require "ipaddr"
require "yaml"
+package "netplan.io"
+
netplan = {
"network" => {
"version" => 2,
node.normal[:networking][:interfaces][name][:zone] = role[:zone]
end
- prefix = node[:networking][:interfaces][name][:prefix]
+ if interface[:address]
+ prefix = node[:networking][:interfaces][name][:prefix]
- node.normal[:networking][:interfaces][name][:netmask] = (~IPAddr.new(interface[:address]).mask(0)).mask(prefix)
- node.normal[:networking][:interfaces][name][:network] = IPAddr.new(interface[:address]).mask(prefix)
+ node.normal[:networking][:interfaces][name][:netmask] = (~IPAddr.new(interface[:address]).mask(0)).mask(prefix)
+ node.normal[:networking][:interfaces][name][:network] = IPAddr.new(interface[:address]).mask(prefix)
+ end
interface = node[:networking][:interfaces][name]
}
end
- deviceplan["addresses"].push("#{interface[:address]}/#{prefix}")
+ if interface[:address]
+ deviceplan["addresses"].push("#{interface[:address]}/#{prefix}")
+ end
if interface[:mtu]
deviceplan["mtu"] = interface[:mtu]
file "/etc/netplan/99-chef.yaml" do
owner "root"
group "root"
- mode 0o644
+ mode "644"
content YAML.dump(netplan)
end
action :purge
end
-execute "hostname" do
+ohai "reload-hostname" do
action :nothing
- command "/bin/hostname -F /etc/hostname"
+ plugin "hostname"
end
-template "/etc/hostname" do
- source "hostname.erb"
- owner "root"
- group "root"
- mode 0o644
- notifies :run, "execute[hostname]"
+execute "hostnamectl-set-hostname" do
+ command "hostnamectl set-hostname #{node[:networking][:hostname]}"
+ notifies :reload, "ohai[reload-hostname]"
+ not_if { ENV.key?("TEST_KITCHEN") || node[:hostnamectl][:static_hostname] == node[:networking][:hostname] }
end
template "/etc/hosts" do
source "hosts.erb"
owner "root"
group "root"
- mode 0o644
+ mode "644"
+ not_if { ENV["TEST_KITCHEN"] }
end
service "systemd-resolved" do
directory "/etc/systemd/resolved.conf.d" do
owner "root"
group "root"
- mode 0o755
+ mode "755"
end
template "/etc/systemd/resolved.conf.d/99-chef.conf" do
source "resolved.conf.erb"
owner "root"
group "root"
- mode 0o644
- notifies :restart, "service[systemd-resolved]"
+ mode "644"
+ notifies :restart, "service[systemd-resolved]", :immediately
+end
+
+if node[:filesystem][:by_mountpoint][:"/etc/resolv.conf"]
+ mount "/etc/resolv.conf" do
+ action :umount
+ device node[:filesystem][:by_mountpoint][:"/etc/resolv.conf"][:devices].first
+ end
+end
+
+link "/etc/resolv.conf" do
+ to "../run/systemd/resolve/stub-resolv.conf"
end
if node[:networking][:tcp_fastopen_key]
source "shorewall-default.erb"
owner "root"
group "root"
- mode 0o644
+ mode "644"
notifies :restart, "service[shorewall]"
end
source "shorewall.conf.erb"
owner "root"
group "root"
- mode 0o644
+ mode "644"
notifies :restart, "service[shorewall]"
end
source "shorewall-zones.erb"
owner "root"
group "root"
- mode 0o644
+ mode "644"
variables :type => "ipv4"
notifies :restart, "service[shorewall]"
end
source "shorewall-interfaces.erb"
owner "root"
group "root"
- mode 0o644
+ mode "644"
notifies :restart, "service[shorewall]"
end
source "shorewall-hosts.erb"
owner "root"
group "root"
- mode 0o644
+ mode "644"
variables :zones => zones
notifies :restart, "service[shorewall]"
end
source "shorewall-conntrack.erb"
owner "root"
group "root"
- mode 0o644
+ mode "644"
notifies :restart, "service[shorewall]"
only_if { node[:networking][:firewall][:raw] }
end
source "shorewall-policy.erb"
owner "root"
group "root"
- mode 0o644
+ mode "644"
notifies :restart, "service[shorewall]"
end
source "shorewall-rules.erb"
owner "root"
group "root"
- mode 0o644
+ mode "644"
variables :family => "inet"
notifies :restart, "service[shorewall]"
end
source "logrotate.shorewall.erb"
owner "root"
group "root"
- mode 0o644
+ mode "644"
variables :name => "shorewall"
end
source "shorewall-masq.erb"
owner "root"
group "root"
- mode 0o644
+ mode "644"
notifies :restart, "service[shorewall]"
end
else
source "shorewall-default.erb"
owner "root"
group "root"
- mode 0o644
+ mode "644"
notifies :restart, "service[shorewall6]"
end
source "shorewall6.conf.erb"
owner "root"
group "root"
- mode 0o644
+ mode "644"
notifies :restart, "service[shorewall6]"
end
source "shorewall-zones.erb"
owner "root"
group "root"
- mode 0o644
+ mode "644"
variables :type => "ipv6"
notifies :restart, "service[shorewall6]"
end
source "shorewall6-interfaces.erb"
owner "root"
group "root"
- mode 0o644
+ mode "644"
notifies :restart, "service[shorewall6]"
end
source "shorewall6-hosts.erb"
owner "root"
group "root"
- mode 0o644
+ mode "644"
variables :zones => zones
notifies :restart, "service[shorewall6]"
end
source "shorewall-conntrack.erb"
owner "root"
group "root"
- mode 0o644
+ mode "644"
notifies :restart, "service[shorewall6]"
only_if { node[:networking][:firewall][:raw] }
end
source "shorewall-policy.erb"
owner "root"
group "root"
- mode 0o644
+ mode "644"
notifies :restart, "service[shorewall6]"
end
source "shorewall-rules.erb"
owner "root"
group "root"
- mode 0o644
+ mode "644"
variables :family => "inet6"
notifies :restart, "service[shorewall6]"
end
source "logrotate.shorewall.erb"
owner "root"
group "root"
- mode 0o644
+ mode "644"
variables :name => "shorewall6"
end