Red Hat SummitThis documentation is for a release that is no longer maintained
See documentation for the latest supported version 3 or the latest supported version 4.이 콘텐츠는 선택한 언어로 제공되지 않습니다.
Chapter 4. Downgrading OpenShift
4.1. Overview
Following an OpenShift Enterprise upgrade, it may be desirable in extreme cases to downgrade your cluster to a previous version. The following sections outline the required steps for each system in a cluster to perform such a downgrade, currently supported for the OpenShift Enterprise 3.1 to 3.0 downgrade path.
4.2. Verifying Backups
The Ansible playbook used during the upgrade process should have created a backup of the master-config.yaml file and the etcd data directory. Ensure these exist on your masters and etcd members:
/etc/openshift/master/master-config.yaml.<timestamp> /var/lib/openshift/etcd-backup-<timestamp>
/etc/openshift/master/master-config.yaml.<timestamp>
/var/lib/openshift/etcd-backup-<timestamp>If you use a separate etcd cluster instead of a single embedded etcd instance, the backup is likely created on all etcd members, though only one is required for the recovery process. You can run a separate etcd instance that is co-located with your master nodes.
The RPM downgrade process in a later step should create .rpmsave backups of the following files, but it may be a good idea to keep a separate copy regardless:
/etc/sysconfig/openshift-master /etc/etcd/etcd.conf
/etc/sysconfig/openshift-master
/etc/etcd/etcd.conf - 1
- Only required if using a separate etcd cluster.
4.3. Shutting Down the Cluster
On all masters, nodes, and etcd members, if you use a separate etcd cluster that runs on different nodes, ensure the relevant services are stopped:
systemctl stop atomic-openshift-master systemctl stop atomic-openshift-node systemctl stop etcd
# systemctl stop atomic-openshift-master
# systemctl stop atomic-openshift-node
# systemctl stop etcd - 1
- Only required if using external etcd.
4.4. Removing RPMs
On all masters, nodes, and etcd members (if using an external etcd cluster), remove the following packages:
If you are using external etcd, also remove the etcd package:
yum remove etcd
# yum remove etcd
For embedded etcd, you can leave the etcd package installed, as the package is only required so that the etcdctl command is available to issue operations in later steps.
4.5. Reinstalling RPMs
Disable the OpenShift Enteprise 3.1 repositories, and re-enable the 3.0 repositories:
subscription-manager repos \
--disable=rhel-7-server-ose-3.1-rpms \
--enable=rhel-7-server-ose-3.0-rpms
# subscription-manager repos \
--disable=rhel-7-server-ose-3.1-rpms \
--enable=rhel-7-server-ose-3.0-rpmsOn each master, install the following packages:
yum install openshift \
openshift-master \
openshift-node \
openshift-sdn-ovs
# yum install openshift \
openshift-master \
openshift-node \
openshift-sdn-ovsOn each node, install the following packages:
yum install openshift \
openshift-node \
openshift-sdn-ovs
# yum install openshift \
openshift-node \
openshift-sdn-ovsIf using a separate etcd cluster, install the following package on each etcd member:
yum install etcd
# yum install etcd4.6. Restoring etcd
Whether using embedded or external etcd, you must first restore the etcd backup by creating a new, single node etcd cluster. If using external etcd with multiple members, you must then also add any additional etcd members to the cluster one by one.
However, the details of the restoration process differ between embedded and external etcd. See the following section that matches your etcd configuration and follow the relevant steps before continuing to Bringing OpenShift Services Back Online.
4.6.1. Embedded etcd
Restore your etcd backup and configuration:
Run the following on the master with the embedded etcd:
ETCD_DIR=/var/lib/openshift/openshift.local.etcd mv $ETCD_DIR /var/lib/etcd.orig cp -Rp /var/lib/openshift/etcd-backup-<timestamp>/ $ETCD_DIR chcon -R --reference /var/lib/etcd.orig/ $ETCD_DIR chown -R etcd:etcd $ETCD_DIR
# ETCD_DIR=/var/lib/openshift/openshift.local.etcd # mv $ETCD_DIR /var/lib/etcd.orig # cp -Rp /var/lib/openshift/etcd-backup-<timestamp>/ $ETCD_DIR # chcon -R --reference /var/lib/etcd.orig/ $ETCD_DIR # chown -R etcd:etcd $ETCD_DIRCopy to Clipboard Copied! Toggle word wrap Toggle overflow WarningThe
$ETCD_DIRlocation differs between external and embedded etcd.Create the new, single node etcd cluster:
etcd -data-dir=/var/lib/openshift/openshift.local.etcd \ -force-new-cluster# etcd -data-dir=/var/lib/openshift/openshift.local.etcd \ -force-new-clusterCopy to Clipboard Copied! Toggle word wrap Toggle overflow Verify etcd has started successfully by checking the output from the above command, which should look similar to the following at the end:
Copy to Clipboard Copied! Toggle word wrap Toggle overflow Shut down the process by running the following from a separate terminal:
pkill etcd
# pkill etcdCopy to Clipboard Copied! Toggle word wrap Toggle overflow - Continue to Bringing OpenShift Services Back Online.
