richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1748 Commits
33 Branches
82 Tags
153 MiB
Tree: a133ba1998
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'a133ba1998'
${ noResults }
kubespray/roles/kubernetes/master/tasks/pre-upgrade.yml

106 lines
3.9 KiB
Raw Normal View History

Deploy kubelet and kube-apiserver as containers kubelet via docker kube-apiserver as a static pod Fixed etcd service start to be more tolerant of slow start. Workaround for kube_version to stay in download role, but not download an files by creating a new "nothing" download entry.
8 years ago
Add tags Add tags to allow more granular tasks filtering. Add generator script for MD formatted tags found. Add docs for tags how-to. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
Deploy kubelet and kube-apiserver as containers kubelet via docker kube-apiserver as a static pod Fixed etcd service start to be more tolerant of slow start. Workaround for kube_version to stay in download role, but not download an files by creating a new "nothing" download entry.
8 years ago
Add tags Add tags to allow more granular tasks filtering. Add generator script for MD formatted tags found. Add docs for tags how-to. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
Deploy kubelet and kube-apiserver as containers kubelet via docker kube-apiserver as a static pod Fixed etcd service start to be more tolerant of slow start. Workaround for kube_version to stay in download role, but not download an files by creating a new "nothing" download entry.
8 years ago
Add tags Add tags to allow more granular tasks filtering. Add generator script for MD formatted tags found. Add docs for tags how-to. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
Fix canal's calico networking config for ETCD TLS Also fixes kube-apiserver upgrade that was erroneously deleted in a previous commit.
8 years ago
Add tags Add tags to allow more granular tasks filtering. Add generator script for MD formatted tags found. Add docs for tags how-to. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
Individual etcd ssl certs Includes hooks for triggering calico, kubelet, and kube-apiserver restarts if etcd certs changed.
8 years ago
Migrate k8s data to etcd3 api store Default backend is now etcd3 (was etcd2). The migration process consists of the following steps: * check if migration is necessary * stop etcd on first etcd server * run migration script * start etcd on first etcd server * stop kube-apiserver until configuration is updated * update kube-apiserver * purge old etcdv2 data
8 years ago
Significantly reduce memory requirements Canal runs more pods and upgrades need a bit of extra room to load new pods in and get the old ones out.
8 years ago
Migrate k8s data to etcd3 api store Default backend is now etcd3 (was etcd2). The migration process consists of the following steps: * check if migration is necessary * stop etcd on first etcd server * run migration script * start etcd on first etcd server * stop kube-apiserver until configuration is updated * update kube-apiserver * purge old etcdv2 data
8 years ago
use etcd2 when upgrading unless forced
8 years ago
Migrate k8s data to etcd3 api store Default backend is now etcd3 (was etcd2). The migration process consists of the following steps: * check if migration is necessary * stop etcd on first etcd server * run migration script * start etcd on first etcd server * stop kube-apiserver until configuration is updated * update kube-apiserver * purge old etcdv2 data
8 years ago
use etcd2 when upgrading unless forced
8 years ago
Migrate k8s data to etcd3 api store Default backend is now etcd3 (was etcd2). The migration process consists of the following steps: * check if migration is necessary * stop etcd on first etcd server * run migration script * start etcd on first etcd server * stop kube-apiserver until configuration is updated * update kube-apiserver * purge old etcdv2 data
8 years ago
delete master containers forcefully
8 years ago
restart scheduler and controller-manager too
8 years ago
Individual etcd ssl certs Includes hooks for triggering calico, kubelet, and kube-apiserver restarts if etcd certs changed.
8 years ago
Migrate k8s data to etcd3 api store Default backend is now etcd3 (was etcd2). The migration process consists of the following steps: * check if migration is necessary * stop etcd on first etcd server * run migration script * start etcd on first etcd server * stop kube-apiserver until configuration is updated * update kube-apiserver * purge old etcdv2 data
8 years ago
Individual etcd ssl certs Includes hooks for triggering calico, kubelet, and kube-apiserver restarts if etcd certs changed.
8 years ago
delete master containers forcefully
8 years ago
Individual etcd ssl certs Includes hooks for triggering calico, kubelet, and kube-apiserver restarts if etcd certs changed.
