2db422f0b8
We ran into issues getting ansible-lint to run on Noble without updating everything to current ish versions due to Python 3.12 compatibility issues. Updating everything in this way created a bunch of new lint errors we need to fix so we worked around the problem previously by pinning back to Jammy. Now we move the job back to Noble (the default Nodeset) and update the tooling and fix the linter errors. This should allow us to move forward in a productive manner on modern platforms. The linter errors we fix include: * Naming every play * Ensuring every play name starts with a capital letter * Using fully qualified collection names for action modules (archive, git_config, and synchronize) * Quoting octal file modes Change-Id: I96560c5ce2a5af39d39b3fc339862932a856bd13 |
||
|---|---|---|
| .. | ||
| pre.yaml | ||
| README.rst | ||
This pre.yaml playbook is called as part of the openstack-fips job. Its primary purpose is enable an Ubuntu Advantage subscription using a subscription key that is stored in project-config.
Enabling FIPS requires a reboot, and so we need the FIPS playbook to run very early in the node setup, so that resources set up by subsequent pre-scripts are not affected by the reboot.
Therefore, the openstack-fips job must be definied as a base job for most OpenStack jobs. As most jobs will not require fips, a playbook variable enable_fips - which defaults to False - is provided.
To enable FIPS mode, a job will simply need to set enable_fips to True as a job variable.
Job Variables