From 263f6c31dd91a0b9da1ca5624f4020b956ce89f7 Mon Sep 17 00:00:00 2001
From: Andrew Butcher <abutcher@redhat.com>
Date: Thu, 19 Oct 2017 14:16:10 -0400
Subject: Check for container runtime prior to restarting when updating system
 CA trust.

---
 roles/openshift_node_certificates/handlers/main.yml | 16 ++++++++++++++--
 1 file changed, 14 insertions(+), 2 deletions(-)

(limited to 'roles/openshift_node_certificates')

diff --git a/roles/openshift_node_certificates/handlers/main.yml b/roles/openshift_node_certificates/handlers/main.yml
index 4abe8bcaf..ef66bf9ca 100644
--- a/roles/openshift_node_certificates/handlers/main.yml
+++ b/roles/openshift_node_certificates/handlers/main.yml
@@ -2,9 +2,21 @@
 - name: update ca trust
   command: update-ca-trust
   notify:
-    - restart docker after updating ca trust
+    - check for container runtime after updating ca trust
 
-- name: restart docker after updating ca trust
+- name: check for container runtime after updating ca trust
+  command: >
+    systemctl -q is-active {{ openshift.docker.service_name }}.service
+  register: l_docker_installed
+  # An rc of 0 indicates that the container runtime service is
+  # running. We will restart it by notifying the restart handler since
+  # we have updated the system CA trust.
+  changed_when: l_docker_installed.rc == 0
+  failed_when: false
+  notify:
+    - restart container runtime after updating ca trust
+
+- name: restart container runtime after updating ca trust
   systemd:
     name: "{{ openshift.docker.service_name }}"
     state: restarted
-- 
cgit v1.2.1