4.6.2. External etcd
Choose a system to be the initial etcd member, and restore its etcd backup and configuration:
Run the following on the etcd host:
ETCD_DIR=/var/lib/etcd/ mv $ETCD_DIR /var/lib/etcd.orig cp -Rp /var/lib/openshift/etcd-backup-<timestamp>/ $ETCD_DIR chcon -R --reference /var/lib/etcd.orig/ $ETCD_DIR chown -R etcd:etcd $ETCD_DIR
# ETCD_DIR=/var/lib/etcd/ # mv $ETCD_DIR /var/lib/etcd.orig # cp -Rp /var/lib/openshift/etcd-backup-<timestamp>/ $ETCD_DIR # chcon -R --reference /var/lib/etcd.orig/ $ETCD_DIR # chown -R etcd:etcd $ETCD_DIRCopy to Clipboard Copied! Toggle word wrap Toggle overflow WarningThe
$ETCD_DIRlocation differs between external and embedded etcd.- Restore your /etc/etcd/etcd.conf file from backup or .rpmsave.
Create the new single node cluster using etcd’s
--force-new-clusteroption. You can do this with a long complex command using the values from the /etc/etcd/etcd.conf, or you can temporarily modify the systemd file and start the service normally.To do so, edit the /usr/lib/systemd/system/etcd.service and add
--force-new-cluster:sed -i '/ExecStart/s/"$/ --force-new-cluster"/' /usr/lib/systemd/system/etcd.service cat /usr/lib/systemd/system/etcd.service | grep ExecStart
# sed -i '/ExecStart/s/"$/ --force-new-cluster"/' /usr/lib/systemd/system/etcd.service # cat /usr/lib/systemd/system/etcd.service | grep ExecStart ExecStart=/bin/bash -c "GOMAXPROCS=$(nproc) /usr/bin/etcd --force-new-cluster"Copy to Clipboard Copied! Toggle word wrap Toggle overflow Then restart the etcd service:
systemctl daemon-reload systemctl start etcd
# systemctl daemon-reload # systemctl start etcdCopy to Clipboard Copied! Toggle word wrap Toggle overflow Verify the etcd service started correctly, then re-edit the /usr/lib/systemd/system/etcd.service file and remove the
--force-new-clusteroption:sed -i '/ExecStart/s/ --force-new-cluster//' /usr/lib/systemd/system/etcd.service cat /usr/lib/systemd/system/etcd.service | grep ExecStart
# sed -i '/ExecStart/s/ --force-new-cluster//' /usr/lib/systemd/system/etcd.service # cat /usr/lib/systemd/system/etcd.service | grep ExecStart ExecStart=/bin/bash -c "GOMAXPROCS=$(nproc) /usr/bin/etcd"Copy to Clipboard Copied! Toggle word wrap Toggle overflow Restart the etcd service, then verify the etcd cluster is running correctly and displays OpenShift’s configuration:
Copy to Clipboard Copied! Toggle word wrap Toggle overflow - If you have additional etcd members to add to your cluster, continue to Adding Additional etcd Members. Otherwise, if you only want a single node external etcd, continue to Bringing OpenShift Services Back Online.
4.6.2.1. Adding Additional etcd Members
To add additional etcd members to the cluster, you must first adjust the default localhost peerURLs for the first member:
Get the member ID for the first member using the
member listcommand:etcdctl --cert-file=/etc/etcd/peer.crt \ --key-file=/etc/etcd/peer.key \ --ca-file=/etc/etcd/ca.crt \ --peers="https://172.18.1.18:2379,https://172.18.9.202:2379,https://172.18.0.75:2379" \ member list# etcdctl --cert-file=/etc/etcd/peer.crt \ --key-file=/etc/etcd/peer.key \ --ca-file=/etc/etcd/ca.crt \ --peers="https://172.18.1.18:2379,https://172.18.9.202:2379,https://172.18.0.75:2379" \ member listCopy to Clipboard Copied! Toggle word wrap Toggle overflow Update the
peerURLs. In etcd 2.2 and beyond, this can be done with theetcdctl member updatecommand. However, OpenShift Enterprise 3.1 uses etcd 2.1, so you must usecurl:Copy to Clipboard Copied! Toggle word wrap Toggle overflow -
Re-run the
member listcommand and ensure thepeerURLsno longer points to localhost. Now add each additional member to the cluster, one at a time.
WarningEach member must be fully added and brought online one at a time. When adding each additional member to the cluster, the
peerURLslist must be correct for that point in time, so it will grow by one for each member added. Theetcdctl member addcommand will output the values that need to be set in the etcd.conf file as you add each member, as described in the following instructions.For each member, add it to the cluster using the values that can be found in that system’s etcd.conf file:
Copy to Clipboard Copied! Toggle word wrap Toggle overflow -
Using the environment variables provided in the output of the above
etcdctl member addcommand, edit the /etc/etcd/etcd.conf file on the member system itself and ensure these settings match. Now start etcd on the new member:
rm -rf /var/lib/etcd/member systemctl enable etcd systemctl start etcd
# rm -rf /var/lib/etcd/member # systemctl enable etcd # systemctl start etcdCopy to Clipboard Copied! Toggle word wrap Toggle overflow Ensure the service starts correctly and the etcd cluster is now healthy:
Copy to Clipboard Copied! Toggle word wrap Toggle overflow - Now repeat this process for the next member to add to the cluster.
- After all additional etcd members have been added, continue to Bringing OpenShift Services Back Online.
4.7. Bringing OpenShift Services Back Online
On each OpenShift master, restore your openshift-master configuration from backup and restart relevant services:
On each OpenShift node, enable and restart the openshift-node service:
systemctl enable openshift-node systemctl start openshift-node
# systemctl enable openshift-node
# systemctl start openshift-nodeYour OpenShift cluster should now be back online.
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}