Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

TLS Cert Signing Error with Second Cluster #1087

Closed
1 of 5 tasks
richard-autry opened this issue Jul 31, 2024 · 5 comments · Fixed by #1088
Closed
1 of 5 tasks

TLS Cert Signing Error with Second Cluster #1087

richard-autry opened this issue Jul 31, 2024 · 5 comments · Fixed by #1088
Labels
bug Something isn't working

Comments

@richard-autry
Copy link

richard-autry commented Jul 31, 2024
edited
Loading

Description

Starting the first cluster works as expected, however I am now receiving a TLS error getting pods for a second started cluster.

Version

colima version 0.7.0
git commit: 4b14e8a9993b17d2e6f5071fd9059513111cd365
limactl version 0.22.0
qemu-img version 9.0.2
Copyright (c) 2003-2024 Fabrice Bellard and the QEMU Project developers

Operating System

  • macOS Intel <= 13 (Ventura)
  • macOS Intel >= 14 (Sonoma)
  • Apple Silicon <= 13 (Ventura)
  • Apple Silicon >= 14 (Sonoma)
  • Linux

Output of colima status

INFO[0000] colima [profile=mirror0] is running using QEMU
INFO[0000] arch: aarch64
INFO[0000] runtime: docker
INFO[0000] mountType: sshfs
INFO[0000] address: 192.168.106.2
INFO[0000] socket: unix:///Users/richardautry/.colima/mirror0/docker.sock
INFO[0000] kubernetes: enabled

Reproduction Steps

  1. colima start mirror0 -k --kubernetes-disable=traefik -c 4 -m 8 --network-address
  2. kubectl get pods result as expected
  3. colima start mirror1 -k --kubernetes-disable=traefik -c 4 -m 8 --network-address
  4. kubectl config use-context mirror1
  5. kubectl get pods results in
Unable to connect to the server: tls: failed to verify certificate: x509: certificate signed by unknown authority

Expected behaviour

You should be able to get pods status, logs, etc using kubectl on the second cluster.

Additional context

Recently upgraded to colima 0.7.0, but this multi-cluster test was working previously.
@abiosoft
Copy link
Owner

Thanks for reporting. I have identified the problem.

@abiosoft abiosoft added the bug Something isn't working label Jul 31, 2024
@abiosoft abiosoft mentioned this issue Jul 31, 2024
Merged
@abiosoft
Copy link
Owner

This should be fixed now.

Can you kindly confirm by installing the development version with brew install --head colima?

@richard-autry
Copy link
Author

Can you kindly confirm by installing the development version with brew install --head colima?

@abiosoft
brew is not showing another version to be installed beyond 0.7.0. Am I missing a step to use latest here?

brew install --head colima
Warning: colima HEAD-4b14e8a is already installed.
The currently linked version is: 0.7.0

@abiosoft
Copy link
Owner

abiosoft commented Aug 1, 2024

You need to uninstall the stable one first.

brew uninstall colima
brew install --head colima

@richard-autry
Copy link
Author

Awesome. LGTM! Thanks for replying/fixing so quickly. You rock 🚀

tmeijn pushed a commit to tmeijn/dotfiles that referenced this issue Aug 10, 2024
@tmeijn
build(deps): update abiosoft/colima to v0.7.1
5ec3ca1 
This MR contains the following updates:

| Package | Update | Change |
|---|---|---|
| [abiosoft/colima](https://github.com/abiosoft/colima) | patch | `v0.7.0` -> `v0.7.1` |

MR created with the help of [el-capitano/tools/renovate-bot](https://gitlab.com/el-capitano/tools/renovate-bot).

**Proposed changes to behavior should be submitted there as MRs.**

---

### Release Notes

<details>
<summary>abiosoft/colima (abiosoft/colima)</summary>

### [`v0.7.1`](https://github.com/abiosoft/colima/releases/tag/v0.7.1)

[Compare Source](abiosoft/colima@v0.7.0...v0.7.1)

#### Highlights

This is an incremental release with bug fixes.

-   Interrupted disk image download will now resume on subsequent `colima start`.
-   Docker container port mapping to specific host IP addresses is now supported.

For more details about v0.70 features, check [v0.70 release notes](https://github.com/abiosoft/colima/releases/tag/v0.7.0).

#### Other Fixes

-   Disk image downloader no longer duplicating downloads. Fixes [#&#8203;1098](abiosoft/colima#1098)
-   Support for binding to host IP address in containers. Fixes [#&#8203;492](abiosoft/colima#492)
-   Ensure proper loading of docker deamon settings on startup. Fixes [#&#8203;902](abiosoft/colima#902)
-   Running multiple Colima profiles with k3s enabled. Fixes [#&#8203;1087](abiosoft/colima#1087)

#### Commits

-   k3s: use random port for cluster API by [@&#8203;abiosoft](https://github.com/abiosoft) in abiosoft/colima#1088
-   k3s: re-use default port for existing instances by [@&#8203;abiosoft](https://github.com/abiosoft) in abiosoft/colima#1090
-   net: support forwarding to specific host IP addresses by [@&#8203;abiosoft](https://github.com/abiosoft) in abiosoft/colima#1091
-   core: nested virtualization and other fixes by [@&#8203;abiosoft](https://github.com/abiosoft) in abiosoft/colima#1094
-   build(deps): bump golang.org/x/term from 0.22.0 to 0.23.0 by [@&#8203;dependabot](https://github.com/dependabot) in abiosoft/colima#1095
-   fix(docker): apply configuration on first boot by [@&#8203;milas](https://github.com/milas) in abiosoft/colima#1097
-   core: fix downloader duplicating downloads by [@&#8203;abiosoft](https://github.com/abiosoft) in abiosoft/colima#1099
-   core: update disk images by [@&#8203;abiosoft](https://github.com/abiosoft) in abiosoft/colima#1102

**Full Changelog**: abiosoft/colima@v0.7.0...v0.7.1

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this MR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this MR, check this box

---

This MR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy40NDAuNyIsInVwZGF0ZWRJblZlciI6IjM3LjQ0MC43IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJSZW5vdmF0ZSBCb3QiXX0=-->
@richard-autry richard-autry mentioned this issue Aug 13, 2024
Closed
5 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

k3s: use random port for cluster API abiosoft/colima
2 participants
@abiosoft @richard-autry