Fix ansible-lint and yamllint issues #255
Conversation
Signed-off-by: ThysTips <contact@antoinethys.com>
thystips
changed the title
There was a problem hiding this comment.
I'll need more time to finish this review later but for the time being there are some things I need feedback on. Please also rebase against develop (and amend the commit/force push).
Consider everything reviewed except for tasks/ceph.yml and tests/test.yml for now.
| @@ -22,13 +22,14 @@ pve_pcie_report_msrs: true | |||
| pve_watchdog: none | |||
| pve_watchdog_ipmi_action: power_cycle | |||
| pve_watchdog_ipmi_timeout: 10 | |||
| pve_zfs_enabled: no | |||
| pve_zfs_enabled: false | |||
There was a problem hiding this comment.
yamllint follows yaml 1.2 spec, which removes these truthy values, but Ansible does not. Ansible docs still heavily use yes/no as boolean and that doesn't seem like it's changing anytime soon, so I feel like these should be ignored. Thoughts? (I updated .yamllint.yml to reflect this for the time being.)
There was a problem hiding this comment.
The README.md should reflect these changes, especially since we're adding an additional role variable.
There was a problem hiding this comment.
These handlers are being updated without the respective notify attributes being updated in task files, which I believe breaks the role?
...that said, I don't 100% agree with ansible-lint's casing rule being forced to apply to strings passed to notify . There's some discussion at https://forum.ansible.com/t/ansible-lints-fixation-on-upper-case-initial-letters/5862 that shares my sentiment. However, while it's not mentioned there, I can see the handler tasks themselves following the casing rule because at the end they'll look like normal tasks to whoever is running the playbook so...using the listen attribute to work around this does seem like the better option.
Keep the names as-is in this file for now.
| @@ -1,50 +1,52 @@ | |||
| # This is an Ansible version of what "pveceph install" actually does | |||
| --- | |||
|
|
|||
| - block: | |||
| - name: Create initial Ceph config | |||
| when: | ||
| - not pve_cluster_enabled | bool or (pve_cluster_enabled and inventory_hostname == groups[pve_group][0]) | ||
| - pve_domains_cfg | length > 0 | ||
|
|
||
| - name: Select ldap-based realms with sync | ||
| set_fact: | ||
| ansible.builtin.set_fact: | ||
| pve_ldap_realms_with_sync: | |
There was a problem hiding this comment.
This might not need to be wrapped? Either way, this change does not seem to follow the usual indentation rule, nor does it try to follow any alignment for readability...
There was a problem hiding this comment.
note to self: has task key order rule
There was a problem hiding this comment.
note to self: has task key order rule
| create: yes | ||
| mode: 0644 | ||
| create: true | ||
| mode: "0644" | ||
| dest: /root/.ssh/config |
There was a problem hiding this comment.
I want to move dest above create here for consistency with the earlier blockinfile task.
|
|
||
| - name: Update PVE cluster HA groups | ||
| command: >- | ||
| ansible.builtin.command: >- |
There was a problem hiding this comment.
Might not need to be wrapped with updated line length limit.
| \\g<space>type \\g<r_type>\ | ||
| \\g<space>min_size {{ (pve_ceph_crush_rules | selectattr(\"name\", \"match\", item.name) | list)[0].min_size | default(\"\\g<min>\") | trim }}\ | ||
| \\g<space>max_size {{ (pve_ceph_crush_rules | selectattr(\"name\", \"match\", item.name) | list)[0].max_size | default(\"\\g<max>\") | trim }}\ | ||
| {%- if ((pve_ceph_crush_rules | selectattr(\"name\", \"match\", item.name) | list)[0].class | default(False)) -%}\ | ||
| \\g<space>step take default class {{ (pve_ceph_crush_rules | selectattr(\"name\", \"match\", item.name) | list)[0].class }}\ |
There was a problem hiding this comment.
this and the untouched line below should also be indented for readability (because they're inside conditionals)
| ansible.builtin.command: crushtool -c crush_map_decompressed -o new_crush_map_compressed | ||
| register: _crushmap_valid | ||
| when: _crushmap.changed | ||
| changed_when: _crushmap_valid.rc == 0 |
There was a problem hiding this comment.
This should probably just be true? Cause the other cases are just task error if rc != 1 or task skip...I think? If that's accurate then this statement just feels like it's an unnecessary layer of indirection cause it'll always be successful as long as it completes.
| pveceph fs create | ||
| --name {{ item.name }} | ||
| --add-storage {{ item.storage }} | ||
| --pg_num {{ item.pgs }} | ||
| register: _ceph_fs_create | ||
| failed_when: _ceph_fs_create.stderr | ||
| when: "item.name not in (_ceph_fs.stdout | from_json | map(attribute='name'))" | ||
| with_items: '{{ pve_ceph_fs }}' | ||
| with_items: "{{ pve_ceph_fs }}" | ||
| changed_when: _ceph_fs_create.rc == 0 |
There was a problem hiding this comment.
Same thing about the layer of indirection here.
There was a problem hiding this comment.
Can you add a comment to this file stating that all the shell tasks were replaced with command tasks?
As you've said you haven't tested these so there may or may not be breakage here...I don't really think there is, but just in case, that comment will help me remember if I run into any snags when I get around to rebuilding the test environment.
Juste in case : I have not tested playbooks in
test/directory.Ansible-lint result
I can't fix warnings about module_utils but for ansible-lint project is't a issue