summaryrefslogtreecommitdiffstats
path: root/playbooks
Commit message (Collapse)AuthorAgeFilesLines
* Invert logic to decide when to re-deploy certsScott Dodson2018-02-121-1/+1
|
* Merge pull request #7001 from mbruzek/cidr_pool_start_endOpenShift Merge Robot2018-02-121-1/+6
|\ | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Removing prefix, replacing with cidr, pool_start and pool_end vars The heat template was hardcoded with a /24 cidr and that limited customers to 251 ip addresses in the OpenStack subnet. This allows the user to configure the cidr and the allocation pool start and end. Addresses issue #6829 that I created last week. @tomassedovic please take a look
| * Removing prefix and replacing with cidr, pool_start and pool_end variables.Matt Bruzek2018-02-021-1/+6
| |
* | Merge pull request #7078 from mgugino-upstream-stage/limit-hostsOpenShift Merge Robot2018-02-0930-7/+149
|\ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Limit host scope during plays Many plays only target a select subset of hosts, especially oo_first_master for components such as logging and registry. This commit limits the scope of most plays to eliminate unnecessary task execution on node groups. This will result in great time savings for large deployments. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1516526
| * | Limit host scope during playsMichael Gugino2018-02-0930-7/+149
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Many plays only target a select subset of hosts, especially oo_first_master for components such as logging and registry. This commit limits the scope of most plays to eliminate unnecessary task execution on node groups. This will result in great time savings for large deployments. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1516526
* | | Fix upgrade-control plane post_control_plane.ymlMichael Gugino2018-02-091-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | An entry-point playbook was imported by mistake. This caused common init code to run again, which is undesireable. This commit changes the import to use the corresponding 'private' play which does not call the init code. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1542855
* | | Merge pull request #7074 from kwoodson/redeploy_certs_insecureOpenShift Merge Robot2018-02-081-16/+20
|\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Redeploy router certificates during upgrade only when secure. Wrap the upgrade logic for redeploying certificates into another block so that insecure registries do not perform any certificate tasks.
| * | | Redeploy router certificates during upgrade only when secure.Kenny Woodson2018-02-081-16/+20
| | | |
* | | | Merge pull request #6926 from abutcher/etcd-ca-hostScott Dodson2018-02-0810-36/+2
|\ \ \ \ | | | | | | | | | | Determine which host is the etcd CA host
| * | | | Determine which etcd host is the etcd_ca_host rather than assume it is the ↵Andrew Butcher2018-02-018-13/+1
| | | | | | | | | | | | | | | | | | | | first host in the etcd host group.
| * | | | Attempt to back up generated certificates on every etcd host.Andrew Butcher2018-02-011-1/+1
| | | | |
| * | | | Remove pre upgrade verification step re: etcd ca host.Andrew Butcher2018-02-011-22/+0
| | | | |
* | | | | Merge pull request #7061 from gnewson/Change-etcd-checkOpenShift Merge Robot2018-02-081-1/+1
|\ \ \ \ \ | |_|_|/ / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Changing the check for the number of etcd nodes This playbook is called (via std_include.yml) when the scale up playbook for either master or etcd is called. In the scenario where you are scaling up the number of masters/etcd nodes it is feasible, if not likely, that the number of etcd nodes is not 1, 3 or 5 and this check therefore causes a scale up to fail. The two example scenarios that are driving this change are: You have a cluster with 3 master nodes (each running etcd) and one of those masters fail. The master node is removed from both the OpenShift cluster and the etcd cluster and the inventory updated to reflect the state of the cluster minus the failed master node. You would then run the scale up playbook to add a new master / etcd master into the cluster using an inventory containing and etcd group of just 2 nodes. As above but the cluster has 5 master nodes. If you lose a master node and update the inventory to reflect that then the inventory will contain an etcd group with 4 nodes. @sdodson Previously submitted as https://github.com/openshift/openshift-ansible/pull/6979
| * | | | Remove spaces introduced at the start of the lineGeoff Newson2018-02-071-1/+1
| | | | | | | | | | | | | | | In making the initial change I introduce some spaces at the beginning of the line. Removing them.
