229 lines
5.6 KiB
YAML
229 lines
5.6 KiB
YAML
---
|
|
- hosts: all
|
|
remote_user: deploy
|
|
become: yes
|
|
become_user: root
|
|
gather_facts: yes
|
|
serial: 1
|
|
tasks:
|
|
- name: set PVC maintenance mode
|
|
command: pvc maintenance on
|
|
|
|
- name: secondary node
|
|
command: "pvc node secondary {{ ansible_hostname }}"
|
|
ignore_errors: yes
|
|
|
|
- name: wait 30 seconds for system to stabilize
|
|
pause:
|
|
seconds: 30
|
|
become: no
|
|
connection: local
|
|
|
|
- name: flush node
|
|
command: "pvc node flush {{ ansible_hostname }} --wait"
|
|
|
|
- name: ensure VMs are migrated away
|
|
shell: "virsh list | grep running | wc -l"
|
|
register: virshcount
|
|
failed_when: virshcount.stdout != "0"
|
|
until: virshcount.stdout == "0"
|
|
retries: 60
|
|
delay: 10
|
|
|
|
- name: make sure all VMs have migrated
|
|
shell: "pvc node info {{ ansible_hostname }} | grep '^Domain State' | awk '{ print $NF }'"
|
|
register: pvcflush
|
|
failed_when: pvcflush.stdout != 'flushed'
|
|
until: pvcflush.stdout == 'flushed'
|
|
retries: 60
|
|
delay: 10
|
|
|
|
- name: wait 15 seconds for system to stabilize
|
|
pause:
|
|
seconds: 15
|
|
become: no
|
|
connection: local
|
|
|
|
- name: stop and disable PVC flush daemon cleanly
|
|
service:
|
|
name: pvc-flush
|
|
state: stopped
|
|
enabled: no
|
|
|
|
- name: stop PVC daemon cleanly
|
|
service:
|
|
name: pvcnoded
|
|
state: stopped
|
|
|
|
- name: stop Zookeeper daemon cleanly
|
|
service:
|
|
name: zookeeper
|
|
state: stopped
|
|
|
|
- name: wait 15 seconds for system to stabilize
|
|
pause:
|
|
seconds: 15
|
|
become: no
|
|
connection: local
|
|
|
|
- name: set OSD noout
|
|
command: pvc storage osd set noout
|
|
|
|
- name: get running OSD services
|
|
shell: "systemctl | awk '{ print $1 }' | grep 'ceph-osd@[0-9]*.service'"
|
|
ignore_errors: yes
|
|
register: osd_services
|
|
|
|
- name: stop Ceph OSD daemons cleanly
|
|
service:
|
|
name: "{{ item }}"
|
|
state: stopped
|
|
ignore_errors: yes
|
|
with_items: "{{ osd_services.stdout_lines }}"
|
|
|
|
- name: stop Ceph Monitor daemon cleanly
|
|
service:
|
|
name: "ceph-mon@{{ ansible_hostname }}"
|
|
state: stopped
|
|
ignore_errors: yes
|
|
|
|
- name: stop Ceph Manager daemon cleanly
|
|
service:
|
|
name: "ceph-mgr@{{ ansible_hostname }}"
|
|
state: stopped
|
|
ignore_errors: yes
|
|
|
|
- name: wait 30 seconds for system to stabilize
|
|
pause:
|
|
seconds: 30
|
|
become: no
|
|
connection: local
|
|
|
|
- name: replace sources.list entries will bullseye
|
|
replace:
|
|
dest: "{{ item }}"
|
|
regexp: "buster"
|
|
replace: "bullseye"
|
|
with_items:
|
|
- /etc/apt/sources.list
|
|
|
|
- name: remove security entry
|
|
lineinfile:
|
|
dest: /etc/apt/sources.list
|
|
regexp: "security.debian.org"
|
|
state: absent
|
|
|
|
- name: update apt cache
|
|
apt:
|
|
update_cache: yes
|
|
|
|
- name: install python-is-python3
|
|
apt:
|
|
name: python-is-python3
|
|
state: latest
|
|
|
|
- name: aptitude dist upgrade and cleanup
|
|
apt:
|
|
update_cache: yes
|
|
autoremove: yes
|
|
autoclean: yes
|
|
upgrade: dist
|
|
|
|
- name: clean up obsolete kernels
|
|
command: /usr/local/sbin/kernel-cleanup.sh
|
|
|
|
- name: clean up obsolete packages
|
|
command: /usr/local/sbin/dpkg-cleanup.sh
|
|
|
|
- name: clean apt archives
|
|
file:
|
|
dest: /var/cache/apt/archives
|
|
state: absent
|
|
|
|
- name: regather facts
|
|
setup:
|
|
|
|
- name: include base role
|
|
import_role:
|
|
name: base
|
|
|
|
- name: include pvc role
|
|
import_role:
|
|
name: pvc
|
|
|
|
- name: aptitude full upgrade and cleanup
|
|
apt:
|
|
update_cache: yes
|
|
autoremove: yes
|
|
autoclean: yes
|
|
upgrade: full
|
|
|
|
- name: restart system
|
|
reboot:
|
|
post_reboot_delay: 15
|
|
reboot_timeout: 1800
|
|
|
|
- name: make sure all OSDs are active
|
|
shell: "ceph osd stat | grep 'osds:' | awk '{ if ( $1 == $3 ) { print \"OK\" } else { print \"NOK\" } }'"
|
|
register: osdstat
|
|
failed_when: osdstat.stdout == "NOK"
|
|
until: osdstat.stdout == "OK"
|
|
retries: 60
|
|
delay: 10
|
|
|
|
- name: make sure all PGs have recovered
|
|
shell: "ceph health | grep -wo 'Degraded data redundancy'"
|
|
register: cephhealth
|
|
failed_when: cephhealth.stdout == "Degraded data redundancy'"
|
|
until: cephhealth.stdout == ""
|
|
retries: 60
|
|
delay: 10
|
|
|
|
- name: unset OSD noout
|
|
command: pvc storage osd unset noout
|
|
|
|
- name: unflush node
|
|
command: "pvc node ready {{ ansible_hostname }} --wait"
|
|
|
|
- name: make sure all VMs have returned
|
|
shell: "pvc node info {{ ansible_hostname }} | grep '^Domain State' | awk '{ print $NF }'"
|
|
register: pvcunflush
|
|
failed_when: pvcunflush.stdout != 'ready'
|
|
until: pvcunflush.stdout == 'ready'
|
|
retries: 60
|
|
delay: 10
|
|
|
|
- name: wait 30 seconds for system to stabilize
|
|
pause:
|
|
seconds: 30
|
|
become: no
|
|
connection: local
|
|
|
|
- name: start and enable PVC flush daemon cleanly
|
|
service:
|
|
name: pvc-flush
|
|
state: started
|
|
enabled: yes
|
|
|
|
- name: reset any systemd failures
|
|
command: systemctl reset-failed
|
|
|
|
- name: wait 30 seconds for system to stabilize
|
|
pause:
|
|
seconds: 30
|
|
become: no
|
|
connection: local
|
|
|
|
- name: unset PVC maintenance mode
|
|
command: pvc maintenance off
|
|
|
|
- hosts: all
|
|
remote_user: deploy
|
|
become: yes
|
|
become_user: root
|
|
gather_facts: yes
|
|
tasks:
|
|
- name: disable insecure global id reclaim in Ceph
|
|
command: ceph config set mon auth_allow_insecure_global_id_reclaim false
|
|
run_once: yes
|