| Summary: | ansible 2.7: v3.11 installation fails due to missing etcd certificate | ||
|---|---|---|---|
| Product: | OpenShift Container Platform | Reporter: | Elvir Kuric <ekuric> |
| Component: | Installer | Assignee: | Vadim Rutkovsky <vrutkovs> |
| Status: | CLOSED ERRATA | QA Contact: | Gaoyun Pei <gpei> |
| Severity: | low | Docs Contact: | |
| Priority: | low | ||
| Version: | 3.11.0 | CC: | aos-bugs, ekuric, gpei, jokerman, mmccomas, vrutkovs, wmeng |
| Target Milestone: | --- | Flags: | sdodson:
needinfo?
(ekuric) |
| Target Release: | 3.11.z | ||
| Hardware: | x86_64 | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: |
Cause: ansible 2.7.0 has changed the way variables were passed to roles
Consequence: some roles didn't have necessary vars set, resulting in a failed install
Fix: required ansible version is set to 2.6.5
Result: install succeeds
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | 2019-01-10 09:04:01 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
# pwd /etc/origin/master [root@perf148c master]# ls -l total 464 -rw-r--r--. 1 root root 1151 Oct 12 05:27 admin.crt -rw-------. 1 root root 1675 Oct 12 05:27 admin.key -rw-------. 1 root root 5855 Oct 12 05:27 admin.kubeconfig -rw-r--r--. 1 root root 1090 Oct 12 05:27 aggregator-front-proxy.crt -rw-r--r--. 1 root root 1679 Oct 12 05:27 aggregator-front-proxy.key -rw-r--r--. 1 root root 5630 Oct 12 05:27 aggregator-front-proxy.kubeconfig -rw-r--r--. 1 root root 1070 Oct 12 05:27 ca-bundle.crt -rw-r--r--. 1 root root 1070 Oct 12 05:27 ca.crt -rw-------. 1 root root 1675 Oct 12 05:27 ca.key -rw-r--r--. 1 root root 3 Oct 12 05:27 ca.serial.txt -rw-r--r--. 1 root root 1070 Oct 12 05:27 client-ca-bundle.crt -rw-r--r--. 1 root root 2526 Oct 12 05:27 etcd.server.crt -rw-------. 1 root root 1675 Oct 12 05:27 etcd.server.key -rw-r--r--. 1 root root 1070 Oct 12 05:27 front-proxy-ca.crt -rw-r--r--. 1 root root 1078 Oct 12 05:27 frontproxy-ca.crt -rw-------. 1 root root 1679 Oct 12 05:27 front-proxy-ca.key -rw-------. 1 root root 1679 Oct 12 05:27 frontproxy-ca.key -rw-r--r--. 1 root root 3 Oct 12 05:27 frontproxy-ca.serial.txt -rw-r--r--. 1 root root 5789 Oct 12 05:27 master-config.yaml -rw-r--r--. 1 root root 177 Oct 12 05:27 master.env -rw-r--r--. 1 root root 1078 Oct 12 05:27 master.etcd-client.crt -rw-------. 1 root root 1675 Oct 12 05:27 master.etcd-client.key -rw-r--r--. 1 root root 1135 Oct 12 05:27 master.kubelet-client.crt -rw-------. 1 root root 1679 Oct 12 05:27 master.kubelet-client.key -rw-r--r--. 1 root root 1086 Oct 12 05:27 master.proxy-client.crt -rw-------. 1 root root 1679 Oct 12 05:27 master.proxy-client.key -rw-r--r--. 1 root root 2526 Oct 12 05:27 master.server.crt -rw-------. 1 root root 1675 Oct 12 05:27 master.server.key drwx------. 2 root root 6 Oct 12 05:26 named_certificates -rw-r--r--. 1 root root 1099 Oct 12 05:27 openshift-aggregator.crt -rw-------. 1 root root 1675 Oct 12 05:27 openshift-aggregator.key -rw-r--r--. 1 root root 1123 Oct 12 05:27 openshift-master.crt -rw-------. 1 root root 1679 Oct 12 05:27 openshift-master.key -rw-------. 1 root root 5867 Oct 12 05:27 openshift-master.kubeconfig -rw-r--r--. 1 root root 293893 Oct 12 05:27 policy.json -rw-r--r--. 1 root root 573 Oct 12 05:27 recycler_pod.yaml -rw-r--r--. 1 root root 1892 Oct 12 05:27 scheduler.json -rw-------. 1 root root 1675 Oct 12 05:27 serviceaccounts.private.key -rw-------. 