richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
5938 Commits
34 Branches
82 Tags
155 MiB
Tree: 0ac364dfae
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '0ac364dfae'
${ noResults }
kubespray/roles/container-engine/containerd/tasks/main.yml

134 lines
4.3 KiB
Raw Normal View History

containerd support (#4664) * Add limited containerd support Containerd support for Ubuntu + Calico * Added CRI-O support for ubuntu * containerd support. * Reset containerd support. * fix lint. * implemented feedback * Change task name cri xx instead of cri-o in reset task and timeout condition. * set crictl to fixed version * Use docker-ce's container.io package for containerd. * Add check containerd is installable or not. * Avoid stop docker when use containerd and optimize retry for reset. * Add config.toml. * Fixed containerd for kubelet.env. * Merge PR #4629 * Remove unused ubuntu variable for containerd * Polish code for containerd and cri-o * Refactoring cri socket configuration. * Configurable conmon. * Remove unused crictl/runc download * Now crictl and runc is downloaded by common crictl.yml. * fixed yamllint error * Fixed brokenfiles by conflict. * Remove commented line in config.toml * Remove readded v1.12.x version * Fixed broken set_docker_image_facts * Fix yamllint errors. * Remove unused apt source * Fix crictl could not be installed * Add containerd config from skolekonov's PR #4601
5 years ago
remove atomic support because reached end of live (#5783)
5 years ago
Only use stat get_checksum: yes when needed (#7270) By default Ansible stat module compute checksum, list extended attributes and find mime type To find all stat invocations that really use one of those: git grep -F stat. | grep -vE 'stat.(islnk|exists|lnk_source|writeable)' Signed-off-by: Etienne Champetier <e.champetier@ateme.com>
4 years ago
remove atomic support because reached end of live (#5783)
5 years ago
containerd support (#4664) * Add limited containerd support Containerd support for Ubuntu + Calico * Added CRI-O support for ubuntu * containerd support. * Reset containerd support. * fix lint. * implemented feedback * Change task name cri xx instead of cri-o in reset task and timeout condition. * set crictl to fixed version * Use docker-ce's container.io package for containerd. * Add check containerd is installable or not. * Avoid stop docker when use containerd and optimize retry for reset. * Add config.toml. * Fixed containerd for kubelet.env. * Merge PR #4629 * Remove unused ubuntu variable for containerd * Polish code for containerd and cri-o * Refactoring cri socket configuration. * Configurable conmon. * Remove unused crictl/runc download * Now crictl and runc is downloaded by common crictl.yml. * fixed yamllint error * Fixed brokenfiles by conflict. * Remove commented line in config.toml * Remove readded v1.12.x version * Fixed broken set_docker_image_facts * Fix yamllint errors. * Remove unused apt source * Fix crictl could not be installed * Add containerd config from skolekonov's PR #4601
5 years ago
Add containerd on Flatcar Container Linux (#7681)
3 years ago
containerd support (#4664) * Add limited containerd support Containerd support for Ubuntu + Calico * Added CRI-O support for ubuntu * containerd support. * Reset containerd support. * fix lint. * implemented feedback * Change task name cri xx instead of cri-o in reset task and timeout condition. * set crictl to fixed version * Use docker-ce's container.io package for containerd. * Add check containerd is installable or not. * Avoid stop docker when use containerd and optimize retry for reset. * Add config.toml. * Fixed containerd for kubelet.env. * Merge PR #4629 * Remove unused ubuntu variable for containerd * Polish code for containerd and cri-o * Refactoring cri socket configuration. * Configurable conmon. * Remove unused crictl/runc download * Now crictl and runc is downloaded by common crictl.yml. * fixed yamllint error * Fixed brokenfiles by conflict. * Remove commented line in config.toml * Remove readded v1.12.x version * Fixed broken set_docker_image_facts * Fix yamllint errors. * Remove unused apt source * Fix crictl could not be installed * Add containerd config from skolekonov's PR #4601
5 years ago
