[ansible-project] Re: docker connection over remote host tcp no tls

dmartin Tue, 21 Aug 2018 11:31:27 -0700

I think your host B has SSL or TLS running on port 2375 OR ansible is 
trying to use TLS when the thing running on port 2375 isn't.


On Monday, November 20, 2017 at 12:09:47 AM UTC-8, Esteban Mirizio wrote:
>
> Hi everyone! 
>
> I'm Having a hard time trying to a remote docker connection over non tls. 
> What I'm trying to achieve is to execute an ansible playbook inside a 
> docker located in host A to another docker located in host B, FYI network 
> mode is set to *"host" *on both docker hosts.
>
> This is the playbook I'm trying to execute:
>
>
> - hosts: localhost
>   tasks:
>   - name: add container to inventory
>     add_host:
>       name: git-slave
>       ansible_connection: docker
>       ansible_docker_extra_args: "-H=tcp://192.168.255.2:2375"
>       ansible_user: root
>     changed_when: false
>   - name: Test gitblit
>     delegate_to: git-slave
>     raw: cat /var/log/gitblit
>
>
> This is the error I'm getting:
>
> fatal: [localhost]: UNREACHABLE! => {
>     "changed": false,
>     "msg": "Authentication or permission failure. In some cases, you may 
> have been able to authenticate and did not have permissions on the target 
> directory. Consider changing the remote temp path in ansible.cfg to a path 
> rooted in \"/tmp\". Failed command was: ( umask 77 && mkdir -p \"` echo 
> ~/.ansible/tmp/ansible-tmp-1511161385.72-174791577619947 `\" && echo 
> ansible-tmp-1511161385.72-174791577619947=\"` echo 
> ~/.ansible/tmp/ansible-tmp-1511161385.72-174791577619947 `\" ), exited with 
> result 1, stderr output: tls: oversized record received with length 
> 20527\n",
>     "unreachable": true
> }
>
> Here some test I did:
>
>
>    1. Ping from Host A to Host B
>    
>    root@integration-centralothers0:/home/ubuntu# ping -c3 192.168.255.2
>    PING 192.168.255.2 (192.168.255.2) 56(84) bytes of data.
>    64 bytes from 192.168.255.2: icmp_seq=1 ttl=63 time=2.44 ms
>    64 bytes from 192.168.255.2: icmp_seq=2 ttl=63 time=2.17 ms
>    64 bytes from 192.168.255.2: icmp_seq=3 ttl=63 time=1.66 ms
>    
>    --- 192.168.255.2 ping statistics ---
>    3 packets transmitted, 3 received, 0% packet loss, time 2003ms
>    rtt min/avg/max/mdev = 1.662/2.094/2.447/0.329 ms
>    
>    
>    2. Telnet from Host A to Host B against docker remote API:
>    root@integration-centralothers0:/home/ubuntu# telnet 192.168.255.2 2375
>    Trying 192.168.255.2...
>    Connected to 192.168.255.2.
>    Escape character is '^]'.
>    
>    HTTP/1.1 400 Bad Request
>    Content-Type: text/plain; charset=utf-8
>    Connection: close
>    
>    400 Bad RequestConnection closed by foreign host.
>    
>    3. Remote Docker API test from Host A to Host B using curl
>    curl -s -XGET http://192.168.255.2:2375/v1.24/images/json
>    
>    --Response--
>    
>    
> [{"Containers":-1,"Created":1510250403,"Id":"sha256:20233e267b88092164b554dcf2c7803d2c1eca109fa9224387e02df38e4c915d","Labels":{"com.ansible.container.fingerprint":"f6577dc923ef7ca2954ee10ef99b01f17e953bd26feef91b6ed4609fbd2af7cc"},"ParentId":"","RepoDigests":["
>    
> registry.rando.b-yond.com:5000/rando/rando-git-slave@sha256:f5b16936de627ad526042d40a695653b79c1ff0031bd0a9cae09a75e10d1008d
>    "],............
>    
>    
>    4. Execution of ansible playbook using local docker connection from 
>    inside HOST B to the target docker
>    
>    ansible all -i rando_git-slave_1, -vvvv -c docker -u root -m command 
