2. 程式人生 > >由於docker pull image失敗,導致k8s pod卡在ContainerCreating狀態

由於docker pull image失敗,導致k8s pod卡在ContainerCreating狀態

阿新 發佈:2019-01-05

由於國內有一些公有云的伺服器,訪問docker.io非常不穩定, 導致pull image一直是失敗的,

nginx.yaml

# cat nginx.yaml 
apiVersion: v1
kind: ReplicationController
metadata:
  name: myweb
spec:
  replicas: 2        
  selector:
    app: myweb
  template:
    metadata:
      labels:
        app: myweb
    spec:
      containers:
        - name: myweb
          #image: registry.cn-shenzhen.aliyuncs.com/yansongda/nginx:latest  #訪問穩定
          image: nginx  # 訪問不穩定的image
          ports:
          - containerPort: 80

檢視pod的events, 最後一行, 一直提示 pulling image "nginx"

# kubectl describe pod myweb-fq
Name:           myweb-fqhxm
Namespace:      default
Node:           test.novalocal/172.16.0.138
Start Time:     Thu, 09 Aug 2018 17:10:58 +0800
Labels:         app=myweb
Annotations:    <none>
Status:         Pending
IP:             
Controlled By:  ReplicationController/myweb
Containers:
  myweb:
    Container ID:   
    Image:          nginx
    Image ID:       
    Port:           80/TCP
    Host Port:      0/TCP
    State:          Waiting
      Reason:       ContainerCreating
    Ready:          False
    Restart Count:  0
    Environment:    <none>
    Mounts:
      /var/run/secrets/kubernetes.io/serviceaccount from default-token-s7722 (ro)
Conditions:
  Type           Status
  Initialized    True 
  Ready          False 
  PodScheduled   True 
Volumes:
  default-token-s7722:
    Type:        Secret (a volume populated by a Secret)
    SecretName:  default-token-s7722
    Optional:    false
QoS Class:       BestEffort
Node-Selectors:  <none>
Tolerations:     node.kubernetes.io/not-ready:NoExecute for 300s
                 node.kubernetes.io/unreachable:NoExecute for 300s
Events:
  Type     Reason                 Age              From                     Message
  ----     ------                 ----             ----                     -------
  Normal   Scheduled              10s              default-scheduler        Successfully assigned myweb-fqhxm to test.novalocal
  Normal   SuccessfulMountVolume  9s               kubelet, test.novalocal  MountVolume.SetUp succeeded for volume "default-token-s7722"
  Warning  MissingClusterDNS      9s (x2 over 9s)  kubelet, test.novalocal  pod: "myweb-fqhxm_default(21410469-9bb4-11e8-bdef-fa163e875cc8)". kubelet does not have ClusterDNS IP configured and cannot create Pod using "ClusterFirst" policy. Falling back to "Default" policy.
  Normal   Pulling                9s               kubelet, test.novalocal  pulling image "nginx"

在nginx映象拉下來之前, pod一直是ContainerCreating   

# kubectl get pods,svc
NAME              READY     STATUS              RESTARTS   AGE
pod/myweb-fqhxm   0/1       ContainerCreating   0          4m
pod/myweb-xn89g   0/1       ContainerCreating   0          4m

NAME                 TYPE        CLUSTER-IP     EXTERNAL-IP   PORT(S)        AGE
service/kubernetes   ClusterIP   10.222.0.1     <none>        443/TCP        1h
service/myweb        NodePort    10.222.9.108   <none>        80:30001/TCP   4m

如果使用國內的映象 

image: registry.cn-shenzhen.aliyuncs.com/yansongda/nginx:latest  #訪問穩定

仍然出來  ContainerCreating  ,  可以查詢一下kubelet的狀態及日誌 , 

# systemctl status kubelet.service
● kubelet.service - Kubernetes API Server
   Loaded: loaded (/usr/lib/systemd/system/kubelet.service; enabled; vendor preset: disabled)
   Active: active (running) since Thu 2018-08-09 17:05:51 CST; 14min ago
     Docs: https://kubernetes.io/doc
 Main PID: 21582 (kubelet)
    Tasks: 0
   Memory: 8.3M
   CGroup: /system.slice/kubelet.service
           ‣ 21582 /usr/bin/kubelet --kubeconfig=/etc/kubernetes/kubeconfig.yaml --logtostderr=false --log-dir=/var/log/kubernetes --v=2 --cgroup-driver=systemd --runtime-cgro
ups=/systemd/system.slice --kubelet-cgroups=/systemd/system.slice

