edpm_build_images
This role will build EDPM hardened uefi and ironic-python-agent image.
This role also call the discover_latest_image
and download the latest image,
set proper exports for element and build images.
It will package the images inside a container image for distribution based on
the variables “cifmw_edpm_build_images_ironic_python_agent_package” and
“cifmw_edpm_build_images_hardened_uefi_package”.
Privilege escalation
None
Parameters
cifmw_edpm_build_images_basedir
: Base directory. Defaults tocifmw_basedir
which defaults to~/ci-framework
.cifmw_edpm_build_images_via_rpm
: Whether to installedpm-image-builder
repo using rpm or not.cifmw_build_host_packages
: List of packages required to build the images.cifmw_edpm_build_images_elements
: Elements path which containsedpm-image-builder
andironic-python-agent-builder
repo.cifmw_edpm_build_images_all
: (Boolean) Build both theedpm-hardened-uefi
andironic-python-agent
images when it true. Default to false.cifmw_edpm_build_images_hardened_uefi
: (Boolean) Buildedpm-hardened-uefi
image when it true. Default to false.cifmw_edpm_build_images_ironic_python_agent
: (Boolean) Buildironic-python-agent-builder
image when it true. Default to false.cifmw_edpm_build_images_hardened_uefi_package
: (Boolean) Packagededpm-hardened-uefi
image inside a container image for distribution. Default to false.cifmw_edpm_build_images_ironic_python_agent_package
: (Boolean) Packagedironic-python-agent-builder
image inside a container image for distribution. Default to false.cifmw_edpm_build_images_dib_yum_repo_conf_centos
: (List) List of yum repos to be used on centos node.cifmw_edpm_build_images_dib_yum_repo_conf_rhel
: (List) List of yum repos to be used on rhel node.cifmw_edpm_build_images_dib_yum_repo_conf
: (List) List of yum repos to be used, By default we select i.e.cifmw_edpm_build_images_dib_yum_repo_conf_centos
var orcifmw_edpm_build_images_dib_yum_repo_conf_rhel
based on distro var.cifmw_edpm_build_images_tag
: (String) Tag with which we want to build container images. Default:latest
.cifmw_edpm_build_images_dry_run
: (Boolean) Whether to perform a dry run of the image build. Default: false.cifmw_edpm_build_images_push_container_images
: (Boolean) Whether to push container images to remote registry. Default: false.cifmw_edpm_build_images_push_registry
: (String) Push registry where we want to push container images. Default:quay.rdoproject.org
.cifmw_edpm_build_images_push_registry_namespace
: (String) Namespace on registry where we want to push container images. Default:podified-master-centos9
.cifmw_edpm_build_images_cert_path
: (String) Cert path. Default:/etc/pki/ca-trust/source/anchors/rh.crt
cifmw_edpm_build_images_cert_install
: (Boolean) Whether to install cert in the image. Default: falsecifmw_edpm_build_images_base_image
: (String) Base image to package the edpm and ipa qcow2 images into the container images for rhel distro.
Example
---
- hosts: localhost
gather_facts: true
tasks:
- ansible.builtin.import_role:
name: edpm_build_images