-
Notifications
You must be signed in to change notification settings - Fork 18.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Cannot push image using ipv6 address literal and port #39033
Comments
Update the reference.regexp.DomainRegexp to allow for IPv6 address literals with []s escapes. These are necessary to specity a port without ambiguity. This is related to fixing moby/moby#39033 Signed-off-by: Clark Boylan <clark.boylan@gmail.com>
Introduce kolla_address filter for "DRY and expand". Add AF config to vars. Apply the following subs: hostvars\[inventory_hostname\]\['ansible_' *[+~] *([^\]]+)_interface\]\['ipv4'\]\['address'\] '$1' | kolla_address hostvars\[([^\]]+)\]\['ansible_' *[+~] *hostvars\[[^\]]+\]\['([^\]]+)_interface'\]\]\['ipv4'\]\['address'\] '$2' | kolla_address($1) memcache address syntax exception (inet6[...]) applied. URL syntax applied in some places. Other changes: globals.yml - mention just IP in comment prechecks/port_checks (api_intf) - kolla_address handles validation 3x interface conditional (swift configs: replication/storage) 2x interface variable definition with hostname (haproxy listens; api intf) 1x interface variable definition with hostname with bifrost exclusion (baremetal pre-install /etc/hosts; api intf) neutron's ml2 'overlay_ip_version' set to 6 for IPv6 on tunnel network basic source CI jobs for IPv6 prechecks for rabbitmq and qdrouterd use proper NSS database now TODO: ovs-dpdk grabs ipv4 network address (w/ prefix len / submask) not supported, invalid by default because neutron_external has no address haproxy upgrade checks for slaves based on ipv4 secondaries only ml2 for xenapi rp_filter setting (? would require meddling with ip6tables, by default nothing is dropped) check if proper context applied everywhere IPv6 internal VIP address used via FQDN in URLs needs some escaping workaround: use real FQDN KNOWN ISSUES (beyond us): One cannot use IPv6 address to reference the image for docker like we currently do, see: moby/moby#39033 (docker_registry; docker API 400 - invalid reference format) workaround: use hostname RabbitMQ will fail to bind to IPv6 if hostname resolves also to IPv4. IPv4 is preferred and will fail in the IPv6-only scenario. This should be no problem in real life as IPv6-only is indeed IPv6-only. Change-Id: Ia34e6916ea4f99e9522cd2ddde03a0a4776f7e2c Implements: blueprint ipv6-control-plane Signed-off-by: Radosław Piliszek <radoslaw.piliszek@gmail.com>
Introduce kolla_address filter for "DRY and expand". Add AF config to vars. Apply the following subs: hostvars\[inventory_hostname\]\['ansible_' *[+~] *([^\]]+)_interface\]\['ipv4'\]\['address'\] '$1' | kolla_address hostvars\[([^\]]+)\]\['ansible_' *[+~] *hostvars\[[^\]]+\]\['([^\]]+)_interface'\]\]\['ipv4'\]\['address'\] '$2' | kolla_address($1) memcache address syntax exception (inet6[...]) applied. URL syntax applied in some places. Other changes: globals.yml - mention just IP in comment prechecks/port_checks (api_intf) - kolla_address handles validation 3x interface conditional (swift configs: replication/storage) 2x interface variable definition with hostname (haproxy listens; api intf) 1x interface variable definition with hostname with bifrost exclusion (baremetal pre-install /etc/hosts; api intf) neutron's ml2 'overlay_ip_version' set to 6 for IPv6 on tunnel network basic source CI jobs for IPv6 prechecks for rabbitmq and qdrouterd use proper NSS database now TODO: ovs-dpdk grabs ipv4 network address (w/ prefix len / submask) not supported, invalid by default because neutron_external has no address haproxy upgrade checks for slaves based on ipv4 secondaries only ml2 for xenapi rp_filter setting (? would require meddling with ip6tables, by default nothing is dropped) check if proper context applied everywhere IPv6 internal VIP address