1 root root 451 Oct 12 05:27 serviceaccounts.public.key -rw-r--r--. 1 root root 1115 Oct 12 05:27 service-signer.crt -rw-------. 1 root root 1679 Oct 12 05:27 service-signer.key -rw-------. 1 root root 147 Oct 12 05:27 session-secrets.yaml Ansible 2.7 is not supported and known to break things. Please revert ansible back to 2.6.5 I'll keep this bug open to track ansible 2.7 compatibility thank you. works with # ansible --version ansible 2.6.5 config file = /etc/ansible/ansible.cfg configured module search path = [u'/root/.ansible/plugins/modules', u'/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python2.7/site-packages/ansible executable location = /usr/bin/ansible python version = 2.7.5 (default, Sep 12 2018, 05:31:16) [GCC 4.8.5 20150623 (Red Hat 4.8.5-36)] Elvir, It's also believed that this has been fixed in 2.7.1, if you'd like to try that version that'd be helpful datapoint since you were able to reproduce this. Test with openshift-ansible-3.11.39-1.git.0.fe42b3b.el7.noarch.rpm & ansible-2.7.1-1.el7ae. 3.11 cluster could be installed successfully, no such error encountered. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2019:0024 |
Description of problem: Installation of v3.11 fails with error Invalid MasterConfig /etc/origin/master/master-config.yaml etcdClientInfo.ca: Invalid value: "/etc/origin/master/master.etcd-ca.crt": could not read file: stat /etc/origin/master/master.etcd-ca.crt: no such file or directory --- Version-Release number of the following components: rpm -q openshift-ansible openshift-ansible-3.11.22-1.git.0.9bda285.el7.noarch ansible-2.7.0-0.1004.rc4.el7.ans.noarch ansible --version ansible 2.7.0rc4 config file = /etc/ansible/ansible.cfg configured module search path = [u'/root/.ansible/plugins/modules', u'/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python2.7/site-packages/ansible executable location = /usr/bin/ansible python version = 2.7.5 (default, Sep 12 2018, 05:31:16) [GCC 4.8.5 20150623 (Red Hat 4.8.5-36)] atomic-openshift-clients-3.11.22-1.git.0.fc93a54.el7.x86_64 atomic-openshift-excluder-3.11.22-1.git.0.fc93a54.el7.noarch atomic-openshift-node-3.11.22-1.git.0.fc93a54.el7.x86_64 atomic-openshift-docker-excluder-3.11.22-1.git.0.fc93a54.el7.noarch atomic-openshift-3.11.22-1.git.0.fc93a54.el7.x86_64 atomic-openshift-hyperkube-3.11.22-1.git.0.fc93a54.el7.x86_64 atomic-registries-1.22.1-25.git5a342e3.el7.x86_64 atomic-1.22.1-25.git5a342e3.el7.x86_64 How reproducible: Trying to install v3.11 with openshift-ansible installer # git describe v3.11.0-27-gad906e8 Steps to Reproduce: 1. It fails during install Actual results: Installation fails Expected results: Installation to work Additional info: master controller container log --- controller log [root@perf148c yum.repos.d]# docker logs 5a2adb132666>k8s_controllers_master-control_container.txt E1012 09:29:15.238526 1 helpers.go:134] Encountered config error json: unknown field "masterCount" in object *config.MasterConfig, raw JSON: {"admissionConfig":{"pluginConfig":{"BuildDefaults":{"configuration":{"apiVersion":"v1","env":[],"kind":"BuildDefaultsConfig","resources":{"limits":{},"requests":{}}}},"BuildOverrides":{"configuration":{"apiVersion":"v1","kind":"BuildOverridesConfig"}},"openshift.io/ImagePolicy":{"configuration":{"apiVersion":"v1","executionRules":[{"matchImageAnnotations":[{"key":"images.openshift.io/deny-execution","value":"true"}],"name":"execution-denied","onResources":[{"resource":"pods"},{"resource":"builds"}],"reject":true,"skipOnResolutionFailure":true}],"kind":"ImagePolicyConfig"}}}},"aggregatorConfig":{"proxyClientInfo":{"certFile":"aggregator-front-proxy.crt","keyFile":"aggregator-front-proxy.key"}},"apiLevels":["v1"],"apiVersion":"v1","authConfig":{"requestHeader":{"clientCA":"front-proxy-ca.crt","clientCommonNames":["aggregator-front-proxy"],"extraHeaderPrefixes":["X-Remote-Extra-"],"groupHeaders":["X-Remote-Group"],"usernameHeaders":["X-Remote-User"]}},"controllerConfig":{"election":{"lockName":"openshift-master-controllers"},"serviceServingCert":{"signer":{"certFile":"service-signer.crt","keyFile":"service-signer.key"}}},"controllers":"*","corsAllowedOrigins":["(?i)//127\\.0\\.0\\.1(:|\\z)","(?i)//localhost(:|\\z)","(?i)//10\\.16\\.29\\.206(:|\\z)","(?i)//kubernetes\\.default(:|\\z)","(?i)//kubernetes\\.default\\.svc\\.cluster\\.local(:|\\z)","(?i)//kubernetes(:|\\z)","(?i)//openshift\\.default(:|\\z)","(?i)//openshift\\.default\\.svc(:|\\z)","(?i)//perf148c\\.perf\\.lab\\.eng\\.bos\\.redhat\\.com(:|\\z)","(?i)//openshift\\.default\\.svc\\.cluster\\.local(:|\\z)","(?i)//kubernetes\\.default\\.svc(:|\\z)","(?i)//openshift(:|\\z)","(?i)//172\\.24\\.0\\.1(:|\\z)"],"dnsConfig":{"bindAddress":"0.0.0.0:8053","bindNetwork":"tcp4"},"etcdClientInfo":{"ca":"master.etcd-ca.crt","certFile":"master.etcd-client.crt","keyFile":"master.etcd-client.key","urls":["https://perf148c.perf.lab.eng.bos.redhat.com:2379"]},"etcdStorageConfig":{"kubernetesStoragePrefix":"kubernetes.io","kubernetesStorageVersion":"v1","openShiftStoragePrefix":"openshift.io","openShiftStorageVersion":"v1"},"imageConfig":{"format":"registry.reg-aws.openshift.com:443/openshift3/ose-${component}:${version}","latest":false},"imagePolicyConfig":{"internalRegistryHostname":"docker-registry.default.svc:5000"},"kind":"MasterConfig","kubeletClientInfo":{"ca":"ca-bundle.crt","certFile":"master.kubelet-client.crt","keyFile":"master.kubelet-client.key","port":10250},"kubernetesMasterConfig":{"apiServerArguments":{"storage-backend":["etcd3"],"storage-media-type":["application/vnd.kubernetes.protobuf"]},"controllerArguments":{"cluster-signing-cert-file":["/etc/origin/master/ca.crt"],"cluster-signing-key-file":["/etc/origin/master/ca.key"],"pv-recycler-pod-template-filepath-hostpath":["/etc/origin/master/recycler_pod.yaml"],"pv-recycler-pod-template-filepath-nfs":["/etc/origin/master/recycler_pod.yaml"]},"masterCount":1,"masterIP":"10.16.29.206","podEvictionTimeout":null,"proxyClientInfo":{"certFile":"master.proxy-client.crt","keyFile":"master.proxy-client.key"},"schedulerArguments":null,"schedulerConfigFile":"/etc/origin/master/scheduler.json","servicesNodePortRange":"","servicesSubnet":"172.24.0.0/14","staticNodeNames":[]},"masterClients":{"externalKubernetesClientConnectionOverrides":{"acceptContentTypes":"application/vnd.kubernetes.protobuf,application/json","burst":400,"contentType":"application/vnd.kubernetes.protobuf","qps":200},"externalKubernetesKubeConfig":"","openshiftLoopbackClientConnectionOverrides":{"acceptContentTypes":"application/vnd.kubernetes.protobuf,application/json","burst":600,"contentType":"application/vnd.kubernetes.protobuf","qps":300},"openshiftLoopbackKubeConfig":"openshift-master.kubeconfig"},"masterPublicURL":"https://perf148c.perf.lab.eng.bos.redhat.com:8443","networkConfig":{"clusterNetworks":[{"cidr":"172.20.0.0/14","hostSubnetLength":9}],