Configure 'needrestart' package

.drone.yml

@@ -18,17 +18,17 @@ steps:
   - packer --version
   - ansible --version
   - ovftool --version
-- name: Ubuntu Server 20.04
+- name: Ubuntu Server 22.04
   image: bv11-cr01.bessems.eu/library/packer-extended
   pull: always
   commands:
   - |
     sed -i -e "s/<<img-password>>/$${SSH_PASSWORD}/g" \
-      packer/preseed/UbuntuServer20.04/user-data
+      packer/preseed/UbuntuServer22.04/user-data
   - |
     yamllint -d "{extends: relaxed, rules: {line-length: disable}}" \
       ansible \
-      packer/preseed/UbuntuServer20.04/user-data \
+      packer/preseed/UbuntuServer22.04/user-data \
       scripts
   - |
     packer init -upgrade \
@@ -36,7 +36,7 @@ steps:
   - |
     packer validate \
       -var vm_name=$DRONE_BUILD_NUMBER-${DRONE_COMMIT_SHA:0:10} \
-      -var vm_guestos=ubuntuserver20.04 \
+      -var vm_guestos=ubuntuserver22.04 \
       -var repo_username=$${REPO_USERNAME} \
       -var repo_password=$${REPO_PASSWORD} \
       -var vsphere_password=$${VSPHERE_PASSWORD} \
@@ -46,7 +46,7 @@ steps:
     packer build \
       -on-error=cleanup -timestamp-ui \
       -var vm_name=$DRONE_BUILD_NUMBER-${DRONE_COMMIT_SHA:0:10} \
-      -var vm_guestos=ubuntuserver20.04 \
+      -var vm_guestos=ubuntuserver22.04 \
       -var repo_username=$${REPO_USERNAME} \
       -var repo_password=$${REPO_PASSWORD} \
       -var vsphere_password=$${VSPHERE_PASSWORD} \

README.md

@@ -1 +1 @@
-# Packer.Images [![Build Status](https://ci.spamasaurus.com/api/badges/djpbessems/Packer.Images/status.svg?ref=refs/heads/Windows10)](https://ci.spamasaurus.com/djpbessems/Packer.Images)
+# Packer.Images [![Build Status](https://ci.spamasaurus.com/api/badges/djpbessems/Packer.Images/status.svg?ref=refs/heads/UbuntuServer22.04)](https://ci.spamasaurus.com/djpbessems/Packer.Images)

ansible/roles/firstboot/files/ansible_payload/roles/users/tasks/main.yml

@@ -16,8 +16,8 @@
     line: "{{ item.line }}"
     state: "{{ item.state }}"
   loop:
-  - { regex: '$#PasswordAuthentication', line: 'PasswordAuthentication no', state: ''}
-  - { regex: '', line: 'PasswordAuthentication yes', state: absent}
+  - { regex: '^#PasswordAuthentication', line: 'PasswordAuthentication no', state: present}
+  - { regex: '^PasswordAuthentication yes', line: 'PasswordAuthentication yes', state: absent}
 - name: Delete 'ubuntu' user
   ansible.builtin.user:
     name: ubuntu

ansible/roles/os/tasks/packages.yml

@@ -1,14 +1,27 @@
+- name: Configure 'needrestart' package
+  ansible.builtin.lineinfile:
+    path: /etc/needrestart/needrestart.conf
+    regexp: "{{ item.regexp }}"
+    line: "{{ item.line }}"
+  loop:
+    - regexp: "^#\\$nrconf\\{restart\\} = 'i';"
+      line: "$nrconf{restart} = 'a';"
+    - regexp: "^#\\$nrconf\\{kernelhints\\} = -1;"
+      line: "$nrconf{kernelhints} = -1;"
+
 - name: Install additional packages
   ansible.builtin.apt:
     name: "{{ item }}"
     state: latest
     update_cache: yes
   loop: "{{ packages }}"
+
 - name: Upgrade all packages
   ansible.builtin.apt:
     name: "*"
     state: latest
     update_cache: yes
+
 - name: Cleanup
   ansible.builtin.apt:
     autoremove: yes

ansible/roles/os/vars/main.yml

@@ -1,4 +1,5 @@
 packages:
+  - jq
   # (python3-*) Dependency for installation of Ansible
   - python3-pip
   - python3-setuptools

packer/iso.auto.pkrvars.hcl

@@ -1,2 +1,4 @@
-iso_url      = "sn.itch.fyi/Repository/iso/Canonical/Ubuntu%20Server%2020.04/ubuntu-20.04.2-live-server-amd64.iso"
-iso_checksum = "sha256:D1F2BF834BBE9BB43FAF16F9BE992A6F3935E65BE0EDECE1DEE2AA6EB1767423"
+iso_url      = "sn.itch.fyi/Repository/iso/Canonical/Ubuntu%20Server%2022.04/ubuntu-22.04-live-server-amd64.iso"
+iso_checksum = "sha256:84AEAF7823C8C61BAA0AE862D0A06B03409394800000B3235854A6B38EB4856F"
+// iso_url      = "sn.itch.fyi/Repository/iso/Canonical/Ubuntu%20Server%2020.04/ubuntu-20.04.2-live-server-amd64.iso"
+// iso_checksum = "sha256:D1F2BF834BBE9BB43FAF16F9BE992A6F3935E65BE0EDECE1DEE2AA6EB1767423"

