--insecure-registry in /etc/sysconfig/docker removed by undercloud upgrade
Bug #1736803 reported by
Ian Pilcher
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
tripleo |
Fix Released
|
Critical
|
Dan Prince |
Bug Description
When pulling container images from an internal registry (such as docker-
This additional entry is removed when "openstack undercloud upgrade" runs.
To reproduce:
1. Edit /etc/sysconfig/
2. Run 'openstack undercloud upgrade'
3. Check /etc/sysconfig/
This will cause future image pulls, tag checks, etc. to fail until the registry is re-added to INSECURE_REGISTRY in /etc/sysconfig/
tags: | added: containers |
tags: | added: tripleoclient |
Changed in tripleo: | |
status: | New → Triaged |
importance: | Undecided → Critical |
milestone: | none → queens-3 |
tags: | added: upgrade |
Changed in tripleo: | |
milestone: | queens-3 → queens-rc1 |
Changed in tripleo: | |
milestone: | queens-rc1 → rocky-1 |
Changed in tripleo: | |
milestone: | rocky-1 → rocky-2 |
Changed in tripleo: | |
status: | Triaged → Fix Released |
milestone: | rocky-2 → stein-1 |
To post a comment you must log in.
As part of the new containers based undercloud I've just proposed added an option called 'docker_ insecure_ registries' . This would be appended to the list of default Undercloud insecure settings for the local registry and would allow you to pull containers from any set of registries you'd like and would survive an upgrade.
https:/ /review. openstack. org/#/c/ 526147/ 3/tripleoclient /v1/undercloud_ config. py
Again, this is not yet backported to instack-undercloud although we could look at doing something there as well.