Skip to content

Add rhel 10 support, combine workers+workers_gpu, remove jenkins, remove rhel 8 #111

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
gsaudade99 wants to merge 90 commits into
base: pxe
Choose a base branch
from
Open

Add rhel 10 support, combine workers+workers_gpu, remove jenkins, remove rhel 8 #111

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
90 commits
Select commit Hold shift + click to select a range
03aa218
bumping the telegraf version
gsaudade99 Jan 29, 2026
b07ffde
skip gpg check for now
gsaudade99 Jan 29, 2026
5312ddf
add tty fix
gsaudade99 Jan 29, 2026
1195d53
adding rocky 9.7 instead (trying to resolve cuda problem)
gsaudade99 Jan 30, 2026
6fb4eb7
updating to 9.6 instead
gsaudade99 Jan 30, 2026
c8ae095
attempt to fix tty
gsaudade99 Jan 30, 2026
f2c7c36
trying systemd
gsaudade99 Jan 30, 2026
b2bb61b
update roles
gsaudade99 Feb 10, 2026
392ef24
qemu-img interprets fix as a subdirectory and kvm-build as the start …
gsaudade99 Feb 10, 2026
277e6cf
rever requirements.yml
gsaudade99 Feb 12, 2026
0b18134
pinning 9.6
gsaudade99 Feb 12, 2026
6db0b5a
attempt to pin kernel
gsaudade99 Feb 12, 2026
0409aa9
testing with update
gsaudade99 Feb 12, 2026
501aa66
testing with update
gsaudade99 Feb 12, 2026
5c43d28
testing rocky10.1
gsaudade99 Feb 13, 2026
da8c4dc
fix build to accept pxe yes and no option
gsaudade99 Feb 13, 2026
803cb5a
fix url
gsaudade99 Feb 13, 2026
ca0520d
fix build http reference
gsaudade99 Feb 13, 2026
679d4fe
fix build img name
gsaudade99 Feb 13, 2026
91abe71
found boot_command
gsaudade99 Apr 8, 2026
b6f8f6a
fix boot commands
gsaudade99 Apr 8, 2026
1967f52
rm ip and fix timezone deprecated options
gsaudade99 Apr 9, 2026
5509fa7
uncomment partitioning
gsaudade99 Apr 9, 2026
bafe0cf
refactor ssh configuration for RHEL10 + move system update to provisi…
gsaudade99 Apr 9, 2026
fabb189
revert scp option
gsaudade99 Apr 9, 2026
3b901cc
force scp on ansible
gsaudade99 Apr 9, 2026
6e42981
Add support for RHEL/Rocky 10 in ansible playbooks
gsaudade99 Apr 9, 2026
dad6dba
upgrading devsec
gsaudade99 Apr 9, 2026
8fb8183
make docker and java compatible with el 10
gsaudade99 Apr 10, 2026
2a0151d
update geerlingguy roles
gsaudade99 Apr 10, 2026
89c2d3d
testing generic and workers gpus
gsaudade99 Apr 10, 2026
9450f83
point to my fix branch of cvmfs
gsaudade99 Apr 10, 2026
9ee755c
fixing collection type in requirements (test)
gsaudade99 Apr 10, 2026
d57db05
point to lastest cvmfs commit
gsaudade99 Apr 13, 2026
d8253a1
cleanup tasks and role order
gsaudade99 Apr 13, 2026
83a6287
create user a priory
gsaudade99 Apr 13, 2026
aa0f6e0
rename 999 user before instalation script
gsaudade99 Apr 13, 2026
8dce801
typo
gsaudade99 Apr 13, 2026
f616997
change ownership
gsaudade99 Apr 14, 2026
6e7f2fb
rhel 10 for htcondor role
gsaudade99 Apr 14, 2026
c21ea49
rm kvm stuff
gsaudade99 Apr 14, 2026
527a0b9
cleanup - rm generic
gsaudade99 Apr 14, 2026
cfe5757
generic passed as flavor
gsaudade99 Apr 14, 2026
ed5ce54
procision kvm too
gsaudade99 Apr 14, 2026
8e74853
add missing vault
gsaudade99 Apr 14, 2026
2020305
refactor delivery
gsaudade99 Apr 15, 2026
e48d7d1
add no option to deliver
gsaudade99 Apr 15, 2026
49bf4c5
allow root login (testing)
gsaudade99 Apr 15, 2026
80920c0
update htcndor commit id
gsaudade99 Apr 15, 2026
accd830
ssh hardening order fix
gsaudade99 Apr 16, 2026
ff488e6
cleanup
gsaudade99 Apr 16, 2026
0677c87
converting into latest rocky 10
gsaudade99 Apr 16, 2026
5479735
point to master
gsaudade99 Apr 16, 2026
1ef8d09
ssh timeout after 10 mins instead
gsaudade99 Apr 16, 2026
e793afa
ks to latest
gsaudade99 Apr 16, 2026
385bfc5
add docs + make provisioner conditional
gsaudade99 Apr 16, 2026
f80f2ec
change collection
gsaudade99 Apr 16, 2026
a4f7597
change commit id
gsaudade99 Apr 16, 2026
556c12a
permit rootlogin on kvm hosts
gsaudade99 Apr 16, 2026
ba55f32
exclude kernel updates
gsaudade99 Apr 16, 2026
a7f2367
change cvmfs version
gsaudade99 Apr 20, 2026
5b11c82
move cvmfs telegraf telemetry from vgcn-infrastructure-playbook
gsaudade99 Apr 20, 2026
bed6855
add missing file
gsaudade99 Apr 20, 2026
866c9ac
adding ssh key support
gsaudade99 Apr 22, 2026
90a91b4
ading hosts key group to kvm too (testing)
gsaudade99 Apr 22, 2026
df177a7
making yes a string (testing)
gsaudade99 Apr 22, 2026
fd862ff
testing addding console on bootloader
gsaudade99 Apr 22, 2026
5f46406
testing addding console on bootloader
gsaudade99 Apr 22, 2026
dc92c84
use enable systemd instead
gsaudade99 Apr 22, 2026
d5bdc73
kvm image not booting??
gsaudade99 Apr 23, 2026
6d3c232
rm duplicated task
gsaudade99 Apr 23, 2026
7ae5474
rm minified bulls
gsaudade99 Apr 23, 2026
44d0e10
lets see if claude found it
gsaudade99 Apr 23, 2026
f18dff3
now attempt to fix the kernel panic
gsaudade99 Apr 23, 2026
2e1ff0d
move cloud-init installation to a kvm taks
gsaudade99 Apr 28, 2026
37b930d
rm exclude
gsaudade99 Apr 30, 2026
336f69f
update cmvfs role
gsaudade99 Apr 30, 2026
0f4baf5
update cvmfs role
gsaudade99 Apr 30, 2026
03be412
append kernel version
gsaudade99 Apr 30, 2026
ed708e4
update cvmfs
gsaudade99 May 4, 2026
83f7c07
update ansible role
gsaudade99 May 4, 2026
e43f2d1
Update ansible/generic.yml
gsaudade99 May 6, 2026
cd3458d
Update ansible/kvm.yml
gsaudade99 May 6, 2026
904ca84
Update ansible/group_vars/kvm.yml
gsaudade99 May 6, 2026
738597e
Upgrade `usegalaxy_eu.handy` to v3.3.0
domgz May 6, 2026
4586388
Upgrade `usegalaxy-eu.autofs` to v1.4.1
domgz May 6, 2026
b733f8e
Upgrade `openslx-ng.dracut` to v0.1.0
domgz May 6, 2026
68d5e83
Update templates/rockylinux-10-latest-x86_64-anaconda-ks.cfg
gsaudade99 May 6, 2026
01137e1
Update ansible/workers.yml
gsaudade99 May 6, 2026
be7cf17
Remove source restrictions for `shell` provisioner
domgz May 6, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
46 changes: 22 additions & 24 deletions README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -58,34 +58,32 @@ Make sure the following packages are installed on your system.
- [QEMU](https://www.packer.io/downloads.html) >= 6.2, < 9
- [Ansible](https://www.ansible.com/), see [requirements.txt](./requirements.txt)

