PR https://github.com/docker/distribution/pull/2219 will be back-ported to fix the issue.
Thomas found out that with the fix in question, :443 suffix added to registry names causes timeouts. We need to make sure that our registry can be addressed both with&without the :443 suffix because many customers added it to their external registries as a work-around for the broken port forwarding. This needs to be further investigated.
I could not confirm the registry has issues with push-specs with or without the :443 on the latest master. Therefore, I'll continue with the back-port.
Was this backport requested by a customer? If not, why are we doing it?
Back-port PR: https://github.com/openshift/ose/pull/883
wait for available puddle
Verified $ ./oc version oc v3.6.173.0.49 kubernetes v1.6.1+5115d708d7 features: Basic-Auth GSSAPI Kerberos SPNEGO Server https://:8443 openshift v3.6.173.0.49 kubernetes v1.6.1+5115d708d7
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2017:3049