Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

BUG: After Sealos upgraded the Kubernetes cluster, the certificate validity period changed from 99 years to 1 year. #4113

Closed
MuJianning opened this issue Oct 18, 2023 · 10 comments · Fixed by #4880
Closed

BUG: After Sealos upgraded the Kubernetes cluster, the certificate validity period changed from 99 years to 1 year. #4113

MuJianning opened this issue Oct 18, 2023 · 10 comments · Fixed by #4880
Assignees
@ghostloda
Labels
help wanted Extra attention is needed kind/bug Something isn't working

Comments

@MuJianning
Copy link

Sealos Version

v4.3.3

How to reproduce the bug?

  1. 安装集群
echo "deb [trusted=yes] https://apt.fury.io/labring/ /" | tee /etc/apt/sources.list.d/labring.list
apt update
apt install -y sealos=4.3.3

cd ~/.ssh
ssh-keygen -t rsa

ssh-copy-id 192.168.137.12
ssh-copy-id 192.168.137.13

cd ~

sealos run \
  labring/kubernetes:v1.27.4 \
  labring/helm:v3.12.3 \
  labring/calico:v3.25.1 \
  --masters 192.168.137.11,192.168.137.12,192.168.137.13
  1. 升级集群
sealos run labring/kubernetes:v1.27.5

What is the expected behavior?

证书有效期99年

What do you see instead?

证书有效期1年

Operating environment

- Sealos version:v4.3.3
- Docker version:v1.6.23
- Kubernetes version:v1.27.4, v1.27.5
- Operating system:Ubuntu:v22.04
- Runtime environment:virtual machine (virbox, 4G memory, 2 core cpu, 50G storage)
- Cluster size:3 master, 0 node
- Additional information:helm:v3.12.3, calico:v3.25.1

Additional information

No response
@MuJianning MuJianning added the kind/bug Something isn't working label Oct 18, 2023
@sealos-ci-robot sealos-ci-robot changed the title BUG: Sealos升级Kubernetes集群后证书有效期从99年变成1年 BUG: After Sealos upgraded the Kubernetes cluster, the certificate validity period changed from 99 years to 1 year. Oct 18, 2023
@soulmz
Copy link

soulmz commented Nov 20, 2023

和我的问题相同,应该是 kubeadm 的问题。
猜测 kubeadm 的 kubeadm cert 证书修改的问题
#4312

@sealos-ci-robot
Copy link
Member

Bot detected the issue body's language is not English, translate it automatically. 👯👭🏻🧑‍🤝‍🧑👫🧑🏿‍🤝‍🧑🏻👩🏾‍🤝‍👨🏿👬🏿

The same problem as mine, it should be a problem with kubeadm.
Guess the problem of modifying the kubeadm cert certificate of kubeadm
#4312

@stale Stale
Copy link

stale bot commented Jan 19, 2024

This issue has been automatically closed because we haven't heard back for more than 60 days, please reopen this issue if necessary.

@LiaoSirui
Copy link

same

@stale stale bot closed this as completed May 4, 2024
@cuisongliu cuisongliu reopened this May 5, 2024
@stale stale bot removed the response-expired label May 5, 2024
@caijian76
Copy link

same

@sealos-ci-robot
Copy link
Member

Bot detected the issue body's language is not English, translate it automatically. 👯👭🏻🧑‍🤝‍🧑👫🧑🏿‍🤝‍🧑🏻👩🏾‍🤝‍👨🏿👬🏿

same

@stale Stale
Copy link

stale bot commented Jul 8, 2024

This issue has been automatically closed because we haven't heard back for more than 60 days, please reopen this issue if necessary.

@bxy4543
Copy link
Member

bxy4543 commented Jul 10, 2024

kubeadm upgrade need --certificate-renewal=false

@sealos-ci-robot
Copy link
Member

Bot detected the issue body's language is not English, translate it automatically. 👯👭🏻🧑‍🤝‍🧑👫🧑🏿‍🤝‍🧑🏻👩🏾‍🤝‍👨🏿👬🏿

kubeadm upgrade need --certificate-renewal=false

@bxy4543 bxy4543 added the help wanted Extra attention is needed label Jul 10, 2024
@ghostloda
Copy link
Collaborator

kubeadm upgrade need --certificate-renewal=false

/assign

@ghostloda ghostloda mentioned this issue Jul 10, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@ghostloda ghostloda

Labels
help wanted Extra attention is needed kind/bug Something isn't working
Projects
None yet
Milestone
No milestone
8 participants
@cuisongliu @soulmz @ghostloda @MuJianning @caijian76 @LiaoSirui @bxy4543 @sealos-ci-robot