"externalIPNetworkCIDRs":["0.0.0.0/0"],"networkPluginName":"redhat/openshift-ovs-multitenant","serviceNetworkCIDR":"172.24.0.0/14"},"oauthConfig":{"assetPublicURL":"https://perf148c.perf.lab.eng.bos.redhat.com:8443/console/","grantConfig":{"method":"auto"},"identityProviders":[{"challenge":true,"login":true,"mappingMethod":"claim","name":"allow_all","provider":{"apiVersion":"v1","kind":"AllowAllPasswordIdentityProvider"}}],"masterCA":"ca-bundle.crt","masterPublicURL":"https://perf148c.perf.lab.eng.bos.redhat.com:8443","masterURL":"https://perf148c.perf.lab.eng.bos.redhat.com:8443","sessionConfig":{"sessionMaxAgeSeconds":3600,"sessionName":"ssn","sessionSecretsFile":"/etc/origin/master/session-secrets.yaml"},"tokenConfig":{"accessTokenMaxAgeSeconds":86400,"authorizeTokenMaxAgeSeconds":500}},"pauseControllers":false,"policyConfig":{"bootstrapPolicyFile":"/etc/origin/master/policy.json","openshiftInfrastructureNamespace":"openshift-infra","openshiftSharedResourcesNamespace":"openshift"},"projectConfig":{"defaultNodeSelector":"node-role.kubernetes.io/compute=true","projectRequestMessage":"","projectRequestTemplate":"","securityAllocator":{"mcsAllocatorRange":"s0:/2","mcsLabelsPerProject":5,"uidAllocatorRange":"1000000000-1999999999/10000"}},"routingConfig":{"subdomain":"router.default.svc.cluster.local"},"serviceAccountConfig":{"limitSecretReferences":false,"managedNames":["default","builder","deployer"],"masterCA":"ca-bundle.crt","privateKeyFile":"serviceaccounts.private.key","publicKeyFiles":["serviceaccounts.public.key"]},"servingInfo":{"bindAddress":"0.0.0.0:8443","bindNetwork":"tcp4","certFile":"master.server.crt","clientCA":"ca.crt","keyFile":"master.server.key","maxRequestsInFlight":500,"requestTimeoutSeconds":3600},"volumeConfig":{"dynamicProvisioningEnabled":true}} I1012 09:29:15.238737 1 plugins.go:84] Registered admission plugin "NamespaceLifecycle" I1012 09:29:15.238745 1 plugins.go:84] Registered admission plugin "Initializers" I1012 09:29:15.238750 1 plugins.go:84] Registered admission plugin "ValidatingAdmissionWebhook" I1012 09:29:15.238755 1 plugins.go:84] Registered admission plugin "MutatingAdmissionWebhook" I1012 09:29:15.238761 1 plugins.go:84] Registered admission plugin "AlwaysAdmit" I1012 09:29:15.238766 1 plugins.go:84] Registered admission plugin "AlwaysPullImages" I1012 09:29:15.238770 1 plugins.go:84] Registered admission plugin "LimitPodHardAntiAffinityTopology" I1012 09:29:15.238775 1 plugins.go:84] Registered admission plugin "DefaultTolerationSeconds" I1012 09:29:15.238778 1 plugins.go:84] Registered admission plugin "AlwaysDeny" I1012 09:29:15.238783 1 plugins.go:84] Registered admission plugin "EventRateLimit" I1012 09:29:15.238789 1 plugins.go:84] Registered admission plugin "DenyEscalatingExec" I1012 09:29:15.238792 1 plugins.go:84] Registered admission plugin "DenyExecOnPrivileged" I1012 09:29:15.238796 1 plugins.go:84] Registered admission plugin "ExtendedResourceToleration" I1012 09:29:15.238800 1 plugins.go:84] Registered admission plugin "OwnerReferencesPermissionEnforcement" I1012 09:29:15.238806 1 plugins.go:84] Registered admission plugin "ImagePolicyWebhook" I1012 09:29:15.238811 1 plugins.go:84] Registered admission plugin "LimitRanger" I1012 09:29:15.238815 1 plugins.go:84] Registered admission plugin "NamespaceAutoProvision" I1012 09:29:15.238820 1 plugins.go:84] Registered admission plugin "NamespaceExists" I1012 