- git
openwrt_mixin:
- files:
- # Go binaries
- /usr/local/bin/door_client: "{{ playbook_dir }}/.cache/openwrt/tuer/door_and_sensors/door_client/door_client"
- /usr/local/bin/door_daemon: "{{ playbook_dir }}/.cache/openwrt/tuer/door_and_sensors/door_daemon/door_daemon"
- /usr/local/bin/update-keys: "{{ playbook_dir }}/.cache/openwrt/tuer/door_and_sensors/update-keys/update-keys"
+ # Go binaries
+ /usr/local/bin/door_client:
+ mode: 0755
+ file: "{{ playbook_dir }}/.cache/openwrt/tuer/door_and_sensors/door_client/door_client"
+ /usr/local/bin/door_daemon:
+ mode: 0755
+ file: "{{ playbook_dir }}/.cache/openwrt/tuer/door_and_sensors/door_daemon/door_daemon"
+ /usr/local/bin/update-keys:
+ mode: 0755
+ file: "{{ playbook_dir }}/.cache/openwrt/tuer/door_and_sensors/update-keys/update-keys"
- content:
- /etc/config/network: |
- config interface 'loopback'
- option ifname 'lo'
- option proto 'static'
- option ipaddr '127.0.0.1'
- option netmask '255.0.0.0'
+ /etc/dropbear/authorized_keys:
+ mode: 0600
+ content: |-
+ {% for key in noc_ssh_keys %}
+ {{ key }}
+ {% endfor %}
- config globals 'globals'
- option ula_prefix 'fdc9:e01f:83db::/48'
+ openwrt_uci:
+ network:
+ - name: globals 'globals'
+ options:
+ ula_prefix: fdc9:e01f:83db::/48
- config interface 'lan'
- option ifname 'eth0'
- option accept_ra '0'
- option proto 'static'
- option ipaddr '192.168.33.7'
- option netmask '255.255.255.0'
- option gateway '192.168.33.1'
- option dns '192.168.33.1'
- option dns_search 'realraum.at'
+ - name: interface 'loopback'
+ options:
+ ifname: lo
+ proto: static
+ ipaddr: 127.0.0.1
+ netmask: 255.0.0.0
- /etc/config/dropbear: |
- config dropbear
- option PasswordAuth 'on'
- option RootPasswordAuth 'off'
- option Port '22000'
+ - name: interface 'lan'
+ options:
+ ifname: eth0
+ accept_ra: 0
+ proto: static
+ ipaddr: 192.168.33.7
+ netmask: 255.255.255.0
+ gateway: 192.168.33.1
+ dns: 192.168.33.1
+ dns_search: realraum.at
- # TODO: mode needs to be 0600
- /etc/dropbear/authorized_keys: |-
- {% for key in noc_ssh_keys %}
- {{ key }}
- {% endfor %}
+ dropbear:
+ - name: dropbear
+ options:
+ PasswordAuth: off
+ RootPasswordAuth: off
+ Port: 22000
+
+ openwrt_mounts:
+ - path: /run
+ src: none
+ fstype: tmpfs
+ opts: nosuid,nodev,noexec,noatime