Trang chủ Khám phá Trợ giúp
Đăng ký Đăng nhập
shixiong
/
okd
1
0
Fork 0
Các tập tin Các vấn đề 0 Yêu cầu khéo về 0 Wiki
Tree: 34cd9f8dda
Branches Tags
okd
/
roles
/
openshift_node
/
tasks
/
glusterfs.yml

glusterfs.yml 2.2 KB
Lịch sử Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657 
  1. ---
    2. 

  2. - name: Install GlusterFS storage plugin dependencies
    3. 

  3.   package:
    4. 

  4.     name: glusterfs-fuse
    5. 

  5.     state: present
    6. 

  6.   register: result
    7. 

  7.   until: result is succeeded
    8. 

  8. 

  9. - name: Check for existence of fusefs sebooleans
    10. 

  10.   command: getsebool {{ item }}
    11. 

  11.   register: fusefs_getsebool_status
    12. 

  12.   when:
    13. 

  13.   - ansible_selinux
    14. 

  14.   - ansible_selinux.status == "enabled"
    15. 

  15.   failed_when: false
    16. 

  16.   changed_when: false
    17. 

  17.   with_items:
    18. 

  18.   - virt_use_fusefs
    19. 

  19.   - virt_sandbox_use_fusefs
    20. 

  20. 

  21. - name: Set seboolean to allow gluster storage plugin access from containers
    22. 

  22.   seboolean:
    23. 

  23.     name: "{{ item.item }}"
    24. 

  24.     state: yes
    25. 

  25.     persistent: yes
    26. 

  26.   when:
    27. 

  27.   - ansible_selinux
    28. 

  28.   - ansible_selinux.status == "enabled"
    29. 

  29.   - item.rc == 0
    30. 

  30.   # We need to detect whether or not the boolean is an alias, since `seboolean`
    31. 

  31.   # will error if it is an alias.  We do this by inspecting stdout for the boolean name,
    32. 

  32.   # since getsebool prints the resolved name.  (At some point Ansible's seboolean module
    33. 

  33.   # should learn to deal with aliases)
    34. 

  34.   - item.item in item.stdout  # Boolean does not have an alias.
    35. 

  35.   - ansible_python_version is version('3', '<')
    36. 

  36.   with_items: "{{ fusefs_getsebool_status.results }}"
    37. 

  37. 

  38. # Workaround for https://github.com/openshift/openshift-ansible/issues/4438
    39. 

  39. # Use command module rather than seboolean module to set GlusterFS booleans.
    40. 

  40. # TODO: Remove this task and the ansible_python_version comparison in
    41. 

  41. # the previous task when the problem has been addressed in current
    42. 

  42. # ansible release.
    43. 

  43. - name: Set seboolean to allow gluster storage plugin access from containers (python 3)
    44. 

  44.   command: >
    45. 

  45.     setsebool -P {{ item.item }} on
    46. 

  46.   when:
    47. 

  47.   - ansible_selinux
    48. 

  48.   - ansible_selinux.status == "enabled"
    49. 

  49.   - item.rc == 0
    50. 

  50.   # We need to detect whether or not the boolean is an alias, since `seboolean`
    51. 

  51.   # will error if it is an alias.  We do this by inspecting stdout for the boolean name,
    52. 

  52.   # since getsebool prints the resolved name.  (At some point Ansible's seboolean module
    53. 

  53.   # should learn to deal with aliases)
    54. 

  54.   - item.item in item.stdout  # Boolean does not have an alias.
    55. 

  55.   - ('--> off' in item.stdout)  # Boolean is currently off.
    56. 

  56.   - ansible_python_version is version('3', '>=')
    57. 

  57.   with_items: "{{ fusefs_getsebool_status.results }}"
    58.