| 12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788 |
- ---
- - name: Stop control plane services
- service:
- name: "{{ item }}"
- state: stopped
- with_items:
- - "{{ openshift_service_type }}-master-api"
- - "{{ openshift_service_type }}-master-controllers"
- failed_when: false
- - import_tasks: static_shim.yml
- - import_tasks: upgrade/upgrade_scheduler.yml
- # master_config_hook is passed in from upgrade play.
- - include_tasks: "upgrade/{{ master_config_hook }}"
- when: master_config_hook is defined
- - import_tasks: set_loopback_context.yml
- - name: Check for ca-bundle.crt
- stat:
- path: "{{ openshift.common.config_base }}/master/ca-bundle.crt"
- register: ca_bundle_stat
- failed_when: false
- - name: Check for ca.crt
- stat:
- path: "{{ openshift.common.config_base }}/master/ca.crt"
- register: ca_crt_stat
- failed_when: false
- - name: Migrate ca.crt to ca-bundle.crt
- command: mv ca.crt ca-bundle.crt
- args:
- chdir: "{{ openshift.common.config_base }}/master"
- when: ca_crt_stat.stat.isreg and not ca_bundle_stat.stat.exists
- - name: Link ca.crt to ca-bundle.crt
- file:
- src: "{{ openshift.common.config_base }}/master/ca-bundle.crt"
- path: "{{ openshift.common.config_base }}/master/ca.crt"
- state: link
- force: yes
- when: ca_crt_stat.stat.isreg and not ca_bundle_stat.stat.exists
- # Anyone upgrading to 3.7 or 3.9 should've had their certs updated to be
- # compatible with this so this is the only valid value for internal registry
- - name: Update imagePolicyConfig.internalRegistryHostname
- yedit:
- src: "{{ openshift.common.config_base }}/master/master-config.yaml"
- key: "imagePolicyConfig.internalRegistryHostname"
- value: "docker-registry.default.svc:5000"
- - name: Update oreg value
- yedit:
- src: "{{ openshift.common.config_base }}/master/master-config.yaml"
- key: 'imageConfig.format'
- value: "{{ oreg_url }}"
- when: oreg_url is defined
- - name: Change default node selector to compute=true
- yedit:
- src: "{{ openshift.common.config_base }}/master/master-config.yaml"
- key: 'projectConfig.defaultNodeSelector'
- value: '{{ hostvars[groups.oo_first_master.0].l_osm_default_node_selector }}'
- when: openshift_upgrade_target is version('3.9', '>=')
- - name: Remove use of pod presets from master config
- yedit:
- src: "{{ openshift.common.config_base }}/master/master-config.yaml"
- key: 'admissionConfig.pluginConfig.PodPreset'
- state: absent
- - name: Find current value for runtime-config
- yedit:
- src: "/tmp/master-config.yaml"
- key: "kubernetesMasterConfig.apiServerArguments.runtime-config"
- state: list
- register: runtime_config
- - name: Set the runtime-config to exclude pod presets
- yedit:
- src: "{{ openshift.common.config_base }}/master/master-config.yaml"
- key: "kubernetesMasterConfig.apiServerArguments.runtime-config"
- value: "{{ runtime_config.result | join(',') | regex_replace('(?:,)*apis/settings\\.k8s\\.io/v1alpha1=true','') }}"
- when: runtime_config.result
- - name: reload systemd units
- command: systemctl daemon-reload
|
