richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Add no_log to cert tar tasks 

This works around 4MB limit for gitlab CI runner.
pull/1020/head
Matthew Mosesohn 7 years ago
parent
9c1701f2aa
commit
a21eb036ee
2 changed files with 7 additions and 0 deletions
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 3
      roles/etcd/tasks/gen_certs_script.yml
  2. 4
      roles/kubernetes/secrets/tasks/gen_certs_script.yml

3
roles/etcd/tasks/gen_certs_script.yml
View File

@ -87,6 +87,7 @@
args: args:
executable: /bin/bash executable: /bin/bash
register: etcd_master_cert_data register: etcd_master_cert_data
no_log: true
check_mode: no check_mode: no
delegate_to: "{{groups['etcd'][0]}}" delegate_to: "{{groups['etcd'][0]}}"
when: inventory_hostname in groups['etcd'] and sync_certs|default(false) and when: inventory_hostname in groups['etcd'] and sync_certs|default(false) and
@ -98,6 +99,7 @@
args: args:
executable: /bin/bash executable: /bin/bash
register: etcd_node_cert_data register: etcd_node_cert_data
no_log: true
check_mode: no check_mode: no
delegate_to: "{{groups['etcd'][0]}}" delegate_to: "{{groups['etcd'][0]}}"
when: (('calico-rr' in groups and inventory_hostname in groups['calico-rr']) or when: (('calico-rr' in groups and inventory_hostname in groups['calico-rr']) or
@ -109,6 +111,7 @@
shell: "base64 -d <<< '{{etcd_master_cert_data.stdout|quote}}' | tar xz -C {{ etcd_cert_dir }}" shell: "base64 -d <<< '{{etcd_master_cert_data.stdout|quote}}' | tar xz -C {{ etcd_cert_dir }}"
args: args:
executable: /bin/bash executable: /bin/bash
no_log: true
changed_when: false changed_when: false
when: inventory_hostname in groups['etcd'] and sync_certs|default(false) and when: inventory_hostname in groups['etcd'] and sync_certs|default(false) and
inventory_hostname != groups['etcd'][0] inventory_hostname != groups['etcd'][0]

4
roles/kubernetes/secrets/tasks/gen_certs_script.yml
View File

@ -80,6 +80,7 @@
shell: "tar cfz - -C {{ kube_cert_dir }} -T /dev/stdin <<< {{ my_master_certs|join(' ') }} {{ all_node_certs|join(' ') }} | base64 --wrap=0" shell: "tar cfz - -C {{ kube_cert_dir }} -T /dev/stdin <<< {{ my_master_certs|join(' ') }} {{ all_node_certs|join(' ') }} | base64 --wrap=0"
args: args:
executable: /bin/bash executable: /bin/bash
no_log: true
register: master_cert_data register: master_cert_data
check_mode: no check_mode: no
delegate_to: "{{groups['kube-master'][0]}}" delegate_to: "{{groups['kube-master'][0]}}"
@ -90,6 +91,7 @@
shell: "tar cfz - -C {{ kube_cert_dir }} -T /dev/stdin <<< {{ my_node_certs|join(' ') }} | base64 --wrap=0" shell: "tar cfz - -C {{ kube_cert_dir }} -T /dev/stdin <<< {{ my_node_certs|join(' ') }} | base64 --wrap=0"
args: args:
executable: /bin/bash executable: /bin/bash
no_log: true
register: node_cert_data register: node_cert_data
check_mode: no check_mode: no
delegate_to: "{{groups['kube-master'][0]}}" delegate_to: "{{groups['kube-master'][0]}}"
@ -116,6 +118,7 @@
- name: Gen_certs | Unpack certs on masters - name: Gen_certs | Unpack certs on masters
shell: "base64 -d < {{ cert_tempfile.stdout }} | tar xz -C {{ kube_cert_dir }}" shell: "base64 -d < {{ cert_tempfile.stdout }} | tar xz -C {{ kube_cert_dir }}"
no_log: true
changed_when: false changed_when: false
check_mode: no check_mode: no
when: inventory_hostname in groups['kube-master'] and sync_certs|default(false) and when: inventory_hostname in groups['kube-master'] and sync_certs|default(false) and
@ -133,6 +136,7 @@
shell: "base64 -d <<< '{{node_cert_data.stdout|quote}}' | tar xz -C {{ kube_cert_dir }}" shell: "base64 -d <<< '{{node_cert_data.stdout|quote}}' | tar xz -C {{ kube_cert_dir }}"
args: args:
executable: /bin/bash executable: /bin/bash
no_log: true
changed_when: false changed_when: false
check_mode: no check_mode: no
when: inventory_hostname in groups['kube-node'] and when: inventory_hostname in groups['kube-node'] and

Write Preview
Loading…
Cancel
Save