背景

K8S证书过期了,然后不小心删除了个文件,然后就悲剧了

报错总结

root@n149-136-019:~# kubectl get node
error: no configuration has been provided, try setting KUBERNETES_MASTER environment variable

卸载之后,重装
sudo kubeadm init --kubernetes-version v1.18.14 --pod-network-cidr=10.244.0.0/16 --v=5
报错:

I0713 10:14:07.956453 1200631 checks.go:844] pulling k8s.gcr.io/kube-scheduler:v1.18.14
I0713 10:15:23.549910 1200631 checks.go:844] pulling k8s.gcr.io/kube-proxy:v1.18.14
I0713 10:16:38.843371 1200631 checks.go:838] image exists: k8s.gcr.io/pause:3.2
I0713 10:16:38.884503 1200631 checks.go:838] image exists: k8s.gcr.io/etcd:3.4.3-0
I0713 10:16:38.921765 1200631 checks.go:838] image exists: k8s.gcr.io/coredns:1.6.7
[preflight] Some fatal errors occurred:
        [ERROR ImagePull]: failed to pull image k8s.gcr.io/kube-apiserver:v1.18.14: output: Error response from daemon: Get https://k8s.gcr.io/v2/: net/http: request canceled while waiting for connection (Client.Timeout exceeded while awaiting headers)
, error: exit status 1
        [ERROR ImagePull]: failed to pull image k8s.gcr.io/kube-controller-manager:v1.18.14: output: Error response from daemon: Get https://k8s.gcr.io/v2/: net/http: request canceled while waiting for connection (Client.Timeout exceeded while awaiting headers)
, error: exit status 1
        [ERROR ImagePull]: failed to pull image k8s.gcr.io/kube-scheduler:v1.18.14: output: Error response from daemon: Get https://k8s.gcr.io/v2/: net/http: request canceled while waiting for connection (Client.Timeout exceeded while awaiting headers)
, error: exit status 1
        [ERROR ImagePull]: failed to pull image k8s.gcr.io/kube-proxy:v1.18.14: output: Error response from daemon: Get https://k8s.gcr.io/v2/: net/http: request canceled while waiting for connection (Client.Timeout exceeded while awaiting headers)
, error: exit status 1
[preflight] If you know what you are doing, you can make a check non-fatal with `--ignore-preflight-errors=...`
error execution phase preflight
k8s.io/kubernetes/cmd/kubeadm/app/cmd/phases/workflow.(*Runner).Run.func1
        /workspace/anago-v1.18.0-rc.1.21+8be33caaf953ac/src/k8s.io/kubernetes/_output/dockerized/go/src/k8s.io/kubernetes/cmd/kubeadm/app/cmd/phases/workflow/runner.go:235
k8s.io/kubernetes/cmd/kubeadm/app/cmd/phases/workflow.(*Runner).visitAll
        /workspace/anago-v1.18.0-rc.1.21+8be33caaf953ac/src/k8s.io/kubernetes/_output/dockerized/go/src/k8s.io/kubernetes/cmd/kubeadm/app/cmd/phases/workflow/runner.go:422
k8s.io/kubernetes/cmd/kubeadm/app/cmd/phases/workflow.(*Runner).Run
        /workspace/anago-v1.18.0-rc.1.21+8be33caaf953ac/src/k8s.io/kubernetes/_output/dockerized/go/src/k8s.io/kubernetes/cmd/kubeadm/app/cmd/phases/workflow/runner.go:207
k8s.io/kubernetes/cmd/kubeadm/app/cmd.NewCmdInit.func1
        /workspace/anago-v1.18.0-rc.1.21+8be33caaf953ac/src/k8s.io/kubernetes/_output/dockerized/go/src/k8s.io/kubernetes/cmd/kubeadm/app/cmd/init.go:147
k8s.io/kubernetes/vendor/github.com/spf13/cobra.(*Command).execute
        /workspace/an

镜像拉不到,版本不匹配,查看机器已经有相应镜像,版本不匹配
解决

docker tag k8s.gcr.io/kube-apiserver:v1.18.19 k8s.gcr.io/kube-apiserver:v1.18.14
docker tag k8s.gcr.io/kube-controller-manager:v1.18.19 k8s.gcr.io/kube-controller-manager:v1.18.14
docker tag k8s.gcr.io/kube-scheduler:v1.18.19 k8s.gcr.io/kube-scheduler:v1.18.14
docker tag k8s.gcr.io/kube-proxy:v1.18.19 k8s.gcr.io/kube-proxy:v1.18.14

重新 init,
镜像等拉取成功
在这里插入图片描述

[kubelet-finalize] Updating "/etc/kubernetes/kubelet.conf" to point to a rotatable kubelet client certificate and key
I0713 10:25:30.571596 1248623 kubeletfinalize.go:132] [kubelet-finalize] Restarting the kubelet to enable client certificate rotation
[addons] Applied essential addon: CoreDNS
I0713 10:25:30.948477 1248623 request.go:557] Throttling request took 197.998153ms, request: POST:https://10.149.136.19:6443/api/v1/namespaces/kube-system/configmaps?timeout=10s
[addons] Applied essential addon: kube-proxy

Your Kubernetes control-plane has initialized successfully!

