a997073141
We don't need to be explicit, ssh-keygen will pick a good size for us. Meanwhile, 1024 bit keys are generally seen as security problems and thus ring bells and are refused by some servers/services. Change-Id: Iaea82e0b394a5a6b1da3b59637fc4e0f541e1978 |
||
|---|---|---|
| .. | ||
| library | ||
| tasks | ||
| vars | ||
| __init__.py | ||
| README.rst | ||
Generate and install a build-local SSH key on all hosts
This role is intended to be run on the Zuul Executor at the start of every job. It generates an SSH keypair and installs the public key in the authorized_keys file of every host in the inventory. It then removes the Zuul master key from this job's SSH agent so that the original key used to log into all of the hosts is no longer accessible (any per-project keys, if present, remain available), then adds the newly generated private key.
Role Variables
Where to put the newly-generated SSH private key.