Description of problem: Currently the AgentServiceConfig mirror registry method [1] requires a configmap containing both ca-bundle.crt and registries.conf to configure. In certain cases only one or the other is needed, but both are required to work. The only alternative is to reference a dummy certificate or dummy registries.conf in these situations. IgnitionConfig overrides is not always a good solution as the AgentServiceConfig mirror registry method passes the changes to the OCP install-config.yaml as well [1] https://github.com/openshift/assisted-service/blob/master/docs/operator.md#mirror-registry-configuration Version-Release number of selected component (if applicable): Latest assisted operator upstream How reproducible: 100% Steps to Reproduce: 1. 2. 3. Actual results: Expected results: Additional info: Use cases: - Customer mirror registry has an official CA signed certificate, so they do not need to add an additional cert, but do not a registries.conf for mirroring - Customer is not in a disconnected environment (no need for self signed cert) but do need to include image mapping both in registries.conf and install-config.yaml for dev/testing purposes
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (Moderate: OpenShift Container Platform 4.9.0 bug fix and security update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHSA-2021:3759