Skip to content

OADP installation fails in disconnected OCP environment #53

New issue
New issue
Closed
#448
Closed
OADP installation fails in disconnected OCP environment#53
#448
Assignees
shubham-pampattiwar
Labels
GA blockerRequired for GA release
@netzzer

Description

@netzzer
netzzer
opened on Oct 7, 2020

If OADP is installed in a disconnected environment the result is the oadp-operator will fail as well as the velero service even after quay.io/konveyor is added to the OCP imagecontentsourcepolicy so that images can be pulled from this location.

# oc get pods
NAME                                        READY   STATUS                  RESTARTS   AGE
oadp-default-aws-registry-7f4ccc484-4qm48   0/1     ImagePullBackOff        0          43h
oadp-operator-86dc5c8578-zgmxf              0/1     ImagePullBackOff        0          4m58s
velero-598fb6447-z5vqd                      0/1     Init:ImagePullBackOff   0          42h
velero-5cf5445d97-wk45p                     0/1     Init:ImagePullBackOff   0          43h

For disconnected deployments the following should be done:

  1. All image pulls must use image@sha

  2. All image@sha needed for any of the CRs should be listed in CSV relatedImages. This is needed for disconnected air gap environments where the mirror registry has to be pre-populated with all image@sha that will be needed for a particular OADP version. Once the registry is disconnected OADP can be installed using these images.

  3. Image pulls should be from a single location (i.e. quay.io/konveyer; registry.redhat.io) if possible and docker.io should not be used because most customers in disconnected OCP envs will not whitelist docker.io due to security concerns.

Metadata

Metadata

Assignees

Labels

GA blockerRequired for GA release

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions