/
upgrade.yml
93 lines (77 loc) · 2.39 KB
/
upgrade.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
---
# input variables:
# - l_docker_upgrade
# - openshift_is_atomic
# - node_config_hook
# - openshift_pkg_version
# tasks file for openshift_node_upgrade
- name: stop services for upgrade
import_tasks: upgrade/stop_services.yml
# Ensure actually install latest package.
- name: install docker upgrade rpm
command: "{{ ansible_pkg_mgr }} install -y docker{{ '-' + docker_version }}"
register: result
until: result is succeeded
when:
- l_docker_upgrade is defined
- l_docker_upgrade | bool
- name: Ensure cri-o is updated
package:
name: "{{ pkg_list | join (',') }}"
state: latest
when:
- openshift_use_crio | bool
register: crio_update
until: crio_update is succeeded
vars:
pkg_list:
- cri-o
- cri-tools
- name: Remove CRI-O default configuration files
file:
path: "{{ item }}"
state: absent
with_items:
- "/etc/cni/net.d/200-loopback.conf"
- "/etc/cni/net.d/100-crio-bridge.conf"
when: crio_update is changed
- name: Ensure crictl.yaml runtime-endpoint is updated
yedit:
src: /etc/crictl.yaml
key: runtime-endpoint
value: "{{ openshift_crio_var_sock }}"
when:
- openshift_use_crio | default(False) | bool
- name: install pre-pulled rpms.
import_tasks: upgrade/rpm_upgrade_install.yml
when: not openshift_is_atomic | bool
# TODO(michaelgugino): Remove in 3.12
- import_tasks: selinux_container_cgroup.yml
- include_tasks: "{{ node_config_hook }}"
when: node_config_hook is defined
- import_tasks: upgrade/config_changes.yml
- import_tasks: dnsmasq_install.yml
- import_tasks: dnsmasq.yml
- name: ensure dnsmasq is always restarted
debug:
msg: "Restarting dnsmasq"
# changed_when: True required for debug tasks to trigger handlers.
changed_when: True
notify:
- systemctl daemon-reload
- restart dnsmasq
# Need to flush handlers here so dnsmasq is restarted and daemon-reload
- meta: flush_handlers
# Restart all services
- import_tasks: upgrade/restart.yml
- name: Approve node certificates when bootstrapping
oc_csr_approve:
oc_bin: "{{ hostvars[groups.oo_first_master.0]['first_master_client_binary'] }}"
oc_conf: "{{ openshift.common.config_base }}/master/admin.kubeconfig"
node_list:
- "{{ openshift.node.nodename | lower }}"
delegate_to: "{{ groups.oo_first_master.0 }}"
register: node_upgrade_oc_csr_approve
retries: 30
until: node_upgrade_oc_csr_approve is succeeded
- import_tasks: journald.yml