ks-installer
ks-installer copied to clipboard
kubesphere
在k8s上安装kubesphere3.2.1报错,证书签名失败
k8s使用 --cluster-signing-cert-file 和 --cluster-signing-key-file 参数启动集群进行离线部署,日志如下:
kubectl logs -n kubesphere-system $(kubectl get pod -n kubesphere-system -l app=ks-install -o jsonpath='{.items[0].metadata.name}') -f 2022-03-03T10:04:22+08:00 INFO : shell-operator latest 2022-03-03T10:04:22+08:00 INFO : Use temporary dir: /tmp/shell-operator 2022-03-03T10:04:22+08:00 INFO : Initialize hooks manager ... 2022-03-03T10:04:22+08:00 INFO : Search and load hooks ... 2022-03-03T10:04:22+08:00 INFO : HTTP SERVER Listening on 0.0.0.0:9115 2022-03-03T10:04:22+08:00 INFO : Load hook config from '/hooks/kubesphere/installRunner.py' 2022-03-03T10:04:23+08:00 INFO : Load hook config from '/hooks/kubesphere/schedule.sh' 2022-03-03T10:04:23+08:00 INFO : Initializing schedule manager ... 2022-03-03T10:04:23+08:00 INFO : KUBE Init Kubernetes client 2022-03-03T10:04:23+08:00 INFO : KUBE-INIT Kubernetes client is configured successfully 2022-03-03T10:04:23+08:00 INFO : MAIN: run main loop 2022-03-03T10:04:23+08:00 INFO : MAIN: add onStartup tasks 2022-03-03T10:04:23+08:00 INFO : Running schedule manager ... 2022-03-03T10:04:23+08:00 INFO : QUEUE add all HookRun@OnStartup 2022-03-03T10:04:23+08:00 INFO : MSTOR Create new metric shell_operator_live_ticks 2022-03-03T10:04:23+08:00 INFO : MSTOR Create new metric shell_operator_tasks_queue_length 2022-03-03T10:04:23+08:00 INFO : GVR for kind 'ClusterConfiguration' is installer.kubesphere.io/v1alpha1, Resource=clusterconfigurations 2022-03-03T10:04:25+08:00 INFO : EVENT Kube event '413aded2-52bd-456a-b0f7-163e0578086c' 2022-03-03T10:04:25+08:00 INFO : QUEUE add TASK_HOOK_RUN@KUBE_EVENTS kubesphere/installRunner.py 2022-03-03T10:04:26+08:00 INFO : TASK_RUN HookRun@KUBE_EVENTS kubesphere/installRunner.py 2022-03-03T10:04:26+08:00 INFO : Running hook 'kubesphere/installRunner.py' binding 'KUBE_EVENTS' ... Retrying (Retry(total=2, connect=None, read=None, redirect=None, status=None)) after connection broken by 'SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: self signed certificate (_ssl.c:1129)'))': /apis/installer.kubesphere.io/v1alpha1/namespaces/kubesphere-system/clusterconfigurations/ks-installer Retrying (Retry(total=1, connect=None, read=None, redirect=None, status=None)) after connection broken by 'SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: self signed certificate (_ssl.c:1129)'))': /apis/installer.kubesphere.io/v1alpha1/namespaces/kubesphere-system/clusterconfigurations/ks-installer Retrying (Retry(total=0, connect=None, read=None, redirect=None, status=None)) after connection broken by 'SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: self signed certificate (_ssl.c:1129)'))': /apis/installer.kubesphere.io/v1alpha1/namespaces/kubesphere-system/clusterconfigurations/ks-installer
https://github.com/kubesphere/kubesphere/issues/5056 参考这个,需要重新制作一个镜像,替换 kubesphere-installer.yaml 里面的镜像,我试过在自己二进制部署的k8s集群是可以的使用的,但是有很多警告,不确定在生产环境使用会有啥问题。
