summaryrefslogtreecommitdiffstats
path: root/roles/openshift_node/templates
Commit message (Collapse)AuthorAgeFilesLines
* add glusterblock support for ansibleMangirdas2018-01-311-0/+15
| | | | Co-authored-by: Christina Kyriakidou <Ckyriaki@Redhat.com>
* Merge pull request #6843 from rajatchopra/bugdnsmasqScott Dodson2018-01-242-2/+2
|\ | | | | Change dnsmasq Requires to Wants
| * Change dnsmasq Requires to Wants. ↵Rajat Chopra2018-01-232-2/+2
| | | | | | | | | | | | https://bugzilla.redhat.com/show_bug.cgi?id=1532960 Signed-off-by: Rajat Chopra <rchopra@redhat.com>
* | Lowercase node names when creating certificatesVadim Rutkovsky2018-01-231-1/+1
|/
* Properly cast crio boolean variables to boolMichael Gugino2018-01-083-3/+3
| | | | | | | | | | | Variables that are specifically booleans should be cast to bool. This is because users may sometimes pass them as string values. This is particularly prevalent when using ini-style inventories. Affected-by: https://github.com/ansible/ansible/issues/34591 Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1531592
* Add docker auth credentials to system container installMichael Gugino2018-01-021-1/+7
| | | | | | | This commit adds docker auth credentials mount to system container systemd unit file. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1514324
* Relocate filter plugins to lib_utilsMichael Gugino2017-12-181-1/+1
| | | | | | | | | | | | | | This commit relocates filter_plugings to lib_utils, changes the namespacing to prevent unintended use of older versions that may be present in filter_plugins/ directory on existing installs. Add lib_utils to meta depends for roles Also consolidate some plugins into lib_utils from various other areas. Update rpm spec, obsolete plugin rpms.
* Remove openshift_node_facts roleMichael Gugino2017-12-182-5/+3
| | | | | This commit removes the remainder of openshift_node_facts role.
* Merge pull request #6456 from mgugino-upstream-stage/node-factsMichael Gugino2017-12-172-6/+6
|\ | | | | Remove openshift_node_facts part 1
| * Remove openshift_node_facts part 1Michael Gugino2017-12-142-6/+6
| | | | | | | | | | This commit removes some items from openshift_facts for the openshit_node role.
* | crio: change socket path to /var/run/crio/crio.sockGiuseppe Scrivano2017-12-121-2/+2
|/ | | | | | it is required for OpenShift 3.9 Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
* Remove openshift.common.service_typeMichael Gugino2017-12-072-15/+15
| | | | | | | | This commit removes openshift.common.service_type in favor of openshift_service_type. This commit also removes r_openshift_excluder_service_type from plays in favor of using the role's defaults.
* Implement container runtime roleMichael Gugino2017-12-015-16/+16
|
* Combine openshift_node and openshift_node_dnsmasqMichael Gugino2017-11-272-0/+14
| | | | | This commit combines these two roles. This will prevent openshift_node_facts from running twice.
* Removed old version codeMichael Gugino2017-11-141-2/+0
| | | | | | This commit removes any references to versions < 1.5/3.5 We assume the version is always greater than or equal to 1.5/3.5.
* Initial Kuryr supportMichał Dulko2017-10-201-1/+3
| | | | | | | | This commit enables deploying Kuryr networking on top of OpenShift in containers. kuryr-controller is a Deployment and kuryr-cni is deployed as DaemonSet (container will drop all CNI configuration files). Co-Authored-By: Antoni Segura Puimedon <celebdor@gmail.com>
* Do not remove files for bootstrap if resolv or dns.Kenny Woodson2017-10-171-3/+3
|
* Add ability to set node and master imageConfig to latestMichael Gugino2017-10-121-1/+1
| | | | | | | | | Currently, imageConfig.latest is hard-coded to false. This commit adds an appropriate boolean to enable setting to true. Fixes: https://github.com/openshift/openshift-ansible/issues/1422
* Separate tuned daemon setup into a role.Jiri Mencak2017-10-104-67/+0
| | | | | | | | | | | | | | Currently, profiles for the tuned daemon are set only for OpenShift node(s). This excludes the OpenShift loadbalancer. As a result, ARP cache limits on loadbalancers are not raised. This causes problems with HA setups where loadbalancers serve 1k+ OpenShift nodes. This commit ensures the openshift-control-plane role is applied to loadbalancers, masters and OpenShift infra nodes. Regular OpenShift worker nodes get the openshift-node profile. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1498213
* node: make node service PartOf=openvswitch.service when openshift-sdn is usedDan Williams2017-10-051-0/+1
| | | | | | | | | | | | | Commit 7f805f9a0c41477365dd88b0ac73f0d221bd654a causes the behavior seen in https://bugzilla.redhat.com/show_bug.cgi?id=1453113 because openshift-node is no longer restarted when openvswitch is, due to the change from Requires to Wants. Turns out that making the openshift node service PartOf the OVS service can achieve the same result and ensure openshift-node gets restarted whenever OVS does, which ensures that networking doesn't break underneath the node. Suggested by Giuseppe Scrivano
* Merge pull request #5269 from rparulek/nuage-ansibleOpenShift Merge Robot2017-09-251-0/+1
|\ | | | | | | | | Automatic merge from submit-queue Changes for Nuage atomic ansible install
| * Changes for Nuage atomic ansible installRohan Parulekar2017-09-201-0/+1
| |
* | Move additional/block/insecure registires to /etc/containers/registries.confMichael Gugino2017-09-211-1/+1
|/ | | | | | | | This commit moves additional/block/insecure registries to /etc/containers/registries.conf and comments existing lines in /etc/sysconfig/docker. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1460930
* Fix: authenticated registry support for containerized hostsMichael Gugino2017-09-111-1/+16
| | | | | | | | | | | | | | | | | | | | | | | Currently, openshift-anisble supports authentication to container registries to pull down openshift container images. The openshift_verison role uses the docker cli to gather image information from container registries before authentication credentials are provided by openshift-ansible. This commit creates the necessary token to authenticate to private registries during openshift_version. The token is generated by the role 'docker' on all hosts where docker is installed/configured when oreg_auth_users is defined. This commit also adds a read-only mount into the openshift master and node container services. This mount is '/var/lib/origin/.docker:/root/.docker:ro'. This is because the container images do not currently read the values in '/var/lib/origin/.docker' as this may be a bug upstream. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1316341
* Merge pull request #5208 from mgugino-upstream-stage/remove-openshift_commonOpenShift Bot2017-09-072-7/+7
|\ | | | | Merged by openshift-bot
| * Remove openshift-commonMichael Gugino2017-09-062-7/+7
| | | | | | | | | | | | | | | | | | Most of this role's purpose was to set facts. The vast majority of these facts were simply redefining user-supplied variables. This commit also removes various artifacts leftover from previous versions, as well as variables that seem to be entirely unused.
