linux based distributions, MacOS, Cygwin)
  • Python 3.8 and later

Additional Required Packages

In addition to the pakages listed in requirements.txt and test-requirements.txt, the following packages are required to run the playbooks remotely:

  • python3-pexpect
  • python3-ptyprocess
  • sshpass

Supported StarlingX Releases

The playbooks are compatible with StarlingX R8.0 and later.

Executing StarlingX Playbooks

Bootstrap Playbook

For instructions on how to set up and execute the bootstrap playbook from another host, please refer to the StarlingX Documentation2, at Installation Guides, section Configure controller-0 of the respective system deployment type.

Developer Notes

This repository is not intended to be developed standalone, but rather as part of the StarlingX Source System, which is defined by the StarlingX manifest3.

References

  1. https://docs.ansible.com/ansible/latest/installation_guide↩︎

  2. https://docs.starlingx.io↩︎

  3. https://opendev.org/starlingx/manifest.git↩︎

Description
StarlingX Ansible Playbooks
Readme 31 MiB
Languages
Jinja 70.3%
Python 21.5%
Shell 8.1%