Aug 09 17:10:54 test.novalocal kubelet[21582]: E0809 17:10:54.014150   21582 fsHandler.go:121] failed to collect filesystem stats - rootDiskErr: du command failed on /var/lib/
docker/overlay2/a09ba0411b8d5460276094e64a6e70ce92182d027ea72c9031c20eca8096d9e2/diff with output stdout: , stderr: du: cannot access ‘/var/lib/docker/overlay2/a09ba0411b8d546
0276094e64a6e70ce92182d027ea72c9031c20eca8096d9e2/diff’: No such file or directory
Aug 09 17:10:54 test.novalocal kubelet[21582]: - exit status 1, rootInodeErr: cmd [find /var/lib/docker/overlay2/a09ba0411b8d5460276094e64a6e70ce92182d027ea72c9031c20eca8096d9
e2/diff -xdev -printf .] failed. stderr: find: ‘/var/lib/docker/overlay2/a09ba0411b8d5460276094e64a6e70ce92182d027ea72c9031c20eca8096d9e2/diff’: No such file or directory
Aug 09 17:10:54 test.novalocal kubelet[21582]: ; err: exit status 1, extraDiskErr: du command failed on /var/lib/docker/containers/49913bfa94a2725fad871fd7c389443a7d1bed26881f
96097dcaa8f183ebc57e with output stdout: , stderr: du: cannot access ‘/var/lib/docker/containers/49913bfa94a2725fad871fd7c389443a7d1bed26881f96097dcaa8f183ebc57e’: No such fil
e or directory
Aug 09 17:10:54 test.novalocal kubelet[21582]: - exit status 1
Aug 09 17:17:43 test.novalocal kubelet[21582]: E0809 17:17:43.632628   21582 kubelet_pods.go:163] Mount cannot be satisfied for container "myweb", because the volume is missin
g or the volume mounter is nil: {Name:default-token-s7722 ReadOnly:true MountPath:/var/run/secrets/kubernetes.io/serviceaccount SubPath: MountPropagation:<nil>}
Aug 09 17:17:43 test.novalocal kubelet[21582]: E0809 17:17:43.632730   21582 kuberuntime_manager.go:733] container start failed: CreateContainerConfigError: cannot find volume
 "default-token-s7722" to mount into container "myweb"
Aug 09 17:17:43 test.novalocal kubelet[21582]: E0809 17:17:43.632864   21582 pod_workers.go:186] Error syncing pod 213ff9c6-9bb4-11e8-bdef-fa163e875cc8 ("myweb-xn89g_default(2
13ff9c6-9bb4-11e8-bdef-fa163e875cc8)"), skipping: failed to "StartContainer" for "myweb" with CreateContainerConfigError: "cannot find volume \"default-token-s7722\" to mount
into container \"myweb\""
Aug 09 17:17:48 test.novalocal kubelet[21582]: E0809 17:17:48.819683   21582 kubelet_pods.go:163] Mount cannot be satisfied for container "myweb", because the volume is missin
g or the volume mounter is nil: {Name:default-token-s7722 ReadOnly:true MountPath:/var/run/secrets/kubernetes.io/serviceaccount SubPath: MountPropagation:<nil>}
Aug 09 17:17:48 test.novalocal kubelet[21582]: E0809 17:17:48.819880   21582 kuberuntime_manager.go:733] container start failed: CreateContainerConfigError: cannot find volume
 "default-token-s7722" to mount into container "myweb"
Aug 09 17:17:48 test.novalocal kubelet[21582]: E0809 17:17:48.819968   21582 pod_workers.go:186] Error syncing pod 21410469-9bb4-11e8-bdef-fa163e875cc8 ("myweb-fqhxm_default(2
1410469-9bb4-11e8-bdef-fa163e875cc8)"), skipping: failed to "StartContainer" for "myweb" with CreateContainerConfigError: "cannot find volume \"default-token-s7722\" to mount
into container \"myweb\""