Enable containerd to deploy vanilla containerd package (#4951) * Enable containerd to deploy vanilla containerd package Fixes kubeadm references to CRI socket for containerd Fixes download role cache feature to work with containerd Change-Id: I2ab8f0031107e2f0d1a85c39b4beb66f08509a01 * use containerd for flannel-addons job Change-Id: Ied375c7d65e64a625ffbd995ff16f2374067dee6 * add containerd vars Change-Id: Ib9a8a04e501c481a86235413cbec63f3672baf91 * fixup vars Change-Id: Ibea64e4b18405a578b52a13da100384582aa24c2 * more fixes * fix rh repo Change-Id: I00575a77cfb7b81d6095db5d918a52023c8f13ba * Adjust helm host install for containerd
5 years ago
containerd support (#4664) * Add limited containerd support Containerd support for Ubuntu + Calico * Added CRI-O support for ubuntu * containerd support. * Reset containerd support. * fix lint. * implemented feedback * Change task name cri xx instead of cri-o in reset task and timeout condition. * set crictl to fixed version * Use docker-ce's container.io package for containerd. * Add check containerd is installable or not. * Avoid stop docker when use containerd and optimize retry for reset. * Add config.toml. * Fixed containerd for kubelet.env. * Merge PR #4629 * Remove unused ubuntu variable for containerd * Polish code for containerd and cri-o * Refactoring cri socket configuration. * Configurable conmon. * Remove unused crictl/runc download * Now crictl and runc is downloaded by common crictl.yml. * fixed yamllint error * Fixed brokenfiles by conflict. * Remove commented line in config.toml * Remove readded v1.12.x version * Fixed broken set_docker_image_facts * Fix yamllint errors. * Remove unused apt source * Fix crictl could not be installed * Add containerd config from skolekonov's PR #4601
5 years ago
Fix ansible-lint E305 (#6459)
4 years ago
Allow containerd runtime with fedora os (30/31) - add CI test (#6094)
4 years ago
add containerd on fedora CoreOS (#7794) * set selinux type t_etc if selinux state is enforcing * workaround with update repo is no longer needed remove comments about failing playbook * grubby is not available in distros using ostree * remove docker support because removed in fcos update install script example with live rootfs * do not call grubby on ostree based distro * update docs enabling containerd on fedora coreos
3 years ago
Allow containerd runtime with fedora os (30/31) - add CI test (#6094)
4 years ago
add containerd on fedora CoreOS (#7794) * set selinux type t_etc if selinux state is enforcing * workaround with update repo is no longer needed remove comments about failing playbook * grubby is not available in distros using ostree * remove docker support because removed in fcos update install script example with live rootfs * do not call grubby on ostree based distro * update docs enabling containerd on fedora coreos
3 years ago
Allow containerd runtime with fedora os (30/31) - add CI test (#6094)
4 years ago
Enable containerd to deploy vanilla containerd package (#4951) * Enable containerd to deploy vanilla containerd package Fixes kubeadm references to CRI socket for containerd Fixes download role cache feature to work with containerd Change-Id: I2ab8f0031107e2f0d1a85c39b4beb66f08509a01 * use containerd for flannel-addons job Change-Id: Ied375c7d65e64a625ffbd995ff16f2374067dee6 * add containerd vars Change-Id: Ib9a8a04e501c481a86235413cbec63f3672baf91 * fixup vars Change-Id: Ibea64e4b18405a578b52a13da100384582aa24c2 * more fixes * fix rh repo Change-Id: I00575a77cfb7b81d6095db5d918a52023c8f13ba * Adjust helm host install for containerd
5 years ago
Add containerd on Flatcar Container Linux (#7681)
3 years ago
Enable containerd to deploy vanilla containerd package (#4951) * Enable containerd to deploy vanilla containerd package Fixes kubeadm references to CRI socket for containerd Fixes download role cache feature to work with containerd Change-Id: I2ab8f0031107e2f0d1a85c39b4beb66f08509a01 * use containerd for flannel-addons job Change-Id: Ied375c7d65e64a625ffbd995ff16f2374067dee6 * add containerd vars Change-Id: Ib9a8a04e501c481a86235413cbec63f3672baf91 * fixup vars Change-Id: Ibea64e4b18405a578b52a13da100384582aa24c2 * more fixes * fix rh repo Change-Id: I00575a77cfb7b81d6095db5d918a52023c8f13ba * Adjust helm host install for containerd
