110 lines
4 KiB
YAML
110 lines
4 KiB
YAML
---
|
|
- name: "Pre-upgrade | check for kube-apiserver unit file"
|
|
stat:
|
|
path: /etc/systemd/system/kube-apiserver.service
|
|
register: kube_apiserver_service_file
|
|
tags: [facts, kube-apiserver]
|
|
|
|
- name: "Pre-upgrade | check for kube-apiserver init script"
|
|
stat:
|
|
path: /etc/init.d/kube-apiserver
|
|
register: kube_apiserver_init_script
|
|
tags: [facts, kube-apiserver]
|
|
|
|
- name: "Pre-upgrade | stop kube-apiserver if service defined"
|
|
service:
|
|
name: kube-apiserver
|
|
state: stopped
|
|
when: (kube_apiserver_service_file.stat.exists|default(False) or kube_apiserver_init_script.stat.exists|default(False))
|
|
tags: kube-apiserver
|
|
|
|
- name: "Pre-upgrade | remove kube-apiserver service definition"
|
|
file:
|
|
path: "{{ item }}"
|
|
state: absent
|
|
when: (kube_apiserver_service_file.stat.exists|default(False) or kube_apiserver_init_script.stat.exists|default(False))
|
|
with_items:
|
|
- /etc/systemd/system/kube-apiserver.service
|
|
- /etc/init.d/kube-apiserver
|
|
tags: kube-apiserver
|
|
|
|
- name: "Pre-upgrade | See if kube-apiserver manifest exists"
|
|
stat:
|
|
path: /etc/kubernetes/manifests/kube-apiserver.manifest
|
|
register: kube_apiserver_manifest
|
|
|
|
- name: "Pre-upgrade | etcd3 upgrade | see if old config exists"
|
|
command: "{{ bin_dir }}/etcdctl --peers={{ etcd_access_addresses }} ls /registry/minions"
|
|
environment:
|
|
ETCDCTL_API: 2
|
|
register: old_data_exists
|
|
delegate_to: "{{groups['etcd'][0]}}"
|
|
when: kube_apiserver_storage_backend == "etcd3"
|
|
failed_when: false
|
|
|
|
- name: "Pre-upgrade | etcd3 upgrade | use etcd2 unless forced to etc3"
|
|
set_fact:
|
|
kube_apiserver_storage_backend: "etcd2"
|
|
when: old_data_exists.rc == 0 and not force_etcd3|bool
|
|
|
|
- name: "Pre-upgrade | etcd3 upgrade | see if data was already migrated"
|
|
command: "{{ bin_dir }}/etcdctl --endpoints={{ etcd_access_addresses }} get --limit=1 --prefix=true /registry/minions"
|
|
environment:
|
|
ETCDCTL_API: 3
|
|
register: data_migrated
|
|
delegate_to: "{{groups['etcd'][0]}}"
|
|
when: kube_apiserver_storage_backend == "etcd3"
|
|
failed_when: false
|
|
|
|
- name: "Pre-upgrade | etcd3 upgrade | set needs_etcd_migration"
|
|
set_fact:
|
|
needs_etcd_migration: "{{ force_etcd3|default(false) and kube_apiserver_storage_backend == 'etcd3' and data_migrated.stdout_lines|length == 0 and old_data_exists.rc == 0 }}"
|
|
|
|
- name: "Pre-upgrade | Delete master manifests on all kube-masters"
|
|
file:
|
|
path: "/etc/kubernetes/manifests/{{item[1]}}.manifest"
|
|
state: absent
|
|
delegate_to: "{{item[0]}}"
|
|
with_nested:
|
|
- "{{groups['kube-master']}}"
|
|
- ["kube-apiserver", "kube-controller-manager", "kube-scheduler"]
|
|
register: kube_apiserver_manifest_replaced
|
|
when: (secret_changed|default(false) or etcd_secret_changed|default(false) or needs_etcd_migration|bool) and kube_apiserver_manifest.stat.exists
|
|
|
|
- name: "Pre-upgrade | Delete master containers forcefully on all kube-masters"
|
|
shell: "docker ps -f name=k8s-{{item}}* -q | xargs --no-run-if-empty docker rm -f"
|
|
delegate_to: "{{item[0]}}"
|
|
with_nested:
|
|
- "{{groups['kube-master']}}"
|
|
- ["kube-apiserver", "kube-controller-manager", "kube-scheduler"]
|
|
register: kube_apiserver_manifest_replaced
|
|
when: (secret_changed|default(false) or etcd_secret_changed|default(false) or needs_etcd_migration|bool) and kube_apiserver_manifest.stat.exists
|
|
run_once: true
|
|
|
|
- name: "Pre-upgrade | etcd3 upgrade | stop etcd"
|
|
service:
|
|
name: etcd
|
|
state: stopped
|
|
delegate_to: "{{item}}"
|
|
with_items: "{{groups['etcd']}}"
|
|
when: needs_etcd_migration|bool
|
|
run_once: true
|
|
|
|
- name: "Pre-upgrade | etcd3 upgrade | migrate data"
|
|
command: "{{ bin_dir }}/etcdctl migrate --data-dir=\"{{ etcd_data_dir }}\" --wal-dir=\"{{ etcd_data_dir }}/member/wal\""
|
|
environment:
|
|
ETCDCTL_API: 3
|
|
delegate_to: "{{item}}"
|
|
with_items: "{{groups['etcd']}}"
|
|
register: etcd_migrated
|
|
when: needs_etcd_migration|bool
|
|
run_once: true
|
|
|
|
- name: "Pre-upgrade | etcd3 upgrade | start etcd"
|
|
service:
|
|
name: etcd
|
|
state: started
|
|
delegate_to: "{{item}}"
|
|
with_items: "{{groups['etcd']}}"
|
|
when: needs_etcd_migration|bool
|
|
run_once: true
|