Hey,
On Mon, Feb 20, 2017 at 10:57 AM Xavier Maysonnave <[email protected]>
wrote:
> Some feedback about the new imagenerator:
>
> A - Unable to connect with ssh to my local machine while at the command
> line it works without any issue:
>
> 1 - 1 - hosts
> [ledefirmware]
> my_ip_address ansible_user=my_user ansible_become_pass=my_passd
>
> 1 - 2 - playbook.yml
> - hosts: ledefirmware
> roles:
> - openwisp.openwisp2-imagegenerator
> ...
>
> 1 - 3 - command line
> ansible-playbook -i hosts playbook.yml -e "recompile=1 cores=4"
>
> got the following result:
> TASK [setup]
> *******************************************************************
> fatal: [my_ip_address]: UNREACHABLE! => {"changed": false, "msg": "Failed
> to connect to the host via ssh: Permission denied
> (publickey,password).\r\n", "unreachable": true}
>
Did you put the public key of "my_user" in the server with "my_ip_address"
(see public key authentication debian)?
You should append the contents of your id_rsa.pub in
/home/<my_user>/.ssh/authorized_keys
however with:
>
> 2 - 1 - hosts
> [ledefirmware]
> 192.168.10.13
>
> 2 - 2 - playbook.yml
> - hosts: ledefirmware
> become_method: sudo
> roles:
> - openwisp.openwisp2-imagegenerator
>
> 2 - 3
> ansible-playbook -i hosts playbook.yml -u xavier -k --ask-become-pass -e
> "recompile=1 cores=4"
>
> I don't have any problems, right now I'm not in a production scenario
> where the build server is remote, so I use the command line to input the
> passwd
>
It's ok, but let me know about the public key authentication.
These two isseus are more related to the general use of ansible than the
image-generator role itself.
> B - Finally the .config is generated with the appropriate system,
> subtarget and profile.
> Yes it rocks.
>
Great news!
C - On my Debian Stretch RC2 I face a missing mkpasswd while hashing the
> password. I needed to;
> sudo apt-get install whois
> Yes the mkpasswd belongs to the whois package, unexpected...
>
Actually we didn't notice this dependency. On ubuntu systems as well,
mkpasswd is installed by the whois package.
So it's better to include the whois package in the dependencies, and I just
did it:
https://github.com/openwisp/ansible-openwisp2-imagegenerator/commit/17bae55e80a523467b2bb302d0e6a29f19974133
> Now I need to tweak the playbook.yml to get the job done.
>
First with a minimal LEDE firmware for my test router, then with the
> openwisp-config like I did manually.
> I noticed that recently there is a new dependance with px5g who uses
> mbedtls. I need to carefully check whether or not curl is still in
> dependence with openssl rather than mbedtls.
>
px5g and mbedtls are needed by luci if you want to have the webinterface
served over HTTPS, see the line which starts with "LUCI_DEPENDS" in this
Makefile:
https://github.com/openwrt/luci/blob/master/collections/luci-ssl/Makefile
Many Thanks for this improvement
>
Welcome. It is something we needed ourselves and we are happy to share it.
We hope that it will be useful and other people will improve it even more
in the near future.
Federico
--
You received this message because you are subscribed to the Google Groups
"OpenWISP" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
For more options, visit https://groups.google.com/d/optout.
