[release-4.6] Bug 1895093: Do not mount /etc/pki/ca-trust in builds

[openshift-cherrypick-robot]

This is an automated cherry-pick of #185

/assign adambkaplan

[openshift-ci-robot]

@openshift-cherrypick-robot: Bugzilla bug 1891759 has been cloned as Bugzilla bug 1895093. Retitling PR to link against new bug.
/retitle [release-4.6] Bug 1895093: Do not mount /etc/pki/ca-trust in builds

Details

In response to this:

[release-4.6] Bug 1891759: Do not mount /etc/pki/ca-trust in builds

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[openshift-ci-robot]

@openshift-cherrypick-robot: This pull request references Bugzilla bug 1895093, which is invalid:

• expected dependent Bugzilla bug 1891759 to be in one of the following states: VERIFIED, RELEASE_PENDING, CLOSED (ERRATA), but it is MODIFIED instead

Comment /bugzilla refresh to re-evaluate validity if changes to the Bugzilla bug are made, or edit the title of this pull request to link to a different bug.

Details

In response to this:

[release-4.6] Bug 1895093: Do not mount /etc/pki/ca-trust in builds

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[gabemontero]

/assign @bparees

@adambkaplan 's disablement of the release image breaking change while @coreydaley works on the new opt-in solution just merged into 4.7/master and here is the 4.6.z cherry pick

(Adam's out for the rest of today if you want this approved etc. before tomorrow)

/lgtm

[bparees]

/approve

let's make sure DPTP knows this is coming since this will get us back to a "good" state for building image-registry/etc, until the opt-in feature is complete.

cc @dmage

[openshift-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: bparees, gabemontero, openshift-cherrypick-robot

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

• OWNERS [bparees]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[gabemontero]

/approve

let's make sure DPTP knows this is coming since this will get us back to a "good" state for building image-registry/etc, until the opt-in feature is complete.

cc @dmage

I did communicate this to @stevekuznetsov

[gabemontero]

/approve
let's make sure DPTP knows this is coming since this will get us back to a "good" state for building image-registry/etc, until the opt-in feature is complete.
cc @dmage

I did communicate this to @stevekuznetsov

toward the bottom of this thread: https://coreos.slack.com/archives/CBN38N3MW/p1604591017248200

[bparees]

I did communicate this to @stevekuznetsov

awesome, thank you!

[openshift-bot]

/bugzilla refresh

Recalculating validity in case the underlying Bugzilla bug has changed.

[openshift-ci-robot]

@openshift-bot: This pull request references Bugzilla bug 1895093, which is invalid:

• expected dependent Bugzilla bug 1891759 to be in one of the following states: VERIFIED, RELEASE_PENDING, CLOSED (ERRATA), but it is ON_QA instead

Comment /bugzilla refresh to re-evaluate validity if changes to the Bugzilla bug are made, or edit the title of this pull request to link to a different bug.

Details

In response to this:

/bugzilla refresh

Recalculating validity in case the underlying Bugzilla bug has changed.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[openshift-bot]

/retest

Please review the full test history for this PR and help us cut down flakes.

[openshift-bot]

/retest

Please review the full test history for this PR and help us cut down flakes.

[adambkaplan]

/bugzilla refresh

[openshift-ci-robot]

@adambkaplan: This pull request references Bugzilla bug 1895093, which is valid. The bug has been moved to the POST state. The bug has been updated to refer to the pull request using the external bug tracker.

6 validation(s) were run on this bug

• bug is open, matching expected state (open)
• bug target release (4.6.z) matches configured target release for branch (4.6.z)
• bug is in the state NEW, which is one of the valid states (NEW, ASSIGNED, ON_DEV, POST, POST)
• dependent bug Bugzilla bug 1891759 is in the state VERIFIED, which is one of the valid states (VERIFIED, RELEASE_PENDING, CLOSED (ERRATA))
• dependent Bugzilla bug 1891759 targets the "4.7.0" release, which is one of the valid target releases: 4.7.0
• bug has dependents

Details

In response to this:

/bugzilla refresh

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[adambkaplan]

Patch manager note - this fixes an urgent regression in builds that impacts the ability of teams to build images on CI.

[openshift-ci-robot]

@openshift-cherrypick-robot: All pull requests linked via external trackers have merged:

• openshift/builder#186

Bugzilla bug 1895093 has been moved to the MODIFIED state.

Details

In response to this:

[release-4.6] Bug 1895093: Do not mount /etc/pki/ca-trust in builds

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.