tags:
- aws-inst-prerequisites
-- name: Switch Kernel At Boot
- ansible.builtin.lineinfile:
- path: "/etc/default/grub"
- state: "present"
- line: "GRUB_DEFAULT=\"1>2\""
- notify:
- - "Update GRUB"
- tags:
- - perf-conf-grub
-
-- meta: flush_handlers
-
- name: Load Kernel Modules By Default
ansible.builtin.lineinfile:
path: "/etc/modules"
line: "{{ item }}"
with_items:
- "igb_uio"
- - "vfio-pci"
tags:
- aws-load-kernel-modules
tags:
- aws-load-kernel-modules
-- name: Add Kernel Modules Options (vfio-pci)
+- name: Kernel Parameters
ansible.builtin.lineinfile:
- path: "/etc/modprobe.d/vfio-noiommu.conf"
+ path: "/etc/default/grub"
state: "present"
- line: "{{ item }}"
- create: "yes"
- with_items:
- - "options vfio enable_unsafe_noiommu_mode=1"
+ regexp: "^GRUB_CMDLINE_LINUX="
+ line: "GRUB_CMDLINE_LINUX=iommu=1 intel_iommu=on"
+ notify:
+ - "Update GRUB"
tags:
- - aws-load-kernel-modules
+ - perf-conf-grub
+
+- meta: flush_handlers
+
+- name: Disable Password Login
+ ansible.builtin.lineinfile:
+ dest: "/etc/ssh/sshd_config"
+ regexp: "^PasswordAuthentication yes"
+ line: "PasswordAuthentication no"
+ notify:
+ - "Restart SSHd"
+ tags:
+ - conf-ssh
+
+- name: Recursively other configs
+ ansible.builtin.file:
+ path: "/etc/ssh/sshd_config.d"
+ state: "absent"
+ tags:
+ - conf-ssh
+
+#- name: Add Kernel Modules Options (vfio-pci)
+# ansible.builtin.lineinfile:
+# path: "/etc/modprobe.d/vfio-noiommu.conf"
+# state: "present"
+# line: "{{ item }}"
+# create: "yes"
+# with_items:
+# - "options vfio enable_unsafe_noiommu_mode=1"
+# tags:
+# - aws-load-kernel-modules
#- name: Get vfio-pci With WC Patcher
# ansible.builtin.get_url:
# mode: 0744
# tags:
# - aws-vfio-patch
-
-- name: Create vfio-pci Patch Directory
- ansible.builtin.file:
- path: "/opt/patches/"
- state: "directory"
- tags:
- - aws-vfio-patch
-
-- name: Get vfio-pci WC Patch
- ansible.builtin.get_url:
- url: "https://github.com/amzn/amzn-drivers/raw/master/userspace/dpdk/enav2-vfio-patch/patches/{{ item }}"
- dest: "/opt/patches/{{ item }}"
- mode: 0744
- with_items:
- - "linux-4.10-vfio-wc.patch"
- - "linux-5.8-vfio-wc.patch"
- - "linux-5.15-vfio-wc.patch"
- tags:
- - aws-vfio-patch
-
-- name: Copy vfio-pci WC Patch
- ansible.builtin.copy:
- src: "files/get-vfio-with-wc.sh"
- dest: "/opt"
- mode: 0744
- tags:
- - aws-vfio-patch
-
-- name: Compile vfio-pci With WC Patch
- ansible.builtin.shell: "/bin/bash /opt/get-vfio-with-wc.sh"
- environment:
- DEBIAN_FRONTEND: "noninteractive"
- TERM: "vt100"
- tags:
- - aws-vfio-patch
-
-- name: Reload systemd-modules
- ansible.builtin.systemd:
- name: "systemd-modules-load"
- state: "restarted"
- tags:
- - aws-reload-systemd-modules
+#
+#- name: Create vfio-pci Patch Directory
+# ansible.builtin.file:
+# path: "/opt/patches/"
+# state: "directory"
+# tags:
+# - aws-vfio-patch
+#
+#- name: Get vfio-pci WC Patch
+# ansible.builtin.get_url:
+# url: "https://github.com/amzn/amzn-drivers/raw/master/userspace/dpdk/enav2-vfio-patch/patches/{{ item }}"
+# dest: "/opt/patches/{{ item }}"
+# mode: 0744