used via FQDN in URLs needs some escaping workaround: use real FQDN KNOWN ISSUES (beyond us): One cannot use IPv6 address to reference the image for docker like we currently do, see: moby/moby#39033 (docker_registry; docker API 400 - invalid reference format) workaround: use hostname RabbitMQ will fail to bind to IPv6 if hostname resolves also to IPv4. IPv4 is preferred and will fail in the IPv6-only scenario. This should be no problem in real life as IPv6-only is indeed IPv6-only. Change-Id: Ia34e6916ea4f99e9522cd2ddde03a0a4776f7e2c Implements: blueprint ipv6-control-plane Signed-off-by: Radosław Piliszek <radoslaw.piliszek@gmail.com>
Introduce kolla_address filter for "DRY and expand". Add AF config to vars. Apply the following subs: hostvars\[inventory_hostname\]\['ansible_' *[+~] *([^\]]+)_interface\]\['ipv4'\]\['address'\] '$1' | kolla_address hostvars\[([^\]]+)\]\['ansible_' *[+~] *hostvars\[[^\]]+\]\['([^\]]+)_interface'\]\]\['ipv4'\]\['address'\] '$2' | kolla_address($1) memcache address syntax exception (inet6[...]) applied. URL syntax applied in some places. Other changes: globals.yml - mention just IP in comment prechecks/port_checks (api_intf) - kolla_address handles validation 3x interface conditional (swift configs: replication/storage) 2x interface variable definition with hostname (haproxy listens; api intf) 1x interface variable definition with hostname with bifrost exclusion (baremetal pre-install /etc/hosts; api intf) neutron's ml2 'overlay_ip_version' set to 6 for IPv6 on tunnel network basic source CI jobs for IPv6 prechecks for rabbitmq and qdrouterd use proper NSS database now TODO: ovs-dpdk grabs ipv4 network address (w/ prefix len / submask) not supported, invalid by default because neutron_external has no address haproxy upgrade checks for slaves based on ipv4 secondaries only ml2 for xenapi rp_filter setting (? would require meddling with ip6tables, by default nothing is dropped) check if proper context applied everywhere IPv6 internal VIP address used via FQDN in URLs needs some escaping workaround: use real FQDN KNOWN ISSUES (beyond us): One cannot use IPv6 address to reference the image for docker like we currently do, see: moby/moby#39033 (docker_registry; docker API 400 - invalid reference format) workaround: use hostname RabbitMQ will fail to bind to IPv6 if hostname resolves also to IPv4. IPv4 is preferred and will fail in the IPv6-only scenario. This should be no problem in real life as IPv6-only is indeed IPv6-only. Change-Id: Ia34e6916ea4f99e9522cd2ddde03a0a4776f7e2c Implements: blueprint ipv6-control-plane Signed-off-by: Radosław Piliszek <radoslaw.piliszek@gmail.com>
Introduce kolla_address filter for "DRY and expand". Add AF config to vars. Apply the following subs: hostvars\[inventory_hostname\]\['ansible_' *[+~] *([^\]]+)_interface\]\['ipv4'\]\['address'\] '$1' | kolla_address hostvars\[([^\]]+)\]\['ansible_' *[+~] *hostvars\[[^\]]+\]\['([^\]]+)_interface'\]\]\['ipv4'\]\['address'\] '$2' | kolla_address($1) memcache address syntax exception (inet6[...]) applied. URL syntax applied in some places. Other changes: globals.yml - mention just IP in comment prechecks/port_checks (api_intf) - kolla_address handles validation 3x interface conditional (swift configs: replication/storage) 2x interface variable definition with hostname (haproxy listens; api intf) 1x interface variable definition with hostname with bifrost exclusion (baremetal pre-install /etc/hosts; api intf) neutron's ml2 'overlay_ip_version' set to 6 for IPv6 on tunnel network basic source CI jobs for IPv6 prechecks for rabbitmq and qdrouterd use proper NSS database now MariaDB Galera Cluster WSREP SST mariabackup workaround (socat and IPv6) Ceph naming workaround in CI TODO: probably needs documenting RabbitMQ IPv6-only proto_dist TODO: ovs-dpdk