Problem

kubeadm runs preflight checks before it runs. One of those that is not enforced is validating the container runtime through the Container Runtime Interface (CRI).

kubeadm uses crictl info to validate the container runtime. However, if it can't find the crictl binary, kubeadm warns and give the user a suggestion for how to fix the warning and then we continue with the installation anyway.

The suggestion kubeadm provides is incomplete and difficult for users to follow.

The two problems in order of severity are:

1. go get github.com/kubernetes-incubator/cri-tools/cmd/crictl installs the latest version which may or may not match the version kubeadm is trying to install.
2. If you are unfamiliar with installing go binaries this may not be a simple command. Installation packages (yum, apt-get, etc) can be out of date.

Proposed fixes/improvements/ideas

Change the warning

If crictl is not installed, the warning should be something like "kubeadm cannot validate the container runtime satisfies the CRI. This is usually fine but should be investigated on unsupported versions of docker or other runtime interfaces (cri-o, others?)"

Improve the suggestion

The suggestion should point to the the cri-tools repo or provide more detailed instructions such as using gimme to install go and then fetching the correct version of crictl based on the version of kubeadm.

bundle crictl with kubeadm deb/rpm

This would ensure we get the right version of crictl with kubeadm.

reimplement crictl info in kubeadm

There really isn't much code to the info command. We could potentially pull this code into kubadm, but that would result in pulling in the CRI protobuf code and also Yet Another Version Management Issue. Since kubeadm works on multiple versions but the protobuf code doesn't this could get too messy to be worth it.