Run Packer to build the images.
Run the `build.py` script to automatically template, provision, and assemble the image.

```shell
packer build \
-only=qemu.rockylinux-8.6-x86_64,qemu.rockylinux-9.2-x86_64 \
-var="headless=true" \
-var='groups=["generic", "workers", "external"]' \
templates
python build.py <template> <provisioning>... <delivery> [options]
```

- `-only=qemu.rockylinux-8.6-x86_64,qemu.rockylinux-9.2-x86_64`: selects the
underlying operating system on which the images will be based. One image will
be produced for each item. The argument can be omitted to produce images for
all supported operating systems. All builds use the
[QEMU builder](https://developer.hashicorp.com/packer/integrations/hashicorp/qemu/latest/components/builder/qemu),
hence the prefix. Supported operating systems are listed in
[build.pkr.hcl](templates/build.pkr.hcl).
- `-var="headless=true"`: display the screen of the QEMU virtual machines used to build the images by
setting this variable to false.
- `-var='groups=["generic", "workers", "external"]'`: Playbooks that the Packer
Ansible provisioner will run. VGCN standard images are built with the setting
`groups=["generic", "workers", "external"]`. Add `workers-gpu` to the list
to get the GPU images. Read the comments in
[variables.pkr.hcl](templates/variables.pkr.hcl) for more details.
- `templates`: the directory containing the Packer templates.

Once the images are built, they will be available in a new directory called
"images".
**Example:**
```shell
python build.py rockylinux-10-latest-x86_64 workers internal cloud -q
```

### Arguments

- **`template`**: Selects the underlying operating system on which the image will be based. Supported templates can be found as `source.qemu.*` blocks in `templates/build.pkr.hcl` (e.g., `rockylinux-10-latest-x86_64`, `rockylinux-9-latest-x86_64`).
- **`provisioning`**: One or more Ansible playbooks to run (e.g., `workers`, `internal`, `jenkins`). Note that the `generic` playbook is implicit and applied globally to all builds.
- **`delivery`**: The delivery method or destination environment, which dictates the cloud-init and boot structure. This argument expects exactly one of the mutually exclusive choices: `cloud`, `kvm`, or `pxe` (use `no` to omit all). For local development this argument should default to `no`.

### Options

- `--openstack`: Automatically convert and upload the built image to your OpenStack tenant. Ensure your OpenStack RC file credentials are sourced.
- `--conda-env <path>`: Specifies a conda environment path containing `packer` and `qemu-img` binaries.
- `--publish <key_path>`: Secure copy the resulting raw image to the static hosting site and adjust permissions.
- `--dry-run`: Output the generated Packer and shell commands without executing them.
- `-q`, `--quiet`: Supress the spinner output during build.

Once the images are built and converted, a `.raw` output file will be available in the root directory.

## Running VGCN images

Expand Down
14 changes: 12 additions & 2 deletions ansible/generic.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
---
- hosts: generic
- hosts: all
Copy link
Copy Markdown
Contributor

@mira-miracoli mira-miracoli May 6, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I would like to keep the old, explicit structure, where you could also decide to not use generic, I remember there was a discussion about this with @domgz

Copy link
Copy Markdown
Contributor

@domgz domgz May 6, 2026
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'd also prefer to keep generic here.

Suggested change
- hosts: all
- hosts: generic

Using all would also make it more difficult to implement ADR #3.

vars:
software_groups_to_install:
- admin
Expand All @@ -11,6 +11,16 @@
- "group_vars/all.yml"

pre_tasks:
- name: Ensure group Galaxy exists with correct gid
ansible.builtin.group:
name: galaxy
state: present
gid: 999
- name: Add the user Galxy
ansible.builtin.user:
name: galaxy
uid: 999
group: galaxy
- name: Debug Kernel version
ansible.builtin.shell:
cmd: uname -r
Expand Down Expand Up @@ -45,6 +55,7 @@
roles:
- role: usegalaxy_eu.handy.os_setup
vars:
enable_create_user: true
enable_powertools: true
enable_install_software: true
enable_grub: true
Expand All @@ -55,4 +66,3 @@
- usegalaxy-eu.dynmotd
- influxdata.chrony
- usegalaxy-eu.telegraf
- name: devsec.hardening.ssh_hardening
26 changes: 20 additions & 6 deletions ansible/group_vars/all.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -11,6 +11,7 @@ galaxy_gid: 999
replace_non_galaxy_999: true

telegraf_agent_package_state: latest
telegraf_yum_gpgcheck: false
Comment thread
gsaudade99 marked this conversation as resolved.
telegraf_agent_tags:
- tag_name: datacenter
tag_value: rz
Expand Down Expand Up @@ -43,11 +44,11 @@ telegraf_plugins_default:
- name_suffix = "_alive"

java_packages:
- java-11-openjdk
- java-11-openjdk-devel
- java-21-openjdk
Comment on lines 46 to +47
Copy link
Copy Markdown
Contributor

@domgz domgz May 6, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actually we should be able to remove java_packages all together, right @mira-miracoli? Isn't this variable meant for geerlingguy.java and that in turn meant for Jenkins?


