summaryrefslogtreecommitdiffstats
path: root/roles/openshift_node/tasks/main.yml
Commit message (Collapse)AuthorAgeFilesLines
* Create swapoff moduleMichael Gugino2018-01-241-27/+5
| | | | | Create custome ansible module 'swapoff' to idempotently disable swap in /etc/fstab and also run swapoff.
* Properly cast crio boolean variables to boolMichael Gugino2018-01-081-2/+2
| | | | | | | | | | | Variables that are specifically booleans should be cast to bool. This is because users may sometimes pass them as string values. This is particularly prevalent when using ini-style inventories. Affected-by: https://github.com/ansible/ansible/issues/34591 Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1531592
* Remove bootstrap.yml from main.yml in openshift_node roleMichael Gugino2017-12-211-4/+0
| | | | | | This commit utilizes include_role for bootstrapping the node instead of conditional include of tasks now that the node role has no meta includes that have tasks.
* Remove references to deployment_typeMichael Gugino2017-12-211-1/+1
| | | | | | | Move openshift_deployment_type check into sanity_check action plugin. Remove compatibility for deployment_type. deployment_type has been deprecated for some time now.
* Merge pull request #6456 from mgugino-upstream-stage/node-factsMichael Gugino2017-12-171-3/+3
|\ | | | | Remove openshift_node_facts part 1
| * Remove openshift_node_facts part 1Michael Gugino2017-12-141-3/+3
| | | | | | | | | | This commit removes some items from openshift_facts for the openshit_node role.
* | Deprecate using Ansible tests as filtersRussell Teague2017-12-141-1/+3
|/
* Refactor node upgrade to include less serial tasksMichael Gugino2017-12-121-0/+1
| | | | | | | | | | | | | This commit moves the pulling of images, packages, and updating config files into a non-serialized play. The serialized play is now in charge of marking unschedulable, draining, stopping and restarting services, and marking schedulable. If rpm install / container download takes 60s per host, this will save 3 hours and 10 minutes at 200 hosts per cluster and forks of 20 hosts.
* openshift_node: reintroduce restart of CRI-O.Giuseppe Scrivano2017-12-081-0/+9
| | | | | | change introduced with 39cf5084f18e2e0adca46b925660a6f2c38d227c Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
* Merge pull request #6362 from mgugino-upstream-stage/crt-playsScott Dodson2017-12-071-7/+0
|\ | | | | Implement container_runtime playbooks and changes
| * Implement container_runtime playbooks and changesMichael Gugino2017-12-071-7/+0
| | | | | | | | | | | | This commit refactors some duplicate code, removes usage of set_fact where not needed, and reorganizes container_runtime role to use include_role.
* | Include Deprecation: Convert to include_tasksRussell Teague2017-12-061-1/+1
|/
* Implement container runtime roleMichael Gugino2017-12-011-2/+2
|
* Combine openshift_node and openshift_node_dnsmasqMichael Gugino2017-11-271-0/+2
| | | | | This commit combines these two roles. This will prevent openshift_node_facts from running twice.
* Include Deprecation - openshift-nodeRussell Teague2017-11-221-11/+10
|
* Do not remove files for bootstrap if resolv or dns.Kenny Woodson2017-10-171-5/+4
|
* Move node aws credentials to config.ymlMichael Gugino2017-10-021-16/+0
| | | | | | | | | | Currently, the node service is started before aws credentials (if needed) are configured. This commit ensures the aws credentials are placed before the node service is started. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1497150
* Cleanup old deployment typesMichael Gugino2017-09-201-1/+2
| | | | | | | | | | | Previously, openshift-ansible supported various types of deployments using the variable "openshift_deployment_type" Currently, openshift-ansible only supports two deployment types, "origin" and "openshift-enterprise". This commit removes all logic and references to deprecated deployment types.
* Fix registry auth task orderingMichael Gugino2017-09-181-2/+2
| | | | | | | | | | | | | | Currently, registry authentication credentials are not produced until after docker systemd service files are created. This commit ensures the credentials are created before the systemd service files to ensure the proper boolean is set to include the read-only mount of credentials inside containerized nodes and masters. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1316341
* Merge pull request #5334 from juanluisvaladas/move-sysctlOpenShift Merge Robot2017-09-161-8/+5
|\ | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue Move sysctl.conf customizations to a separate file Move them from /etc/sysctl.conf to /etc/sysctl.d/99-openshift.conf This is a good idea becuase: 1- /etc/sysctl.conf is evaluated later, so it can easily be overwritten by previous customizations 2- It's likely that there is an agent like puppet monitoring this file 3- It's easier to know what's being changed by OpenShift
| * Move sysctl.conf customizations to a separate fileJuan Luis de Sousa-Valadas Castaño2017-09-081-8/+5
| | | | | | | | Move them from /etc/sysctl.conf to /etc/sysctl.d/99-openshift.conf
* | Fix: authenticated registry support for containerized hostsMichael Gugino2017-09-111-14/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Currently, openshift-anisble supports authentication to container registries to pull down openshift container images. The openshift_verison role uses the docker cli to gather image information from container registries before authentication credentials are provided by openshift-ansible. This commit creates the necessary token to authenticate to private registries during openshift_version. The token is generated by the role 'docker' on all hosts where docker is installed/configured when oreg_auth_users is defined. This commit also adds a read-only mount into the openshift master and node container services. This mount is '/var/lib/origin/.docker:/root/.docker:ro'. This is because the container images do not currently read the values in '/var/lib/origin/.docker' as this may be a bug upstream. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1316341
* | Consolidating AWS roles and variables underneath openshift_aws role.Kenny Woodson2017-09-071-0/+7
| |
* | Remove openshift-commonMichael Gugino2017-09-061-1/+1
| | | | | | | | | | | | | | | | | | Most of this role's purpose was to set facts. The vast majority of these facts were simply redefining user-supplied variables. This commit also removes various artifacts leftover from previous versions, as well as variables that seem to be entirely unused.
