Comments (2)
The workaround for this is to manually copy the docker config into the directory that kaniko wants it to be.
from kaniko.
I suspect that these incompatibilities are the result of kaniko storing configuration data (registry auth files, tls certs, etc...) in the same place that it uses to generate the data files ("operating folder") for the container image that is to be built.
Ideally these two folders would be separated so that one could change the "operating folder" to be a separate location, one that is not backed by memory for instance. Using kaniko in a kubernetes environment typically requires mounting read/only configmaps for supplying the credentials and additional certificates required for authenticated with private registries. In this case, passing in --kaniko-dir
causes kaniko to break because it attempts to copy & rm -rf the configmap backed files to the directory defined by --kaniko-dir
. There are ways to directly mount the configmaps into the desired --kaniko-dir
destination ahead of time.
I also found that you have to explicitly set SSL_CERT_FILE=${kanikoDir}/ssl/certs/ca-certificates.crt
, if you override the kaniko directory. Otherwise you'll hit cert verification issues.
from kaniko.
Related Issues (20)
- Recipe for adding bash to Kaniko HOT 1
- Required Socket Files Ignored
- mktemp present but non-functional HOT 3
- error building image: stream error: stream ID 13; NO_ERROR; received from peer
- During image push and pull, error building image: stream error: stream ID 13; NO_ERROR; received from peer HOT 2
- Even when `KANIKO_NO_PUSH="true"` there is a info message with "Pushed"
- Creating a custom kaniko image using a multi-stage Dockerfile fails
- Generated image is missing files generated via RUN HOT 7
- [TEST FLAKE] Intermittently seeing - `No such image: localhost:5000/<test-image>` HOT 3
- [Bug] --registry-mirror does not work with warmer since v1.21.0 HOT 1
- error removing bin to make way for new symlink: unlinkat //bin/sh: permission denied
- Question regarding a vulnerability (CVE-2023-45288), vuln scans & results publishing HOT 2
- Execution takes too long for "Unpacking rootfs as cmd COPY" HOT 3
- "GET https://example.com/users/sign_in: unexpected status code 200 OK" when pushing to self-hosted GitLab with Kaniko HOT 5
- compression=zstd not working starting from v1.16
- After run kaniko in container, image is changed and part of local context stop to work HOT 2
- using Kaniko with a registry-mirror or registry-map which includes a path does not work for pulling images from DockerHub HOT 1
- Cannot pass empty value of --build-arg
- error pushing image: MANIFEST_BLOB_UNKNOWN: blob unknown to registry;
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from kaniko.