+# with_items:
+# - "linux-4.10-vfio-wc.patch"
+# - "linux-5.8-vfio-wc.patch"
+# - "linux-5.15-vfio-wc.patch"
+# tags:
+# - aws-vfio-patch
+#
+#- name: Copy vfio-pci WC Patch
+# ansible.builtin.copy:
+# src: "files/get-vfio-with-wc.sh"
+# dest: "/opt"
+# mode: 0744
+# tags:
+# - aws-vfio-patch
+#
+#- name: Compile vfio-pci With WC Patch
+# ansible.builtin.shell: "/bin/bash /opt/get-vfio-with-wc.sh"
+# environment:
+# DEBIAN_FRONTEND: "noninteractive"
+# TERM: "vt100"
+# tags:
+# - aws-vfio-patch
- name: Adjust nr_hugepages
ansible.builtin.sysctl:
retries: 300
when: trex_extracted.changed
-- name: Compile Release {{ item }} Part III
- ansible.builtin.command: "make -j 16"
- args:
- chdir: "{{ trex_target_dir }}/trex-core-{{ item }}/scripts/ko/src"
- when: trex_extracted.changed
-
-- name: Compile Release {{ item }} Part IV
- ansible.builtin.command: "make install"
- args:
- chdir: "{{ trex_target_dir }}/trex-core-{{ item }}/scripts/ko/src"
- when: trex_extracted.changed
+#- name: Compile Release {{ item }} Part III
+# ansible.builtin.command: "make -j 16"
+# args:
+# chdir: "{{ trex_target_dir }}/trex-core-{{ item }}/scripts/ko/src"
+# when: trex_extracted.changed
+
+#- name: Compile Release {{ item }} Part IV
+# ansible.builtin.command: "make install"
+# args:
+# chdir: "{{ trex_target_dir }}/trex-core-{{ item }}/scripts/ko/src"
+# when: trex_extracted.changed
- name: Link libc.a to liblibc.a
ansible.builtin.command: "ln -s -f /usr/lib/x86_64-linux-gnu/libc.a /usr/lib/x86_64-linux-gnu/liblibc.a"
ami_name = "csit_ubuntu_jammy_x86_sut"
ami_description = "CSIT SUT image based on Ubuntu Jammy"
ena_support = true
- instance_type = "c5n.4xlarge"
+ instance_type = "c6in.4xlarge"
launch_block_device_mappings {
device_name = "/dev/sda1"
volume_size = 40
force_deregister = true
region = "eu-central-1"
skip_create_ami = false
- source_ami = "ami-04e601abe3e1a910f"
+ source_ami = "ami-026c3177c9bd54288"
ssh_username = "ubuntu"
}
ami_name = "csit_ubuntu_jammy_x86_tg"
ami_description = "CSIT TG image based on Ubuntu Jammy"
ena_support = true
- instance_type = "c5n.4xlarge"
+ instance_type = "c6in.4xlarge"
launch_block_device_mappings {
device_name = "/dev/sda1"
volume_size = 40
force_deregister = true
region = "eu-central-1"
skip_create_ami = false
- source_ami = "ami-04e601abe3e1a910f"
+ source_ami = "ami-026c3177c9bd54288"
ssh_username = "ubuntu"
}
provisioner "ansible" {
playbook_file = var.ansible_file_path
user = "ubuntu"
+ use_proxy = false
groups = ["sut_aws"]
extra_arguments = [
"--extra-vars", "ansible_ssh_pass=${var.ansible_provision_pwd}",
- "--extra-vars", "ansible_python_interpreter=${var.ansible_python_executable}",
"--extra-vars", "aws=true"
]
}
provisioner "ansible" {
playbook_file = var.ansible_file_path
user = "ubuntu"
+ use_proxy = false
groups = ["tg_aws"]
extra_arguments = [
"--extra-vars", "ansible_ssh_pass=${var.ansible_provision_pwd}",
- "--extra-vars", "ansible_python_interpreter=${var.ansible_python_executable}",
"--extra-vars", "aws=true"
]
}
Code Review / csit.git / commitdiff