OCPBUGS-2197: update: Set proxy for inplace container update too#3377
Conversation
We need the proxy environment set for the *podman* invocation, not the rpm-ostree invocation inside the container, which today just scrapes data out of the container image and doesn't itself fetch again. When my initial attempt at this didn't work, I confused myself into thinking we need the proxy inside the container too, but we don't today. (In the future, we might actually do the pull from there, so let's keep it) The previous PR fixed proxy clusters for fresh installs; this should fix them for inplace upgrades from 4.11 too.
openshift-ci-robot
added
jira/severity-critical
|
@cgwalters: This pull request references Jira Issue OCPBUGS-2197, which is valid. The bug has been moved to the POST state. 3 validation(s) were run on this bug
Requesting review from QA contact: The bug has been updated to refer to the pull request using the external bug tracker. DetailsIn response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
openshift-ci-robot
added
the
bugzilla/valid-bug
openshift-ci
bot
added
the
approved
| } | ||
|
|
||
| err = runCmdSync("systemd-run", "--unit", "machine-config-daemon-update-rpmostree-via-container", "--collect", "--wait", "--", "podman", "run", "--env-file", "/etc/mco/proxy.env", "--authfile", "/var/lib/kubelet/config.json", "--privileged", "--pid=host", "--net=host", "--rm", "-v", "/:/run/host", target, "rpm-ostree", "ex", "deploy-from-self", "/run/host") | ||
| err = runCmdSync("systemd-run", "--unit", "machine-config-daemon-update-rpmostree-via-container", "-p", "EnvironmentFile=-/etc/mco/proxy.env", "--collect", "--wait", "--", "podman", "run", "--env-file", "/etc/mco/proxy.env", "--authfile", "/var/lib/kubelet/config.json", "--privileged", "--pid=host", "--net=host", "--rm", "-v", "/:/run/host", target, "rpm-ostree", "ex", "deploy-from-self", "/run/host") |
There was a problem hiding this comment.
Looks like there is an extra "-" before /etc/mco/proxy.env
There was a problem hiding this comment.
Yeah, that's intentional because that's the systemd way to say "it's OK if this file doesn't exist". Today we write an empty /etc/mco/proxy.env if there's no proxy; I think it'd be cleaner sometime in the future to stop doing that. See https://www.freedesktop.org/software/systemd/man/systemd.exec.html#EnvironmentFile=
|
/lgtm |
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: cgwalters, sinnykumari The full list of commands accepted by this bot can be found here. The pull request process is described here DetailsNeeds approval from an approver in each of these files:
Approvers can indicate their approval by writing |
|
Hmm, not sure what's going on in that e2e-aws install failure; doesn't seem related. |
|
possible cause of e2e-aws test failure openshift/installer#6490 has been merged, let's retry. |
|
@cgwalters: This pull request references Jira Issue OCPBUGS-2197, which is valid. 3 validation(s) were run on this bug
Requesting review from QA contact: DetailsIn response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
|
/override ci/prow/e2e-agnostic-upgrade |
|
@cgwalters: Overrode contexts on behalf of cgwalters: ci/prow/e2e-agnostic-upgrade DetailsIn response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
|
@cgwalters: The following test failed, say
Full PR test history. Your PR dashboard. DetailsInstructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here. |
|
@cgwalters: All pull requests linked via external trackers have merged: Jira Issue OCPBUGS-2197 has been moved to the MODIFIED state. DetailsIn response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
4 participants
We need the proxy environment set for the podman invocation, not the rpm-ostree invocation inside the container, which today just scrapes data out of the container image and doesn't itself fetch again.
When my initial attempt at this didn't work, I confused myself into thinking we need the proxy inside the container too, but we don't today. (In the future, we might actually do the pull from there, so let's keep it)
The previous PR fixed proxy clusters for fresh installs; this should fix them for inplace upgrades from 4.11 too.
Closes: #3378