From ac23e6e362d8758032c1dd573d0ff6a958445df5 Mon Sep 17 00:00:00 2001
From: Noriko Hosoi <nhosoi@redhat.com>
Date: Wed, 17 Jan 2018 17:41:48 -0800
Subject: Bug 1512825 - add mux pod failed for Serial number 02 has already
 been issued

According to mkhan@redhat.com, to run the "oc adm ca create-server-cert" command
line with --signer-serial option, the following changes need to be made.
1. adding --overwrite=false
2. <ca.serial.txt> should contain only [0-9A-F]*.
   (no trailing newlines are allowed for now)

This patch solves 1.
---
 roles/openshift_logging/tasks/generate_certs.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'roles/openshift_logging/tasks/generate_certs.yaml')

diff --git a/roles/openshift_logging/tasks/generate_certs.yaml b/roles/openshift_logging/tasks/generate_certs.yaml
index 0d7f8c056..a40449bf6 100644
--- a/roles/openshift_logging/tasks/generate_certs.yaml
+++ b/roles/openshift_logging/tasks/generate_certs.yaml
@@ -19,7 +19,7 @@
   command: >
     {{ openshift_client_binary }} adm --config={{ mktemp.stdout }}/admin.kubeconfig ca create-signer-cert
     --key={{generated_certs_dir}}/ca.key --cert={{generated_certs_dir}}/ca.crt
-    --serial={{generated_certs_dir}}/ca.serial.txt --name=logging-signer-test
+    --serial={{generated_certs_dir}}/ca.serial.txt --name=logging-signer-test --overwrite=false
   check_mode: no
   when:
     - not ca_key_file.stat.exists
-- 
cgit v1.2.1