Use wait_for_connection instead of wait_for to check container

After creating the container or configuring the bind mounts for
the container, we used a task to wait for SSH to respond on the
container, using the Ansible wait_for module trying to connect to
port 22.

When managing containers in Ansible using other connection plugins
that use LXC commands on the physical host to execute modules,
there may not be an SSH daemon running within the container. In
these situations we can accomplish the same check without SSH by
using the wait_for_connection module (new in ansible 2.3) to verify
that Ansible has a working execution path into the container, but
not necessarily via SSH.

Change-Id: I1399b6727ec8894dd3b9c464f6addbeea1c1f4f9
This commit is contained in:
Jesse Pretorius 2017-04-28 13:15:44 +01:00
parent f5c72e5076
commit 06269c1884
3 changed files with 20 additions and 17 deletions

View File

@ -124,16 +124,12 @@
tags: tags:
- common-lxc - common-lxc
- name: Wait for container ssh - name: Wait for container connectivity
wait_for: wait_for_connection:
port: "22" connect_timeout: "{{ lxc_container_wait_params.connect_timeout | default(omit) }}"
delay: "{{ ssh_delay }}" delay: "{{ lxc_container_wait_params.delay | default(omit) }}"
search_regex: "OpenSSH" sleep: "{{ lxc_container_wait_params.sleep | default(omit) }}"
host: "{{ ansible_host }}" timeout: "{{ lxc_container_wait_params.timeout | default(omit) }}"
delegate_to: "{{ physical_host }}"
register: ssh_wait_check
until: ssh_wait_check | success
retries: 3
when: when:
- (_mc is defined and _mc | changed) or (_ec is defined and _ec | changed) - (_mc is defined and _mc | changed) or (_ec is defined and _ec | changed)
- not is_metal | bool - not is_metal | bool

View File

@ -21,3 +21,11 @@ lxc_container_config_list:
# Needed by playbooks/common-tasks/os-lxc-container-setup.yml # Needed by playbooks/common-tasks/os-lxc-container-setup.yml
lxc_container_log_path: "/var/log/lxc" lxc_container_log_path: "/var/log/lxc"
## Parameters provided to the wait_for_connection module after a container
## reboot is triggered by the playbook
lxc_container_wait_params:
# Wait 3 seconds before attempting the first connection
delay: 3
# Wait 60 seconds for the container to respond
timeout: 60

View File

@ -25,13 +25,12 @@
roles: roles:
- role: "lxc_container_create" - role: "lxc_container_create"
post_tasks: post_tasks:
- name: Wait for ssh to be available - name: Wait for container connectivity
wait_for: wait_for_connection:
port: "22" connect_timeout: "{{ lxc_container_wait_params.connect_timeout | default(omit) }}"
host: "{{ ansible_host | default(inventory_hostname) }}" delay: "{{ lxc_container_wait_params.delay | default(omit) }}"
search_regex: OpenSSH sleep: "{{ lxc_container_wait_params.sleep | default(omit) }}"
delay: 1 timeout: "{{ lxc_container_wait_params.timeout | default(omit) }}"
delegate_to: "{{ physical_host }}"
vars: vars:
is_metal: "{{ properties.is_metal|default(false) }}" is_metal: "{{ properties.is_metal|default(false) }}"
tags: tags: