k8s harpoxy kube-apiserver curl PR_END_OF_FILE_ERROR Encountered end of file

故障# curl -k -v https://127.0.0.1:8443/* About to connect() to 127.0.0.1 port 8443 (#0)*Trying 127.0.0.1...* Connected to 127.0.0.1 (127.0.0.1) port 8443 (#0)* Initializing NSS with certpath: sql:/etc/

hkNaruto

1555人浏览 · 2021-04-19 10:12:38

hkNaruto · 2021-04-19 10:12:38 发布

故障

# curl -k -v https://127.0.0.1:8443/
* About to connect() to 127.0.0.1 port 8443 (#0)
*   Trying 127.0.0.1...
* Connected to 127.0.0.1 (127.0.0.1) port 8443 (#0)
* Initializing NSS with certpath: sql:/etc/pki/nssdb
* NSS error -5938 (PR_END_OF_FILE_ERROR)
* Encountered end of file
* Closing connection 0
curl: (35) Encountered end of file

解决：关闭selinux

setenforce 0

修改配置 /etc/selinux/config

SELINUX=disabled

验证：

# curl -k -v https://127.0.0.1:8443/
* About to connect() to 127.0.0.1 port 8443 (#0)
*   Trying 127.0.0.1...
* Connected to 127.0.0.1 (127.0.0.1) port 8443 (#0)
* Initializing NSS with certpath: sql:/etc/pki/nssdb
* skipping SSL peer certificate verification
* NSS: client certificate not found (nickname not specified)
* SSL connection using TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
* Server certificate:
* 	subject: CN=kubernetes,OU=System,O=k8s,L=XS,ST=HangZhou,C=CN
* 	start date: Apr 14 03:07:00 2021 GMT
* 	expire date: Apr 02 03:07:00 2071 GMT
* 	common name: kubernetes
* 	issuer: CN=kubernetes,OU=System,O=k8s,L=XS,ST=HangZhou,C=CN
> GET / HTTP/1.1
> User-Agent: curl/7.29.0
> Host: 127.0.0.1:8443
> Accept: */*
> 
< HTTP/1.1 401 Unauthorized
< Cache-Control: no-cache, private
< Content-Type: application/json
< Date: Mon, 19 Apr 2021 02:12:12 GMT
< Content-Length: 165
< 
{
  "kind": "Status",
  "apiVersion": "v1",
  "metadata": {
    
  },
  "status": "Failure",
  "message": "Unauthorized",
  "reason": "Unauthorized",
  "code": 401
* Connection #0 to host 127.0.0.1 left intact
}

K8S/Kubernetes

K8S/Kubernetes社区为您提供最前沿的新闻资讯和知识内容

更多推荐

【深度】阿里巴巴万级规模 K8s 集群全局高可用体系之美

作者 | 韩堂、柘远、沉醉来源 | 阿里巴巴云原生公众号前言台湾作家林清玄在接受记者采访的时候，如此评价自己 30 多年写作生涯：“第一个十年我才华横溢，‘贼光闪现’，令周边黯然失色；第二个十年，我终于‘宝光现形’，不再去抢风头，反而与身边的美丽相得益彰；进入第三个十年，繁华落尽见真醇，我进入了‘醇光初现’的阶段，真正体味到了境界之美”。长夜有穷，真水无香。领略过了 K8s“身在江

K8S/Kubernetes

如何基于 K8s 构建下一代 DevOps 平台？

作者 | 孙健波（天元）导读：当前云原生 DevOps 体系现状如何？面临哪些挑战？如何通过 OAM 解决云原生 DevOps 场景下的诸多问题？云原生开发应用模型 OAM(Open Application Model) 社区核心成员孙健波将为大家一一解答，并分享如何基于 OAM 和 Kubernetes 打造无限能力的下一代 DevOps 平台。什么是 DevOps？为什么基于 Kub