shixiong
/
okd


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293
							---
- name: Stop control plane services
  service:
    name: "{{ item }}"
    state: stopped
  with_items:
  - "{{ openshift_service_type }}-master-api"
  - "{{ openshift_service_type }}-master-controllers"
  failed_when: false

- import_tasks: static_shim.yml

- import_tasks: upgrade/upgrade_scheduler.yml

# master_config_hook is passed in from upgrade play.
- include_tasks: "upgrade/{{ master_config_hook }}"
  when: master_config_hook is defined

- import_tasks: set_loopback_context.yml

- name: Check for ca-bundle.crt
  stat:
    path: "{{ openshift.common.config_base }}/master/ca-bundle.crt"
    get_checksum: false
    get_attributes: false
    get_mime: false
  register: ca_bundle_stat
  failed_when: false

- name: Check for ca.crt
  stat:
    path: "{{ openshift.common.config_base }}/master/ca.crt"
    get_checksum: false
    get_mime: false
  register: ca_crt_stat
  failed_when: false

- name: Migrate ca.crt to ca-bundle.crt
  command: mv ca.crt ca-bundle.crt
  args:
    chdir: "{{ openshift.common.config_base }}/master"
  when: ca_crt_stat.stat.isreg and not ca_bundle_stat.stat.exists

- name: Link ca.crt to ca-bundle.crt
  file:
    src: "{{ openshift.common.config_base }}/master/ca-bundle.crt"
    path: "{{ openshift.common.config_base }}/master/ca.crt"
    state: link
    force: yes
  when: ca_crt_stat.stat.isreg and not ca_bundle_stat.stat.exists

# Anyone upgrading to 3.7 or 3.9 should've had their certs updated to be
# compatible with this so this is the only valid value for internal registry
- name: Update imagePolicyConfig.internalRegistryHostname
  yedit:
    src: "{{ openshift.common.config_base }}/master/master-config.yaml"
    key: "imagePolicyConfig.internalRegistryHostname"
    value: "docker-registry.default.svc:5000"

- name: Update oreg value
  yedit:
    src: "{{ openshift.common.config_base }}/master/master-config.yaml"
    key: 'imageConfig.format'
    value: "{{ oreg_url }}"
  when: oreg_url is defined

- name: Change default node selector to compute=true
  yedit:
    src: "{{ openshift.common.config_base }}/master/master-config.yaml"
    key: 'projectConfig.defaultNodeSelector'
    value: '{{ hostvars[groups.oo_first_master.0].l_osm_default_node_selector }}'
  when: openshift_upgrade_target is version_compare('3.9', '>=')

- name: Remove use of pod presets from master config
  yedit:
    src: "{{ openshift.common.config_base }}/master/master-config.yaml"
    key: 'admissionConfig.pluginConfig.PodPreset'
    state: absent
- name: Find current value for runtime-config
  yedit:
    src: "/tmp/master-config.yaml"
    key: "kubernetesMasterConfig.apiServerArguments.runtime-config"
    state: list
  register: runtime_config
- name: Set the runtime-config to exclude pod presets
  yedit:
    src: "{{ openshift.common.config_base }}/master/master-config.yaml"
    key: "kubernetesMasterConfig.apiServerArguments.runtime-config"
    value: "{{ runtime_config.result | join(',') | regex_replace('(?:,)*apis/settings\\.k8s\\.io/v1alpha1=true','') }}"
  when: runtime_config.result

- name: reload systemd units
  command: systemctl daemon-reload