packer/preseed/UbuntuServer22.04/user-data

@@ -11,12 +11,14 @@ autoinstall:
       ethernets:
         ens192:
           dhcp4: true
+          dhcp-identifier: mac
   storage:
     layout:
-      name: lvm
+      name: direct
   identity:
     hostname: packer-template
     username: ubuntu
+    # password: $6$ZThRyfmSMh9499ar$KSZus58U/l58Efci0tiJEqDKFCpoy.rv25JjGRv5.iL33AQLTY2aljumkGiDAiX6LsjzVsGTgH85Tx4S.aTfx0
     password: $6$rounds=4096$ZKfzRoaQOtc$M.fhOsI0gbLnJcCONXz/YkPfSoefP4i2/PQgzi2xHEi2x9CUhush.3VmYKL0XVr5JhoYvnLfFwqwR/1YYEqZy/
   ssh:
     install-server: yes

packer/ubuntuserver22.04.pkr.hcl

@@ -11,30 +11,31 @@ source "vsphere-iso" "ubuntuserver" {
 
   vm_name                 = "${var.vm_guestos}-${var.vm_name}"
   datacenter              = var.vsphere_datacenter
+  cluster                 = var.vsphere_cluster
   host                    = var.vsphere_host
   folder                  = var.vsphere_folder
   datastore               = var.vsphere_datastore
 
   guest_os_type           = "ubuntu64Guest"
-  
+
   boot_order              = "disk,cdrom"
   boot_command            = [
-    "<enter><wait2><enter><wait><f6><esc><wait>",
-    " autoinstall<wait2> ds=nocloud;",
-    "<wait><enter>"
+    "e<down><down><down><end>",
+    " autoinstall ds=nocloud;",
+    "<F10>"
   ]
   boot_wait               = "2s"
-  
+
   communicator            = "ssh"
   ssh_username            = "ubuntu"
   ssh_password            = var.ssh_password
   ssh_timeout             = "20m"
   ssh_handshake_attempts  = "100"
   ssh_pty                 = true
-  
+
   CPUs                    = 2
   RAM                     = 4096
-  
+
   network_adapters {
     network               = var.vsphere_network
     network_card          = "vmxnet3"
@@ -47,8 +48,8 @@ source "vsphere-iso" "ubuntuserver" {
   usb_controller          = ["xhci"]
 
   cd_files                = [
-    "packer/preseed/UbuntuServer20.04/user-data",
-    "packer/preseed/UbuntuServer20.04/meta-data"
+    "packer/preseed/UbuntuServer22.04/user-data",
+    "packer/preseed/UbuntuServer22.04/meta-data"
   ]
   cd_label                = "cidata"
   iso_url                 = local.iso_authenticatedurl
@@ -65,9 +66,13 @@ source "vsphere-iso" "ubuntuserver" {
 }
 
 build {
-  sources = ["source.vsphere-iso.ubuntuserver"]
+  sources = [
+    "source.vsphere-iso.ubuntuserver"
+  ]
 
   provisioner "ansible" {
+    only             = ["vsphere-iso.ubuntuserver"]
+
     playbook_file    = "ansible/playbook.yml"
     user             = "ubuntu"
     ansible_env_vars = [
@@ -80,6 +85,7 @@ build {
   }
 
   post-processor "shell-local" {
+    only   = ["vsphere-iso.ubuntuserver"]
     inline = [
       "pwsh -command \"& scripts/Update-OvfConfiguration.ps1 \\",
       " -OVFFile '/scratch/ubuntuserver/${var.vm_guestos}-${var.vm_name}.ovf' \\",
@@ -88,7 +94,7 @@ build {
       " -ManifestFileName '/scratch/ubuntuserver/${var.vm_guestos}-${var.vm_name}.mf'",
       "ovftool --acceptAllEulas --allowExtraConfig --overwrite \\",
       " '/scratch/ubuntuserver/${var.vm_guestos}-${var.vm_name}.ovf' \\",
-      " /output/Ubuntu-Server-20.04.ova"
+      " /output/Ubuntu-Server-22.04.ova"
     ]
   }
-}
+}

packer/variables.pkr.hcl

@@ -6,6 +6,7 @@ variable "vsphere_password" {
 
 variable "vsphere_host" {}
 variable "vsphere_datacenter" {}
+variable "vsphere_cluster" {}
 
 variable "vsphere_templatefolder" {}
 variable "vsphere_folder" {}

packer/vsphere.auto.pkrvars.hcl

@@ -1,8 +1,9 @@
 vcenter_server         = "bv11-vc.bessems.lan"
 vsphere_username       = "administrator@vsphere.local"
 vsphere_datacenter     = "DeSchakel"
+vsphere_cluster        = "Cluster.Legacy"
 vsphere_host           = "bv11-esx.bessems.lan"
-vsphere_datastore      = "Datastore01.SSD"
+vsphere_datastore      = "ESX00.SSD01"
 vsphere_folder         = "/Packer"
 vsphere_templatefolder = "/Templates"
 vsphere_network        = "LAN"

scripts/Update-OvfConfiguration.yml

@@ -38,7 +38,7 @@ PropertyCategories:
     Configurations: '*'
     UserConfigurable: true
   - Key: guestinfo.rootsshkey
-    Type: string(1..)
+    Type: password(1..)
     Label: Local root SSH public key*
     Description: This line should start with 'ssh-rsa AAAAB3N'
     DefaultValue: ''