refactor(configuration): extract shared BLS update task to reduce duplication
This commit is contained in:
19
roles/configuration/tasks/_bls_update.yml
Normal file
19
roles/configuration/tasks/_bls_update.yml
Normal file
@@ -0,0 +1,19 @@
|
||||
---
|
||||
# Shared task: update BLS (Boot Loader Specification) entries with kernel cmdline.
|
||||
# Expects variable: _bls_cmdline (the kernel command line string)
|
||||
- name: Find BLS entries
|
||||
ansible.builtin.find:
|
||||
paths: /mnt/boot/loader/entries
|
||||
patterns: "*.conf"
|
||||
register: _bls_entries
|
||||
changed_when: false
|
||||
|
||||
- name: Update BLS options
|
||||
when: _bls_entries.files | length > 0
|
||||
ansible.builtin.lineinfile:
|
||||
path: "{{ item.path }}"
|
||||
regexp: "^options "
|
||||
line: "options {{ _bls_cmdline }}"
|
||||
loop: "{{ _bls_entries.files }}"
|
||||
loop_control:
|
||||
label: "{{ item.path }}"
|
||||
@@ -253,25 +253,11 @@
|
||||
mode: "0644"
|
||||
content: "{{ configuration_kernel_cmdline_new }}\n"
|
||||
|
||||
- name: Find BLS entries for encryption kernel cmdline
|
||||
- name: Update BLS entries with LUKS kernel cmdline
|
||||
when: os_family == 'RedHat'
|
||||
ansible.builtin.find:
|
||||
paths: /mnt/boot/loader/entries
|
||||
patterns: "*.conf"
|
||||
register: configuration_kernel_bls_entries
|
||||
changed_when: false
|
||||
|
||||
- name: Update BLS options with LUKS args
|
||||
when:
|
||||
- os_family == 'RedHat'
|
||||
- configuration_kernel_bls_entries.files | length > 0
|
||||
ansible.builtin.lineinfile:
|
||||
path: "{{ item.path }}"
|
||||
regexp: "^options "
|
||||
line: "options {{ configuration_kernel_cmdline_new }}"
|
||||
loop: "{{ configuration_kernel_bls_entries.files }}"
|
||||
loop_control:
|
||||
label: "{{ item.path }}"
|
||||
vars:
|
||||
_bls_cmdline: "{{ configuration_kernel_cmdline_new }}"
|
||||
ansible.builtin.include_tasks: _bls_update.yml
|
||||
|
||||
- name: Read grub defaults
|
||||
when: not os_family == 'RedHat'
|
||||
|
||||
@@ -96,22 +96,10 @@
|
||||
mode: "0644"
|
||||
content: "{{ configuration_kernel_cmdline_base }}\n"
|
||||
|
||||
- name: Find BLS entries for GRUB configuration
|
||||
ansible.builtin.find:
|
||||
paths: /mnt/boot/loader/entries
|
||||
patterns: "*.conf"
|
||||
register: configuration_grub_bls_entries
|
||||
changed_when: false
|
||||
|
||||
- name: Update BLS options with kernel cmdline defaults
|
||||
when: configuration_grub_bls_entries.files | length > 0
|
||||
ansible.builtin.lineinfile:
|
||||
path: "{{ item.path }}"
|
||||
regexp: "^options "
|
||||
line: "options {{ configuration_kernel_cmdline_base }}"
|
||||
loop: "{{ configuration_grub_bls_entries.files }}"
|
||||
loop_control:
|
||||
label: "{{ item.path }}"
|
||||
- name: Update BLS entries with kernel cmdline defaults
|
||||
vars:
|
||||
_bls_cmdline: "{{ configuration_kernel_cmdline_base }}"
|
||||
ansible.builtin.include_tasks: _bls_update.yml
|
||||
|
||||
- name: Enable GRUB cryptodisk for encrypted /boot
|
||||
when: partitioning_grub_enable_cryptodisk | bool
|
||||
|
||||
Reference in New Issue
Block a user