Skip to content

Bug 1922873: disable anonymous auth on bootstrap nodes #4604

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
openshift-merge-robot merged 1 commit into from
Feb 3, 2021
Merged

Bug 1922873: disable anonymous auth on bootstrap nodes #4604

openshift-merge-robot merged 1 commit into from
Feb 3, 2021

Conversation

@openshift-cherrypick-robot
Copy link

@openshift-cherrypick-robot openshift-cherrypick-robot commented Jan 30, 2021

This is an automated cherry-pick of #4597

/assign wking

@openshift-cherrypick-robot openshift-cherrypick-robot mentioned this pull request Jan 30, 2021
Merged
@openshift-ci-robot
Copy link
Contributor

openshift-ci-robot commented Jan 30, 2021

@openshift-cherrypick-robot: An error was encountered searching for bug 1920767 on the Bugzilla server at https://bugzilla.redhat.com. No known errors were detected, please see the full error message for details.

Full error message. code 102: You are not authorized to access bug #1920767. Most likely the bug has been restricted for internal development processes and we cannot grant access. If you are a Red Hat customer with an active subscription, please visit the Red Hat Customer Portal for assistance with your issue If you are a Fedora Project user and require assistance, please consider using one of the mailing lists we host for the Fedora Project.

Please contact an administrator to resolve this issue, then request a bug refresh with /bugzilla refresh.

Details

In response to this:

[release-4.4] Bug 1920767: disable anonymous auth on bootstrap nodes

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@wking wking changed the title [release-4.4] Bug 1920767: disable anonymous auth on bootstrap nodes Bug 1920767: disable anonymous auth on bootstrap nodes Jan 30, 2021
@wking
Copy link
Member

wking commented Jan 30, 2021

/lgtm

@openshift-ci-robot openshift-ci-robot added the lgtm Indicates that a PR is ready to be merged. label Jan 30, 2021
@wking wking changed the title Bug 1920767: disable anonymous auth on bootstrap nodes Bug 1922873: disable anonymous auth on bootstrap nodes Feb 1, 2021
@openshift-ci-robot
Copy link
Contributor

openshift-ci-robot commented Feb 1, 2021

@openshift-cherrypick-robot: An error was encountered searching for bug 1922873 on the Bugzilla server at https://bugzilla.redhat.com. No known errors were detected, please see the full error message for details.

Full error message. code 102: You are not authorized to access bug #1922873. Most likely the bug has been restricted for internal development processes and we cannot grant access. If you are a Red Hat customer with an active subscription, please visit the Red Hat Customer Portal for assistance with your issue If you are a Fedora Project user and require assistance, please consider using one of the mailing lists we host for the Fedora Project.

Please contact an administrator to resolve this issue, then request a bug refresh with /bugzilla refresh.

Details

In response to this:

Bug 1922873: disable anonymous auth on bootstrap nodes

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@wking
Copy link
Member

wking commented Feb 1, 2021

Ah, I need an explicit /approve:

/approve
/lgtm

I'll manually twiddle the bug labels too, to work around the permission error.

@wking wking added the bugzilla/valid-bug Indicates that a referenced Bugzilla bug is valid for the branch this PR is targeting. label Feb 1, 2021
@openshift-ci-robot
Copy link
Contributor

openshift-ci-robot commented Feb 1, 2021

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: wking

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-ci-robot openshift-ci-robot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Feb 1, 2021
@openshift-bot
Copy link
Contributor

openshift-bot commented Feb 1, 2021

/retest

Please review the full test history for this PR and help us cut down flakes.

7 similar comments
@openshift-bot
Copy link
Contributor

openshift-bot commented Feb 1, 2021

/retest

Please review the full test history for this PR and help us cut down flakes.

@openshift-bot
Copy link
Contributor

openshift-bot commented Feb 2, 2021

/retest

Please review the full test history for this PR and help us cut down flakes.

@openshift-bot
Copy link
Contributor

openshift-bot commented Feb 2, 2021

/retest

Please review the full test history for this PR and help us cut down flakes.

@openshift-bot
Copy link
Contributor

openshift-bot commented Feb 2, 2021

/retest

Please review the full test history for this PR and help us cut down flakes.

@openshift-bot
Copy link
Contributor

openshift-bot commented Feb 2, 2021

/retest

Please review the full test history for this PR and help us cut down flakes.

@openshift-bot
Copy link
Contributor

openshift-bot commented Feb 2, 2021

/retest

Please review the full test history for this PR and help us cut down flakes.

@openshift-bot
Copy link
Contributor

openshift-bot commented Feb 2, 2021

/retest

Please review the full test history for this PR and help us cut down flakes.

@knobunc knobunc added the cherry-pick-approved Indicates a cherry-pick PR into a release branch has been approved by the release branch manager. label Feb 3, 2021
@openshift-merge-robot openshift-merge-robot merged commit 900cbad into openshift:release-4.4 Feb 3, 2021
@openshift-ci-robot
Copy link
Contributor

openshift-ci-robot commented Feb 3, 2021

@openshift-cherrypick-robot: An error was encountered searching for bug 1922873 on the Bugzilla server at https://bugzilla.redhat.com. No known errors were detected, please see the full error message for details.

Full error message. code 102: You are not authorized to access bug #1922873. Most likely the bug has been restricted for internal development processes and we cannot grant access. If you are a Red Hat customer with an active subscription, please visit the Red Hat Customer Portal for assistance with your issue If you are a Fedora Project user and require assistance, please consider using one of the mailing lists we host for the Fedora Project.

Please contact an administrator to resolve this issue, then request a bug refresh with /bugzilla refresh.

Details

In response to this:

Bug 1922873: disable anonymous auth on bootstrap nodes

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

Prashanth684 added a commit to Prashanth684/installer that referenced this pull request Feb 9, 2021
@Prashanth684
Bug 1926558: rhcos.json: Update bootimages for ppc64le/s390x to fix k…
c3c83a5 
…ubelet erroring out with "No authentication method configured"

Refer to https://bugzilla.redhat.com/show_bug.cgi?id=1926558. After openshift#4604 landed in 4.4, the multi-arch CI runs started failing because the hyperkube package was old. This was not an issue for x86 as the rhcos images were bumped for a CVE (openshift#3985), resulting in a newer hyperkube package which did not have this issue with the kubelet erroring out on `anonymous-auth=false`

These are the builds that were closest in parity to x86:
https://releases-art-rhcos.svc.ci.openshift.org/art/storage/releases/rhcos-4.4-s390x/44.82.202011122341-0/s390x/meta.json for s390x
https://releases-art-rhcos.svc.ci.openshift.org/art/storage/releases/rhcos-4.4-ppc64le/44.82.202012010439-0/ppc64le/meta.json for ppc64le
@Prashanth684 Prashanth684 mentioned this pull request Feb 9, 2021
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@fabianofranz fabianofranz Awaiting requested review from fabianofranz

@patrickdillon patrickdillon Awaiting requested review from patrickdillon

Assignees

@wking wking

Labels

approved Indicates a PR has been approved by an approver from all required OWNERS files. bugzilla/valid-bug Indicates that a referenced Bugzilla bug is valid for the branch this PR is targeting. cherry-pick-approved Indicates a cherry-pick PR into a release branch has been approved by the release branch manager. lgtm Indicates that a PR is ready to be merged.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

7 participants

@openshift-cherrypick-robot @openshift-ci-robot @wking @openshift-bot @knobunc @openshift-merge-robot @rphillips