kubeblocks
kubeblocks copied to clipboard
Published
20 hours ago •
apecloud
apecloud
[BUG] mogdb cluster container mogdb logs contain secret password
Describe the bug
kbcli version
Kubernetes: v1.29.6-gke.1038001
KubeBlocks: 0.9.1-beta.6
kbcli: 0.9.0
To Reproduce Steps to reproduce the behavior:
- create cluster
apiVersion: apps.kubeblocks.io/v1alpha1
kind: Cluster
metadata:
name: mogdb-kcsegd
namespace: default
spec:
clusterDefinitionRef: mogdb
clusterVersionRef: mogdb-5.0.5
terminationPolicy: Delete
componentSpecs:
- name: mogdb
componentDefRef: mogdb
replicas: 1
resources:
requests:
cpu: 500m
memory: 1Gi
limits:
cpu: 500m
memory: 1Gi
volumeClaimTemplates:
- name: data
spec:
storageClassName:
accessModes:
- ReadWriteOnce
resources:
requests:
storage: 5Gi
kubectl get pod -l app.kubernetes.io/instance=mogdb-kcsegd
NAME READY STATUS RESTARTS AGE
mogdb-kcsegd-mogdb-0 4/4 Running 0 10m
kubectl get secrets mogdb-kcsegd-conn-credential -o jsonpath="{.data.password}"|base64 -d
I##7YACct#GME65x
- See error
kubectl logs mogdb-kcsegd-mogdb-0 -c mogdb | grep "I##7YACct#GME65x"
+ [[ I##7YACct#GME65x =~ ^(.{8,}).*$ ]]
+ [[ I##7YACct#GME65x =~ ^(.*[a-z]+).*$ ]]
+ [[ I##7YACct#GME65x =~ ^(.*[A-Z]).*$ ]]
+ [[ I##7YACct#GME65x =~ ^(.*[0-9]).*$ ]]
+ [[ I##7YACct#GME65x =~ [^a-zA-Z0-9] ]]
+ '[' -z I##7YACct#GME65x ']'
+ cmdbase='gs_initdb --pwfile=<(echo "I##7YACct#GME65x")'
+ cmdbase='gs_initdb --pwfile=<(echo "I##7YACct#GME65x") --nodename=mogdb'
+ cmdbase='gs_initdb --pwfile=<(echo "I##7YACct#GME65x") --nodename=mogdb --encoding=UTF-8'
+ cmdbase='gs_initdb --pwfile=<(echo "I##7YACct#GME65x") --nodename=mogdb --encoding=UTF-8 --no-locale'
+ cmdbase='gs_initdb --pwfile=<(echo "I##7YACct#GME65x") --nodename=mogdb --encoding=UTF-8 --no-locale --dbcompatibility=PG'
+ cmdbase='gs_initdb --pwfile=<(echo "I##7YACct#GME65x") --nodename=mogdb --encoding=UTF-8 --no-locale --dbcompatibility=PG --user=omm'
+ cmdbase='gs_initdb --pwfile=<(echo "I##7YACct#GME65x") --nodename=mogdb --encoding=UTF-8 --no-locale --dbcompatibility=PG --user=omm -D /var/lib/mogdb/data'
+ eval 'gs_initdb --pwfile=<(echo "I##7YACct#GME65x") --nodename=mogdb --encoding=UTF-8 --no-locale --dbcompatibility=PG --user=omm -D /var/lib/mogdb/data'
+++ echo I##7YACct#GME65x
+ export PGPASSWORD=I##7YACct#GME65x
+ PGPASSWORD=I##7YACct#GME65x
+ docker_process_sql --dbname postgres --set db=mogdb --set passwd=I##7YACct#GME65x
+ echo 'Execute SQL: gsql' -v ON_ERROR_STOP=1 --username omm --password 'I##7YACct#GME65x --dbname' postgres --set db=mogdb --set passwd=I##7YACct#GME65x
Execute SQL: gsql -v ON_ERROR_STOP=1 --username omm --password I##7YACct#GME65x --dbname postgres --set db=mogdb --set passwd=I##7YACct#GME65x
+ gsql -v ON_ERROR_STOP=1 --username omm --password I##7YACct#GME65x --dbname postgres --set db=mogdb --set passwd=I##7YACct#GME65x
+ docker_process_sql --dbname postgres --set db=mogdb --set passwd=I##7YACct#GME65x --set user=kbadmin
Execute SQL: gsql -v ON_ERROR_STOP=1 --username omm --password I##7YACct#GME65x --dbname postgres --set db=mogdb --set passwd=I##7YACct#GME65x --set user=kbadmin
+ echo 'Execute SQL: gsql' -v ON_ERROR_STOP=1 --username omm --password 'I##7YACct#GME65x --dbname' postgres --set db=mogdb --set passwd=I##7YACct#GME65x --set user=kbadmin
+ gsql -v ON_ERROR_STOP=1 --username omm --password I##7YACct#GME65x --dbname postgres --set db=mogdb --set passwd=I##7YACct#GME65x --set user=kbadmin
Execute SQL: gsql -v ON_ERROR_STOP=1 --username omm --password I##7YACct#GME65x --dbname postgres --set passwd=RepUser@2020 --set user=repuser
+ echo 'Execute SQL: gsql' -v ON_ERROR_STOP=1 --username omm --password 'I##7YACct#GME65x --dbname' postgres --set passwd=RepUser@2020 --set user=repuser
+ gsql -v ON_ERROR_STOP=1 --username omm --password I##7YACct#GME65x --dbname postgres --set passwd=RepUser@2020 --set user=repuser
Expected behavior A clear and concise description of what you expected to happen.
Screenshots If applicable, add screenshots to help explain your problem.
Desktop (please complete the following information):
- OS: [e.g. iOS]
- Browser [e.g. chrome, safari]
- Version [e.g. 22]
Additional context Add any other context about the problem here.