# CVMFS
cvmfs_role: client
cvmfs_yum_releasever: "9"
galaxy_cvmfs_repos_enabled: true
galaxy_cvmfs_server_urls:
- domain: galaxyproject.org
Expand All @@ -68,11 +69,12 @@ dynmotd_custom:

# Docker
docker_packages:
- "docker-{{ docker_edition }}-3:25.0.0-1.el9"
Comment thread
gsaudade99 marked this conversation as resolved.
- "docker-{{ docker_edition }}-cli-1:25.0.5-1.el9"
- "docker-{{ docker_edition }}-rootless-extras-25.0.5-1.el9"
- "containerd.io"
- docker-ce
- docker-ce-cli
- containerd.io
- docker-buildx-plugin
- docker-compose-plugin
- docker-ce-rootless-extras
docker_users:
- centos
- condor
Expand Down Expand Up @@ -105,6 +107,13 @@ autofs_service.enable: True
nfs_kernel_tuning: True
nfs_kernel_tuning_parameters:
sunrpc.tcp_max_slot_table_entries: 100
handy_groups:
- group_name: galaxy
group_gid: 999
handy_users:
- user_name: galaxy
user_uid: 999
user_group: galaxy

# usegalaxy_eu.handy.os_setup
# ansible_root_cron
Expand Down Expand Up @@ -140,3 +149,8 @@ software_groups_to_install:
kernel_5_package: kernel-ml

docker_daemon_options: {}

# Devsec
# Forsing group owenership to root. The role is for some reason trying to change it to "ssh_keys"
# and this does not aligne with the base Rocky10 image
ssh_host_keys_group: root
Comment on lines +152 to +156
Copy link
Copy Markdown
Contributor

@domgz domgz May 6, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
# Devsec
# Forsing group owenership to root. The role is for some reason trying to change it to "ssh_keys"
# and this does not aligne with the base Rocky10 image
ssh_host_keys_group: root

I have removed the that code and tried this playbook.

---
- hosts: all
  vars:
    ...
  pre_tasks:
    ...
  roles:
    - role: usegalaxy_eu.handy.os_setup
      vars:
        enable_create_user: true
        enable_powertools: true
        enable_install_software: true
        enable_grub: true
        enable_kernel_5: "{{ true if (ansible_facts['distribution_major_version'] < '9') else false }}"

    - geerlingguy.repo-epel # Install EPEL
    - usegalaxy-eu.autoupdates # keep all of our packages up to date REMOVED until latest kernel is supported in dnbd3
    - usegalaxy-eu.dynmotd
    - influxdata.chrony
    - usegalaxy-eu.telegraf
    - devsec.hardening.ssh_hardening

  post_tasks:
    - name: Get owner and group for SSH host keys
      ansible.builtin.stat:
        path: "{{ item }}"
      loop:
        - /etc/ssh/ssh_host_rsa_key
        - /etc/ssh/ssh_host_ecdsa_key
        - /etc/ssh/ssh_host_ed25519_key
        - /etc/ssh/ssh_host_rsa_key.pub
        - /etc/ssh/ssh_host_ecdsa_key.pub
        - /etc/ssh/ssh_host_ed25519_key.pub
      register: ssh_host_keys_stat

    - name: Debug SSH host key ownership
      ansible.builtin.debug:
        var: ssh_host_keys_stat

And I am getting gid 0 and uid 0 for the host keys.

