summaryrefslogtreecommitdiffstats
path: root/roles/openshift_node
Commit message (Collapse)AuthorAgeFilesLines
...
* | Deprecate using Ansible tests as filtersRussell Teague2017-12-1418-32/+34
| |
* | Merge pull request #6449 from giuseppe/crio-change-socket-pathScott Dodson2017-12-141-2/+2
|\ \ | |/ |/| crio: change socket path to /var/run/crio/crio.sock
| * crio: change socket path to /var/run/crio/crio.sockGiuseppe Scrivano2017-12-121-2/+2
| | | | | | | | | | | | it is required for OpenShift 3.9 Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
* | upgrade node mark 2Michael Gugino2017-12-1211-174/+219
| |
* | Refactor node upgrade to include less serial tasksMichael Gugino2017-12-129-189/+196
| | | | | | | | | | | | | | | | | | | | | | | | | | This commit moves the pulling of images, packages, and updating config files into a non-serialized play. The serialized play is now in charge of marking unschedulable, draining, stopping and restarting services, and marking schedulable. If rpm install / container download takes 60s per host, this will save 3 hours and 10 minutes at 200 hosts per cluster and forks of 20 hosts.
* | Refactor upgrade codepaths step 1Michael Gugino2017-12-121-15/+0
|/ | | | | | | | | | | | | | | | This commit refactors some upgrade code paths. Touched areas are: 1) Reduces usage of 'oo_all_hosts' in various places, especially when running upgrade_control_plane. 2) Reuses common code across the various upgrade* playbooks. 3) Moves docker upgrade checks into container_runtime_role. 4) Combines smaller playbooks and plays to reduce file sprawl.
* openshift_node: reintroduce restart of CRI-O.Giuseppe Scrivano2017-12-081-0/+9
| | | | | | change introduced with 39cf5084f18e2e0adca46b925660a6f2c38d227c Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
* Remove openshift.common.service_typeMichael Gugino2017-12-0717-46/+50
| | | | | | | | This commit removes openshift.common.service_type in favor of openshift_service_type. This commit also removes r_openshift_excluder_service_type from plays in favor of using the role's defaults.
* Merge pull request #6380 from sdodson/oc-admScott Dodson2017-12-071-3/+3
|\ | | | | Remove all uses of openshift.common.admin_binary
| * Remove all uses of openshift.common.admin_binaryScott Dodson2017-12-071-3/+3
| | | | | | | | Replace with `oc adm`
* | Merge pull request #6362 from mgugino-upstream-stage/crt-playsScott Dodson2017-12-073-16/+0
|\ \ | | | | | | Implement container_runtime playbooks and changes
| * | Implement container_runtime playbooks and changesMichael Gugino2017-12-073-16/+0
| |/ | | | | | | | | | | This commit refactors some duplicate code, removes usage of set_fact where not needed, and reorganizes container_runtime role to use include_role.
* | Include Deprecation: Convert to include_tasksRussell Teague2017-12-061-1/+1
|/
* Fix oreg_auth_credentials_create register varMichael Gugino2017-12-051-2/+6
| | | | | | | | | | | | There is a variable collision for the *oreg_auth_credentials_create variables in openshift_master and openshift_node registry_create tasks. This commit ensures standard and alternative oreg auth credential placement tasks don't use the same register variable. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1520866
* Implement container runtime roleMichael Gugino2017-12-0111-32/+27
|
* retry package operationsLuke Meyer2017-11-3011-0/+28
| | | | | | When a package install/update fails due to network blips or other spotty availability, retry it. If the failure is a real failure (e.g. package is really not there) it still fails after 3 tries (Ansible default).
* Merge pull request #6269 from mgugino-upstream-stage/clock-dependsMichael Gugino2017-11-281-2/+0
|\ | | | | Remove openshift_clock from meta depends
| * Remove openshift_clock from meta dependsMichael Gugino2017-11-271-2/+0
| | | | | | | | | | This commit adds openshift_clock role to required plays instead of using meta_depends.
* | Combine openshift_node and openshift_node_dnsmasqMichael Gugino2017-11-2711-3/+251
|/ | | | | This commit combines these two roles. This will prevent openshift_node_facts from running twice.