* | Merge pull request #5230 from kwoodson/openshift_node_bootstrapOpenShift Bot2017-08-301-156/+18
|\ \ | | | | | | Merged by openshift-bot
| * | Merging openshift_node with openshift bootstrap.Kenny Woodson2017-08-291-157/+19
| | |
* | | Merge pull request #5128 from mgugino-upstream-stage/reg-authScott Dodson2017-08-291-0/+15
|\ \ \ | | | | | | | | Add independent registry auth support
| * | | Add independent registry auth supportMichael Gugino2017-08-281-0/+15
| |/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Added the ability to support authentication for independent / 3rd party registries. This commit will allow users to provide a `oreg_auth_user` and `oreg_auth_password` to dynmically generate a docker config.json file. The docker config.json file can be used by openshift to authenticate to independent / 3rd party registries. `oreg_host` must supply endpoint connection info in the form of 'hostname.com:port', with (optional) port 443 default. To update the config.json on a later run, the user can specify `oreg_auth_credentials_replace=False` to update the credentials. These settings must be used in tandem with `oreg_url` Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1316341
* | | Merge pull request #5214 from giuseppe/rename_crio_variableScott Dodson2017-08-291-2/+2
|\ \ \ | |/ / |/| | crio: rename openshift_docker_use_crio to openshift_use_crio
| * | cri-o: rename openshift_docker_use_crio to openshift_use_crioGiuseppe Scrivano2017-08-251-2/+2
| | | | | | | | | | | | | | | | | | | | | It is confusing to have _docker_ in the name, since they are two different backends. Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
* | | Setup tuned profiles in /etc/tunedJiri Mencak2017-08-151-14/+4
|/ /
* | First attempt at refactor of os_firewallKenny Woodson2017-08-081-0/+32
| |
* | cri-o: Restart cri-o after openshift sdn installationSteve Milner2017-08-031-0/+7
| |
* | cri-o: Continue node without SELinux checkSteve Milner2017-08-031-3/+3
| | | | | | | | | | cri-o currently requires SELinux to be off. This change disables the SELinux check in the openshift_node role when cri-o is in use.
* | Move node facts to new openshift_node_facts role.Andrew Butcher2017-07-271-28/+0
| |
* | Merge pull request #4874 from ingvagabund/set-default-valuesJan Chaloupka2017-07-271-2/+6
|\ \ | | | | | | Sync all openshift.common.use_openshift_sdn uses in yaml files
| * | Sync all openshift.common.use_openshift_sdn uses in yaml filesJan Chaloupka2017-07-261-2/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Most occurrences are in a form: ```yaml openshift.common.use_openshift_sdn | default(true) | bool ``` Let's make all occurences this way given the use_openshift_sdn is set to true anyway. See https://github.com/openshift/openshift-ansible/blob/0c350dcc7d06d62be5ba3a8e468dff85cdd96dd7/roles/openshift_facts/library/openshift_facts.py#L2035
* | | Fix log dumping on service failureScott Dodson2017-07-201-1/+1
|/ / | | | | | | Also, add log dumping to master service startup too
* | Dump some logsScott Dodson2017-07-181-0/+11
| |
* | daemon_reload on node and ovs startScott Dodson2017-07-181-0/+2
| | | | | | | | | | At least in my smoke testing of a containerized install i had to manually reload systemd
* | Wrap additional service changes in retriesScott Dodson2017-07-181-0/+3
|/
* Add daemon_reload parameter to service tasksTim Bielawa2017-06-011-0/+1
| | | | | | | Fixes "Could not find the requested service atomic-openshift-master: cannot enable" error during reinstall. https://bugzilla.redhat.com/show_bug.cgi?id=1451693
* Merge pull request #4234 from vshn/feature/oreg_url_masternodeOpenShift Bot2017-05-261-1/+1
|\ | | | | Merged by openshift-bot
| * allow to configure oreg_url specifically for node or master. refs #4233Tobias Brunner2017-05-191-1/+1
| | | | | | | | | | | | | | | | | | This commit allows to specify imageConfig.format specifically for master or for nodes. One use case of this could be if you want to use customer builder images. In this case imageConfig.format only needs to be changed in the master-config.yml but not in the node-config.yml.
* | Workaround sysctl module issue with py3 by converting task to lineinfile.Andrew Butcher2017-05-191-1/+7
|/
* Don't double quote when conditionsScott Dodson2017-05-011-1/+1
|
* Add bool for proper conditional handlingRussell Teague2017-04-261-1/+1
|
* Update swap disable tasksRussell Teague2017-04-211-9/+14
| | | | | | * Lines are commented out vice being removed * Comment is added indicating why the change happened * Variable openshift_disable_swap added to allow user control
* Disable swap space on nodes at install and upgradeRussell Teague2017-04-121-0/+27
|
* Force to use TLSv1.2 (related to ↵Olivier Buisson2017-03-131-1/+1
| | | | https://github.com/openshift/openshift-ansible/pull/2707)
generated by cgit v1.2.1 (git 2.18.0) at 2024-05-19 17:36:20 +0000