From 2889c6d0a28de3b694fb9e3043e2bd3cad5d43cb Mon Sep 17 00:00:00 2001
From: Vladimir Still <git@vstill.eu>
Date: Tue, 25 Jan 2022 20:34:40 +0100
Subject: [PATCH] ansible: Add bk2

---
 ansible/bk2.v.vstill.cz.yml | 78 +++++++++++++++++++++++++++++++++++++
 1 file changed, 78 insertions(+)
 create mode 100644 ansible/bk2.v.vstill.cz.yml

diff --git a/ansible/bk2.v.vstill.cz.yml b/ansible/bk2.v.vstill.cz.yml
new file mode 100644
index 0000000..477770f
--- /dev/null
+++ b/ansible/bk2.v.vstill.cz.yml
@@ -0,0 +1,78 @@
+- name: bk2.v.vstill.cz
+  hosts: bk2.v.vstill.cz
+  vars:
+    ansible_fqdn: bk2.v.vstill.cz
+    postfix: true
+    mail_relay: relay.fi.muni.cz # gate.p.vstill.cz
+    pam_use_kerberos: false
+    admin_email: xstill+bk2@fi.muni.cz
+
+  tasks:
+      - fail:
+          msg: possibly wrong server?
+        when: ansible_distribution != 'Debian'
+
+      - import_role:
+          name: common_deb
+
+      - import_role:
+          name: vstill_deb
+
+#      - name: "Setup fstab"
+#        mount:
+#          path: '{{item.path}}'
+#          src: '{{item.src}}'
+#          fstype: '{{item.fstype}}'
+#          opts: '{{item.opts|default("defaults")}}'
+#          dump: "0"
+#          passno: '{{item.passno|default("0")}}'
+#          state: '{{item.state|default("mounted")}}'
+#        with_items:
+#          - path: "/"
+#            src: /dev/vg.root/root-deb
+#            fstype: xfs
+#            opts: rw,relatime,attr2,inode64,logbufs=8,logbsize=32k,noquota
+#            passno: 1
+#          - path: none
+#            src: /dev/vg.root/swap
+#            fstype: swap
+#            state: present
+#          - path: /data
+#            src: /dev/vg.data/data
+#            fstype: xfs
+#            opts: rw,relatime,attr2,inode64,noquota,noauto,x-systemd.automount
+#            passno: 2
+#          - path: /mnt/data-krull
+#            src: /dev/vg.data/data-krull
+#            fstype: ext4
+#            opts: rw,relatime,noauto,x-systemd.automount
+#            passno: 2
+
+      - apt:
+          pkg:
+            - grub-efi
+            - dpkg-dev
+            - duperemove
+
+      - apt:
+          pkg:
+            - linux-headers-amd64
+            - linux-image-amd64
+            - cryptsetup-bin
+
+      - name: Integrity udev rule
+        copy:
+          content: |
+            ENV{ID_PART_ENTRY_SCHEME}=="gpt", ENV{ID_PART_ENTRY_NAME}=="integrity?*", RUN+="/usr/sbin/integritysetup open $env{DEVNAME} $env{ID_PART_ENTRY_NAME} --integrity sha1"
+          dest: /etc/udev/rules.d/99-integrity.rules
+
+      - name: Initramfs modules
+        lineinfile:
+          regex: '^{{item}}$'
+          line: '{{item}}'
+          path: /etc/initramfs-tools/modules
+        loop:
+          - raid1
+          - raid456
+          - dm_integrity
+
-- 
GitLab