could you please share your inventory so that it will be easier for me to reproduce?
Could you also share the credentials that I can use for registry.reg-aws.openshift.com?
(In reply to Giuseppe Scrivano from comment #1)
> could you please share your inventory so that it will be easier for me to
You could get inventory host file in my attachment by searching "openshift-ansible-inventory-start" keyword.
> Could you also share the credentials that I can use for
I will set the credentials via email later.
I've opened two PR:
https://github.com/openshift/openshift-ansible/pull/5880 (to address the first issue)
I've splitted them since the first one is blocked on a new feature in atomic that allows to set credentials when pulling system containers:
Since this depends on a newer version of atomic that won't be available until after 3.7.0 GA we have to move this to 3.7.z.
I've put in this release note request.
Closed upstream with: https://github.com/projectatomic/atomic/pull/1120
Author: Giuseppe Scrivano <firstname.lastname@example.org>
Date: Wed Oct 25 09:51:05 2017 +0200
syscontainers: support credentials for accessing the source registry
Signed-off-by: Giuseppe Scrivano <email@example.com>
Approved by: ashcrow
In today's installation, seem like "atomic pull" is working well, but will encounter BZ#1514324.
# openshift version
Scott, yes since https://github.com/projectatomic/atomic/pull/1120
I've a WIP PR for openshift-ansible but it requires that change to hit a release:
@Johhny Liu, could you verify if that change is present with the atomic tool you are using?
can you please check this again?
After the fix from: https://bugzilla.redhat.com/show_bug.cgi?id=1514324 I cannot encounter this issue anymore.
Retest this bug with atomic-1.20.1-9.git436cf5d.el7.x86_64 + openshift-ansible-3.7.18-1.git.0.a01e769.el7.noarch, still reproduce.
installation log with inventory host file embedded will be attached later.
The root cause is already mentioned in comment 14, seen from openshift-ansible plabyook, "Pre-pull Container Engine System Container image" is happening prior to registry_auth.yml, that means, /root/.docker/config.json is not created yet when running "Pre-pull Container Engine System Container image" task.
PR opened to address that issue:
*** Bug 1528583 has been marked as a duplicate of this bug. ***
Verified this bug with openshift-ansible-3.7.46-1.git.0.37f607e.el7.noarch, and PASS.
Now "Create credentials for docker cli registry auth (alternative)" task happened prior to "Pre-pull Container Engine System Container image" task, so "atomic pull" is completed successfully.
[root@ip-172-18-10-123 ~]# cat /etc/redhat-release
Red Hat Enterprise Linux Server release 7.5 (Maipo)
[root@ip-172-18-10-123 ~]# uname -r
# rpm -q atomic