红帽全球峰会3.9. 集群升级器故障排除
如果您在为安全集群使用旧的安装方法并启用自动更新时遇到问题,您可以尝试对问题进行故障排除。当升级器失败时,集群视图中可以找到以下错误。
3.9.1. 升级器缺少权限
复制链接链接已复制到粘贴板!
症状
集群页面中会显示以下错误:
Upgrader failed to execute PreflightStage of the roll-forward workflow: executing stage "Run preflight checks": preflight check "Kubernetes authorization" reported errors. This usually means that access is denied. Have you configured this Secured Cluster for automatically receiving upgrades?"流程
- 在点 Download YAML 文件和密钥 之前,确保为安全集群生成的捆绑包启用了将来的升级。
- 如果可能,请删除该安全集群并生成一个新的捆绑包,以确保启用了将来的升级。
如果无法重新创建集群,您可以执行以下操作:
-
确保服务帐户
sensor-upgrader存在于与 Sensor 相同的命名空间中。 -
确保存在 ClusterRoleBinding (默认 name: <
;namespace>:upgrade-sensors),它将cluster-adminClusterRole 赋予sensor-upgrader服务帐户。
-
确保服务帐户
3.9.2. 因为缺少镜像而无法启动 upgrader
复制链接链接已复制到粘贴板!
症状
集群页面中会显示以下错误:
"Upgrade initialization error: The upgrader pods have trouble pulling the new image: Error pulling image: (...) (<image_reference:tag>: not found)"流程
-
确保 Secured Cluster 可以访问 registry,并拉取镜像 <
image_reference:tag>。 - 确保在安全集群中正确配置了镜像 pull secret。
3.9.3. 升级器因为未知原因无法启动
复制链接链接已复制到粘贴板!
症状
集群页面中会显示以下错误:
"Upgrade initialization error: Pod terminated: (Error)"流程
- 确保 upgrader 有足够的权限来访问集群对象。如需更多信息,请参阅"Upgrader is missing permissions"。
- 查看 upgrader 日志以了解更多信息。
3.9.3.1. 获取升级器日志
复制链接链接已复制到粘贴板!
运行以下命令可以访问日志:
$ kubectl -n <namespace> logs deploy/sensor-upgrader其中:
<namespace>- 指定运行 Sensor 的命名空间。
通常,升级器部署只在进行升级时短时间内在集群中运行。稍后它会被删除,因此使用编配器 CLI 访问其日志可能需要适当的时间。
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}