5 years ago
Add proxy support to containerd, improves no_proxy (#5583) * containerd: add proxy support Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com> * kubespray-defaults: add kube_service_addresses / kube_pods_subnet to no_proxy CIDR notation in no_proxy is supported by a lot of programs/languages, including go: https://github.com/golang/go/issues/16704 Without that containerd cannot talk the the API server (kube_apiserver_ip), but it should not go through an external proxy for the nodes/pods/services Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
5 years ago
Move to Ansible 3.4.0 (#7672) * Ansible: move to Ansible 3.4.0 which uses ansible-base 2.10.10 * Docs: add a note about ansible upgrade post 2.9.x * CI: ensure ansible is removed before ansible 3.x is installed to avoid pip failures * Ansible: use newer ansible-lint * Fix ansible-lint 5.0.11 found issues * syntax issues * risky-file-permissions * var-naming * role-name * molecule tests * Mitogen: use 0.3.0rc1 which adds support for ansible 2.10+ * Pin ansible-base to 2.10.11 to get package fix on RHEL8
3 years ago
Add proxy support to containerd, improves no_proxy (#5583) * containerd: add proxy support Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com> * kubespray-defaults: add kube_service_addresses / kube_pods_subnet to no_proxy CIDR notation in no_proxy is supported by a lot of programs/languages, including go: https://github.com/golang/go/issues/16704 Without that containerd cannot talk the the API server (kube_apiserver_ip), but it should not go through an external proxy for the nodes/pods/services Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
5 years ago
Move to Ansible 3.4.0 (#7672) * Ansible: move to Ansible 3.4.0 which uses ansible-base 2.10.10 * Docs: add a note about ansible upgrade post 2.9.x * CI: ensure ansible is removed before ansible 3.x is installed to avoid pip failures * Ansible: use newer ansible-lint * Fix ansible-lint 5.0.11 found issues * syntax issues * risky-file-permissions * var-naming * role-name * molecule tests * Mitogen: use 0.3.0rc1 which adds support for ansible 2.10+ * Pin ansible-base to 2.10.11 to get package fix on RHEL8
3 years ago
Add proxy support to containerd, improves no_proxy (#5583) * containerd: add proxy support Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com> * kubespray-defaults: add kube_service_addresses / kube_pods_subnet to no_proxy CIDR notation in no_proxy is supported by a lot of programs/languages, including go: https://github.com/golang/go/issues/16704 Without that containerd cannot talk the the API server (kube_apiserver_ip), but it should not go through an external proxy for the nodes/pods/services Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
5 years ago
Enable containerd to deploy vanilla containerd package (#4951) * Enable containerd to deploy vanilla containerd package Fixes kubeadm references to CRI socket for containerd Fixes download role cache feature to work with containerd Change-Id: I2ab8f0031107e2f0d1a85c39b4beb66f08509a01 * use containerd for flannel-addons job Change-Id: Ied375c7d65e64a625ffbd995ff16f2374067dee6 * add containerd vars Change-Id: Ib9a8a04e501c481a86235413cbec63f3672baf91 * fixup vars Change-Id: Ibea64e4b18405a578b52a13da100384582aa24c2 * more fixes * fix rh repo Change-Id: I00575a77cfb7b81d6095db5d918a52023c8f13ba * Adjust helm host install for containerd
5 years ago
containerd support (#4664) * Add limited containerd support Containerd support for Ubuntu + Calico * Added CRI-O support for ubuntu * containerd support. * Reset containerd support. * fix lint. * implemented feedback * Change task name cri xx instead of cri-o in reset task and timeout condition. * set crictl to fixed version * Use docker-ce's container.io package for containerd. * Add check containerd is installable or not. * Avoid stop docker when use containerd and optimize retry for reset. * Add config.toml. * Fixed containerd for kubelet.env. * Merge PR #4629 * Remove unused ubuntu variable for containerd * Polish code for containerd and cri-o * Refactoring cri socket configuration. * Configurable conmon. * Remove unused crictl/runc download * Now crictl and runc is downloaded by common crictl.yml. * fixed yamllint error * Fixed brokenfiles by conflict. * Remove commented line in config.toml * Remove readded v1.12.x version * Fixed broken set_docker_image_facts * Fix yamllint errors. * Remove unused apt source * Fix crictl could not be installed * Add containerd config from skolekonov's PR #4601
