richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3431 Commits
29 Branches
80 Tags
156 MiB
Tree: 82a28d6bb3
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '82a28d6bb3'
${ noResults }
kubespray/roles/download/tasks/set_docker_image_facts.yml

30 lines
1.2 KiB
Raw Normal View History

Add download_always_pull check and sha256 for docker images Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Refactor downloads to use download role directly (#1824) * Refactor downloads to use download role directly Also disable fact delegation so download delegate works acros OSes. * clean up bools and ansible_os_family conditionals
7 years ago
Add download_always_pull check and sha256 for docker images Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Work around escaping curly braces for docker inspect
7 years ago
fix template index out of range for pull images
6 years ago
Suppress logging for download image This generates too much output and during upgrade scenarios can bring us over the 4mb limit.
7 years ago
Refactor downloads (#1642) * Refactor downloads Add prefixes to tasks (file vs container) Remove some delegates Clean up some conditions * Update ansible.cfg
7 years ago
Rework ignore_errors to report no reds Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
7 years ago
More idempotency fixes Fixed sync_tokens fact Fixed sync_certs for k8s tokens fact Disabled register docker images changability Fixed CNI dir permission Fix idempotency for etcd pre upgrade checks
7 years ago
set "check_mode: no" for read-only "shell" steps that registers result "shell" step doesn't support check mode, which currently leads to failures, when Ansible is being run in check mode (because Ansible doesn't run command, assuming that command might have effect, and no "rc" or "output" is registered). Setting "check_mode: no" allows to run those "shell" commands in check mode (which is safe, because those shell commands doesn't have side effects).
7 years ago
Refactor downloads to use download role directly (#1824) * Refactor downloads to use download role directly Also disable fact delegation so download delegate works acros OSes. * clean up bools and ansible_os_family conditionals
7 years ago
Add download_always_pull check and sha256 for docker images Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Refactor downloads (#1642) * Refactor downloads Add prefixes to tasks (file vs container) Remove some delegates Clean up some conditions * Update ansible.cfg
7 years ago
Refactor downloads to use download role directly (#1824) * Refactor downloads to use download role directly Also disable fact delegation so download delegate works acros OSes. * clean up bools and ansible_os_family conditionals
7 years ago
Add download_always_pull check and sha256 for docker images Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
7 years ago
Refactor downloads (#1642) * Refactor downloads Add prefixes to tasks (file vs container) Remove some delegates Clean up some conditions * Update ansible.cfg
7 years ago
Refactor downloads to use download role directly (#1824) * Refactor downloads to use download role directly Also disable fact delegation so download delegate works acros OSes. * clean up bools and ansible_os_family conditionals
7 years ago
Adds tags for asserts (#1639)
7 years ago
  1. ---
  2. - set_fact:
  3. pull_by_digest: >-
  4. {%- if download.sha256 is defined and download.sha256 != '' -%}true{%- else -%}false{%- endif -%}
  6. - set_fact:
  7. pull_args: >-
  8. {%- if pull_by_digest %}{{download.repo}}@sha256:{{download.sha256}}{%- else -%}{{download.repo}}:{{download.tag}}{%- endif -%}
  10. - name: Register docker images info
  11. raw: >-
  12. {{ docker_bin_dir }}/docker images -q | xargs {{ docker_bin_dir }}/docker inspect -f "{{ '{{' }} if .RepoTags {{ '}}' }}{{ '{{' }} (index .RepoTags 0) {{ '}}' }}{{ '{{' }} end {{ '}}' }}{{ '{{' }} if .RepoDigests {{ '}}' }},{{ '{{' }} (index .RepoDigests 0) {{ '}}' }}{{ '{{' }} end {{ '}}' }}" | tr '\n' ','
  13. no_log: true
  14. register: docker_images
  15. failed_when: false
  16. changed_when: false
  17. check_mode: no
  18. when: not download_always_pull
  20. - set_fact:
  21. pull_required: >-
  22. {%- if pull_args in docker_images.stdout.split(',') %}false{%- else -%}true{%- endif -%}
  23. when: not download_always_pull
  25. - name: Check the local digest sha256 corresponds to the given image tag
  26. assert:
  27. that: "{{download.repo}}:{{download.tag}} in docker_images.stdout.split(',')"
  28. when: not download_always_pull and not pull_required and pull_by_digest
  29. tags:
  30. - asserts