...
==> qemu.rockylinux-10-latest-x86_64: TASK [Get owner and group for SSH host keys] ***********************************
/==> qemu.rockylinux-10-latest-x86_64: ok: [default] => (item=/etc/ssh/ssh_host_rsa_key)
==> qemu.rockylinux-10-latest-x86_64: ok: [default] => (item=/etc/ssh/ssh_host_ecdsa_key)
==> qemu.rockylinux-10-latest-x86_64: ok: [default] => (item=/etc/ssh/ssh_host_ed25519_key)
==> qemu.rockylinux-10-latest-x86_64: ok: [default] => (item=/etc/ssh/ssh_host_rsa_key.pub)
==> qemu.rockylinux-10-latest-x86_64: ok: [default] => (item=/etc/ssh/ssh_host_ecdsa_key.pub)
==> qemu.rockylinux-10-latest-x86_64: ok: [default] => (item=/etc/ssh/ssh_host_ed25519_key.pub)
==> qemu.rockylinux-10-latest-x86_64:
==> qemu.rockylinux-10-latest-x86_64: TASK [Debug SSH host key ownership] ********************************************
==> qemu.rockylinux-10-latest-x86_64: ok: [default] => {
==> qemu.rockylinux-10-latest-x86_64:     "ssh_host_keys_stat": {
==> qemu.rockylinux-10-latest-x86_64:         "changed": false,
==> qemu.rockylinux-10-latest-x86_64:         "msg": "All items completed",
==> qemu.rockylinux-10-latest-x86_64:         "results": [
==> qemu.rockylinux-10-latest-x86_64:             {
==> qemu.rockylinux-10-latest-x86_64:                 "ansible_loop_var": "item",
==> qemu.rockylinux-10-latest-x86_64:                 "changed": false,
==> qemu.rockylinux-10-latest-x86_64:                 "failed": false,
==> qemu.rockylinux-10-latest-x86_64:                 "invocation": {
==> qemu.rockylinux-10-latest-x86_64:                     "module_args": {
==> qemu.rockylinux-10-latest-x86_64:                         "checksum_algorithm": "sha1",
==> qemu.rockylinux-10-latest-x86_64:                         "follow": false,
==> qemu.rockylinux-10-latest-x86_64:                         "get_attributes": true,
==> qemu.rockylinux-10-latest-x86_64:                         "get_checksum": true,
==> qemu.rockylinux-10-latest-x86_64:                         "get_md5": false,
==> qemu.rockylinux-10-latest-x86_64:                         "get_mime": true,
==> qemu.rockylinux-10-latest-x86_64:                         "path": "/etc/ssh/ssh_host_rsa_key"
==> qemu.rockylinux-10-latest-x86_64:                     }
==> qemu.rockylinux-10-latest-x86_64:                 },
==> qemu.rockylinux-10-latest-x86_64:                 "item": "/etc/ssh/ssh_host_rsa_key",
==> qemu.rockylinux-10-latest-x86_64:                 "stat": {
==> qemu.rockylinux-10-latest-x86_64:                     "atime": 1778054939.9575148,
==> qemu.rockylinux-10-latest-x86_64:                     "attr_flags": "",
==> qemu.rockylinux-10-latest-x86_64:                     "attributes": [],
==> qemu.rockylinux-10-latest-x86_64:                     "block_size": 4096,
==> qemu.rockylinux-10-latest-x86_64:                     "blocks": 8,
==> qemu.rockylinux-10-latest-x86_64:                     "charset": "us-ascii",
==> qemu.rockylinux-10-latest-x86_64:                     "checksum": "37e34fcb68dcb80d73c8f3a63b4efcb6de651ee1",
==> qemu.rockylinux-10-latest-x86_64:                     "ctime": 1778054939.9515145,
==> qemu.rockylinux-10-latest-x86_64:                     "dev": 64515,
==> qemu.rockylinux-10-latest-x86_64:                     "device_type": 0,
==> qemu.rockylinux-10-latest-x86_64:                     "executable": false,
==> qemu.rockylinux-10-latest-x86_64:                     "exists": true,
==> qemu.rockylinux-10-latest-x86_64:                     "gid": 0,
==> qemu.rockylinux-10-latest-x86_64:                     "gr_name": "root",
==> qemu.rockylinux-10-latest-x86_64:                     "inode": 942038,
==> qemu.rockylinux-10-latest-x86_64:                     "isblk": false,
==> qemu.rockylinux-10-latest-x86_64:                     "ischr": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isdir": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isfifo": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isgid": false,
==> qemu.rockylinux-10-latest-x86_64:                     "islnk": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isreg": true,
==> qemu.rockylinux-10-latest-x86_64:                     "issock": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isuid": false,
==> qemu.rockylinux-10-latest-x86_64:                     "mimetype": "text/plain",
==> qemu.rockylinux-10-latest-x86_64:                     "mode": "0600",
==> qemu.rockylinux-10-latest-x86_64:                     "mtime": 1778054939.9325144,
==> qemu.rockylinux-10-latest-x86_64:                     "nlink": 1,
==> qemu.rockylinux-10-latest-x86_64:                     "path": "/etc/ssh/ssh_host_rsa_key",
==> qemu.rockylinux-10-latest-x86_64:                     "pw_name": "root",
==> qemu.rockylinux-10-latest-x86_64:                     "readable": true,
==> qemu.rockylinux-10-latest-x86_64:                     "rgrp": false,
==> qemu.rockylinux-10-latest-x86_64:                     "roth": false,
==> qemu.rockylinux-10-latest-x86_64:                     "rusr": true,
==> qemu.rockylinux-10-latest-x86_64:                     "size": 3357,
==> qemu.rockylinux-10-latest-x86_64:                     "uid": 0,
==> qemu.rockylinux-10-latest-x86_64:                     "version": "3402224769",
==> qemu.rockylinux-10-latest-x86_64:                     "wgrp": false,
==> qemu.rockylinux-10-latest-x86_64:                     "woth": false,
==> qemu.rockylinux-10-latest-x86_64:                     "writeable": true,
==> qemu.rockylinux-10-latest-x86_64:                     "wusr": true,
==> qemu.rockylinux-10-latest-x86_64:                     "xgrp": false,
==> qemu.rockylinux-10-latest-x86_64:                     "xoth": false,
==> qemu.rockylinux-10-latest-x86_64:                     "xusr": false
==> qemu.rockylinux-10-latest-x86_64:                 }
==> qemu.rockylinux-10-latest-x86_64:             },
==> qemu.rockylinux-10-latest-x86_64:             {
==> qemu.rockylinux-10-latest-x86_64:                 "ansible_loop_var": "item",
==> qemu.rockylinux-10-latest-x86_64:                 "changed": false,
==> qemu.rockylinux-10-latest-x86_64:                 "failed": false,
==> qemu.rockylinux-10-latest-x86_64:                 "invocation": {
==> qemu.rockylinux-10-latest-x86_64:                     "module_args": {
==> qemu.rockylinux-10-latest-x86_64:                         "checksum_algorithm": "sha1",
==> qemu.rockylinux-10-latest-x86_64:                         "follow": false,
==> qemu.rockylinux-10-latest-x86_64:                         "get_attributes": true,
==> qemu.rockylinux-10-latest-x86_64:                         "get_checksum": true,
==> qemu.rockylinux-10-latest-x86_64:                         "get_md5": false,
==> qemu.rockylinux-10-latest-x86_64:                         "get_mime": true,
==> qemu.rockylinux-10-latest-x86_64:                         "path": "/etc/ssh/ssh_host_ecdsa_key"
==> qemu.rockylinux-10-latest-x86_64:                     }
==> qemu.rockylinux-10-latest-x86_64:                 },
==> qemu.rockylinux-10-latest-x86_64:                 "item": "/etc/ssh/ssh_host_ecdsa_key",
==> qemu.rockylinux-10-latest-x86_64:                 "stat": {
==> qemu.rockylinux-10-latest-x86_64:                     "atime": 1777991022.4215162,
==> qemu.rockylinux-10-latest-x86_64:                     "attr_flags": "",
==> qemu.rockylinux-10-latest-x86_64:                     "attributes": [],
==> qemu.rockylinux-10-latest-x86_64:                     "block_size": 4096,