grabs ipv4 network address (w/ prefix len / submask) not supported, invalid by default because neutron_external has no address haproxy upgrade checks for slaves based on ipv4 secondaries only ml2 for xenapi rp_filter setting (? would require meddling with ip6tables, by default nothing is dropped) check if proper context applied everywhere IPv6 internal VIP address used via FQDN in URLs needs some escaping workaround: use real FQDN KNOWN ISSUES (beyond us): One cannot use IPv6 address to reference the image for docker like we currently do, see: moby/moby#39033 (docker_registry; docker API 400 - invalid reference format) workaround: use hostname RabbitMQ will fail to bind to IPv6 if hostname resolves also to IPv4. IPv4 is preferred and will fail in the IPv6-only scenario. This should be no problem in real life as IPv6-only is indeed IPv6-only. Change-Id: Ia34e6916ea4f99e9522cd2ddde03a0a4776f7e2c Implements: blueprint ipv6-control-plane Signed-off-by: Radosław Piliszek <radoslaw.piliszek@gmail.com>
Introduce kolla_address filter for "DRY and expand". Add AF config to vars. Apply the following subs: hostvars\[inventory_hostname\]\['ansible_' *[+~] *([^\]]+)_interface\]\['ipv4'\]\['address'\] '$1' | kolla_address hostvars\[([^\]]+)\]\['ansible_' *[+~] *hostvars\[[^\]]+\]\['([^\]]+)_interface'\]\]\['ipv4'\]\['address'\] '$2' | kolla_address($1) memcache address syntax exception (inet6[...]) applied. URL syntax applied in some places. Other changes: globals.yml - mention just IP in comment prechecks/port_checks (api_intf) - kolla_address handles validation 3x interface conditional (swift configs: replication/storage) 2x interface variable definition with hostname (haproxy listens; api intf) 1x interface variable definition with hostname with bifrost exclusion (baremetal pre-install /etc/hosts; api intf) neutron's ml2 'overlay_ip_version' set to 6 for IPv6 on tunnel network basic source CI jobs for IPv6 prechecks for rabbitmq and qdrouterd use proper NSS database now TODO: ovs-dpdk grabs ipv4 network address (w/ prefix len / submask) not supported, invalid by default because neutron_external has no address haproxy upgrade checks for slaves based on ipv4 secondaries only ml2 for xenapi rp_filter setting (? would require meddling with ip6tables, by default nothing is dropped) check if proper context applied everywhere IPv6 internal VIP address used via FQDN in URLs needs some escaping workaround: use real FQDN KNOWN ISSUES (beyond us): One cannot use IPv6 address to reference the image for docker like we currently do, see: moby/moby#39033 (docker_registry; docker API 400 - invalid reference format) workaround: use hostname RabbitMQ will fail to bind to IPv6 if hostname resolves also to IPv4. IPv4 is preferred and will fail in the IPv6-only scenario. This should be no problem in real life as IPv6-only is indeed IPv6-only. Change-Id: Ia34e6916ea4f99e9522cd2ddde03a0a4776f7e2c Implements: blueprint ipv6-control-plane Signed-off-by: Radosław Piliszek <radoslaw.piliszek@gmail.com>
Introduce kolla_address filter for "DRY and expand". Add AF config to vars. Apply the following subs: hostvars\[inventory_hostname\]\['ansible_' *[+~] *([^\]]+)_interface\]\['ipv4'\]\['address'\] '$1' | kolla_address hostvars\[([^\]]+)\]\['ansible_' *[+~] *hostvars\[[^\]]+\]\['([^\]]+)_interface'\]\]\['ipv4'\]\['address'\] '$2' | kolla_address($1) memcache address syntax exception (inet6[...]) applied. URL address syntax exception ([...]) applied. Other changes: globals.yml - mention just IP in comment prechecks/port_checks (api_intf) - kolla_address handles validation 3x interface conditional (swift configs: replication/storage) 2x interface variable definition with hostname (haproxy listens; api intf) 1x interface variable definition with hostname with bifrost exclusion (baremetal