| * | | | Changing the check for the number of etcd nodesGeoff Newson2018-02-071-1/+1
| | | | |
* | | | | Merge pull request #7056 from sdodson/gcp-wait-for-connectionScott Dodson2018-02-081-0/+6
|\ \ \ \ \ | |_|_|/ / |/| | | | Use wait_for_connection to validate ssh transport is alive
| * | | | Use wait_for_connection to validate ssh transport is aliveScott Dodson2018-02-071-0/+6
| | | | |
* | | | | Merge pull request #7043 from vrutkovs/prerequisites-enable-docker-excluderOpenShift Merge Robot2018-02-081-0/+6
|\ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Setup docker excluder if requested before container_runtime is installed That would prevent possible container runtime upgrades during cluster config Fixes https://bugzilla.redhat.com/show_bug.cgi?id=1540800 Signed-off-by: Vadim Rutkovsky <vrutkovs@redhat.com>
| * | | | | Setup docker excluder if requested before container_runtime is installedVadim Rutkovsky2018-02-071-0/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | That would prevent possible container runtime upgrades during cluster config Signed-off-by: Vadim Rutkovsky <vrutkovs@redhat.com>
* | | | | | Merge pull request #7017 from mtnbikenc/fix-1540537OpenShift Merge Robot2018-02-076-2/+8
|\ \ \ \ \ \ | |_|_|/ / / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. [1540537] Add base package installation to upgrade playbooks Hosts will need python ipaddress module installed if it was not installed during initial installation. Bug 1540537 https://bugzilla.redhat.com/show_bug.cgi?id=1540537
| * | | | | Add base package installation to upgrade playbooksRussell Teague2018-02-076-2/+8
| |/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Hosts will need python ipaddress module installed if it was not installed during initial installation. Bug 1540537 https://bugzilla.redhat.com/show_bug.cgi?id=1540537
* | | | | Merge pull request #7044 from zgalor/fix_uninstall_bugOpenShift Merge Robot2018-02-071-1/+1
|\ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Fix uninstall using openshift_prometheus_state=absent This was broken in https://github.com/openshift/openshift-ansible/pull/6811 bz: https://bugzilla.redhat.com/show_bug.cgi?id=1540806
| * | | | | Fix uninstall using openshift_prometheus_state=absentZohar Galor2018-02-071-1/+1
| |/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | This was broken in https://github.com/openshift/openshift-ansible/pull/6811 bz: https://bugzilla.redhat.com/show_bug.cgi?id=1540806
* | | | | Merge pull request #7052 from vrutkovs/rolling_restart_modeOpenShift Merge Robot2018-02-071-2/+2
|\ \ \ \ \ | |_|/ / / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. 3.9 upgrade: fix typos in restart masters procedure * 'rolling_restart_mode' should be 'services', not 'service' * use 'state: restarted' to properly restart services Fixes https://bugzilla.redhat.com/show_bug.cgi?id=1540054 Signed-off-by: Vadim Rutkovsky <vrutkovs@redhat.com>
| * | | | 3.9 upgrade: fix typos in restart masters procedureVadim Rutkovsky2018-02-071-2/+2
| |/ / / | | | | | | | | | | | | | | | | | | | | | | | | * 'rolling_restart_mode' should be 'services', not 'service' * use 'state: restarted' to properly restart services Signed-off-by: Vadim Rutkovsky <vrutkovs@redhat.com>
* | | | Merge pull request #7040 from sdodson/bz1542399OpenShift Merge Robot2018-02-071-0/+3
|\ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Make sure to include upgrade_pre when upgrading master nodes Fixes https://bugzilla.redhat.com/show_bug.cgi?id=1542399
| * | | | Make sure to include upgrade_pre when upgrading master nodesScott Dodson2018-02-061-0/+3
| |/ / /
* | | | Merge pull request #6993 from joelddiaz/deprovision_elbsKenny Woodson2018-02-071-0/+9
|\ \ \ \ | |/ / / |/| | | add deprovisioning for ELB (and IAM certs)
| * | | add deprovisioning for ELB (and IAM certs)Joel Diaz2018-02-021-0/+9
| | | | | | | | | | | | | | | | | | | | | | | | add playbooks to handle deleting ELBs and any IAM certs that may have been created during provisioning. redo ELB creation to remove arbitrary wait and just retry until ELB creation succeeds
* | | | Merge pull request #7015 from sdodson/v310Scott Dodson2018-02-0610-0/+157