5 years ago
Enable containerd to deploy vanilla containerd package (#4951) * Enable containerd to deploy vanilla containerd package Fixes kubeadm references to CRI socket for containerd Fixes download role cache feature to work with containerd Change-Id: I2ab8f0031107e2f0d1a85c39b4beb66f08509a01 * use containerd for flannel-addons job Change-Id: Ied375c7d65e64a625ffbd995ff16f2374067dee6 * add containerd vars Change-Id: Ib9a8a04e501c481a86235413cbec63f3672baf91 * fixup vars Change-Id: Ibea64e4b18405a578b52a13da100384582aa24c2 * more fixes * fix rh repo Change-Id: I00575a77cfb7b81d6095db5d918a52023c8f13ba * Adjust helm host install for containerd
5 years ago
Add containerd_extra_args (#7461) * Add containerd_extra_args This is useful for custom containerd config, e.g. auth Signed-off-by: Zhong Jianxin <azuwis@gmail.com> * Make containerd config.toml mode 0640 It may contain sensitive information like password Signed-off-by: Zhong Jianxin <azuwis@gmail.com>
3 years ago
Enable containerd to deploy vanilla containerd package (#4951) * Enable containerd to deploy vanilla containerd package Fixes kubeadm references to CRI socket for containerd Fixes download role cache feature to work with containerd Change-Id: I2ab8f0031107e2f0d1a85c39b4beb66f08509a01 * use containerd for flannel-addons job Change-Id: Ied375c7d65e64a625ffbd995ff16f2374067dee6 * add containerd vars Change-Id: Ib9a8a04e501c481a86235413cbec63f3672baf91 * fixup vars Change-Id: Ibea64e4b18405a578b52a13da100384582aa24c2 * more fixes * fix rh repo Change-Id: I00575a77cfb7b81d6095db5d918a52023c8f13ba * Adjust helm host install for containerd
5 years ago
containerd support (#4664) * Add limited containerd support Containerd support for Ubuntu + Calico * Added CRI-O support for ubuntu * containerd support. * Reset containerd support. * fix lint. * implemented feedback * Change task name cri xx instead of cri-o in reset task and timeout condition. * set crictl to fixed version * Use docker-ce's container.io package for containerd. * Add check containerd is installable or not. * Avoid stop docker when use containerd and optimize retry for reset. * Add config.toml. * Fixed containerd for kubelet.env. * Merge PR #4629 * Remove unused ubuntu variable for containerd * Polish code for containerd and cri-o * Refactoring cri socket configuration. * Configurable conmon. * Remove unused crictl/runc download * Now crictl and runc is downloaded by common crictl.yml. * fixed yamllint error * Fixed brokenfiles by conflict. * Remove commented line in config.toml * Remove readded v1.12.x version * Fixed broken set_docker_image_facts * Fix yamllint errors. * Remove unused apt source * Fix crictl could not be installed * Add containerd config from skolekonov's PR #4601
5 years ago
Enable containerd to deploy vanilla containerd package (#4951) * Enable containerd to deploy vanilla containerd package Fixes kubeadm references to CRI socket for containerd Fixes download role cache feature to work with containerd Change-Id: I2ab8f0031107e2f0d1a85c39b4beb66f08509a01 * use containerd for flannel-addons job Change-Id: Ied375c7d65e64a625ffbd995ff16f2374067dee6 * add containerd vars Change-Id: Ib9a8a04e501c481a86235413cbec63f3672baf91 * fixup vars Change-Id: Ibea64e4b18405a578b52a13da100384582aa24c2 * more fixes * fix rh repo Change-Id: I00575a77cfb7b81d6095db5d918a52023c8f13ba * Adjust helm host install for containerd
5 years ago
containerd: use copy to set apt pin Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
4 years ago
Enable containerd to deploy vanilla containerd package (#4951) * Enable containerd to deploy vanilla containerd package Fixes kubeadm references to CRI socket for containerd Fixes download role cache feature to work with containerd Change-Id: I2ab8f0031107e2f0d1a85c39b4beb66f08509a01 * use containerd for flannel-addons job Change-Id: Ied375c7d65e64a625ffbd995ff16f2374067dee6 * add containerd vars Change-Id: Ib9a8a04e501c481a86235413cbec63f3672baf91 * fixup vars Change-Id: Ibea64e4b18405a578b52a13da100384582aa24c2 * more fixes * fix rh repo Change-Id: I00575a77cfb7b81d6095db5d918a52023c8f13ba * Adjust helm host install for containerd