* Merge pull request #6198 from mgugino-upstream-stage/openvswitch-sys-containerMichael Gugino2017-11-272-2/+3
|\ | | | | Remove is_openvswitch_system_container from facts
| * Remove is_openvswitch_system_container from factsMichael Gugino2017-11-222-2/+3
| | | | | | | | Simply logic for this variable.
* | Include Deprecation - openshift-nodeRussell Teague2017-11-226-30/+27
|/
* Fix system_images_registry variableMichael Gugino2017-11-223-4/+10
| | | | Simplify the logic for this variable.
* Fix node system container varMichael Gugino2017-11-213-3/+5
| | | | Fix logic, make it simpler.
* Combine openshift_node and openshift_node_upgradeMichael Gugino2017-11-167-0/+326
| | | | | | | | | Currently, having openshift_node and openshift_node_upgrade as two distinct roles has created a duplication across handlers, templates, and some tasks. This commit combines the roles to reduce duplication and bugs encountered by not putting code in both places.
* Merge pull request #5990 from kwoodson/ensure_node_startedOpenShift Merge Robot2017-11-161-0/+8
|\ | | | | | | | | | | | | Automatic merge from submit-queue. Ensure node service is started. When bootstrapping nodes we need to restart networkmanager so that the /etc/resolv.conf is properly populated. We also restart the node service after making changes to the unit files.
| * Ensure node service is started.Kenny Woodson2017-11-151-0/+8
| |
* | Merge pull request #5968 from mgugino-upstream-stage/version-scrubScott Dodson2017-11-151-2/+0
|\ \ | |/ |/| Removed old version code
| * Removed old version codeMichael Gugino2017-11-141-2/+0
| | | | | | | | | | | | This commit removes any references to versions < 1.5/3.5 We assume the version is always greater than or equal to 1.5/3.5.
* | Merge pull request #6094 from ↵OpenShift Merge Robot2017-11-152-0/+20
|\ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | mgugino-upstream-stage/syscontainers-docker-login-module Automatic merge from submit-queue. Alternative method to create docker registry auth creds Currently, the command 'docker login' is run when using oreg with authentication. On some hosts, such as hosts configured to use system containers, the docker service is not running. 'docker login' will fail without the docker service running. This commit adds a module to idempotently add credentials to the registry credentials file without the use of 'docker login' Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1511374
| * | Alternative method to create docker registry auth credsMichael Gugino2017-11-142-0/+20
| |/ | | | | | | | | | | | | | | | | | | | | | | | | | | | | Currently, the command 'docker login' is run when using oreg with authentication. On some hosts, such as hosts configured to use system containers, the docker service is not running. 'docker login' will fail without the docker service running. This commit adds a module to idempotently add credentials to the registry credentials file without the use of 'docker login' Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1511374
* | Adding instance profile support for node groups.Kenny Woodson2017-11-133-0/+4
|/
* Adding CONFIG_FILE option back.Kenny Woodson2017-11-012-3/+6
|
* Configurable node config location.Kenny Woodson2017-11-011-3/+3
|
* Merge pull request #5924 from smarterclayton/bootstrap_cleanupOpenShift Merge Robot2017-10-312-3/+3
|\ | | | | | | | | | | | | | | | | Automatic merge from submit-queue. GCP cannot use growpart utils from AWS due to conflicting package Allow cloud provider specific packages to be specified. Also, fix a wait condition in openshift_gcp to allow masters to be bootstrapped nodes. @kwoodson
| * GCP cannot use AWS growpart packageClayton Coleman2017-10-302-3/+3
| | | | | | | | Make the required package optional
* | Add retry logic to docker auth credentialsMichael Gugino2017-10-301-0/+3
|/ | | | | | This commit enables retry on docker login commands. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1506931
* Renaming csr to bootstrap for consistency.Kenny Woodson2017-10-251-1/+1
|
* Merge pull request #5813 from ashcrow/1503903OpenShift Merge Robot2017-10-232-0/+10
|\ | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Always ensure atomic.conf is configured for system containers. A new openshift_atomic role has been created for atomic specific tasks. The first task added is proxy which handles updating /etc/atomic.conf to ensure the proper proxy configuration is configured. This task file is then included (via include_role) in system container related task files. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1503903
