Bug 1788670

Summary: Cluster Logging and Elasticsearch Operators cannot be deployed on IPv6 AWS environment
Product: OpenShift Container Platform Reporter: Marius Cornea <mcornea>
Component: QuayAssignee: Bill Dettelback <bdettelb>
Status: CLOSED NOTABUG QA Contact: Dongbo Yan <dyan>
Severity: high Docs Contact:
Priority: urgent    
Version: 4.3.zCC: agurenko, aos-bugs, augol, cvogel, eparis, jiazha, nmagnezi, rbartal, rbryant, sasha, tomckay, yprokule
Target Milestone: ---   
Target Release: 4.4.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard: groom
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
: 1810048 (view as bug list) Environment:
Last Closed: 2020-04-01 12:41:21 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1771572    

Description Marius Cornea 2020-01-07 18:43:29 UTC 
Description of problem:
Cluster Logging and Elasticsearch Operators cannot be deployed on IPv6 AWS environment. OperatorSources cannot be configured because the endpoints use quay.io which is not IPv6 enabled:

oc -n openshift-marketplace get OperatorSource
NAME                  TYPE          ENDPOINT              REGISTRY              DISPLAYNAME           PUBLISHER   STATUS        MESSAGE                                                                                                                               AGE
certified-operators   appregistry   https://quay.io/cnr   certified-operators   Certified Operators   Red Hat     Configuring   Get https://quay.io/cnr/api/v1/packages?namespace=certified-operators: dial tcp 34.231.142.215:443: connect: network is unreachable   24h
community-operators   appregistry   https://quay.io/cnr   community-operators   Community Operators   Red Hat     Configuring   Get https://quay.io/cnr/api/v1/packages?namespace=community-operators: dial tcp 107.21.16.71:443: connect: network is unreachable     24h
redhat-operators      appregistry   https://quay.io/cnr   redhat-operators      Red Hat Operators     Red Hat     Configuring   Get https://quay.io/cnr/api/v1/packages?namespace=redhat-operators: dial tcp 34.195.11.195:443: connect: network is unreachable       24h


Version-Release number of selected component (if applicable):
4.3.0-0.nightly-2020-01-06-101556-ipv6.1

How reproducible:
100%

Steps to Reproduce:
1. Deploy an IPv6 cluster on AWS
2. Check oc -n openshift-marketplace get OperatorSource

Actual results:
OperatorSource are stuck in 'Configuring' status because quay.io cannot be reached as it is not IPv6 enabled. This blocks installing the cluster Logging and Elasticsearch Operators according to:
https://access.redhat.com/documentation/en-us/openshift_container_platform/4.2/html/logging/cluster-logging-deploying

Expected results:
Have the ability to install the cluster Logging and Elasticsearch Operators on an IPv6 enabled environment. 

Additional info:
Comment 1 Alexander Chuzhoy 2020-01-07 18:49:27 UTC 
Reproduced with the same build.
Comment 5 Russell Bryant 2020-01-27 15:42:55 UTC 
If someone can clarify exactly which pods require IPv4 access to quay, we have a workaround in our AWS IPv6 clusters to grant IPv4 access to select pods that need it to function.
Comment 6 Evan Cordell 2020-03-04 13:50:09 UTC 
The pods in question are the catalog pods in `openshift-marketplace` namespace (they have names like `redhat-operators-*`). 

Since there is a workaround that doesn't involve quay supporting ipv6, I have moved this bug back to OLM for verification in 4.4, so that we can backport the linked PR to 4.3
Comment 8 Marius Cornea 2020-04-01 12:41:21 UTC 
Closing as it is not relevant anymore.