pvc-ansible/roles/pvc/tasks/libvirt/main.yml

126 lines
2.9 KiB
YAML
Raw Normal View History

2023-09-01 15:42:19 -04:00
---
- name: install libvirt packages
apt:
name:
- libvirt-daemon-system
- qemu-kvm
- qemu-utils
- qemu-block-extra
- vhostmd
- ceph-common
- libguestfs-tools
state: present
2023-09-01 15:42:30 -04:00
register: apt_res
retries: 5
until: apt_res is success
2023-09-01 15:42:19 -04:00
2023-12-10 01:42:09 -05:00
- name: install Prometheus libvirt exporter if enabled
apt:
name:
- prometheus-libvirt-exporter
register: apt_res
retries: 5
until: apt_res is success
when: enable_prometheus_exporters is defined and enable_prometheus_exporters
2023-09-01 15:42:20 -04:00
- name: add libvirt user to ceph group
user:
name: libvirt-qemu
groups: ceph
append: yes
- name: add admin users to libvirt groups
user:
name: "{{ item.name }}"
groups: kvm,libvirt
append: yes
with_items: "{{ admin_users }}"
- name: install libvirt configurations
2023-09-01 15:42:19 -04:00
template:
src: libvirt/{{ item }}.j2
dest: /etc/libvirt/{{ item }}
with_items:
- libvirtd.conf
- ceph-secret.xml
notify: restart libvirtd
2023-09-01 15:42:19 -04:00
- include: libvirt/bootstrap.yml
when: do_bootstrap is defined and do_bootstrap
2023-09-01 15:42:19 -04:00
run_once: yes
2023-09-01 15:42:19 -04:00
- name: get ceph libvirt secret key
command: ceph auth get-key client.libvirt
register: libvirt_key
2023-09-01 15:42:19 -04:00
- name: define ceph secret
command: virsh secret-define /etc/libvirt/ceph-secret.xml
ignore_errors: true
2023-09-01 15:42:19 -04:00
- name: set ceph libvirt secret value
2023-09-01 15:42:19 -04:00
command: virsh secret-set-value --secret {{ pvc_ceph_storage_secret_uuid }} --base64 {{ libvirt_key.stdout }}
2023-09-01 15:42:19 -04:00
ignore_errors: true
- name: configure libvirt for listening
2023-09-01 15:42:28 -04:00
template:
src: libvirt/libvirtd.default.j2
2023-09-01 15:42:19 -04:00
dest: /etc/default/libvirtd
notify: restart libvirtd
- name: install systemd unit file (override default on Bullseye)
template:
src: libvirt/libvirtd.service.j2
dest: /etc/systemd/system/libvirtd.service
register: systemd
notify: restart libvirtd
- name: reload systemd to apply changes
command: systemctl daemon-reload
when: systemd.changed
- name: create unit override configuration directory
file:
dest: /etc/systemd/system/libvirtd.service.d
state: directory
- name: install libvirt cgroup delegation configuration
template:
src: libvirt/{{ item }}.j2
dest: /etc/systemd/system/libvirtd.service.d/{{ item }}
with_items:
- cgroup-delegation.conf
register: systemd
notify: restart libvirtd
- name: reload systemd to apply changes
command: systemctl daemon-reload
when: systemd.changed
- name: start and enable services (not managed by PVC)
2023-09-01 15:42:22 -04:00
service:
name: "{{ item }}"
state: started
enabled: yes
ignore_errors: yes
2023-09-01 15:42:22 -04:00
with_items:
- vhostmd
- name: start but disable services (managed by PVC)
2023-09-01 15:42:19 -04:00
service:
name: "{{ item }}"
state: started
2023-09-01 15:42:19 -04:00
enabled: no
with_items:
- libvirtd
2023-09-01 15:42:19 -04:00
2023-11-03 12:10:19 -04:00
- name: disable socket services
service:
name: "{{ item }}"
enabled: no
with_items:
- libvirtd.socket
- libvirtd-ro.socket
- libvirtd-admin.socket
2023-09-01 15:42:19 -04:00
- meta: flush_handlers