>    -a "cat /var/log/gitblit.log"
>    ansible 2.4.1.0
>      config file = /etc/ansible/ansible.cfg
>      configured module search path = [u'/root/.ansible/plugins/modules', 
>    u'/usr/share/ansible/plugins/modules']
>      ansible python module location = 
>    /usr/lib/python2.7/dist-packages/ansible
>      executable location = /usr/bin/ansible
>      python version = 2.7.12 (default, Nov 19 2016, 06:48:10) [GCC 5.4.0 
>    20160609]
>    Using /etc/ansible/ansible.cfg as config file
>    setting up inventory plugins
>    Parsed rando_git-slave_1, inventory source with host_list plugin
>    Loading callback plugin minimal of type stdout, v2.0 from 
>    /usr/lib/python2.7/dist-packages/ansible/plugins/callback/__init__.pyc
>    META: ran handlers
>    Using module file 
>    /usr/lib/python2.7/dist-packages/ansible/modules/commands/command.py
>    <rando_git-slave_1> ESTABLISH DOCKER CONNECTION FOR USER: root
>    <rando_git-slave_1> EXEC ['/usr/bin/docker', 'exec', '-u', u'root', 
>    '-i', u'rando_git-slave_1', u'/bin/sh', '-c', u"/bin/sh -c 'echo ~ && 
> sleep 
>    0'"]
>    <rando_git-slave_1> EXEC ['/usr/bin/docker', 'exec', '-u', u'root', 
>    '-i', u'rando_git-slave_1', u'/bin/sh', '-c', u'/bin/sh -c \'( umask 77 && 
>    mkdir -p "` echo 
>    /root/.ansible/tmp/ansible-tmp-1511165208.65-101293422432691 `" && echo 
>    ansible-tmp-1511165208.65-101293422432691="` echo 
>    /root/.ansible/tmp/ansible-tmp-1511165208.65-101293422432691 `" ) && sleep 
>    0\'']
>    <rando_git-slave_1> PUT /tmp/tmpYGG6kk TO 
>    /root/.ansible/tmp/ansible-tmp-1511165208.65-101293422432691/command.py
>    <rando_git-slave_1> EXEC ['/usr/bin/docker', 'exec', '-u', u'root', 
>    '-i', u'rando_git-slave_1', u'/bin/sh', '-c', u"/bin/sh -c 'chmod u+x 
>    /root/.ansible/tmp/ansible-tmp-1511165208.65-101293422432691/ 
>    /root/.ansible/tmp/ansible-tmp-1511165208.65-101293422432691/command.py && 
>    sleep 0'"]
>    <rando_git-slave_1> EXEC ['/usr/bin/docker', 'exec', '-u', u'root', 
>    '-i', u'rando_git-slave_1', u'/bin/sh', '-c', u'/bin/sh -c 
>    \'/usr/bin/python 
>    /root/.ansible/tmp/ansible-tmp-1511165208.65-101293422432691/command.py; 
> rm 
>    -rf "/root/.ansible/tmp/ansible-tmp-1511165208.65-101293422432691/" > 
>    /dev/null 2>&1 && sleep 0\'']
>    rando_git-slave_1 | SUCCESS | rc=0 >>
>    2017-11-17 21:09:32 [INFO ]
>      _____  _  _    _      _  _  _
>     |  __ \(_)| |  | |    | |(_)| |
>     | |  \/ _ | |_ | |__  | | _ | |_
>     | | __ | || __|| '_ \ | || || __|  http://gitblit.com
>     | |_\ \| || |_ | |_) || || || |_   @gitblit
>      \____/|_| \__||_.__/ |_||_| \__|  1.8.0
>    
>    
>    
> I don't have idea what could be the problem, I will try to set up TLS and 
> certificates in order to test the example that appears on 
> http://docs.ansible.com/ansible/latest/intro_inventory.html#non-ssh-connection-types
> . 
>
> Thanks in advance
>
>
> <http://docs.ansible.com/ansible/latest/intro_inventory.html#non-ssh-connection-types>
>
>

-- 
You received this message because you are subscribed to the Google Groups 
"Ansible Project" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to ansible-project+unsubscr...@googlegroups.com.
To post to this group, send email to ansible-project@googlegroups.com.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/ansible-project/0009c282-2fc9-4a08-b498-c1ab58dee92e%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

[ansible-project] Re: docker connection over remote host tcp no tls

Reply via email to