-
Bug
-
Resolution: Done-Errata
-
Major
-
4.15, 4.16
-
None
-
Important
-
No
-
Rejected
-
False
-
-
-
Bug Fix
-
In Progress
This is a clone of issue OCPBUGS-32042. The following is the description of the original issue:
—
Description of problem:
When the user configures the install-config.yaml additionalTrustBundle field (for example, in a disconnected installation using a local registry), the user-ca-bundle configmap gets populated with more content than strictly required
Version-Release number of selected component (if applicable):
How reproducible:
Always
Steps to Reproduce:
1. Setup a local registry and mirror the content of an ocp release 2. Configure the install-config.yaml for a mirrored installation. In particular, configure the additionalTrustBundle field with the registry cert 3. Create the agent ISO, boot the nodes and wait for the installation to complete
Actual results:
The user-ca-bundle cm does not contain onyl the registry cert
Expected results:
user-ca-bundle configmap with just the content of the install-config additionalTrustBundle field
Additional info:
- clones
-
OCPBUGS-32042 Incorrect usage of install-config.yaml additionalTrustBundle field
- Closed
- is blocked by
-
OCPBUGS-32042 Incorrect usage of install-config.yaml additionalTrustBundle field
- Closed
- is related to
-
OCPBUGS-43990 Work around excess CA certs in additionalTrustBundle
- New
- links to
-
RHBA-2024:5160 OpenShift Container Platform 4.15.26 bug fix update