==> qemu.rockylinux-10-latest-x86_64:                     "blocks": 8,
==> qemu.rockylinux-10-latest-x86_64:                     "charset": "us-ascii",
==> qemu.rockylinux-10-latest-x86_64:                     "checksum": "6a71119fe4bb0c3ae6167a2ef3c82feda6b75764",
==> qemu.rockylinux-10-latest-x86_64:                     "ctime": 1777991021.334,
==> qemu.rockylinux-10-latest-x86_64:                     "dev": 64515,
==> qemu.rockylinux-10-latest-x86_64:                     "device_type": 0,
==> qemu.rockylinux-10-latest-x86_64:                     "executable": false,
==> qemu.rockylinux-10-latest-x86_64:                     "exists": true,
==> qemu.rockylinux-10-latest-x86_64:                     "gid": 0,
==> qemu.rockylinux-10-latest-x86_64:                     "gr_name": "root",
==> qemu.rockylinux-10-latest-x86_64:                     "inode": 8696936,
==> qemu.rockylinux-10-latest-x86_64:                     "isblk": false,
==> qemu.rockylinux-10-latest-x86_64:                     "ischr": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isdir": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isfifo": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isgid": false,
==> qemu.rockylinux-10-latest-x86_64:                     "islnk": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isreg": true,
==> qemu.rockylinux-10-latest-x86_64:                     "issock": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isuid": false,
==> qemu.rockylinux-10-latest-x86_64:                     "mimetype": "text/plain",
==> qemu.rockylinux-10-latest-x86_64:                     "mode": "0600",
==> qemu.rockylinux-10-latest-x86_64:                     "mtime": 1777991021.327,
==> qemu.rockylinux-10-latest-x86_64:                     "nlink": 1,
==> qemu.rockylinux-10-latest-x86_64:                     "path": "/etc/ssh/ssh_host_ecdsa_key",
==> qemu.rockylinux-10-latest-x86_64:                     "pw_name": "root",
==> qemu.rockylinux-10-latest-x86_64:                     "readable": true,
==> qemu.rockylinux-10-latest-x86_64:                     "rgrp": false,
==> qemu.rockylinux-10-latest-x86_64:                     "roth": false,
==> qemu.rockylinux-10-latest-x86_64:                     "rusr": true,
==> qemu.rockylinux-10-latest-x86_64:                     "size": 480,
==> qemu.rockylinux-10-latest-x86_64:                     "uid": 0,
==> qemu.rockylinux-10-latest-x86_64:                     "version": "1112327632",
==> qemu.rockylinux-10-latest-x86_64:                     "wgrp": false,
==> qemu.rockylinux-10-latest-x86_64:                     "woth": false,
==> qemu.rockylinux-10-latest-x86_64:                     "writeable": true,
==> qemu.rockylinux-10-latest-x86_64:                     "wusr": true,
==> qemu.rockylinux-10-latest-x86_64:                     "xgrp": false,
==> qemu.rockylinux-10-latest-x86_64:                     "xoth": false,
==> qemu.rockylinux-10-latest-x86_64:                     "xusr": false
==> qemu.rockylinux-10-latest-x86_64:                 }
==> qemu.rockylinux-10-latest-x86_64:             },
==> qemu.rockylinux-10-latest-x86_64:             {
==> qemu.rockylinux-10-latest-x86_64:                 "ansible_loop_var": "item",
==> qemu.rockylinux-10-latest-x86_64:                 "changed": false,
==> qemu.rockylinux-10-latest-x86_64:                 "failed": false,
==> qemu.rockylinux-10-latest-x86_64:                 "invocation": {
==> qemu.rockylinux-10-latest-x86_64:                     "module_args": {
==> qemu.rockylinux-10-latest-x86_64:                         "checksum_algorithm": "sha1",
==> qemu.rockylinux-10-latest-x86_64:                         "follow": false,
==> qemu.rockylinux-10-latest-x86_64:                         "get_attributes": true,
==> qemu.rockylinux-10-latest-x86_64:                         "get_checksum": true,
-==> qemu.rockylinux-10-latest-x86_64:                         "get_md5": false,
==> qemu.rockylinux-10-latest-x86_64:                         "get_mime": true,
==> qemu.rockylinux-10-latest-x86_64:                         "path": "/etc/ssh/ssh_host_ed25519_key"
==> qemu.rockylinux-10-latest-x86_64:                     }
==> qemu.rockylinux-10-latest-x86_64:                 },
==> qemu.rockylinux-10-latest-x86_64:                 "item": "/etc/ssh/ssh_host_ed25519_key",
==> qemu.rockylinux-10-latest-x86_64:                 "stat": {
==> qemu.rockylinux-10-latest-x86_64:                     "atime": 1777991022.4225163,
==> qemu.rockylinux-10-latest-x86_64:                     "attr_flags": "",
==> qemu.rockylinux-10-latest-x86_64:                     "attributes": [],
==> qemu.rockylinux-10-latest-x86_64:                     "block_size": 4096,
==> qemu.rockylinux-10-latest-x86_64:                     "blocks": 8,
==> qemu.rockylinux-10-latest-x86_64:                     "charset": "us-ascii",
==> qemu.rockylinux-10-latest-x86_64:                     "checksum": "b4411b6781fed0fbf1630460a1052ec7f2a3301a",
==> qemu.rockylinux-10-latest-x86_64:                     "ctime": 1777991021.334,
==> qemu.rockylinux-10-latest-x86_64:                     "dev": 64515,
==> qemu.rockylinux-10-latest-x86_64:                     "device_type": 0,
==> qemu.rockylinux-10-latest-x86_64:                     "executable": false,
==> qemu.rockylinux-10-latest-x86_64:                     "exists": true,
==> qemu.rockylinux-10-latest-x86_64:                     "gid": 0,
==> qemu.rockylinux-10-latest-x86_64:                     "gr_name": "root",
==> qemu.rockylinux-10-latest-x86_64:                     "inode": 8696938,
==> qemu.rockylinux-10-latest-x86_64:                     "isblk": false,
==> qemu.rockylinux-10-latest-x86_64:                     "ischr": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isdir": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isfifo": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isgid": false,
==> qemu.rockylinux-10-latest-x86_64:                     "islnk": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isreg": true,
==> qemu.rockylinux-10-latest-x86_64:                     "issock": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isuid": false,
==> qemu.rockylinux-10-latest-x86_64:                     "mimetype": "text/plain",
==> qemu.rockylinux-10-latest-x86_64:                     "mode": "0600",
==> qemu.rockylinux-10-latest-x86_64:                     "mtime": 1777991021.33,
==> qemu.rockylinux-10-latest-x86_64:                     "nlink": 1,
==> qemu.rockylinux-10-latest-x86_64:                     "path": "/etc/ssh/ssh_host_ed25519_key",
==> qemu.rockylinux-10-latest-x86_64:                     "pw_name": "root",
==> qemu.rockylinux-10-latest-x86_64: [WARNING]: Could not match supplied host pattern, ignoring: workers
==> qemu.rockylinux-10-latest-x86_64:                     "readable": true,
==> qemu.rockylinux-10-latest-x86_64:                     "rgrp": false,
==> qemu.rockylinux-10-latest-x86_64:                     "roth": false,
==> qemu.rockylinux-10-latest-x86_64:                     "rusr": true,
==> qemu.rockylinux-10-latest-x86_64:                     "size": 387,
==> qemu.rockylinux-10-latest-x86_64:                     "uid": 0,
==> qemu.rockylinux-10-latest-x86_64:                     "version": "3201095473",
==> qemu.rockylinux-10-latest-x86_64:                     "wgrp": false,
==> qemu.rockylinux-10-latest-x86_64:                     "woth": false,
