From 1b267b6599321dd3ab2fa7465a4db4cab50eba2b Mon Sep 17 00:00:00 2001
From: muzi502 <42566386+muzi502@users.noreply.github.com>
Date: Thu, 29 Apr 2021 02:26:52 +0800
Subject: [PATCH] Fix calico-kube-controller becomes Error for canal (#7564)

---
 roles/network_plugin/canal/tasks/main.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/roles/network_plugin/canal/tasks/main.yml b/roles/network_plugin/canal/tasks/main.yml
index 320c20ad3..2b781af63 100644
--- a/roles/network_plugin/canal/tasks/main.yml
+++ b/roles/network_plugin/canal/tasks/main.yml
@@ -20,6 +20,7 @@
     src: "{{ etcd_cert_dir }}/{{ item.s }}"
     dest: "{{ canal_cert_dir }}/{{ item.d }}"
     state: hard
+    mode: 0640
     force: yes
   with_items:
     - {s: "{{ kube_etcd_cacert_file }}", d: "ca_cert.crt"}
-- 
GitLab