pre-install /etc/hosts; api intf) neutron's ml2 'overlay_ip_version' set to 6 for IPv6 on tunnel network basic source CI jobs for IPv6 prechecks for rabbitmq and qdrouterd use proper NSS database now MariaDB Galera Cluster WSREP SST mariabackup workaround (socat and IPv6) Ceph naming workaround in CI TODO: probably needs documenting RabbitMQ IPv6-only proto_dist Ceph ms switch to IPv6 mode TODO: ovs-dpdk grabs ipv4 network address (w/ prefix len / submask) not supported, invalid by default because neutron_external has no address haproxy upgrade checks for slaves based on ipv4 secondaries only ml2 for xenapi rp_filter setting (? would require meddling with ip6tables, by default nothing is dropped) IPv6 internal VIP address used via FQDN in URLs needs some escaping workaround: use real FQDN KNOWN ISSUES (beyond us): One cannot use IPv6 address to reference the image for docker like we currently do, see: moby/moby#39033 (docker_registry; docker API 400 - invalid reference format) workaround: use hostname RabbitMQ will fail to bind to IPv6 if hostname resolves also to IPv4. IPv4 is preferred and will fail in the IPv6-only scenario. This should be no problem in real life as IPv6-only is indeed IPv6-only. Change-Id: Ia34e6916ea4f99e9522cd2ddde03a0a4776f7e2c Implements: blueprint ipv6-control-plane Signed-off-by: Radosław Piliszek <radoslaw.piliszek@gmail.com>
Introduce kolla_address filter for "DRY and expand". Add AF config to vars. Apply the following subs: hostvars\[inventory_hostname\]\['ansible_' *[+~] *([^\]]+)_interface\]\['ipv4'\]\['address'\] '$1' | kolla_address hostvars\[([^\]]+)\]\['ansible_' *[+~] *hostvars\[[^\]]+\]\['([^\]]+)_interface'\]\]\['ipv4'\]\['address'\] '$2' | kolla_address($1) memcache address syntax exception (inet6[...]) applied. URL address syntax exception ([...]) applied. Other changes: globals.yml - mention just IP in comment prechecks/port_checks (api_intf) - kolla_address handles validation 3x interface conditional (swift configs: replication/storage) 2x interface variable definition with hostname (haproxy listens; api intf) 1x interface variable definition with hostname with bifrost exclusion (baremetal pre-install /etc/hosts; api intf) neutron's ml2 'overlay_ip_version' set to 6 for IPv6 on tunnel network basic source CI jobs for IPv6 prechecks for rabbitmq and qdrouterd use proper NSS database now MariaDB Galera Cluster WSREP SST mariabackup workaround (socat and IPv6) Ceph naming workaround in CI TODO: probably needs documenting RabbitMQ IPv6-only proto_dist Ceph ms switch to IPv6 mode TODO: ovs-dpdk grabs ipv4 network address (w/ prefix len / submask) not supported, invalid by default because neutron_external has no address haproxy upgrade checks for slaves based on ipv4 secondaries only ml2 for xenapi rp_filter setting (? would require meddling with ip6tables, by default nothing is dropped) IPv6 internal VIP address used via FQDN in URLs needs some escaping workaround: use real FQDN KNOWN ISSUES (beyond us): One cannot use IPv6 address to reference the image for docker like we currently do, see: moby/moby#39033 (docker_registry; docker API 400 - invalid reference format) workaround: use hostname RabbitMQ will fail to bind to IPv6 if hostname resolves also to IPv4. IPv4 is preferred and will fail in the IPv6-only scenario. This should be no problem in real life as IPv6-only is indeed IPv6-only. Change-Id: Ia34e6916ea4f99e9522cd2ddde03a0a4776f7e2c Implements: blueprint ipv6-control-plane Signed-off-by: Radosław Piliszek <radoslaw.piliszek@gmail.com>
