# Copyright 2022 Dell Inc. or its subsidiaries. All Rights Reserved. # # Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. --- - name: Update sysctl to handle incorrectly routed traffic when iptables is bypassed copy: src: k8s.conf dest: "{{ k8s_conf_dest }}" owner: root group: root mode: "{{ k8s_conf_file_mode }}" tags: install - name: Update sysctl command: /sbin/sysctl --system changed_when: true tags: install - block: - name: Add kubernetes repo yum_repository: name: kubernetes description: kubernetes baseurl: https://packages.cloud.google.com/yum/repos/kubernetes-el7-x86_64 enabled: yes gpgcheck: no repo_gpgcheck: no gpgkey: - https://packages.cloud.google.com/yum/doc/yum-key.gpg - https://packages.cloud.google.com/yum/doc/rpm-package-key.gpg tags: install - name: Install k8s packages package: name: "{{ k8s_packages }}" state: present tags: install - name: Versionlock kubernetes command: "yum versionlock '{{ item }}'" args: warn: false with_items: - "{{ k8s_packages }}" changed_when: true tags: install when: os_supported_leap not in compute_os - block: - name: Add kubernetes repo zypper_repository: name: google-k8s repo: "{{ k8s_repo_leap }}" state: present autorefresh: yes disable_gpg_check: yes tags: install - name: Import rpm-package key for installing kubernetes rpm_key: key: "{{ rpm_pkg_leap }}" state: present tags: install - name: Import yum key for installing kubernetes rpm_key: key: "{{ yum_key_leap }}" state: present tags: install - name: Import gpg-pubkey key for installing kubernetes command: "{{ gpg_pubkey_leap }}" args: warn: false changed_when: false tags: install - name: Refresh repositories and installing conntrack-tools package: name: conntrack-tools state: present tags: install - name: Install Kubeadm ansible.builtin.expect: command: zypper install --oldpackage "{{ kubeadm_version }}" responses: (.*) [1/2/c/d/?](.): '2' (.*)(y): 'y' register: kubeadm_status until: kubeadm_status is not failed retries: "{{ max_retries }}" tags: install - name: Install Kubelet ansible.builtin.expect: command: zypper install --oldpackage "{{ kubelet_version }}" responses: (.*) [1/2/c/d/?](.): '2' (.*)(y): 'y' register: kubelet_status until: kubelet_status is not failed retries: "{{ max_retries }}" tags: install - name: Install Kubectl zypper: name: "{{ kubectl_version }}" state: present oldpackage: yes force: yes register: kubectl_status until: kubectl_status is not failed retries: "{{ max_retries }}" tags: install - name: Versionlocking kubeadm command: zypper addlock "{{ kubeadm_version }}" args: warn: false changed_when: false tags: install - name: Versionlocking kubectl command: zypper addlock "{{ kubelet_version }}" args: warn: false changed_when: false tags: install - name: Versionlocking kubelet command: zypper addlock "{{ kubectl_version }}" args: warn: false changed_when: false tags: install when: ( os_supported_leap in compute_os ) and ( ansible_distribution_version >= os_supported_leap_version ) - name: Start and enable docker service service: name: docker state: restarted enabled: yes tags: install - name: Start and enable kubernetes - kubelet service: name: kubelet state: restarted enabled: yes