5 years ago
containerd: use copy to set apt pin Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
4 years ago
Enable containerd to deploy vanilla containerd package (#4951) * Enable containerd to deploy vanilla containerd package Fixes kubeadm references to CRI socket for containerd Fixes download role cache feature to work with containerd Change-Id: I2ab8f0031107e2f0d1a85c39b4beb66f08509a01 * use containerd for flannel-addons job Change-Id: Ied375c7d65e64a625ffbd995ff16f2374067dee6 * add containerd vars Change-Id: Ib9a8a04e501c481a86235413cbec63f3672baf91 * fixup vars Change-Id: Ibea64e4b18405a578b52a13da100384582aa24c2 * more fixes * fix rh repo Change-Id: I00575a77cfb7b81d6095db5d918a52023c8f13ba * Adjust helm host install for containerd
5 years ago
containerd: use package instead of action Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
4 years ago
Enable containerd to deploy vanilla containerd package (#4951) * Enable containerd to deploy vanilla containerd package Fixes kubeadm references to CRI socket for containerd Fixes download role cache feature to work with containerd Change-Id: I2ab8f0031107e2f0d1a85c39b4beb66f08509a01 * use containerd for flannel-addons job Change-Id: Ied375c7d65e64a625ffbd995ff16f2374067dee6 * add containerd vars Change-Id: Ib9a8a04e501c481a86235413cbec63f3672baf91 * fixup vars Change-Id: Ibea64e4b18405a578b52a13da100384582aa24c2 * more fixes * fix rh repo Change-Id: I00575a77cfb7b81d6095db5d918a52023c8f13ba * Adjust helm host install for containerd
5 years ago
containerd: use package instead of action Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
4 years ago
Enable containerd to deploy vanilla containerd package (#4951) * Enable containerd to deploy vanilla containerd package Fixes kubeadm references to CRI socket for containerd Fixes download role cache feature to work with containerd Change-Id: I2ab8f0031107e2f0d1a85c39b4beb66f08509a01 * use containerd for flannel-addons job Change-Id: Ied375c7d65e64a625ffbd995ff16f2374067dee6 * add containerd vars Change-Id: Ib9a8a04e501c481a86235413cbec63f3672baf91 * fixup vars Change-Id: Ibea64e4b18405a578b52a13da100384582aa24c2 * more fixes * fix rh repo Change-Id: I00575a77cfb7b81d6095db5d918a52023c8f13ba * Adjust helm host install for containerd
5 years ago
Add containerd on Flatcar Container Linux (#7681)
3 years ago
Enable containerd to deploy vanilla containerd package (#4951) * Enable containerd to deploy vanilla containerd package Fixes kubeadm references to CRI socket for containerd Fixes download role cache feature to work with containerd Change-Id: I2ab8f0031107e2f0d1a85c39b4beb66f08509a01 * use containerd for flannel-addons job Change-Id: Ied375c7d65e64a625ffbd995ff16f2374067dee6 * add containerd vars Change-Id: Ib9a8a04e501c481a86235413cbec63f3672baf91 * fixup vars Change-Id: Ibea64e4b18405a578b52a13da100384582aa24c2 * more fixes * fix rh repo Change-Id: I00575a77cfb7b81d6095db5d918a52023c8f13ba * Adjust helm host install for containerd
5 years ago
Move to Ansible 3.4.0 (#7672) * Ansible: move to Ansible 3.4.0 which uses ansible-base 2.10.10 * Docs: add a note about ansible upgrade post 2.9.x * CI: ensure ansible is removed before ansible 3.x is installed to avoid pip failures * Ansible: use newer ansible-lint * Fix ansible-lint 5.0.11 found issues * syntax issues * risky-file-permissions * var-naming * role-name * molecule tests * Mitogen: use 0.3.0rc1 which adds support for ansible 2.10+ * Pin ansible-base to 2.10.11 to get package fix on RHEL8
3 years ago
add and use common crictl role (#6978)
4 years ago
containerd: ensure containerd is really started and enabled Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
4 years ago
  1. ---
  2. - name: check if fedora coreos
  3. stat:
  4. path: /run/ostree-booted
  5. get_attributes: no
  6. get_checksum: no
  7. get_mime: no
  8. register: ostree
  10. - name: set is_ostree
  11. set_fact:
  12. is_ostree: "{{ ostree.stat.exists }}"
  14. - name: Fail containerd setup if distribution is not supported
  15. fail:
  16. msg: "{{ ansible_distribution }} is not supported by containerd."