==> qemu.rockylinux-10-latest-x86_64:                     "writeable": true,
==> qemu.rockylinux-10-latest-x86_64:                     "wusr": true,
==> qemu.rockylinux-10-latest-x86_64:                     "xgrp": false,
==> qemu.rockylinux-10-latest-x86_64:                     "xoth": false,
==> qemu.rockylinux-10-latest-x86_64:                     "xusr": false
==> qemu.rockylinux-10-latest-x86_64:                 }
==> qemu.rockylinux-10-latest-x86_64:             },
==> qemu.rockylinux-10-latest-x86_64:             {
==> qemu.rockylinux-10-latest-x86_64:                 "ansible_loop_var": "item",
==> qemu.rockylinux-10-latest-x86_64:                 "changed": false,
==> qemu.rockylinux-10-latest-x86_64:                 "failed": false,
==> qemu.rockylinux-10-latest-x86_64:                 "invocation": {
==> qemu.rockylinux-10-latest-x86_64:                     "module_args": {
==> qemu.rockylinux-10-latest-x86_64:                         "checksum_algorithm": "sha1",
==> qemu.rockylinux-10-latest-x86_64:                         "follow": false,
==> qemu.rockylinux-10-latest-x86_64:                         "get_attributes": true,
==> qemu.rockylinux-10-latest-x86_64:                         "get_checksum": true,
==> qemu.rockylinux-10-latest-x86_64:                         "get_md5": false,
==> qemu.rockylinux-10-latest-x86_64:                         "get_mime": true,
==> qemu.rockylinux-10-latest-x86_64:                         "path": "/etc/ssh/ssh_host_rsa_key.pub"
==> qemu.rockylinux-10-latest-x86_64:                     }
==> qemu.rockylinux-10-latest-x86_64:                 },
==> qemu.rockylinux-10-latest-x86_64:                 "item": "/etc/ssh/ssh_host_rsa_key.pub",
==> qemu.rockylinux-10-latest-x86_64:                 "stat": {
==> qemu.rockylinux-10-latest-x86_64:                     "atime": 1778054939.9575148,
==> qemu.rockylinux-10-latest-x86_64:                     "attr_flags": "",
==> qemu.rockylinux-10-latest-x86_64:                     "attributes": [],
==> qemu.rockylinux-10-latest-x86_64:                     "block_size": 4096,
==> qemu.rockylinux-10-latest-x86_64:                     "blocks": 8,
==> qemu.rockylinux-10-latest-x86_64:                     "charset": "us-ascii",
==> qemu.rockylinux-10-latest-x86_64:                     "checksum": "22f1fd46799bd2226d4431abd96149c3d542bca6",
==> qemu.rockylinux-10-latest-x86_64:                     "ctime": 1778054939.9515145,
==> qemu.rockylinux-10-latest-x86_64:                     "dev": 64515,
==> qemu.rockylinux-10-latest-x86_64:                     "device_type": 0,
==> qemu.rockylinux-10-latest-x86_64:                     "executable": false,
==> qemu.rockylinux-10-latest-x86_64:                     "exists": true,
==> qemu.rockylinux-10-latest-x86_64:                     "gid": 0,
==> qemu.rockylinux-10-latest-x86_64:                     "gr_name": "root",
==> qemu.rockylinux-10-latest-x86_64:                     "inode": 942039,
==> qemu.rockylinux-10-latest-x86_64:                     "isblk": false,
==> qemu.rockylinux-10-latest-x86_64:                     "ischr": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isdir": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isfifo": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isgid": false,
==> qemu.rockylinux-10-latest-x86_64:                     "islnk": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isreg": true,
==> qemu.rockylinux-10-latest-x86_64:                     "issock": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isuid": false,
==> qemu.rockylinux-10-latest-x86_64:                     "mimetype": "text/plain",
==> qemu.rockylinux-10-latest-x86_64:                     "mode": "0644",
==> qemu.rockylinux-10-latest-x86_64:                     "mtime": 1778054939.9325144,
==> qemu.rockylinux-10-latest-x86_64:                     "nlink": 1,
==> qemu.rockylinux-10-latest-x86_64:                     "path": "/etc/ssh/ssh_host_rsa_key.pub",
==> qemu.rockylinux-10-latest-x86_64:                     "pw_name": "root",
==> qemu.rockylinux-10-latest-x86_64:                     "readable": true,
==> qemu.rockylinux-10-latest-x86_64:                     "rgrp": true,
==> qemu.rockylinux-10-latest-x86_64:                     "roth": true,
==> qemu.rockylinux-10-latest-x86_64:                     "rusr": true,
==> qemu.rockylinux-10-latest-x86_64:                     "size": 726,
==> qemu.rockylinux-10-latest-x86_64:                     "uid": 0,
==> qemu.rockylinux-10-latest-x86_64:                     "version": "4285418125",
==> qemu.rockylinux-10-latest-x86_64:                     "wgrp": false,
==> qemu.rockylinux-10-latest-x86_64:                     "woth": false,
==> qemu.rockylinux-10-latest-x86_64:                     "writeable": true,
==> qemu.rockylinux-10-latest-x86_64:                     "wusr": true,
==> qemu.rockylinux-10-latest-x86_64:                     "xgrp": false,
==> qemu.rockylinux-10-latest-x86_64:                     "xoth": false,
==> qemu.rockylinux-10-latest-x86_64:                     "xusr": false
==> qemu.rockylinux-10-latest-x86_64:                 }
==> qemu.rockylinux-10-latest-x86_64:             },
==> qemu.rockylinux-10-latest-x86_64:             {
==> qemu.rockylinux-10-latest-x86_64:                 "ansible_loop_var": "item",
==> qemu.rockylinux-10-latest-x86_64:                 "changed": false,
==> qemu.rockylinux-10-latest-x86_64:                 "failed": false,
==> qemu.rockylinux-10-latest-x86_64:                 "invocation": {
==> qemu.rockylinux-10-latest-x86_64:                     "module_args": {
==> qemu.rockylinux-10-latest-x86_64:                         "checksum_algorithm": "sha1",
==> qemu.rockylinux-10-latest-x86_64:                         "follow": false,
==> qemu.rockylinux-10-latest-x86_64:                         "get_attributes": true,
==> qemu.rockylinux-10-latest-x86_64:                         "get_checksum": true,
==> qemu.rockylinux-10-latest-x86_64:                         "get_md5": false,
==> qemu.rockylinux-10-latest-x86_64:                         "get_mime": true,
==> qemu.rockylinux-10-latest-x86_64:                         "path": "/etc/ssh/ssh_host_ecdsa_key.pub"
==> qemu.rockylinux-10-latest-x86_64:                     }
==> qemu.rockylinux-10-latest-x86_64:                 },
==> qemu.rockylinux-10-latest-x86_64:                 "item": "/etc/ssh/ssh_host_ecdsa_key.pub",
==> qemu.rockylinux-10-latest-x86_64:                 "stat": {
==> qemu.rockylinux-10-latest-x86_64:                     "atime": 1777991022.4215162,
==> qemu.rockylinux-10-latest-x86_64:                     "attr_flags": "",
==> qemu.rockylinux-10-latest-x86_64:                     "attributes": [],
==> qemu.rockylinux-10-latest-x86_64:                     "block_size": 4096,
==> qemu.rockylinux-10-latest-x86_64:                     "blocks": 8,
==> qemu.rockylinux-10-latest-x86_64:                     "charset": "us-ascii",
==> qemu.rockylinux-10-latest-x86_64:                     "checksum": "a7c785014a90d323f57e2470160b15663ab61dd6",
==> qemu.rockylinux-10-latest-x86_64:                     "ctime": 1777991021.337,
==> qemu.rockylinux-10-latest-x86_64:                     "dev": 64515,
==> qemu.rockylinux-10-latest-x86_64:                     "device_type": 0,
==> qemu.rockylinux-10-latest-x86_64:                     "executable": false,