|\ \ \ \ | | | | | | | | | | Initial support for 3.10
| * | | | Initial support for 3.10Scott Dodson2018-02-0510-0/+157
| | | | |
* | | | | Merge pull request #7020 from vrutkovs/node-config-on-upgradeScott Dodson2018-02-061-0/+1
|\ \ \ \ \ | | | | | | | | | | | | Upgrades: pass openshift_manage_node_is_master to master nodes during upgrade
| * | | | | Upgrades: pass openshift_manage_node_is_master to master nodes during upgradeVadim Rutkovsky2018-02-061-0/+1
| |/ / / / | | | | | | | | | | | | | | | This ensures required labels for master would be set
* | | | | Update code to not fail when rc != 0Kenny Woodson2018-02-061-0/+3
| | | | |
* | | | | Merge pull request #6628 from ewolinetz/es_5.x_opt_inOpenShift Merge Robot2018-02-061-5/+36
|\ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Es 5.x opt in FYI @richm @jcantrill
| * | | | | Adding support for ES 5.x tech preview opt inEric Wolinetz2018-02-051-5/+36
| | |_|_|/ | |/| | |
* | | | | Merge pull request #7018 from mtnbikenc/refactor-cert-SANOpenShift Merge Robot2018-02-062-23/+33
|\ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Move cert SAN update logic to openshift-etcd Recent additions for checking certificate SAN validation were added to the upgrade playbooks and should be moved to the openshift-etcd playbooks to ensure this check is performed when the openshift-etcd upgrade playbook is run directly, vice only when running a full control plane upgrade. Additionally, the formerly included playbook for redeploying certificates called the main entry point playbook which caused the initialization playbooks to be called twice.
| * | | | | Move cert SAN update logic to openshift-etcdRussell Teague2018-02-052-23/+33
| | |/ / / | |/| | |
* | | | | Merge pull request #7005 from mtnbikenc/fix-rolloutRussell Teague2018-02-062-4/+2
|\ \ \ \ \ | |/ / / / |/| | | | Use rollout instead of deploy (deprecated)
| * | | | Use rollout instead of deploy (deprecated)Russell Teague2018-02-022-4/+2
| |/ / /
* | | | Moving upgrade sg playbook to 3.9Kenny Woodson2018-02-051-0/+0
| | | |
* | | | Merge pull request #6985 from joelddiaz/deprovision_s3_bucketsKenny Woodson2018-02-052-3/+17
|\ \ \ \ | | | | | | | | | | add S3 bucket cleanup
| * | | | add S3 bucket cleanupJoel Diaz2018-02-022-3/+17
| | |/ / | |/| | | | | | | | | | | | | | | | | | Default to just cleaning out all the objects in the S3 bucket (IFF openshift_aws_create_s3 is 'true'). If you really, trully want to delete the S3 bucket and free up the bucket name, you can set openshift_aws_really_delete_s3_bucket to 'true' ('false' by default).
* | | | Merge pull request #6980 from mtnbikenc/fix-upgradesScott Dodson2018-02-043-9/+9
|\ \ \ \ | | | | | | | | | | Fix version handling in 3.8/3.9 control plane upgrades
| * | | | Fix version handling in 3.8/3.9 control plane upgradesRussell Teague2018-02-023-9/+9
| | |/ / | |/| |
* | | | remove openshift_upgrade_{pre,post}_storage_migration_enabled from failed_whenKenjiro Nakayama2018-02-031-3/+0
| | | |
* | | | Merge pull request #6995 from vrutkovs/f27-omitOpenShift Merge Robot2018-02-021-1/+2
|\ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Don't use 'omit' for package module 'name' param is required and can't be skipped. 'when' is used instead Fixes #6968
| * | | | Don't use 'omit' for package moduleVadim Rutkovsky2018-02-021-1/+2
| | | | | | | | | | | | | | | | | | | | 'name' param is required and can't be skipped. 'when' is used instead
* | | | | Merge pull request #6958 from vrutkovs/rework-full-upgradeOpenShift Merge Robot2018-02-023-56/+16
|\ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Upgrade playbook improvements Two changes in this PR: * Avoid duplication in upgrade.yml - it now would simply run upgrade_control_plane and upgrade_nodes playbooks * Restart controllers instead of start/stop if restart mode is 'services' * For 'system' restart mode controllers are disabled before master upgrade and re-enabled after upgrades are finished
| * | | | | Disable master controllers before upgrade and re-enable those when restart ↵Vadim Rutkovsky2018-01-312-6/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | mode is system This removes a start/stop after control plane upgrade