  17. when:
  18. - not ansible_distribution in ["CentOS", "OracleLinux", "RedHat", "Ubuntu", "Debian", "Fedora", "AlmaLinux", "Amazon", "Flatcar Container Linux by Kinvolk"]
  20. - name: gather os specific variables
  21. include_vars: "{{ item }}"
  22. with_first_found:
  23. - files:
  24. - "{{ ansible_distribution|lower }}-{{ ansible_distribution_version|lower|replace('/', '_') }}.yml"
  25. - "{{ ansible_distribution|lower }}-{{ ansible_distribution_release|lower }}-{{ host_architecture }}.yml"
  26. - "{{ ansible_distribution|lower }}-{{ ansible_distribution_release|lower }}.yml"
  27. - "{{ ansible_distribution|lower }}-{{ ansible_distribution_major_version|lower|replace('/', '_') }}.yml"
  28. - "{{ ansible_distribution|lower }}-{{ host_architecture }}.yml"
  29. - "{{ ansible_distribution|lower }}.yml"
  30. - "{{ ansible_os_family|lower }}-{{ host_architecture }}.yml"
  31. - "{{ ansible_os_family|lower }}.yml"
  32. - defaults.yml
  33. paths:
  34. - ../vars
  35. skip: true
  36. tags:
  37. - facts
  39. - name: disable unified_cgroup_hierarchy in Fedora 31+
  40. command: grubby --update-kernel=ALL --args="systemd.unified_cgroup_hierarchy=0"
  41. when:
  42. - ansible_distribution == "Fedora"
  43. - (ansible_distribution_major_version | int) >= 31
  44. - ansible_proc_cmdline['systemd.unified_cgroup_hierarchy'] is not defined or ansible_proc_cmdline['systemd.unified_cgroup_hierarchy'] != '0'
  45. - not is_ostree
  47. - name: reboot in Fedora 31+
  48. reboot:
  49. when:
  50. - ansible_distribution == "Fedora"
  51. - (ansible_distribution_major_version | int) >= 31
  52. - ansible_proc_cmdline['systemd.unified_cgroup_hierarchy'] is not defined or ansible_proc_cmdline['systemd.unified_cgroup_hierarchy'] != '0'
  53. - not is_ostree
  55. - include_tasks: containerd_repo.yml
  56. when: not (is_ostree or (ansible_distribution == "Flatcar Container Linux by Kinvolk"))
  58. - name: Create containerd service systemd directory if it doesn't exist
  59. file:
  60. path: /etc/systemd/system/containerd.service.d
  61. state: directory
  62. mode: 0755
  64. - name: Write containerd proxy drop-in
  65. template:
  66. src: http-proxy.conf.j2
  67. dest: /etc/systemd/system/containerd.service.d/http-proxy.conf
  68. mode: 0644
  69. notify: restart containerd
  70. when: http_proxy is defined or https_proxy is defined
  72. - name: ensure containerd config directory
  73. file:
  74. dest: "{{ containerd_cfg_dir }}"
  75. state: directory
  76. mode: 0755
  77. owner: root
  78. group: root
  80. - name: Copy containerd config file
  81. template:
  82. src: config.toml.j2
  83. dest: "{{ containerd_cfg_dir }}/config.toml"
  84. owner: "root"
  85. mode: 0640
  86. notify: restart containerd
  88. # This is required to ensure any apt upgrade will not break kubernetes
  89. - name: Set containerd pin priority to apt_preferences on Debian family
  90. copy:
  91. content: |
  92. Package: {{ containerd_package }}
  93. Pin: version {{ containerd_version }}*
  94. Pin-Priority: 1001
  95. dest: "/etc/apt/preferences.d/containerd"
  96. owner: "root"
  97. mode: 0644
  98. when: ansible_pkg_mgr == 'apt'
  100. - name: ensure containerd packages are installed
  101. package:
  102. name: "{{ containerd_package_info.pkgs }}"
  103. state: present
  104. module_defaults:
  105. apt:
  106. update_cache: true
  107. dnf:
  108. enablerepo: "{{ containerd_package_info.enablerepo | default(omit) }}"
  109. yum:
  110. enablerepo: "{{ containerd_package_info.enablerepo | default(omit) }}"
  111. zypper:
  112. update_cache: true
  113. register: containerd_task_result
  114. until: containerd_task_result is succeeded
  115. retries: 4
  116. delay: "{{ retry_stagger | d(3) }}"
  117. notify: restart containerd
  118. when:
  119. - not (is_ostree or (ansible_distribution == "Flatcar Container Linux by Kinvolk"))
  120. - containerd_package_info.pkgs|length > 0
  122. - include_role: # noqa unnamed-task
  123. name: container-engine/crictl
  125. # you can sometimes end up in a state where everything is installed
  126. # but containerd was not started / enabled
  127. - name: flush handlers
  128. meta: flush_handlers
  130. - name: ensure containerd is started and enabled
  131. service:
  132. name: containerd
  133. enabled: yes
  134. state: started