Introduce kolla_address filter for "DRY and expand". Add AF config to vars. Apply the following subs: hostvars\[inventory_hostname\]\['ansible_' *[+~] *([^\]]+)_interface\]\['ipv4'\]\['address'\] '$1' | kolla_address hostvars\[([^\]]+)\]\['ansible_' *[+~] *hostvars\[[^\]]+\]\['([^\]]+)_interface'\]\]\['ipv4'\]\['address'\] '$2' | kolla_address($1) memcache address syntax exception (inet6[...]) applied. URL address syntax exception ([...]) applied. Other changes: globals.yml - mention just IP in comment prechecks/port_checks (api_intf) - kolla_address handles validation 3x interface conditional (swift configs: replication/storage) 2x interface variable definition with hostname (haproxy listens; api intf) 1x interface variable definition with hostname with bifrost exclusion (baremetal pre-install /etc/hosts; api intf) neutron's ml2 'overlay_ip_version' set to 6 for IPv6 on tunnel network basic source CI jobs for IPv6 prechecks for rabbitmq and qdrouterd use proper NSS database now MariaDB Galera Cluster WSREP SST mariabackup workaround (socat and IPv6) Ceph naming workaround in CI TODO: probably needs documenting RabbitMQ IPv6-only proto_dist Ceph ms switch to IPv6 mode TODO: ovs-dpdk grabs ipv4 network address (w/ prefix len / submask) not supported, invalid by default because neutron_external has no address haproxy upgrade checks for slaves based on ipv4 secondaries only ml2 for xenapi rp_filter setting (? would require meddling with ip6tables, by default nothing is dropped) IPv6 internal VIP address used via FQDN in URLs needs some escaping workaround: use real FQDN KNOWN ISSUES (beyond us): One cannot use IPv6 address to reference the image for docker like we currently do, see: moby/moby#39033 (docker_registry; docker API 400 - invalid reference format) workaround: use hostname RabbitMQ will fail to bind to IPv6 if hostname resolves also to IPv4. IPv4 is preferred and will fail in the IPv6-only scenario. This should be no problem in real life as IPv6-only is indeed IPv6-only. Change-Id: Ia34e6916ea4f99e9522cd2ddde03a0a4776f7e2c Implements: blueprint ipv6-control-plane Signed-off-by: Radosław Piliszek <radoslaw.piliszek@gmail.com>
Introduce kolla_address filter for "DRY and expand". Add AF config to vars. Apply the following subs: hostvars\[inventory_hostname\]\['ansible_' *[+~] *([^\]]+)_interface\]\['ipv4'\]\['address'\] '$1' | kolla_address hostvars\[([^\]]+)\]\['ansible_' *[+~] *hostvars\[[^\]]+\]\['([^\]]+)_interface'\]\]\['ipv4'\]\['address'\] '$2' | kolla_address($1) memcache address syntax exception (inet6[...]) applied. URL address syntax exception ([...]) applied. Other changes: globals.yml - mention just IP in comment prechecks/port_checks (api_intf) - kolla_address handles validation 3x interface conditional (swift configs: replication/storage) 2x interface variable definition with hostname (haproxy listens; api intf) 1x interface variable definition with hostname with bifrost exclusion (baremetal pre-install /etc/hosts; api intf) neutron's ml2 'overlay_ip_version' set to 6 for IPv6 on tunnel network basic source CI jobs for IPv6 prechecks for rabbitmq and qdrouterd use proper NSS database now MariaDB Galera Cluster WSREP SST mariabackup workaround (socat and IPv6) Ceph naming workaround in CI TODO: probably needs documenting RabbitMQ IPv6-only proto_dist Ceph ms switch to IPv6 mode Removed neutron-server ml2_type_vxlan/vxlan_group setting as it is not used (let's avoid any confusion) and could break setups without proper multicast routing if it started working TODO: ovs-dpdk grabs ipv4 network address (w/ prefix len / submask) not supported, invalid by default because neutron_external has no address haproxy upgrade checks for slaves based on ipv4 secondaries only ml2 for xenapi rp_filter setting (? would require meddling with ip6tables, by default nothing is dropped) IPv6 internal VIP address used via FQDN in URLs needs some escaping workaround: use real FQDN KNOWN ISSUES (beyond us): One cannot use IPv6 address to reference the image for docker like we currently do, see: moby/moby#39033 (docker_registry; docker API 400 - invalid reference format) workaround: use hostname RabbitMQ will fail to bind to IPv6 if hostname resolves also to IPv4. IPv4 is preferred and will fail in the IPv6-only scenario. This should be no problem in real life as IPv6-only is indeed IPv6-only. Change-Id: Ia34e6916ea4f99e9522cd2ddde03a0a4776f7e2c Implements: blueprint ipv6-control-plane Signed-off-by: Radosław Piliszek <radoslaw.piliszek@gmail.com>
