Update for 21.11 (#140)

Add updates for `21.11` release.

Signed-off-by: Ryan Johnson <[email protected]>

Author: Ryan Johnson

.github/ISSUE_TEMPLATE/bug.yml

@@ -20,7 +20,8 @@ body:
       description: Please provide the version of this project.
       options:
         - main
-        - 21.10.1 (Default)
+        - 21.11 (Default)
+        - 21.10.1
         - 21.10
         - 21.09.1 
         - 21.09

.github/ISSUE_TEMPLATE/docs.yml

@@ -20,7 +20,8 @@ body:
       description: Please provide the version of this project.
       options:
         - main
-        - 21.10.1 (Default)
+        - 21.11 (Default)
+        - 21.10.1
         - 21.10
         - 21.09.1
         - 21.09

CHANGELOG.md

@@ -2,6 +2,18 @@
 
 ![Rainpole](icon.png)
 
+## Release: `v21.11`
+November 09, 2021
+* Adds support for `cloud-init` and the `[VMware]` data source introduced in cloud-init v21.3 to:
+    * Ubuntu 20.04 LTS
+* Adds custom disk partitioning to:
+    * Ubuntu 20.04 LTS
+    * Ubuntu 18.04 LTS
+* Updates Ubuntu 18.04 LTS to `efi-secure`.
+* Updates all certificates to the PEM-encoded `.cer` format.
+* Adds example Terraform plans for deployment testing.
+* Adds an Ansible playbook example to create a custom role in vSphere for Packer.
+
 ## Release: `v21.10.1`
 October 20, 2021
 * Update `LICENSE` and `NOTICE` to BSD-2.
@@ -52,7 +64,7 @@ October 11, 2021
 * Updated issue templates to use forms.
 * Various bug fixes and code cleanliness.
 * Bumped Packer to `>= 1.7.6`.
-* Thanks to the the new contributors: @sestegra, @metabsdm,  and @gcblack!
+* Thanks to the new contributors: @sestegra, @metabsdm, and @gcblack!
 
 ## Release: `v21.09.1`
 September 16, 2021

README.md

@@ -43,7 +43,7 @@ The following builds are available:
 * Microsoft Windows Server 2022 - Standard and Datacenter
 * Microsoft Windows Server 2019 - Standard and Datacenter
 * Microsoft Windows Server 2016 - Standard and Datacenter
-* Microsoft Windows 11 Professional
+* Microsoft Windows 11 Professional (Experimental)
 * Microsoft Windows 10 Professional
 
 > **NOTE**: Guest customization is [**not supported**](https://partnerweb.vmware.com/programs/guestOS/guest-os-customization-matrix.pdf) for AlmaLinux and Rocky Linux in vCenter Server 7.0 Update 2.
@@ -82,6 +82,14 @@ The following software packages must be installed on the Packer host:
   - macOS: `brew install --cask docker`
 * Coreutils 
   - macOS: `brew install coreutils`
+* HashiCorp [Terraform][terraform-install] 1.0.10 or higher.
+  - Ubuntu: 
+    - `sudo apt-get update && sudo apt-get install -y gnupg software-properties-common curl`
+    - `curl -fsSL https://apt.releases.hashicorp.com/gpg | sudo apt-key add -`
+    - `sudo apt-add-repository "deb [arch=amd64] https://apt.releases.hashicorp.com $(lsb_release -cs) main"`
+    - `sudo apt-get update && sudo apt-get install terraform`
+  - macOS: 
+    - `brew install terraform`
 
