Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Calico Kubernetes Certificate Error during Master Node setup #989

Open
aryans1204 opened this issue May 20, 2024 · 1 comment
Open

Calico Kubernetes Certificate Error during Master Node setup #989

aryans1204 opened this issue May 20, 2024 · 1 comment
Assignees
@JooyoungPark73
Labels
bug Something isn't working

Comments

@aryans1204
Copy link

Describe the bug
After step 3.2 from the Quickstart guide, and joining the Kubernetes cluster on the worker nodes, the master node setup provides an error with validation error of the Kubernetes issued certificate while setting up Calico. This fails the master node setup process.

To Reproduce
On a 2 machine cluster, follow steps from quickstart guide until 3.2.
Execute ./setup_tool create_multinode_cluster firecracker on the master node and click y after executing sudo kubeadm join IP:PORT --token <Token> --discovery-token-ca-cert-hash <Token Hash> > >(tee -a /tmp/vhive-logs/kubeadm_join.stdout) 2> >(tee -a /tmp/vhive-logs/kubeadm_join.stderr >&2) on the worker node. Upon the worker node successfuly joining the cluster, the error is thrown on the master node, killing the cluster setup process.

Expected behavior
Successfully applied Calico.
Successfully started multinode cluster.

Logs
Please add relevant excerpts from the following logs: vhive, firecracker-containerd,
and if used with Kubernetes additionally containerd and/or other relevant
logs of Kubernetes containers and setup scripts.
vHive:
[01:37:16] [Warn] All nodes need to be joined in the cluster. Have you joined all nodes? (y/n): y [01:38:29] [Success] All nodes successfully joined!(user confirmed) [01:38:29] [Info] Set up master node [01:38:29] [Info] Installing pod network >>>>> [01:38:30] [Success] [01:38:30] [Success] [01:38:30] [Success] All nodes are ready! [01:38:30] [Error] [exit 1] -> error: error validating "/users/aryans/vhive/configs/calico/calico.yaml": error validating data: failed to download openapi: Get "https://10.0.1.2:6443/openapi/v2?timeout=32s": tls: failed to verify certificate: x509: certificate signed by unknown authority (possibly because of "crypto/rsa: verification error" while trying to verify candidate authority certificate "kubernetes"); if you choose to ignore these errors, turn validation off with --validate=false [01:38:30] [Error] Failed to apply Calico! [01:38:30] [Error] Failed to set up master node! [01:38:30] [Error] Failed subcommand: create_multinode_cluster! [01:38:30] [Info] Cleaning up temporary directory >>>>> [01:38:30] [Success]

Notes
Currently, we support only Ubuntu 18 (x86) bare-metal hosts, however
we encourage the users to reports Issues that appear in different settings.
We will try to help and potentially include these scenarios into our CI
if given enough interest from the community.
@aryans1204 aryans1204 added the bug Something isn't working label May 20, 2024
@JooyoungPark73 JooyoungPark73 self-assigned this May 20, 2024
@JooyoungPark73
Copy link
Contributor

Please terminate and re-deploy the cluster, and then try again.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@JooyoungPark73 JooyoungPark73

Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@JooyoungPark73 @aryans1204