* | remove experimental-cri flag from node configSeth Jennings2017-09-061-2/+0
|/
* roles: use openshift_use_crioGiuseppe Scrivano2017-08-253-3/+3
| | | | Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
* New tuned profile hierarchy.Jiri Mencak2017-08-154-0/+67
|
* openshift_node: fix typo for experimental-criSteve Milner2017-08-031-1/+1
|
* cri-o: Fix node template to use full variableSteve Milner2017-08-031-1/+1
|
* cri-o: Add cri-o as a Wants in node unitsSteve Milner2017-08-032-1/+2
|
* node.yaml: configure node to use cri-o when openshift.common.use_crioGiuseppe Scrivano2017-08-031-0/+15
| | | | Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
* Set TimeoutStartSec=300Scott Dodson2017-07-251-0/+1
| | | | | | On nodes with thousands of services it may take a very long time to establish all of the network routing rules. The longest we've seen is about 180s
* Revert "set KillMode to process in node service file"Scott Dodson2017-07-251-1/+0
|
* set KillMode to process in node service fileJan Chaloupka2017-07-131-0/+1
|
* Use default ports for dnsmasq and node dnsScott Dodson2017-06-303-3/+3
|
* Run dns on the node and use that for dnsmasqScott Dodson2017-06-305-43/+40
|
* Ensure that host pki tree is mounted in containerized componentsScott Dodson2017-06-121-1/+1
|
* node, systemd: change Requires to Wants for openvswitchGiuseppe Scrivano2017-05-171-1/+1
| | | | | | | | | Sometimes the node container is not started on a container-engine restart. Use a weaker dependency on openvswitch that is causing this issue Closes: https://bugzilla.redhat.com/show_bug.cgi?id=1451192 Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
* Fix templating of static service filesRussell Teague2017-05-122-0/+0
|
* Add service file templates for master and nodeSteve Milner2017-05-092-0/+43
| | | | | | | Adds service file templates for both maste and node. These will lay down in /etc/system/systemd to override what may already be present from a package. These instances take into account the name of the container daemon (docker or container-engine).
* Update systemd units to use proper container service nameSteve Milner2017-05-093-10/+10
| | | | | | | - If using a system container: container-engine - If using a package install: docker Ref: https://bugzilla.redhat.com/show_bug.cgi?id=1448800
* Make /rootfs mount rslaveScott Dodson2017-03-211-1/+1
| | | | Fixes https://bugzilla.redhat.com/show_bug.cgi?id=1427807
* Fix containerized openvswitch raceScott Dodson2017-03-151-0/+2
|
* Allow overriding minTLSVersion and cipherSuitesMartin Eggen2017-03-091-0/+9
| | | | | Add parameters to allow overriding minTLSVersion and cipherSuites in master and node servingInfo config stanzas.
* node/sdn: make /var/lib/cni persistent to ensure IPAM allocations stick ↵Dan Williams2017-03-031-1/+1
| | | | | | | | | | | | | | | | | | | | | | | around across node restart With the move to a CNI plugin, docker no longer handles IPAM, but CNI does through openshift-sdn's usage of the 'host-local' CNI IPAM plugin. That plugin stores IPAM allocations under /var/lib/cni/. If the node container gets restarted, without presreving /var/lib/cni, the IPs currently allocated to running pods get lost and on restart, openshift-sdn may allocate those IPs to new pods causing duplicate allocations. This never happened with docker because it has its own persistent IPAM store that does not get removed when docker restarts. Also because (historically) when docker restarted, all the containers died and the IP allocations were released by the daemon. Fix this by ensuring that IPAM allocations (which are tied to the life of the pod, *not* the life of the openshift-node process) persist even if the openshift-node process restarts. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1427789
* Combined (squashed) commit for all changes related to adding Contiv support ↵Sanjeev Rampal2017-02-271-1/+1
| | | | into Openshift Ansible. This is the first (beta) release of Contiv with Openshift and is only supported for Openshift Origin + Bare metal deployments at the time of this commit. Please refer to the Openshift and Contiv official documentation for details of the level of support for different features and modes of operation.
* kubelet must have rw to cgroups for pod/qos cgroups to functionDerek Carr2017-01-181-1/+1
|
* Merge pull request #2763 from yfauser/byo_cni_plugin_fixesAndrew Butcher2016-11-161-1/+1
|\ | | | | [#2698] Change to allow cni deployments without openshift SDN
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-23 16:12:39 +0000