Home Explore Help
Register Sign In
shixiong
/
okd
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 29692bcb64
Branches Tags
okd
/
roles
/
openshift_node
/
tasks
/
node_system_container.yml

node_system_container.yml 2.5 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162 
  1. ---
    2. 

  2. # system containers create their own service unit files based on templates
    3. 

  3. # that are part of the container image.
    4. 

  4. # oc_atomic_container will create a systemd service unit file in
    5. 

  5. # /etc/systemd/system/origin-node.service (origin) or
    6. 

  6. # /etc/systemd/system/atomic-openshift-node.service (enterprise)
    7. 

  7. 

  8. # TODO: remove when system container is fixed to not include it
    9. 

  9. - name: Ensure old system path is set
    10. 

  10.   file:
    11. 

  11.     state: directory
    12. 

  12.     path: "{{ item }}"
    13. 

  13.     mode: '0750'
    14. 

  14.   with_items:
    15. 

  15.   - "/etc/origin/openvswitch"
    16. 

  16.   - "/var/lib/kubelet"
    17. 

  17.   - "/opt/cni/bin"
    18. 

  18. 

  19. - name: Pre-pull node system container image
    20. 

  20.   command: >
    21. 

  21.     atomic pull --storage=ostree {{ system_osn_image }}
    22. 

  22.   register: pull_result
    23. 

  23.   retries: 3
    24. 

  24.   delay: 5
    25. 

  25.   until: pull_result.rc == 0
    26. 

  26.   changed_when: "'Pulling layer' in pull_result.stdout"
    27. 

  27. 

  28. - name: Install or Update node system container
    29. 

  29.   oc_atomic_container:
    30. 

  30.     name: "{{ openshift_service_type }}-node"
    31. 

  31.     image: "{{ system_osn_image }}"
    32. 

  32.     values:
    33. 

  33.     - "DNS_DOMAIN={{ openshift.common.dns_domain }}"
    34. 

  34.     - "DOCKER_SERVICE={{ openshift_docker_service_name }}.service"
    35. 

  35.     - 'ADDTL_MOUNTS={{ l_node_syscon_add_mounts2 }}'
    36. 

  36.     state: latest
    37. 

  37.   vars:
    38. 

  38.     # We need to evaluate some variables here to ensure
    39. 

  39.     # l_bind_docker_reg_auth is evaluated after registry_auth.yml has been
    40. 

  40.     # processed.
    41. 

  41. 

  42.     # Determine if we want to include auth credentials mount.
    43. 

  43.     l_node_syscon_auth_mounts_l: "{{ l_bind_docker_reg_auth | ternary(openshift_node_syscon_auth_mounts_l,[]) }}"
    44. 

  44. 

  45.     # Join any user-provided mounts and auth_mounts into a combined list.
    46. 

  46.     l_node_syscon_add_mounts_l: "{{ openshift_node_syscon_add_mounts_l | union(l_node_syscon_auth_mounts_l) }}"
    47. 

  47. 

  48.     # We must prepend a ',' here to ensure the value is inserted properly into an
    49. 

  49.     # existing json list in the container's config.json
    50. 

  50.     # lib_utils_oo_l_of_d_to_csv is a custom filter plugin in roles/lib_utils/oo_filters.py
    51. 

  51.     l_node_syscon_add_mounts: ",{{ l_node_syscon_add_mounts_l | lib_utils_oo_l_of_d_to_csv }}"
    52. 

  52.     # if we have just a ',' then both mount lists were empty, we don't want to add
    53. 

  53.     # anything to config.json
    54. 

  54.     l_node_syscon_add_mounts2: "{{ (l_node_syscon_add_mounts != ',') | bool | ternary(l_node_syscon_add_mounts,'') }}"
    55. 

  55. 

  56. # TODO: network manager on RHEL is failing to execute 99-origin-dns.sh with signal 13, an immediate
    57. 

  57. # restart seems to allow the job to configure. Only occurs with system containers.
    58. 

  58. - name: Restart network manager to ensure networking configuration is in place
    59. 

  59.   systemd:
    60. 

  60.     name: NetworkManager
    61. 

  61.     enabled: yes
    62. 

  62.     state: restarted
    63.