k8s harpoxy kube-apiserver curl PR_END_OF_FILE_ERROR Encountered end of file
故障# curl -k -v https://127.0.0.1:8443/* About to connect() to 127.0.0.1 port 8443 (#0)*Trying 127.0.0.1...* Connected to 127.0.0.1 (127.0.0.1) port 8443 (#0)* Initializing NSS with certpath: sql:/etc/
·
故障
# curl -k -v https://127.0.0.1:8443/
* About to connect() to 127.0.0.1 port 8443 (#0)
* Trying 127.0.0.1...
* Connected to 127.0.0.1 (127.0.0.1) port 8443 (#0)
* Initializing NSS with certpath: sql:/etc/pki/nssdb
* NSS error -5938 (PR_END_OF_FILE_ERROR)
* Encountered end of file
* Closing connection 0
curl: (35) Encountered end of file
解决:关闭selinux
setenforce 0
修改配置 /etc/selinux/config
SELINUX=disabled
验证:
# curl -k -v https://127.0.0.1:8443/
* About to connect() to 127.0.0.1 port 8443 (#0)
* Trying 127.0.0.1...
* Connected to 127.0.0.1 (127.0.0.1) port 8443 (#0)
* Initializing NSS with certpath: sql:/etc/pki/nssdb
* skipping SSL peer certificate verification
* NSS: client certificate not found (nickname not specified)
* SSL connection using TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
* Server certificate:
* subject: CN=kubernetes,OU=System,O=k8s,L=XS,ST=HangZhou,C=CN
* start date: Apr 14 03:07:00 2021 GMT
* expire date: Apr 02 03:07:00 2071 GMT
* common name: kubernetes
* issuer: CN=kubernetes,OU=System,O=k8s,L=XS,ST=HangZhou,C=CN
> GET / HTTP/1.1
> User-Agent: curl/7.29.0
> Host: 127.0.0.1:8443
> Accept: */*
>
< HTTP/1.1 401 Unauthorized
< Cache-Control: no-cache, private
< Content-Type: application/json
< Date: Mon, 19 Apr 2021 02:12:12 GMT
< Content-Length: 165
<
{
"kind": "Status",
"apiVersion": "v1",
"metadata": {
},
"status": "Failure",
"message": "Unauthorized",
"reason": "Unauthorized",
"code": 401
* Connection #0 to host 127.0.0.1 left intact
}
更多推荐
已为社区贡献18条内容
所有评论(0)