-
Bug
-
Resolution: Done-Errata
-
Normal
-
4.16, 4.17
-
No
-
MCO Sprint 254, MCO Sprint 255
-
2
-
False
-
-
-
Bug Fix
-
Done
Description of problem:
If a cluster admin creates a new MachineOSConfig that references a legacy pull secret, the canonicalized version of this secret that gets created is not updated whenever the original pull secret changes.
How reproducible:
Always
Steps to Reproduce:
- Create a new legacy-style Docker pull secret in the MCO namespace. Specifically, one which follows the pattern of {"hostname.com":
{"username": ""...}
.
- Create a MachineOSConfig that references this legacy pull secret. The MachineOSConfig will get updated with a different secret name with the suffix -canonical.
- Change the original legacy-style Docker pull secret that was created to a different secret.
Actual results:
The canonicalized version of the pull secret is never updated with the contents of the legacy-style pull secret.
Expected results:
Ideally, the canonicalized version of the pull secret should be updated since BuildController created it.
Additional info:
This occurs because when the legacy pull secret is initially detected, BuildController canonicalizes it and then updates the MachineOSConfig with the name of the canonicalized secret. The next time this secret is referenced, the original secret does not get read.
- blocks
-
OCPBUGS-36172 Canonicalized pull secrets do not get updated when the original secret has changed
- Verified
- is cloned by
-
OCPBUGS-36172 Canonicalized pull secrets do not get updated when the original secret has changed
- Verified
- links to
-
RHEA-2024:3718 OpenShift Container Platform 4.17.z bug fix update