然而一般情況下, kubelet的狀態是這樣的

# systemctl status kubelet.service
● kubelet.service - Kubernetes API Server
   Loaded: loaded (/usr/lib/systemd/system/kubelet.service; enabled; vendor preset: disabled)
   Active: active (running) since Thu 2018-08-09 17:22:19 CST; 20s ago
     Docs: https://kubernetes.io/doc
 Main PID: 25756 (kubelet)
    Tasks: 0
   Memory: 26.4M
   CGroup: /system.slice/kubelet.service
           ‣ 25756 /usr/bin/kubelet --kubeconfig=/etc/kubernetes/kubeconfig.yaml --logtostderr=false --log-dir=/var/log/kubernetes --v=2 --cgroup-driver=systemd --runtime-c...

Aug 09 17:22:19 test.novalocal systemd[1]: kubelet.service: main process exited, code=exited, status=1/FAILURE
Aug 09 17:22:19 test.novalocal systemd[1]: Unit kubelet.service entered failed state.
Aug 09 17:22:19 test.novalocal systemd[1]: kubelet.service failed.
Aug 09 17:22:19 test.novalocal systemd[1]: Started Kubernetes API Server.
Aug 09 17:22:19 test.novalocal systemd[1]: Starting Kubernetes API Server...
Aug 09 17:22:19 test.novalocal kubelet[25756]: Flag --cgroup-driver has been deprecated, This parameter should be set via the config file specified by the Kubelet...formation.
Aug 09 17:22:19 test.novalocal kubelet[25756]: Flag --kubelet-cgroups has been deprecated, This parameter should be set via the config file specified by the Kubel...formation.
Aug 09 17:22:19 test.novalocal kubelet[25756]: E0809 17:22:19.782359   25756 kubelet.go:1282] Image garbage collection failed once. Stats initialization may not h...ontainer /
Aug 09 17:22:22 test.novalocal kubelet[25756]: Starting Device Plugin manager
Hint: Some lines were ellipsized, use -l to show in full.

最近在看了一部電影,道恩·強森 主演的 <摩天營救>, 裡面有一句經典臺詞  "重啟 試試"

systemctl restart kubelet.service

小生文筆不好, 只做了一下記錄 :-)

相關推薦

由於docker pull image失敗,導致k8s podContainerCreating狀態

由於國內有一些公有云的伺服器,訪問docker.io非常不穩定, 導致pull image一直是失敗的, nginx.yaml # cat nginx.yaml apiVersion: v1 kind: ReplicationController metadata:

關於windows中的Docker ToolBox 使用docker pull 映象失敗異常

異常資訊: error pulling image configuration: Get https://acs-mirror.oss-cn-hangzhou.aliyuncs.com/doc ker/registry/v2/blobs/sha256/c6/c6c14b39

docker 17 原始碼分析】docker pull image 原始碼分析

一. Image主要命令 $ docker images (所有)$ docker images java (所有java)$ docker images java:8 (固定tag的jave

k8s Pod status ContainerCreating

pod status  ContainerCreating kubectl describe pod my-nginx-86555897f9-d4gc5       reason like below  d

Docker pull 出現的 error pulling image configuration: Get https://dseasb33srnrn.cloudfront.net/

enabled brush post sig enable system reg inux ica vim /etc/sysconfig/docker OPTIONS=‘--selinux-enabled --log-driver=journald --signature

[ERROR ImagePull]: failed to pull image [k8s.gcr.io/kube-apiserver-amd64:v1.11.1]: exit status 1

occurred cidr .com src cal 4.0 schedule -a uber 問題描述 [root@localhost ~]# kubeadm init --kubernetes-version=v1.11.1 --pod-network-cidr=10.

docker pull 失敗報錯原因

錯誤: Error response from daemon: Get https://registry-1.docker.io/v2/: dial tcp: lookup registry-1.docker.io on [::1]:53: read udp [::1]:51086-

Docker刪除映象失敗 Error response from daemon: No such image: image-6a834f03bd02:latest

