Using Ansible and Proxmox to manage an embedded RPM distro build factory: lessons learned
2022-02-05, 12:00–12:45, d.InfraMgt

With redpesk, we provide customers the ability to cross-build an embedded, CentOS Stream-based Linux distribution in the cloud. This requires a significant infrastructure: Koji/RPM builders, Angular-based WebUI, Gitlab forge, network and RPM package dependency management, Qemu test lab management, all need to come together and be connected, in a mix of Qemu virtual machines and LXC containers. Fortunately, Ansible and Proxmox comes to the rescue to manage this complexity.

In this talk, we'll present our architecture of a self-contained CI/CD environment in the cloud, to cross-build RPM packages and Linux images. We will then dive into the specifics of using Ansible to drive Proxmox and deploy a mix of Packer-built Qemu virtual machines and LXC containers. Those provide a full Koji build system (hub and builders), an Angular frontend, Go backend, a Gitlab forge as well as network isolation/firewalling and a Qemu virtual target lab.
We'll continue with lessons learned from doing these deployments for multiple customers. We will finish describing solutions we are currently working on, like Ansible AWX, to address the challenges of doing it at scale and increase automation.


How we use Ansible to deploy, provision and maintain an embedded RPM Linux OS distribution factory over Proxmox, using Qemu virtual machines and LXC containers. Pitfalls and lessons learned of doing it at scale, as well as potential solutions like Ansible AWX to improve automation.

Vincent holds a Master Degree in Engineering from the French Ecole des Mines de Nantes and has been in the computing, embedded and cloud industry for 15 years.

He initially joined Windriver Systems in Vannes to work on the debugging tools for the VxWorks operating system (dynamic module loading, multiprocessing, shells and interpreters).

In 2013, he relocated to the San Francisco Bay Area to join the Windriver Hypervisor team, followed by several years as a tech lead on the avionics-certified/DO-178C version of VxWorks. In addition to the C and assembly languages, he could practice his knowledge of Python.

After that, he got the opportunity to join Datameer, an SF startup developing a new Apache Spark big data project. Part of the Datameer San Francisco engineering team, he built the cloud-enabled platform for this new tool using Java, React and Kubernetes (along with Helm and Terraform) running over Amazon EKS and Google GKE. It it this mix of cloud-based experience, along with the technical knowledge in the embedded industry that Vincent brings to Iot Bzh as Cloud Architect.

Vincent has been using Linux and free software for more than 17 years, his position at IoT Bzh thus presented a great opportunity to use those skills in a professional context. On the side, he is also a maker at heart, with a passion for 3D printing, additive manufacturing and electronics.