keys.gpg is an encrypted file with key-value pairs like this:
# TEST_KEY is "foobar" (base64-encoded)
TEST_KEY="Zm9vYmFy"
values are base64-encoded
Usage in kustomization.yaml:
secretGenerator:
% IANA WHOIS server | |
% for more information on IANA, visit http://www.iana.org | |
% This query returned 1 object | |
refer: whois.ripe.net | |
inetnum: 92.0.0.0 - 92.255.255.255 | |
organisation: RIPE NCC | |
status: ALLOCATED |
keys.gpg is an encrypted file with key-value pairs like this:
# TEST_KEY is "foobar" (base64-encoded)
TEST_KEY="Zm9vYmFy"
values are base64-encoded
Usage in kustomization.yaml:
secretGenerator:
$ sed 's@\bSERVICE_apache\b@/opt/apache/bin@g' | |
SERVICE_apache QQQ | |
/opt/apache/bin QQQ | |
QQQ SERVICE_apache ZZZ | |
QQQ /opt/apache/bin ZZZ | |
SERVICE_apachehuyache | |
SERVICE_apachehuyache | |
FOOSERVICE_apache | |
FOOSERVICE_apache |
$ cat letsencrypt/do.ini | |
dns_digitalocean_token = XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX | |
$ docker run -it --rm --name certbot \ | |
-v "$PWD/letsencrypt:/etc/letsencrypt" \ | |
-v "$PWD/letsencrypt-data:/var/lib/letsencrypt" \ | |
-v "$PWD/letsencrypt-out:/keys" \ | |
certbot/dns-digitalocean \ | |
certonly \ | |
--server https://acme-staging-v02.api.letsencrypt.org/directory \ | |
--dns-digitalocean \ |
runtime.usleep () at /usr/local/go/src/runtime/sys_linux_amd64.s:95 | |
95 /usr/local/go/src/runtime/sys_linux_amd64.s: No such file or directory. | |
(gdb) print-sched | |
G state: | |
1 waiting (chan receive) | |
started at runtime.main | |
created by runtime.rt0_go | |
2 waiting (force gc (idle)) | |
started at runtime.forcegchelper | |
created by runtime.init.3 |
(dlv) thread 14 | |
Switched from 34689 to 14 | |
(dlv) print gp | |
*runtime.g { | |
stack: runtime.stack {lo: 842350829568, hi: 842350831584}, | |
stackguard0: 18446744073709550302, | |
stackguard1: 18446744073709551615, | |
_panic: *runtime._panic nil, | |
_defer: *runtime._defer nil, | |
m: *runtime.m { |
I0130 17:16:29.223801 1 server.go:215] Using iptables Proxier. | |
W0130 17:16:30.386099 1 server.go:468] Failed to retrieve node info: nodes "node158" not found | |
W0130 17:16:30.386240 1 proxier.go:249] invalid nodeIP, initialize kube-proxy with 127.0.0.1 as nodeIP | |
I0130 17:16:30.386275 1 server.go:227] Tearing down userspace rules. | |
I0130 17:16:30.386376 1 healthcheck.go:119] Initializing kube-proxy health checker | |
I0130 17:16:30.488856 1 conntrack.go:81] Set sysctl 'net/netfilter/nf_conntrack_max' to 1572864 | |
I0130 17:16:30.489253 1 conntrack.go:66] Setting conntrack hashsize to 393216 | |
I0130 17:16:30.492146 1 conntrack.go:81] Set sysctl 'net/netfilter/nf_conntrack_tcp_timeout_established' to 86400 | |
I0130 17:16:30.492177 1 conntrack.go:81] Set sysctl 'net/netfilter/nf_conntrack_tcp_timeout_close_wait' to 3600 | |
I0130 17:16:31.580885 1 proxier.go:472] Adding new service "kube-system/kubedns:dns" at 10.224.0.3:53/UDP |
(dlv) threads | |
Thread 1 at 0x464d07 .usr/local/go/src/runtime/sys_linux_amd64.s:95 runtime.usleep | |
Thread 7 at 0x465123 .usr/local/go/src/runtime/sys_linux_amd64.s:388 runtime.futex | |
Thread 8 at 0x464d07 .usr/local/go/src/runtime/sys_linux_amd64.s:95 runtime.usleep | |
Thread 9 at 0x465123 .usr/local/go/src/runtime/sys_linux_amd64.s:388 runtime.futex | |
Thread 10 at 0x464d07 .usr/local/go/src/runtime/sys_linux_amd64.s:95 runtime.usleep | |
Thread 11 at 0x465123 .usr/local/go/src/runtime/sys_linux_amd64.s:388 runtime.futex | |
Thread 12 at 0x464d07 .usr/local/go/src/runtime/sys_linux_amd64.s:95 runtime.usleep | |
Thread 13 at 0x464d07 .usr/local/go/src/runtime/sys_linux_amd64.s:95 runtime.usleep | |
Thread 14 at 0x465237 .usr/local/go/src/runtime/sys_linux_amd64.s:479 runtime.osyield |
(dlv) goroutines | |
[79 goroutines] | |
Goroutine 1 - User: .go/src/k8s.io/kubernetes/_output/dockerized/go/src/k8s.io/kubernetes/pkg/proxy/iptables/proxier.go:421 k8s.io/kubernetes/pkg/proxy/iptables.(*Proxier).SyncLoop (0xdd5f7e) | |
Goroutine 2 - User: .usr/local/go/src/runtime/proc.go:260 runtime.gopark (0x43307a) | |
Goroutine 3 - User: .usr/local/go/src/runtime/proc.go:260 runtime.gopark (0x43307a) | |
Goroutine 4 - User: .usr/local/go/src/runtime/proc.go:2524 runtime.exitsyscall (0x4394d4) | |
Goroutine 17 - User: .usr/local/go/src/runtime/asm_amd64.s:2087 runtime.goexit (0x464081) | |
Goroutine 18 - User: .usr/local/go/src/runtime/proc.go:260 runtime.gopark (0x43307a) | |
Goroutine 19 - User: .go/src/k8s.io/kubernetes/_output/dockerized/go/src/k8s.io/kubernetes/vendor/github.com/golang/glog/glog.go:879 k8s.io/kubernetes/vendor/github.com/golang/glog.(*loggingT).flushDaemon (0x56a331) | |
Goroutine 20 - User: .usr/local/go/src/runtime/proc.go:260 runtime.gopark (0x43307a) |
ivan4th@ivan4th:~/work/kubernetes/src/k8s.io/kubernetes (fix-kubectl-apply-for-init-containers *%) $ git diff | |
diff --git a/pkg/kubectl/apply.go b/pkg/kubectl/apply.go | |
index 6f183f1..7bad4ae 100644 | |
--- a/pkg/kubectl/apply.go | |
+++ b/pkg/kubectl/apply.go | |
@@ -19,6 +19,7 @@ package kubectl | |
import ( | |
"encoding/json" | |
+ "fmt" |