09:29:15.238824 1 plugins.go:84] Registered admission plugin "NodeRestriction" I1012 09:29:15.238830 1 plugins.go:84] Registered admission plugin "PersistentVolumeLabel" I1012 09:29:15.238834 1 plugins.go:84] Registered admission plugin "PodNodeSelector" I1012 09:29:15.238841 1 plugins.go:84] Registered admission plugin "PodPreset" I1012 09:29:15.238845 1 plugins.go:84] Registered admission plugin "PodTolerationRestriction" I1012 09:29:15.238850 1 plugins.go:84] Registered admission plugin "ResourceQuota" I1012 09:29:15.238856 1 plugins.go:84] Registered admission plugin "PodSecurityPolicy" I1012 09:29:15.238860 1 plugins.go:84] Registered admission plugin "Priority" I1012 09:29:15.238864 1 plugins.go:84] Registered admission plugin "SecurityContextDeny" I1012 09:29:15.238869 1 plugins.go:84] Registered admission plugin "ServiceAccount" I1012 09:29:15.238874 1 plugins.go:84] Registered admission plugin "DefaultStorageClass" I1012 09:29:15.238879 1 plugins.go:84] Registered admission plugin "PersistentVolumeClaimResize" I1012 09:29:15.238883 1 plugins.go:84] Registered admission plugin "StorageObjectInUseProtection" Invalid MasterConfig /etc/origin/master/master-config.yaml etcdClientInfo.ca: Invalid value: "/etc/origin/master/master.etcd-ca.crt": could not read file: stat /etc/origin/master/master.etcd-ca.crt: no such file or directory [root@perf148c yum.repos.d]# ---- master api container log --- # docker logs c4ecaf8b7646 E1012 09:30:37.219283 1 helpers.go:134] Encountered config error json: unknown field "masterCount" in object *config.MasterConfig, raw JSON: {"admissionConfig":{"pluginConfig":{"BuildDefaults":{"configuration":{"apiVersion":"v1","env":[],"kind":"BuildDefaultsConfig","resources":{"limits":{},"requests":{}}}},"BuildOverrides":{"configuration":{"apiVersion":"v1","kind":"BuildOverridesConfig"}},"openshift.io/ImagePolicy":{"configuration":{"apiVersion":"v1","executionRules":[{"matchImageAnnotations":[{"key":"images.openshift.io/deny-execution","value":"true"}],"name":"execution-denied","onResources":[{"resource":"pods"},{"resource":"builds"}],"reject":true,"skipOnResolutionFailure":true}],"kind":"ImagePolicyConfig"}}}},"aggregatorConfig":{"proxyClientInfo":{"certFile":"aggregator-front-proxy.crt","keyFile":"aggregator-front-proxy.key"}},"apiLevels":["v1"],"apiVersion":"v1","authConfig":{"requestHeader":{"clientCA":"front-proxy-ca.crt","clientCommonNames":["aggregator-front-proxy"],"extraHeaderPrefixes":["X-Remote-Extra-"],"groupHeaders":["X-Remote-Group"],"usernameHeaders":["X-Remote-User"]}},"controllerConfig":{"election":{"lockName":"openshift-master-controllers"},"serviceServingCert":{"signer":{"certFile":"service-signer.crt","keyFile":"service-signer.key"}}},"controllers":"*","corsAllowedOrigins":["(?i)//127\\.0\\.0\\.1(:|\\z)","(?i)//localhost(:|\\z)","(?i)//10\\.16\\.29\\.206(:|\\z)","(?i)//kubernetes\\.default(:|\\z)","(?i)//kubernetes\\.default\\.svc\\.cluster\\.local(:|\\z)","(?i)//kubernetes(:|\\z)","(?i)//openshift\\.default(:|\\z)","(?i)//openshift\\.default\\.svc(:|\\z)","(?i)//perf148c\\.perf\\.lab\\.eng\\.bos\\.redhat\\.com(:|\\z)","(?i)//openshift\\.default\\.svc\\.cluster\\.local(:|\\z)","(?i)//kubernetes\\.default\\.svc(:|\\z)","(?i)//openshift(:|\\z)","(?i)//172\\.24\\.0\\.1(:|\\z)"],"dnsConfig":{"bindAddress":"0.0.0.0:8053","bindNetwork":"tcp4"},"etcdClientInfo":{"ca":"master.etcd-ca.crt","certFile":"master.etcd-client.crt","keyFile