==> qemu.rockylinux-10-latest-x86_64:                     "exists": true,
==> qemu.rockylinux-10-latest-x86_64:                     "gid": 0,
==> qemu.rockylinux-10-latest-x86_64:                     "gr_name": "root",
==> qemu.rockylinux-10-latest-x86_64:                     "inode": 8696937,
==> qemu.rockylinux-10-latest-x86_64:                     "isblk": false,
==> qemu.rockylinux-10-latest-x86_64:                     "ischr": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isdir": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isfifo": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isgid": false,
==> qemu.rockylinux-10-latest-x86_64:                     "islnk": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isreg": true,
==> qemu.rockylinux-10-latest-x86_64:                     "issock": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isuid": false,
==> qemu.rockylinux-10-latest-x86_64:                     "mimetype": "text/plain",
==> qemu.rockylinux-10-latest-x86_64:                     "mode": "0644",
==> qemu.rockylinux-10-latest-x86_64:                     "mtime": 1777991021.327,
==> qemu.rockylinux-10-latest-x86_64:                     "nlink": 1,
==> qemu.rockylinux-10-latest-x86_64:                     "path": "/etc/ssh/ssh_host_ecdsa_key.pub",
==> qemu.rockylinux-10-latest-x86_64:                     "pw_name": "root",
==> qemu.rockylinux-10-latest-x86_64:                     "readable": true,
==> qemu.rockylinux-10-latest-x86_64:                     "rgrp": true,
==> qemu.rockylinux-10-latest-x86_64:                     "roth": true,
==> qemu.rockylinux-10-latest-x86_64:                     "rusr": true,
==> qemu.rockylinux-10-latest-x86_64:                     "size": 162,
==> qemu.rockylinux-10-latest-x86_64:                     "uid": 0,
==> qemu.rockylinux-10-latest-x86_64:                     "version": "3386923094",
==> qemu.rockylinux-10-latest-x86_64:                     "wgrp": false,
==> qemu.rockylinux-10-latest-x86_64:                     "woth": false,
==> qemu.rockylinux-10-latest-x86_64:                     "writeable": true,
==> qemu.rockylinux-10-latest-x86_64:                     "wusr": true,
==> qemu.rockylinux-10-latest-x86_64:                     "xgrp": false,
==> qemu.rockylinux-10-latest-x86_64:                     "xoth": false,
==> qemu.rockylinux-10-latest-x86_64:                     "xusr": false
==> qemu.rockylinux-10-latest-x86_64:                 }
==> qemu.rockylinux-10-latest-x86_64:             },
==> qemu.rockylinux-10-latest-x86_64:             {
==> qemu.rockylinux-10-latest-x86_64:                 "ansible_loop_var": "item",
==> qemu.rockylinux-10-latest-x86_64:                 "changed": false,
==> qemu.rockylinux-10-latest-x86_64:                 "failed": false,
==> qemu.rockylinux-10-latest-x86_64:                 "invocation": {
==> qemu.rockylinux-10-latest-x86_64:                     "module_args": {
==> qemu.rockylinux-10-latest-x86_64:                         "checksum_algorithm": "sha1",
==> qemu.rockylinux-10-latest-x86_64:                         "follow": false,
==> qemu.rockylinux-10-latest-x86_64:                         "get_attributes": true,
==> qemu.rockylinux-10-latest-x86_64:                         "get_checksum": true,
==> qemu.rockylinux-10-latest-x86_64:                         "get_md5": false,
==> qemu.rockylinux-10-latest-x86_64:                         "get_mime": true,
==> qemu.rockylinux-10-latest-x86_64:                         "path": "/etc/ssh/ssh_host_ed25519_key.pub"
==> qemu.rockylinux-10-latest-x86_64:                     }
==> qemu.rockylinux-10-latest-x86_64:                 },
==> qemu.rockylinux-10-latest-x86_64:                 "item": "/etc/ssh/ssh_host_ed25519_key.pub",
==> qemu.rockylinux-10-latest-x86_64:                 "stat": {
==> qemu.rockylinux-10-latest-x86_64:                     "atime": 1777991022.4225163,
==> qemu.rockylinux-10-latest-x86_64:                     "attr_flags": "",
==> qemu.rockylinux-10-latest-x86_64:                     "attributes": [],
==> qemu.rockylinux-10-latest-x86_64:                     "block_size": 4096,
==> qemu.rockylinux-10-latest-x86_64:                     "blocks": 8,
==> qemu.rockylinux-10-latest-x86_64:                     "charset": "us-ascii",
==> qemu.rockylinux-10-latest-x86_64:                     "checksum": "f7e6b5239e08632a94a19bd170895648db17e48d",
==> qemu.rockylinux-10-latest-x86_64:                     "ctime": 1777991021.336,
==> qemu.rockylinux-10-latest-x86_64:                     "dev": 64515,
==> qemu.rockylinux-10-latest-x86_64:                     "device_type": 0,
\==> qemu.rockylinux-10-latest-x86_64:                     "executable": false,
==> qemu.rockylinux-10-latest-x86_64:                     "exists": true,
==> qemu.rockylinux-10-latest-x86_64:                     "gid": 0,
==> qemu.rockylinux-10-latest-x86_64:                     "gr_name": "root",
==> qemu.rockylinux-10-latest-x86_64:                     "inode": 8696939,
==> qemu.rockylinux-10-latest-x86_64:                     "isblk": false,
==> qemu.rockylinux-10-latest-x86_64:                     "ischr": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isdir": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isfifo": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isgid": false,
==> qemu.rockylinux-10-latest-x86_64:                     "islnk": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isreg": true,
==> qemu.rockylinux-10-latest-x86_64:                     "issock": false,
==> qemu.rockylinux-10-latest-x86_64:                     "isuid": false,
==> qemu.rockylinux-10-latest-x86_64:                     "mimetype": "text/plain",
==> qemu.rockylinux-10-latest-x86_64:                     "mode": "0644",
==> qemu.rockylinux-10-latest-x86_64:                     "mtime": 1777991021.33,
==> qemu.rockylinux-10-latest-x86_64:                     "nlink": 1,
==> qemu.rockylinux-10-latest-x86_64:                     "path": "/etc/ssh/ssh_host_ed25519_key.pub",
==> qemu.rockylinux-10-latest-x86_64:                     "pw_name": "root",
==> qemu.rockylinux-10-latest-x86_64:                     "readable": true,
==> qemu.rockylinux-10-latest-x86_64:                     "rgrp": true,
==> qemu.rockylinux-10-latest-x86_64:                     "roth": true,
==> qemu.rockylinux-10-latest-x86_64:                     "rusr": true,
==> qemu.rockylinux-10-latest-x86_64:                     "size": 82,
==> qemu.rockylinux-10-latest-x86_64:                     "uid": 0,
==> qemu.rockylinux-10-latest-x86_64:                     "version": "2826168267",
==> qemu.rockylinux-10-latest-x86_64:                     "wgrp": false,
==> qemu.rockylinux-10-latest-x86_64:                     "woth": false,
==> qemu.rockylinux-10-latest-x86_64:                     "writeable": true,
==> qemu.rockylinux-10-latest-x86_64:                     "wusr": true,
==> qemu.rockylinux-10-latest-x86_64:                     "xgrp": false,
==> qemu.rockylinux-10-latest-x86_64:                     "xoth": false,
==> qemu.rockylinux-10-latest-x86_64:                     "xusr": false
==> qemu.rockylinux-10-latest-x86_64:                 }
==> qemu.rockylinux-10-latest-x86_64:             }
==> qemu.rockylinux-10-latest-x86_64:         ],
==> qemu.rockylinux-10-latest-x86_64:         "skipped": false
==> qemu.rockylinux-10-latest-x86_64:     }
==> qemu.rockylinux-10-latest-x86_64: }
...