| * systemcontainers: Verify atomic.conf proxy is always configuredSteve Milner2017-10-192-0/+10
| | | | | | | | | | | | | | | | | | | | | | A new openshift_atomic role has been created for atomic specific tasks. The first task added is proxy which handles updating /etc/atomic.conf to ensure the proper proxy configuration is configured. This task file is then included (via include_role) in system container related task files. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1503903 Signed-off-by: Steve Milner <smilner@redhat.com>
* | Initial Kuryr supportMichał Dulko2017-10-202-1/+6
|/ | | | | | | | This commit enables deploying Kuryr networking on top of OpenShift in containers. kuryr-controller is a Deployment and kuryr-cni is deployed as DaemonSet (container will drop all CNI configuration files). Co-Authored-By: Antoni Segura Puimedon <celebdor@gmail.com>
* Do not remove files for bootstrap if resolv or dns.Kenny Woodson2017-10-179-60/+178
|
* Merge pull request #5744 from mgugino-upstream-stage/latest-image-configOpenShift Merge Robot2017-10-172-1/+4
|\ | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Add ability to set node and master imageConfig to latest Currently, imageConfig.latest is hard-coded to false. This commit adds an appropriate boolean to enable setting to true. Fixes: https://github.com/openshift/openshift-ansible/issues/1422
| * Add ability to set node and master imageConfig to latestMichael Gugino2017-10-122-1/+4
| | | | | | | | | | | | | | | | | | Currently, imageConfig.latest is hard-coded to false. This commit adds an appropriate boolean to enable setting to true. Fixes: https://github.com/openshift/openshift-ansible/issues/1422
* | Fix containerized node service unit placement orderMichael Gugino2017-10-124-15/+3
|/ | | | | | | | | | | | | | Currently, non-containerized nodes have systemd service unit files created after registry auth credentials are created. Containerized nodes place service unit files prior to creation of these credentials. This commit ensures systemd service units are created at the correct time for both containerized and non-containerized nodes. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1500642
* Fix broken debug_levelMichael Gugino2017-10-112-1/+3
| | | | | | | | | | | | | | | | | | | | Currently, debug_level is documented as a way to change the debug output level for both masters and nodes. debug_level does not currently have any effect. This commit removes debug_level from openshift_facts and properly sets openshift_master_debug_level and openshift_node_debug_level to the value of debug_level specified in the inventory. This commit also reorganizes some set_fact tasks needed during master upgrades to put all work-around set-facts for undefined variables in one place, allowing for easier cleanup in the future. This includes an entry for openshift_master_debug_level. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1500164
* Separate tuned daemon setup into a role.Jiri Mencak2017-10-106-112/+0
| | | | | | | | | | | | | | Currently, profiles for the tuned daemon are set only for OpenShift node(s). This excludes the OpenShift loadbalancer. As a result, ARP cache limits on loadbalancers are not raised. This causes problems with HA setups where loadbalancers serve 1k+ OpenShift nodes. This commit ensures the openshift-control-plane role is applied to loadbalancers, masters and OpenShift infra nodes. Regular OpenShift worker nodes get the openshift-node profile. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1498213
* node: make node service PartOf=openvswitch.service when openshift-sdn is usedDan Williams2017-10-051-0/+1
| | | | | | | | | | | | | Commit 7f805f9a0c41477365dd88b0ac73f0d221bd654a causes the behavior seen in https://bugzilla.redhat.com/show_bug.cgi?id=1453113 because openshift-node is no longer restarted when openvswitch is, due to the change from Requires to Wants. Turns out that making the openshift node service PartOf the OVS service can achieve the same result and ensure openshift-node gets restarted whenever OVS does, which ensures that networking doesn't break underneath the node. Suggested by Giuseppe Scrivano
* Move node aws credentials to config.ymlMichael Gugino2017-10-022-16/+16
| | | | | | | | | | Currently, the node service is started before aws credentials (if needed) are configured. This commit ensures the aws credentials are placed before the node service is started. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1497150
* Separate certificate playbooks.Andrew Butcher2017-10-021-2/+0
|
generated by cgit v1.2.1 (git 2.18.0) at 2024-05-03 14:56:06 +0000