":"master.etcd-client.key","urls":["https://perf148c.perf.lab.eng.bos.redhat.com:2379"]},"etcdStorageConfig":{"kubernetesStoragePrefix":"kubernetes.io","kubernetesStorageVersion":"v1","openShiftStoragePrefix":"openshift.io","openShiftStorageVersion":"v1"},"imageConfig":{"format":"registry.reg-aws.openshift.com:443/openshift3/ose-${component}:${version}","latest":false},"imagePolicyConfig":{"internalRegistryHostname":"docker-registry.default.svc:5000"},"kind":"MasterConfig","kubeletClientInfo":{"ca":"ca-bundle.crt","certFile":"master.kubelet-client.crt","keyFile":"master.kubelet-client.key","port":10250},"kubernetesMasterConfig":{"apiServerArguments":{"storage-backend":["etcd3"],"storage-media-type":["application/vnd.kubernetes.protobuf"]},"controllerArguments":{"cluster-signing-cert-file":["/etc/origin/master/ca.crt"],"cluster-signing-key-file":["/etc/origin/master/ca.key"],"pv-recycler-pod-template-filepath-hostpath":["/etc/origin/master/recycler_pod.yaml"],"pv-recycler-pod-template-filepath-nfs":["/etc/origin/master/recycler_pod.yaml"]},"masterCount":1,"masterIP":"10.16.29.206","podEvictionTimeout":null,"proxyClientInfo":{"certFile":"master.proxy-client.crt","keyFile":"master.proxy-client.key"},"schedulerArguments":null,"schedulerConfigFile":"/etc/origin/master/scheduler.json","servicesNodePortRange":"","servicesSubnet":"172.24.0.0/14","staticNodeNames":[]},"masterClients":{"externalKubernetesClientConnectionOverrides":{"acceptContentTypes":"application/vnd.kubernetes.protobuf,application/json","burst":400,"contentType":"application/vnd.kubernetes.protobuf","qps":200},"externalKubernetesKubeConfig":"","openshiftLoopbackClientConnectionOverrides":{"acceptContentTypes":"application/vnd.kubernetes.protobuf,application/json","burst":600,"contentType":"application/vnd.kubernetes.protobuf","qps":300},"openshiftLoopbackKubeConfig":"openshift-master.kubeconfig"},"masterPublicURL":"https://perf148c.perf.lab.eng.bos.redhat.com:8443","networkConfig":{"clusterNetworks":[{"cidr":"172.20.0.0/14","hostSubnetLength":9}],"externalIPNetworkCIDRs":["0.0.0.0/0"],"networkPluginName":"redhat/openshift-ovs-multitenant","serviceNetworkCIDR":"172.24.0.0/14"},"oauthConfig":{"assetPublicURL":"https://perf148c.perf.lab.eng.bos.redhat.com:8443/console/","grantConfig":{"method":"auto"},"identityProviders":[{"challenge":true,"login":true,"mappingMethod":"claim","name":"allow_all","provider":{"apiVersion":"v1","kind":"AllowAllPasswordIdentityProvider"}}],"masterCA":"ca-bundle.crt","masterPublicURL":"https://perf148c.perf.lab.eng.bos.redhat.com:8443","masterURL":"https://perf148c.perf.lab.eng.bos.redhat.com:8443","sessionConfig":{"sessionMaxAgeSeconds":3600,"sessionName":"ssn","sessionSecretsFile":"/etc/origin/master/session-secrets.yaml"},"tokenConfig":{"accessTokenMaxAgeSeconds":86400,"authorizeTokenMaxAgeSeconds":500}},"pauseControllers":false,"policyConfig":{"bootstrapPolicyFile":"/etc/origin/master/policy.json","openshiftInfrastructureNamespace":"openshift-infra","openshiftSharedResourcesNamespace":"openshift"},"projectConfig":{"defaultNodeSelector":"node-role.kubernetes.io/compute=true","projectRequestMessage":"","projectRequestTemplate":"","securityAllocator":{"mcsAllocatorRange":"s0:/2","mcsLabelsPerProject":5,"uidAllocatorRange":"1000000000-1999999999/10000"}},"routingConfig":{"subdomain":"router.default.svc.cluster.local"},"serviceAccountConfig":{"limitSecretReferences":false,"managedNames":["default","builder","deployer"],"masterCA":"ca-bundle.crt","privateKeyFile":"serviceaccounts.private.key","publicKeyFiles":["serviceaccounts.public.key"]},"servingInfo":{"bindAddress":"0.0.0.0:8443","bindNetwork":"tcp4","certFile":"master.server.crt","clientCA":"ca.crt","keyFile":"master.server.key","maxRequestsInFlight":500,"requestTimeoutSeconds":3600},"volumeConfig":{"dynamicProvisioningEnabled":true}} I1012 