Copy link
Copy Markdown
Author

@gsaudade99 gsaudade99 May 6, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Now that I puzzle it, this might be SELinux. Have you tried with it already disabled?

Copy link
Copy Markdown
Contributor

@domgz domgz May 6, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I was reviewing the rest of the PR and found this.

Maybe that line had something to do with the discrepance before it was modified?

2 changes: 0 additions & 2 deletions ansible/group_vars/grub.yml
View file
Open in desktop

This file was deleted.

8 changes: 0 additions & 8 deletions ansible/group_vars/jenkins.yml
View file
Open in desktop

This file was deleted.

2 changes: 2 additions & 0 deletions ansible/group_vars/kvm.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,2 @@
---
ssh_permit_root_login: "no"
2 changes: 1 addition & 1 deletion ansible/group_vars/pxe.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,7 @@ builder_target: "{{ builder_path | dirname }}/initramfs"
governor: schedutil

packages:
- redhat-lsb-core
- lsb-release
Comment thread
gsaudade99 marked this conversation as resolved.
- "epel-release"
- "@development tools"
- "cmake"
Expand Down
44 changes: 2 additions & 42 deletions ansible/internal.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -36,7 +36,7 @@
dest: /etc/ssh/
mode: 0600
owner: root
group: ssh_keys
group: root
with_items:
- ssh_host_ecdsa_key
- ssh_host_ed25519_key
Expand All @@ -60,49 +60,9 @@
tasks:
- ansible.builtin.include_role:
name: cloudinit
when: "not ('pxe' in group_names or 'kvm' in group_names)"
when: "'cloud' in group_names"
- ansible.builtin.include_role:
name: cloudinit-pxe
when: "'pxe' in group_names"
Comment on lines 60 to 66
Copy link
Copy Markdown
Contributor

@domgz domgz May 6, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think it's worth changing it if things are working, but still I wanted to comment that this whole block seems to be a bit misplaced.

Shouldn't cloudinit-pxe be part of the pxe.yml playbook? Also I guess it'd make sense to move cloudinit to generic (with the "cloud" group names check).

But let's not touch it now if it works, this is very minor.

roles:
- lock-root

- name: HTCondor cluster.
hosts: workers-gpu:workers:&internal:!pxe # Hosts that are in (workers or workers-gpu) and internal and not in pxe
vars:
internal: true
vars_files:
- "group_vars/all.yml"
- "group_vars/condor.yml"
- "secret_group_vars/internal.yml"
handlers:
- name: Reload HTCondor
when: "'condor_service' in service_facts.ansible_facts.services and \
service_facts.ansible_facts.services['condor.service'].state == 'running'"
become: true
ansible.builtin.service:
name: condor
state: reloaded
pre_tasks:
- name: Ensure the HTCondor configuration directory exists.
become: true
ansible.builtin.file:
path: /etc/condor
state: directory
owner: root
group: root
mode: "0755"
- name: Template HTCondor configuration.
become: true
ansible.builtin.template:
src: htcondor/condor_config.local.j2
dest: /etc/condor/condor_config.local
owner: root
group: root
mode: "0644"
notify: Reload HTCondor
- name: Check if HTCondor is running.
ansible.builtin.service_facts:
register: service_facts
roles:
- grycap.htcondor
114 changes: 0 additions & 114 deletions ansible/jenkins.yml
View file
Open in desktop

This file was deleted.

22 changes: 16 additions & 6 deletions ansible/kvm.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,13 +3,23 @@
vars_files:
- secret_group_vars/kvm.yml
Comment thread
gsaudade99 marked this conversation as resolved.
tasks:
- name: Set serial getty link
ansible.builtin.file:
state: link
src: /lib/systemd/system/serial-getty@.service
dest: /etc/systemd/system/getty.target.wants/serial-getty@ttyS0.service
- name: Ensure serial console getty exists (ttyS0)
become: true
ansible.builtin.systemd:
name: serial-getty@ttyS0
enabled: true
state: started
post_tasks:
- name: Change root password
ansible.builtin.user:
name: root
password: "{{ kvm_root_password | password_hash('sha512') }}"

- name: Install cloud-init and cloud-utils-growpart
ansible.builtin.package:
name:
- cloud-init
- cloud-utils-growpart
state: present
roles:
- devsec.hardening.ssh_hardening
- usegalaxy_eu.ssh_manager
4 changes: 0 additions & 4 deletions ansible/playbooks-external.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -12,10 +12,6 @@

- ansible.builtin.import_playbook: workers.yml

- ansible.builtin.import_playbook: workers-gpu.yml

- ansible.builtin.import_playbook: jenkins.yml

- ansible.builtin.import_playbook: external.yml

- ansible.builtin.import_playbook: pxe.yml
Loading