Hoang Nguyen
be19369633
Make device_manager configurable on setup (mdev, mdevd, udev) utilizing the new introduced 'setup-devd' script.
114 lines
2.5 KiB
YAML
114 lines
2.5 KiB
YAML
---
|
|
- name: essential | Change repository URLs
|
|
template:
|
|
src: repositories.j2
|
|
dest: /etc/apk/repositories
|
|
owner: root
|
|
group: root
|
|
mode: 0644
|
|
|
|
- name: essential | Update repository cache and the system
|
|
apk:
|
|
available: yes
|
|
upgrade: yes
|
|
update_cache: yes
|
|
|
|
- name: essential | Install common dependencies
|
|
apk:
|
|
name: zstd, dbus, terminus-font, shadow-login
|
|
state: present
|
|
|
|
- name: essential | Enable logging and unicode support for openrc
|
|
lineinfile:
|
|
path: /etc/rc.conf
|
|
state: present
|
|
search_string: '{{ item }}='
|
|
line: '{{ item }}="YES"'
|
|
owner: root
|
|
group: root
|
|
mode: 0644
|
|
loop:
|
|
- rc_logger
|
|
- unicode
|
|
|
|
# https://wiki.gentoo.org/wiki/Elogind
|
|
# elogind still requires 'cgroup-hybrid' useflag
|
|
- name: essential | Explicitly enable only cgroup v2 for OpenRC
|
|
lineinfile:
|
|
path: /etc/rc.conf
|
|
state: present
|
|
search_string: rc_cgroup_mode=
|
|
line: rc_cgroup_mode="unified"
|
|
owner: root
|
|
group: root
|
|
mode: 0644
|
|
when: seat_manager != 'elogind'
|
|
|
|
- name: essential | Start services on runlevel 'default'
|
|
service:
|
|
name: '{{ item }}'
|
|
runlevel: default
|
|
enabled: yes
|
|
state: started
|
|
loop: [ dbus, ntpd, cgroups ]
|
|
|
|
- name: essential | Change the default motd
|
|
template:
|
|
src: motd.j2
|
|
dest: /etc/motd
|
|
owner: root
|
|
group: root
|
|
mode: 0644
|
|
|
|
- name: essential | Use zstd for initramfs
|
|
lineinfile:
|
|
path: /etc/mkinitfs/mkinitfs.conf
|
|
state: present
|
|
search_string: initfscomp=
|
|
line: initfscomp="zstd"
|
|
owner: root
|
|
group: root
|
|
mode: 0644
|
|
notify: Regenerate initramfs
|
|
|
|
- name: essential | Blacklist bluetooth related kernel modules
|
|
kernel_blacklist:
|
|
name: '{{ item }}'
|
|
state: present
|
|
loop:
|
|
- vivid
|
|
- bluetooth
|
|
- btusb
|
|
|
|
- name: essential | Use /var/tmp for coredumps
|
|
sysctl:
|
|
name: kernel.core_pattern
|
|
value: /var/tmp/core-%e.%p.%h.%t
|
|
state: present
|
|
reload: no
|
|
|
|
- name: essential | Set privacy extension for IPv6
|
|
sysctl:
|
|
name: net.ipv6.conf.{{ item.name }}.use_tempaddr
|
|
value: '2'
|
|
state: present
|
|
reload: no
|
|
loop: '{{ network_interfaces + [{"name": "default"}, {"name": "all"}] }}'
|
|
|
|
- name: essential | Change the tty font to {{ console_font }}
|
|
lineinfile:
|
|
path: /etc/conf.d/consolefont
|
|
state: present
|
|
regexp: '^consolefont='
|
|
line: 'consolefont="{{ console_font }}"'
|
|
owner: root
|
|
group: root
|
|
mode: 0644
|
|
|
|
- name: essential | Start consolefont service on runlevel 'boot'
|
|
service:
|
|
name: consolefont
|
|
runlevel: boot
|
|
enabled: yes
|
|
state: started
|