New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
KATA-2159: add cloud-api-adaptor images as relatedImage #313
Conversation
@jensfr: This pull request references KATA-2159 which is a valid jira issue. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
1 similar comment
@jensfr: This pull request references KATA-2159 which is a valid jira issue. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Need bumping up the peerpodconfig-ctrl deps ?
Any idea why I get when I try this? |
updated the PR to also change KATA_MONITOR_IMAGE to RELATED_IMAGE_KATA_MONITOR |
config/manager/manager.yaml
Outdated
- name: RELATED_IMAGE_CAA | ||
value: registry.redhat.io/openshift-sandboxed-containers/osc-rhel9-cloud-api-adaptor | ||
- name: RELATED_IMAGE_CAA_WEBHOOK | ||
value: registry.redhat.io/openshift-sandboxed-containers/osc-rhel9-cloud-api-adaptor-webhook |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
It is a bit unclear how these two are consumed. I cannot find users for them in the repo.
Also, are the default values appropriate for upstream ? I would have expected them to point to quay :
e.g. quay.io/confidential-containers/cloud-api-adaptor
as in https://github.com/confidential-containers/cloud-api-adaptor/blob/staging/peerpodconfig-ctrl/config/manager/manager.yaml#L65
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
you are right, updated those values to the public images on quay
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
RELATED_IMAGE_CAA is used by cloud-api-adaptor, see https://github.com/confidential-containers/cloud-api-adaptor/pull/963/files which we import.
I removed RELATED_IMAGE_CAA_WEBHOOK now as it will be merged with the KATA-2172 PR
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looks good. Will have to merge midstream and create a build to see if it actually works.
bb347ac
to
cbf369d
Compare
I still have a problem with this and can't seem to fix it. Does anyone get the same when they do |
Add the cloud-api-adaptor(-webhook) image as a relatedImage to the CSV. Fixes: rhjira#KATA-2159 Signed-off-by: Jens Freimann <jfreimann@redhat.com>
I was just rereading the OSBS docs and in https://osbs.readthedocs.io/en/latest/users.html?highlight=related_image#creating-the-relatedimages-section it indicates we need a spec.relatedImages section (not exactly sure which file) that would specific the image to replace for "kata_monitor" name as referred to by RELATED_IMAGE_KATA_MONITOR. Is this an alternative solution or a necessary step to use related images? |
You're right it does require a spec.relatedImages section. It is added to the CSV. By adding the env variable to manager yaml, when I run 'make manifests' it adds the section to bundle/manifests/sandboxedcontainersoperator.csv
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
/lgtm
Thanks @jensfr.
Add the cloud-api-adaptor(-webhook) image as a relatedImage to the CSV.
Fixes: rhjira#KATA-2159
- Description of the problem which is fixed/What is the use case
add cloud-api-adaptor images as related images. By adding them to config/manager/manager.yaml they will be automatically added to the generated CSV when
make bundle
is run.- What I did
Add the caa and caa-webhook image to the manager.yaml file. This is related to and dependent on confidential-containers/cloud-api-adaptor#963 which changes the env variable name
- How to verify it
the generated CSV includes the env vars RELATED_IMAGE_CAA(_WEBHOOK). When built with OSBS and digest pinning is enabled it should replace the tag in the pull spec with the digest and by that enable the operator to work in disconnected clusters.
- Description for the changelog
set CAA images (caa itself and the webhook) as relatedImages in the CSV