To start using your cluster, you need to run the following as a regular user:

  mkdir -p $HOME/.kube
  sudo cp -i /etc/kubernetes/admin.conf $HOME/.kube/config
  sudo chown $(id -u):$(id -g) $HOME/.kube/config

You should now deploy a pod network to the cluster.
Run "kubectl apply -f [podnetwork].yaml" with one of the options listed at:
  https://kubernetes.io/docs/concepts/cluster-administration/addons/

Then you can join any number of worker nodes by running the following on each as root:

kubeadm join 10.149.136.19:6443 --token v2wnro.hwz6clv2tjos03gn \
    --discovery-token-ca-cert-hash sha256:e137dbd70babcec79198767ca60b845f543dd057c3b3b225e234820273b719e0

goon

root@n149-136-019:~# kubectl get nodeNAME           STATUS   ROLES    AGE     VERSIONn149-136-019   Ready    master   2m46s   v1.18.0

node 加入

kubeadm join 10.149.136.19:6443 --token v2wnro.hwz6clv2tjos03gn \
    --discovery-token-ca-cert-hash sha256:e137dbd70babcec79198767ca60b845f543dd057c3b3b225e234820273b719e0

node尝试加入的过程中

root@n146-074-067:~# kubeadm join 10.149.136.19:6443 --token v2wnro.hwz6clv2tjos03gn \
>     --discovery-token-ca-cert-hash sha256:e137dbd70babcec79198767ca60b845f543dd057c3b3b225e234820273b719e0
W0713 10:36:54.707933 3238231 join.go:346] [preflight] WARNING: JoinControlPane.controlPlane settings will be ignored when control-plane flag is not set.
[preflight] Running pre-flight checks
        [WARNING IsDockerSystemdCheck]: detected "cgroupfs" as the Docker cgroup driver. The recommended driver is "systemd". Please follow the guide at https://kubernetes.io/docs/setup/cri/
error execution phase preflight: [preflight] Some fatal errors occurred:
        [ERROR FileAvailable--etc-kubernetes-kubelet.conf]: /etc/kubernetes/kubelet.conf already exists
        [ERROR Port-10250]: Port 10250 is in use
        [ERROR FileAvailable--etc-kubernetes-pki-ca.crt]: /etc/kubernetes/pki/ca.crt already exists
[preflight] If you know what you are doing, you can make a check non-fatal with `--ignore-preflight-errors=...`
To see the stack trace of this error execute with --v=5 or higher
root@n146-074-067:~#

执行
kubeadm reset 然后重新加入 success

安装 k8s-dashboard

kubectl apply -f https://kuboard.cn/install-script/k8s-dashboard/auth.yaml

openssl req -x509 -new -nodes -key ca.key -subj “/CN=149.136.019” -days 10000 -out ca.crt

尝试

卸载

安装

Logo
Cloudpods

开源、云原生的融合云平台

更多推荐

使用Linux vfio将Nvidia GPU透传给QEMU虚拟机

Linux 上虚拟机 GPU 透传需要使用 vfio 的方式。主要是因为在 vfio 方式下对虚拟设备的权限和 DMA 隔离上做的更好。但是这么做也有个缺点,这个物理设备在主机和其他虚拟机都不能使用了。 qemu 直接使用物理设备本身命令行是很简单的,关键在于事先在主机上对系统、内核和物理设备的一些配置。 单纯从 qemu 的命令行来看,其实和普通虚拟机启动就差了最后那个-device的选项。这

avatar Cloudpods

面向未来的 IT 基础设施管理架构——融合云(Unified IaaS)

随着数字化时代的到来,IT系统已成为人类社会正常运转不可或缺的组成部分。不远的未来,智能制造,5G和人工智能等技术将成为推动生产力发展的重要引擎,人类社会将面临前所未有的全面彻底的数字化浪潮。IT基础设施作为IT系统运行的平台和载体,是实现数字化的基石。在这场数字化浪潮中,企业必须积极拥抱云计算技术,采用符合技术发展趋势、面向未来的IT基础构架,才能在未来的竞争中赢得先机。 一、云计算历经十余年

avatar Cloudpods

Cloudpods负载均衡的功能介绍

作者:周有松 今天的内容会从以下几个方面展开: 负载均衡产品简介。主要介绍负载均衡作为一个云上产品,它的功能模型是怎样的,日常使用中会遇到的业务词汇负载均衡的功能与典型应用场景。这部分主要结合业务词汇,对负载均衡服务中常见的一些功能选项进行介绍,并举例介绍一些典型的应用场景最后,我们做一下总结,讨论一下负载均衡产品相比传统方式的优点 一、产品简介​ 1. 以NGINX为例​ 提到负载均衡,我们以

avatar Cloudpods