8 years ago
Migrate k8s data to etcd3 api store Default backend is now etcd3 (was etcd2). The migration process consists of the following steps: * check if migration is necessary * stop etcd on first etcd server * run migration script * start etcd on first etcd server * stop kube-apiserver until configuration is updated * update kube-apiserver * purge old etcdv2 data
8 years ago
  1. ---
  2. - name: "Pre-upgrade | check for kube-apiserver unit file"
  3. stat:
  4. path: /etc/systemd/system/kube-apiserver.service
  5. register: kube_apiserver_service_file
  6. tags: [facts, kube-apiserver]
  8. - name: "Pre-upgrade | check for kube-apiserver init script"
  9. stat:
  10. path: /etc/init.d/kube-apiserver
  11. register: kube_apiserver_init_script
  12. tags: [facts, kube-apiserver]
  14. - name: "Pre-upgrade | stop kube-apiserver if service defined"
  15. service:
  16. name: kube-apiserver
  17. state: stopped
  18. when: (kube_apiserver_service_file.stat.exists|default(False) or kube_apiserver_init_script.stat.exists|default(False))
  19. tags: kube-apiserver
  21. - name: "Pre-upgrade | remove kube-apiserver service definition"
  22. file:
  23. path: "{{ item }}"
  24. state: absent
  25. when: (kube_apiserver_service_file.stat.exists|default(False) or kube_apiserver_init_script.stat.exists|default(False))
  26. with_items:
  27. - /etc/systemd/system/kube-apiserver.service
  28. - /etc/init.d/kube-apiserver
  29. tags: kube-apiserver
  31. - name: "Pre-upgrade | See if kube-apiserver manifest exists"
  32. stat:
  33. path: /etc/kubernetes/manifests/kube-apiserver.manifest
  34. register: kube_apiserver_manifest
  36. - name: "Pre-upgrade | etcd3 upgrade | see if old config exists"
  37. command: "{{ bin_dir }}/etcdctl --peers={{ etcd_access_addresses }} ls /registry/minions"
  38. environment:
  39. ETCDCTL_API: 2
  40. register: old_data_exists
  41. delegate_to: "{{groups['etcd'][0]}}"
  42. when: kube_apiserver_storage_backend == "etcd3"
  43. failed_when: false
  45. - name: "Pre-upgrade | etcd3 upgrade | use etcd2 unless forced to etc3"
  46. set_fact:
  47. kube_apiserver_storage_backend: "etcd2"
  48. when: old_data_exists.rc == 0 and not force_etcd3|bool
  50. - name: "Pre-upgrade | etcd3 upgrade | see if data was already migrated"
  51. command: "{{ bin_dir }}/etcdctl --endpoints={{ etcd_access_addresses }} get --limit=1 --prefix=true /registry/minions"
  52. environment:
  53. ETCDCTL_API: 3
  54. register: data_migrated
  55. delegate_to: "{{groups['etcd'][0]}}"
  56. when: kube_apiserver_storage_backend == "etcd3"
  57. failed_when: false
  59. - name: "Pre-upgrade | etcd3 upgrade | set needs_etcd_migration"
  60. set_fact:
  61. needs_etcd_migration: "{{ force_etcd3|default(false) and kube_apiserver_storage_backend == 'etcd3' and data_migrated.stdout_lines|length == 0 and old_data_exists.rc == 0 }}"
  63. - name: "Pre-upgrade | Delete master manifests on all kube-masters"
  64. file:
  65. path: "/etc/kubernetes/manifests/{{item[1]}}.manifest"
  66. state: absent
  67. delegate_to: "{{item[0]}}"
  68. with_nested:
  69. - "{{groups['kube-master']}}"
  70. - ["kube-apiserver", "kube-controller-manager", "kube-scheduler"]
  71. register: kube_apiserver_manifest_replaced
  72. when: (secret_changed|default(false) or etcd_secret_changed|default(false) or needs_etcd_migration|bool) and kube_apiserver_manifest.stat.exists
  74. - name: "Pre-upgrade | Delete master containers forcefully on all kube-masters"
  75. shell: "docker ps -f name=k8s-{{item}}* -q | xargs --no-run-if-empty docker rm -f"
  76. delegate_to: "{{item[0]}}"
  77. with_nested:
  78. - "{{groups['kube-master']}}"
  79. - ["kube-apiserver", "kube-controller-manager", "kube-scheduler"]
  80. register: kube_apiserver_manifest_replaced
  81. when: (secret_changed|default(false) or etcd_secret_changed|default(false) or needs_etcd_migration|bool) and kube_apiserver_manifest.stat.exists
  83. - name: "Pre-upgrade | etcd3 upgrade | stop etcd"
  84. service:
  85. name: etcd
  86. state: stopped
  87. delegate_to: "{{item}}"
  88. with_items: "{{groups['etcd']}}"
  89. when: needs_etcd_migration|bool
  91. - name: "Pre-upgrade | etcd3 upgrade | migrate data"
  92. command: "{{ bin_dir }}/etcdctl migrate --data-dir=\"{{ etcd_data_dir }}\" --wal-dir=\"{{ etcd_data_dir }}/member/wal\""
  93. environment:
  94. ETCDCTL_API: 3
  95. delegate_to: "{{item}}"
  96. with_items: "{{groups['etcd']}}"
  97. register: etcd_migrated
  98. when: needs_etcd_migration|bool
  100. - name: "Pre-upgrade | etcd3 upgrade | start etcd"
  101. service:
  102. name: etcd
  103. state: started
  104. delegate_to: "{{item}}"
  105. with_items: "{{groups['etcd']}}"
  106. when: needs_etcd_migration|bool