09:30:37.219438 1 plugins.go:84] Registered admission plugin "NamespaceLifecycle" I1012 09:30:37.219447 1 plugins.go:84] Registered admission plugin "Initializers" I1012 09:30:37.219451 1 plugins.go:84] Registered admission plugin "ValidatingAdmissionWebhook" I1012 09:30:37.219456 1 plugins.go:84] Registered admission plugin "MutatingAdmissionWebhook" I1012 09:30:37.219462 1 plugins.go:84] Registered admission plugin "AlwaysAdmit" I1012 09:30:37.219467 1 plugins.go:84] Registered admission plugin "AlwaysPullImages" I1012 09:30:37.219472 1 plugins.go:84] Registered admission plugin "LimitPodHardAntiAffinityTopology" I1012 09:30:37.219479 1 plugins.go:84] Registered admission plugin "DefaultTolerationSeconds" I1012 09:30:37.219483 1 plugins.go:84] Registered admission plugin "AlwaysDeny" I1012 09:30:37.219491 1 plugins.go:84] Registered admission plugin "EventRateLimit" I1012 09:30:37.219497 1 plugins.go:84] Registered admission plugin "DenyEscalatingExec" I1012 09:30:37.219501 1 plugins.go:84] Registered admission plugin "DenyExecOnPrivileged" I1012 09:30:37.219508 1 plugins.go:84] Registered admission plugin "ExtendedResourceToleration" I1012 09:30:37.219513 1 plugins.go:84] Registered admission plugin "OwnerReferencesPermissionEnforcement" I1012 09:30:37.219520 1 plugins.go:84] Registered admission plugin "ImagePolicyWebhook" I1012 09:30:37.219526 1 plugins.go:84] Registered admission plugin "LimitRanger" I1012 09:30:37.219532 1 plugins.go:84] Registered admission plugin "NamespaceAutoProvision" I1012 09:30:37.219537 1 plugins.go:84] Registered admission plugin "NamespaceExists" I1012 09:30:37.219544 1 plugins.go:84] Registered admission plugin "NodeRestriction" I1012 09:30:37.219549 1 plugins.go:84] Registered admission plugin "PersistentVolumeLabel" I1012 09:30:37.219555 1 plugins.go:84] Registered admission plugin "PodNodeSelector" I1012 09:30:37.219561 1 plugins.go:84] Registered admission plugin "PodPreset" I1012 09:30:37.219566 1 plugins.go:84] Registered admission plugin "PodTolerationRestriction" I1012 09:30:37.219572 1 plugins.go:84] Registered admission plugin "ResourceQuota" I1012 09:30:37.219578 1 plugins.go:84] Registered admission plugin "PodSecurityPolicy" I1012 09:30:37.219583 1 plugins.go:84] Registered admission plugin "Priority" I1012 09:30:37.219587 1 plugins.go:84] Registered admission plugin "SecurityContextDeny" I1012 09:30:37.219593 1 plugins.go:84] Registered admission plugin "ServiceAccount" I1012 09:30:37.219599 1 plugins.go:84] Registered admission plugin "DefaultStorageClass" I1012 09:30:37.219604 1 plugins.go:84] Registered admission plugin "PersistentVolumeClaimResize" I1012 09:30:37.219616 1 plugins.go:84] Registered admission plugin "StorageObjectInUseProtection" Invalid MasterConfig /etc/origin/master/master-config.yaml etcdClientInfo.ca: Invalid value: "/etc/origin/master/master.etcd-ca.crt": could not read file: stat /etc/origin/master/master.etcd-ca.crt: no such file or directory [root@perf148c yum.repos.d]#