 **Platform**:
 * VMware Cloud Foundation 4.2 or higher, or
@@ -155,7 +163,8 @@ The directory structure of the repository.
 │   └── windows
 │       └── *.ps1
 └── terraform
-    └── vsphere-role
+    │── vsphere-role
+    └── vsphere-virtual-machine
 ```
 The files are distributed in the following directories.
 * **`ansible`** - contains the Ansible roles to initialize and prepare the machine image build.
@@ -712,6 +721,7 @@ Happy building!!!
 [photon-kickstart]: https://vmware.github.io/photon/docs/user-guide/kickstart-through-http/packer-template/
 [redhat-kickstart]: https://access.redhat.com/labs/kickstartconfig/
 [ssh-keygen]: https://www.ssh.com/ssh/keygen/
+[terraform-install]: https://www.terraform.io/docs/cli/install/apt.html
 [vmware-pvscsi]: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.hostclient.doc/GUID-7A595885-3EA5-4F18-A6E7-5952BFC341CC.html
 [vmware-vmxnet3]: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vm_admin.doc/GUID-AF9E24A8-2CFA-447B-AC83-35D563119667.html
 [vsphere-api]: https://code.vmware.com/apis/968

terraform/vsphere-role/terraform.tfvars.example

@@ -5,8 +5,8 @@
 # Credentials
 
 vsphere_server   = "sfo-m01-vc01.rainpole.io"
-vsphere_username = "administrator@vsphere.local"
-vsphere_password = "R@in!$aG00dThing."
+vsphere_username = "svc-terraform-vsphere@rainpole.io"
+vsphere_password = "************"
 vsphere_insecure = false
 
 # vSphere Settings
@@ -37,7 +37,6 @@ packer_vsphere_privileges = [
   "VirtualMachine.Config.Memory",
   "VirtualMachine.Config.Resource",
   "VirtualMachine.Config.Settings",
-
   "VirtualMachine.Interact.DeviceConnection",
   "VirtualMachine.Interact.PowerOff",
   "VirtualMachine.Interact.PowerOn",

terraform/vsphere-role/versions.tf

@@ -9,5 +9,5 @@ terraform {
       version = ">= 2.0.2"
     }
   }
-  required_version = ">= 1.0.8"
+  required_version = ">= 1.0.10"
 }

terraform/vsphere-virtual-machine/content-library-ovf-linux-cloud-init/main.tf

@@ -0,0 +1,73 @@
+provider "vsphere" {
+  vsphere_server       = var.vsphere_server
+  user                 = var.vsphere_username
+  password             = var.vsphere_password
+  allow_unverified_ssl = var.vsphere_insecure
+}
+
+data "vsphere_datacenter" "datacenter" {
+  name = var.vsphere_datacenter
+}
+
+data "vsphere_network" "network" {
+  name          = var.vsphere_network
+  datacenter_id = data.vsphere_datacenter.datacenter.id
+}
+
+data "vsphere_compute_cluster" "cluster" {
+  name          = var.vsphere_cluster
+  datacenter_id = data.vsphere_datacenter.datacenter.id
+}
+
+data "vsphere_resource_pool" "pool" {
+  name          = format("%s%s", data.vsphere_compute_cluster.cluster.name, "/Resources")
+  datacenter_id = data.vsphere_datacenter.datacenter.id
+}
+
+data "vsphere_datastore" "datastore" {
+  name          = var.vsphere_datastore
+  datacenter_id = data.vsphere_datacenter.datacenter.id
+}
+
+data "vsphere_content_library" "content_library" {
+  name = var.vsphere_content_library
+}
+
+data "vsphere_content_library_item" "content_library_item" {
+  name       = var.vsphere_content_library_ovf
+  type       = "ovf"
+  library_id = data.vsphere_content_library.content_library.id
+}
+
+resource "vsphere_virtual_machine" "vm" {
+  name                    = var.vm_name
+  folder                  = var.vsphere_folder
+  num_cpus                = var.vm_cpus
+  memory                  = var.vm_memory
+  firmware                = var.vm_firmware
+  efi_secure_boot_enabled = var.vm_efi_secure_boot_enabled
+  datastore_id            = data.vsphere_datastore.datastore.id
+  resource_pool_id        = data.vsphere_resource_pool.pool.id
+  network_interface {
+    network_id = data.vsphere_network.network.id
+  }
+  disk {
+    label            = "disk0"
+    size             = var.vm_disk_size
+    thin_provisioned = true
+  }
+  clone {
+    template_uuid = data.vsphere_content_library_item.content_library_item.id
+  }
