来自Deis工作室的新玩具-Krustlet

curl -Lo ./kind https://kind.sigs.k8s.io/dl/v0.11.1/kind-linux-amd64
mv kind  /usr/bin

kind create cluster --config=cluster.yaml

Creating cluster "kind" ...
 ✓ Ensuring node image (kindest/node:v1.21.1) 🖼
 ✓ Preparing nodes 📦 📦 📦
 ✓ Writing configuration 📜
 ✓ Starting control-plane 🕹️
 ✓ Installing CNI 🔌
 ✓ Installing StorageClass 💾
 ✓ Joining worker nodes 🚜
Set kubectl context to "kind-kind"
You can now use your cluster with:

kubectl cluster-info --context kind-kind

Have a nice day! 👋

kubectl  get nodes
NAME                 STATUS   ROLES                  AGE   VERSION
kind-control-plane   Ready    control-plane,master   90s   v1.21.1
kind-worker          Ready    <none>                 58s   v1.21.1
kind-worker2         Ready    <none>                 60s   v1.21.1

docker network inspect kind |grep Gateway
                    "Gateway": "172.18.0.1"

 bash <(curl https://raw.githubusercontent.com/krustlet/krustlet/main/scripts/bootstrap.sh)
 
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100  2456  100  2456    0     0   2251      0  0:00:01  0:00:01 --:--:--  2253
secret/bootstrap-token-3amumr created
Switched to context "kind-kind".
Context "kind-kind" renamed to "tls-bootstrap-token-user@kubernetes".
User "tls-bootstrap-token-user" set.
Context "tls-bootstrap-token-user@kubernetes" modified.
Context "tls-bootstrap-token-user@kubernetes" modified.
 

wget https://krustlet.blob.core.windows.net/releases/krustlet-canary-linux-amd64.tar.gz
tar -xf krustlet-canary-linux-amd64.tar.gz
chmod +x krustlet-wasi
mv krustlet /usr/bin/

# 下载腾讯源提供的openssl 1.11
wget https://mirrors.cloud.tencent.com/openssl/source/openssl-1.1.1l.tar.gz 
tar -xf openssl-1.1.1l.tar.gz
cd openssl-1.1.1l
./config shared --openssldir=/usr/local/openssl --prefix=/usr/local/openssl
make && make install
ln -s /usr/local/openssl/lib/libssl.so.1.1  /usr/lib64/libssl.so.1.1
ln -s /usr/local/openssl/lib/libcrypto.so.1.1  /usr/lib64/libcrypto.so.1.1
 
# 更新glibc
curl -O http://ftp.gnu.org/gnu/glibc/glibc-2.18.tar.gz
tar zxf glibc-2.18.tar.gz
cd glibc-2.18/
mkdir build
cd build/
../configure --prefix=/usr
make -j2
make install

krustlet-wasi  --node-ip 172.18.0.1 --bootstrap-file=~/.krustlet/config/bootstrap.conf

kubectl certificate approve dmz-jmxtest-01.novalocal-tls
certificatesigningrequest.certificates.k8s.io/dmz-jmxtest-01.novalocal-tls approved

kubectl get nodes -o wide
NAME                       STATUS   ROLES                  AGE    VERSION         INTERNAL-IP   EXTERNAL-IP   OS-IMAGE       KERNEL-VERSION              CONTAINER-RUNTIME
testos                   Ready    <none>                 12s    1.0.0-alpha.1   172.18.0.1    <none>        <unknown>      <unknown>                   mvp
kind-control-plane         Ready    control-plane,master   144m   v1.21.1         172.18.0.2    <none>        Ubuntu 21.04   3.10.0-862.3.2.el7.x86_64   containerd://1.5.2
kind-worker                Ready    <none>                 144m   v1.21.1         172.18.0.4    <none>        Ubuntu 21.04   3.10.0-862.3.2.el7.x86_64   containerd://1.5.2
kind-worker2               Ready    <none>                 144m   v1.21.1         172.18.0.3    <none>        Ubuntu 21.04   3.10.0-862.3.2.el7.x86_64   containerd://1.5.2

BOOTSTRAP: received TLS certificate approval: continuing
Nov 14 04:21:06.747 ERROR kubelet::state::common::image_pull: error=unsupported media type: application/vnd.docker.distribution.manifest.list.v2+json
Nov 14 04:21:17.892 ERROR kubelet::state::common::image_pull: error=unsupported media type: application/vnd.docker.distribution.manifest.list.v2+json
Nov 14 04:21:39.162 ERROR kubelet::state::common::image_pull: error=unsupported media type: application/vnd.docker.distribution.manifest.list.v2+json
Nov 14 04:22:20.411 ERROR kubelet::state::common::image_pull: error=unsupported media type: application/vnd.docker.distribution.manifest.list.v2+json
Nov 14 04:23:41.632 ERROR kubelet::state::common::image_pull: error=unsupported media type: application/vnd.docker.distribution.manifest.list.v2+json

kubectl  get pods
NAME                    READY   STATUS       RESTARTS   AGE
hello-world-wasi-rust   0/1     ExitCode:0   0          13s

 kubectl logs  hello-world-wasi-rust
hello from stdout!
hello from stderr!
CONFIG_MAP_VAL=cool stuff
POD_NAME=hello-world-wasi-rust
FOO=bar
Args are: []

Bacon ipsum dolor amet chuck turducken porchetta, tri-tip spare ribs t-bone ham hock. Meatloaf
pork belly leberkas, ham beef pig corned beef boudin ground round meatball alcatra jerky.
Pancetta brisket pastrami, flank pork chop ball tip short loin burgdoggen. Tri-tip kevin
shoulder cow andouille. Prosciutto chislic cupim, short ribs venison jerky beef ribs ham hock
short loin fatback. Bresaola meatloaf capicola pancetta, prosciutto chicken landjaeger andouille
swine kielbasa drumstick cupim tenderloin chuck shank. Flank jowl leberkas turducken ham tongue
beef ribs shankle meatloaf drumstick pork t-bone frankfurter tri-tip.