服务器情况:
三台centos7.9,基于openstack创建的节点,全部是2核cpu,4g内存,已配置免密登录
配置文件如下:
apiVersion: kubekey.kubesphere.io/v1alpha1
kind: Cluster
metadata:
name: sample
spec:
hosts:
- {name: master, address: top0001, internalAddress: top0001, privateKeyPath: "~/.ssh/id_rsa"}
- {name: node1, address: top0002, internalAddress: top0002, privateKeyPath: "~/.ssh/id_rsa"}
- {name: node2, address: top0003, internalAddress: top0003, privateKeyPath: "~/.ssh/id_rsa"}
roleGroups:
etcd:
- master
master:
- master
worker:
- node1
- node2
controlPlaneEndpoint:
domain: lb.kubesphere.local
address: ""
port: "6443"
kubernetes:
version: v1.18.6
imageRepo: kubesphere
clusterName: cluster.local
network:
plugin: calico
kubePodsCIDR: 10.233.64.0/18
kubeServiceCIDR: 10.233.0.0/18
registry:
registryMirrors: []
insecureRegistries: []
addons: []
---
apiVersion: installer.kubesphere.io/v1alpha1
kind: ClusterConfiguration
metadata:
name: ks-installer
namespace: kubesphere-system
labels:
version: v3.0.0
spec:
local_registry: ""
persistence:
storageClass: ""
authentication:
jwtSecret: ""
etcd:
monitoring: true
endpointIps: top0001
port: 2379
tlsEnable: true
common:
es:
elasticsearchDataVolumeSize: 20Gi
elasticsearchMasterVolumeSize: 4Gi
elkPrefix: logstash
logMaxAge: 7
mysqlVolumeSize: 20Gi
minioVolumeSize: 20Gi
etcdVolumeSize: 20Gi
openldapVolumeSize: 2Gi
redisVolumSize: 2Gi
console:
enableMultiLogin: false # enable/disable multi login
port: 30880
alerting:
enabled: false
auditing:
enabled: false
devops:
enabled: false
jenkinsMemoryLim: 2Gi
jenkinsMemoryReq: 1500Mi
jenkinsVolumeSize: 8Gi
jenkinsJavaOpts_Xms: 512m
jenkinsJavaOpts_Xmx: 512m
jenkinsJavaOpts_MaxRAM: 2g
events:
enabled: false
ruler:
enabled: true
replicas: 2
logging:
enabled: false
logsidecarReplicas: 2
metrics_server:
enabled: true
monitoring:
prometheusMemoryRequest: 400Mi
prometheusVolumeSize: 20Gi
multicluster:
clusterRole: none # host | member | none
networkpolicy:
enabled: false
notification:
enabled: false
openpitrix:
enabled: false
servicemesh:
enabled: false
错误内容如下:
INFO[10:13:51 CST] Generating etcd certs
ERRO[10:14:19 CST] Failed to generate etcd certs: Failed to exec command: sudo -E /bin/sh -c "mkdir -p /etc/ssl/etcd/ssl && /bin/bash -x /tmp/kubekey/make-ssl-etcd.sh -f /tmp/kubekey/openssl.conf -d /etc/ssl/etcd/ssl"
+ set -o errexit
+ set -o pipefail
+ (( 4 ))
+ case "$1" in
+ CONFIG=/tmp/kubekey/openssl.conf
+ shift 2
+ (( 2 ))
+ case "$1" in
+ SSLDIR=/etc/ssl/etcd/ssl
+ shift 2
+ (( 0 ))
+ '[' -z /tmp/kubekey/openssl.conf ']'
+ '[' -z /etc/ssl/etcd/ssl ']'
++ mktemp -d /tmp/etcd_cacert.XXXXXX
+ tmpdir=/tmp/etcd_cacert.l9oMOF
+ trap 'rm -rf "${tmpdir}"' EXIT
+ cd /tmp/etcd_cacert.l9oMOF
+ mkdir -p /etc/ssl/etcd/ssl
+ '[' -e /etc/ssl/etcd/ssl/ca-key.pem ']'
+ openssl genrsa -out ca-key.pem 2048
+ openssl req -x509 -new -nodes -key ca-key.pem -days 36500 -out ca.pem -subj /CN=etcd-ca
+ MASTERS=master
+ HOSTS=master
+ '[' -n master ']'
+ for host in '$MASTERS'
+ cn=master
+ openssl genrsa -out member-master-key.pem 2048
+ openssl req -new -key member-master-key.pem -out member-master.csr -subj /CN=etcd-member-master -config /tmp/kubekey/openssl.conf
+ rm -rf /tmp/etcd_cacert.l9oMOF: Process exited with status 1 node=top0001
WARN[10:14:19 CST] Task failed ...
WARN[10:14:19 CST] error: interrupted by error
Error: Failed to generate etcd certs: interrupted by error
Usage:
kk create cluster [flags]
Flags:
-f, --filename string Path to a configuration file
-h, --help help for cluster
--skip-pull-images Skip pre pull images
--with-kubernetes string Specify a supported version of kubernetes
--with-kubesphere Deploy a specific version of kubesphere (default v3.0.0)
-y, --yes Skip pre-check of the installation
Global Flags:
--debug Print detailed information (default true)
Failed to generate etcd certs: interrupted by error
有参考 Failed to install K8s in CentOs 7.6 on QingCloud ,但是未能解决,依旧报错,目前束手无策,特来请教