+  lifecycle {
+    ignore_changes = [
+      clone[0].template_uuid,
+    ]
+  }
+  extra_config = {
+    "guestinfo.metadata"          = base64encode(file("${path.module}/metadata.yml"))
+    "guestinfo.metadata.encoding" = "base64"
+    "guestinfo.userdata"          = base64encode(file("${path.module}/userdata.yml"))
+    "guestinfo.userdata.encoding" = "base64"
+  }
+}

terraform/vsphere-virtual-machine/content-library-ovf-linux-cloud-init/metadata.yml

@@ -0,0 +1,14 @@
+instance-id: ubuntu-cloud-init
+local-hostname: ubuntu-cloud-init
+network:
+  version: 2
+  ethernets:
+    ens192:
+      dhcp4: false
+      addresses:
+        - 172.16.100.192/24
+      gateway4: 172.16.100.1
+      nameservers:
+        addresses:
+          - 172.16.11.4
+          - 172.16.11.5

terraform/vsphere-virtual-machine/content-library-ovf-linux-cloud-init/terraform.tfvars.example

@@ -0,0 +1,29 @@
+##################################################################################
+# VARIABLES
+##################################################################################
+
+# Credentials
+
+vsphere_server   = "sfo-w01-vc01.rainpole.io"
+vsphere_username = "[email protected]"
+vsphere_password = "************"
+vsphere_insecure = false
+
+# vSphere Settings
+
+vsphere_datacenter          = "sfo-w01-dc01"
+vsphere_cluster             = "sfo-w01-cl01"
+vsphere_datastore           = "sfo-w01-cl01-ds-vsan01"
+vsphere_folder              = "workloads"
+vsphere_network             = "w01-172.16.100.0"
+vsphere_content_library     = "sfo-w01-lib01"
+vsphere_content_library_ovf = "linux-ubuntu-server-20-04-lts"
+
+# Virtual Machines Settings
+
+vm_name                    = "ubuntu-cloud-init"
+vm_cpus                    = 2
+vm_memory                  = 4096
+vm_disk_size               = 60
+vm_firmware                = "efi"
+vm_efi_secure_boot_enabled = true

terraform/vsphere-virtual-machine/content-library-ovf-linux-cloud-init/userdata.yml

@@ -0,0 +1,12 @@
+#cloud-config
+
+users:
+  - default
+  - name: terraform
+    primary_group: terraform
+    sudo: ALL=(ALL) NOPASSWD:ALL
+    groups: sudo, wheel
+    ssh_import_id: None
+    lock_passwd: true
+    ssh_authorized_keys:
+    - <public_key>

terraform/vsphere-virtual-machine/content-library-ovf-linux-cloud-init/variables.tf

@@ -0,0 +1,78 @@
+##################################################################################
+# VARIABLES
+##################################################################################
+
+# Credentials
+
+variable "vsphere_server" {
+  type = string
+}
+
+variable "vsphere_username" {
+  type = string
+}
+
+variable "vsphere_password" {
+  type = string
+}
+
+variable "vsphere_insecure" {
+  type    = bool
+  default = false
+}
+
+# vSphere Settings
+
+variable "vsphere_datacenter" {
+  type = string
+}
+
+variable "vsphere_cluster" {
+  type = string
+}
+
+variable "vsphere_datastore" {
+  type = string
+}
+
+variable "vsphere_folder" {
+  type = string
+}
+
+variable "vsphere_network" {
+  type = string
+}
+
+variable "vsphere_content_library" {
+  type = string
+}
+
+variable "vsphere_content_library_ovf" {
+  type = string
+}
+
+# Virtual Machine Settings
+
+variable "vm_name" {
+  type = string
+}
+
+variable "vm_cpus" {
+  type = number
+}
+
+variable "vm_memory" {
+  type = number
+}
+
+variable "vm_disk_size" {
+  type = number
+}
+
+variable "vm_firmware" {
+  type = string
+}
+
+variable "vm_efi_secure_boot_enabled" {
+  type = bool
+}

terraform/vsphere-virtual-machine/content-library-ovf-linux-cloud-init/versions.tf

@@ -0,0 +1,13 @@
+##################################################################################
+# VERSIONS
+##################################################################################
+
+terraform {
+  required_providers {
+    vsphere = {
+      source  = "hashicorp/vsphere"
+      version = ">= 2.0.2"
+    }
+  }
+  required_version = ">= 1.0.10"
+}