剛下載的一個映象,刪除去刪除不掉,報如下錯誤:Error response from daemon: No such image: image-6a834f03bd02:latest 由於是新下的,並未安裝,所以不存在依賴容器。 經過搜尋找到如下方法: 刪除所有映象、容

IIS7下由於權限不足,導致沒法讀取配置文件,引發的錯誤

cmd 服務 logs ont handler 文件 win 機制 選項 錯誤如圖,排查了好久,終於解決,先檢查一下iis,的asp.net服務有沒有開啟,進入iis 角色設置裏查看,如果沒有啟動,則需要開啟asp.net服務,在cmd下,輸入 services.ms

windows由於上次沒有正常關機導致的錯誤解決

ati 百度 ets failure 時間 cmd win get 關機 像往常一樣,打開電腦準備新一天的碼農生活,在持續了近兩分鐘的開機時間後自啟動的AnyConnect首先報錯:AnyConnect not available,以為是電腦管家禁止了其自啟 並且發現桌面

一次由於 MTU 設置不當導致的網絡訪問超時

amp 顯示 com 網絡 ans oot 傳輸 assemble ext 轉自:http://weibo.com/ttarticle/p/show?id=2309404140904511340923 API 服務正常,但是調用總是超時。api端日誌顯示,響應速度很快。

[k8s]k8s pod的三種網絡模式最佳實戰

eba global pla mman mic tcp -- oba svc hostPort相當於docker run -p 8081:8080 $ cat pod-hostport.yaml apiVersion: v1 kind: Pod metadata: n

(轉載)處理SQL解析失敗導致share pool 的爭用

共享 分享圖片 分析 轉載 地址 平時 sof icm 出現問題 通過關聯x$kglcursorx$kglcursor_child_sqlid視圖; 通過使用Oracle10035Event事件可以找到解析失敗的SQL; 通過oraclesystemdump也可以找到解析失

SUN平臺服務器光纖共享存儲互斥失敗導致的數據恢復

數據恢復 服務器數據恢復 存儲數據恢復 北亞數據恢復 服務器數據恢復故障描述: 服務器最初的設計思路為將兩臺SPARC SOLARIS系統通過光纖交換機共享同一存儲作為CLUSTER使用,正常情況下A服務器工作,當A服務器發生故障宕機後即可將其關機然後開啟B服務器進行接管。但由於服務器配置不

Docker pull鏡像報錯問題

Docker pull鏡像報錯問題Pull鏡像報錯如下圖;可能由於國內網絡原因導致超時。 添加國內站點 vim /etc/sysconfig/docker 如下圖: 保存退出,重啟Docker服務即可。 Docker pull鏡像報錯問題

Ajax錯誤 “SCRIPT7002: XMLHttpRequest: 網絡錯誤 0x2ef3, 由於出現錯誤 00002ef3 而導致此項操作無法完成” 的歸納總結

pan 分享 XML 如果 toolbar .cn 判斷 發送 導致 最近在做Asp.net項目的時候,用Ajax訪問服務器數據有時候老是莫名其妙的報錯:SCRIPT7002: XMLHttpRequest: 網絡錯誤 0x2ef3, 由於出現錯誤 00002ef3 而導致

微信小程序用戶信息解密失敗導致的內存泄漏問題。

exception top con invalid head CP HA memory tin 微信小程序獲取用戶解密的Session_key 然後對 encryptedData進行解密 偶爾報錯 時間長了之後會報內存溢出: java.lang.OutOfMemoryE

EHR ORA--1187由於驗主頻雘失敗而無法從文件讀取 ORA-01110數據文件temp01.dbf

info xtend -- 數據文件 png dbf file stat add alter tablespace TEMP add tempfile ‘/data/oracle/oradata/orcl/temp02.dbf‘ size 100m autoextend

安裝docker後啟動失敗

root svc msm 開始 解決方法 圖片 lsi idt wid 問題: 安裝完成Docker後,打開Docker Quickstart Terminal出現 Error:creating VirtualBox 失敗。 然後直接打開Oracl

Centos 7: 改變dockerimage存放目錄

mil clean tom back options socket add fin lib steps:1. mkdir /data/docker 創建新的存放目錄2. systemctl stop docker 關閉docker進程3. vi /usr/lib/sys