Introduce kolla_address filter for "DRY and expand". Add AF config to vars. Apply the following subs: hostvars\[inventory_hostname\]\['ansible_' *[+~] *([^\]]+)_interface\]\['ipv4'\]\['address'\] '$1' | kolla_address hostvars\[([^\]]+)\]\['ansible_' *[+~] *hostvars\[[^\]]+\]\['([^\]]+)_interface'\]\]\['ipv4'\]\['address'\] '$2' | kolla_address($1) memcache address syntax exception (inet6[...]) applied. URL address syntax exception ([...]) applied. Other changes: globals.yml - mention just IP in comment prechecks/port_checks (api_intf) - kolla_address handles validation 3x interface conditional (swift configs: replication/storage) 2x interface variable definition with hostname (haproxy listens; api intf) 1x interface variable definition with hostname with bifrost exclusion (baremetal pre-install /etc/hosts; api intf) neutron's ml2 'overlay_ip_version' set to 6 for IPv6 on tunnel network basic source CI jobs for IPv6 prechecks for rabbitmq and qdrouterd use proper NSS database now MariaDB Galera Cluster WSREP SST mariabackup workaround (socat and IPv6) Ceph naming workaround in CI TODO: probably needs documenting RabbitMQ IPv6-only proto_dist Ceph ms switch to IPv6 mode Removed neutron-server ml2_type_vxlan/vxlan_group setting as it is not used (let's avoid any confusion) and could break setups without proper multicast routing if it started working TODO: ovs-dpdk grabs ipv4 network address (w/ prefix len / submask) not supported, invalid by default because neutron_external has no address haproxy upgrade checks for slaves based on ipv4 secondaries only ml2 for xenapi rp_filter setting (? would require meddling with ip6tables, by default nothing is dropped) IPv6 internal VIP address used via FQDN in URLs needs some escaping workaround: use real FQDN KNOWN ISSUES (beyond us): One cannot use IPv6 address to reference the image for docker like we currently do, see: moby/moby#39033 (docker_registry; docker API 400 - invalid reference format) workaround: use hostname RabbitMQ will fail to bind to IPv6 if hostname resolves also to IPv4. IPv4 is preferred and will fail in the IPv6-only scenario. This should be no problem in real life as IPv6-only is indeed IPv6-only. Change-Id: Ia34e6916ea4f99e9522cd2ddde03a0a4776f7e2c Implements: blueprint ipv6-control-plane Signed-off-by: Radosław Piliszek <radoslaw.piliszek@gmail.com>
Introduce kolla_address filter. Introduce put_address_in_context filter. Add AF config to vars. Address contexts: - raw (default): <ADDR> - memcache: inet6[<ADDR>] - url: [<ADDR>] Replace IPv4 addresses and FQDNs usages in all places. Other changes: globals.yml - mention just IP in comment prechecks/port_checks (api_intf) - kolla_address handles validation 3x interface conditional (swift configs: replication/storage) 2x interface variable definition with hostname (haproxy listens; api intf) 1x interface variable definition with hostname with bifrost exclusion (baremetal pre-install /etc/hosts; api intf) neutron's ml2 'overlay_ip_version' set to 6 for IPv6 on tunnel network basic source CI jobs for IPv6 prechecks for rabbitmq and qdrouterd use proper NSS database now MariaDB Galera Cluster WSREP SST mariabackup workaround (socat and IPv6) Ceph naming workaround in CI TODO: probably needs documenting RabbitMQ IPv6-only proto_dist Ceph ms switch to IPv6 mode Remove neutron-server ml2_type_vxlan/vxlan_group setting as it is not used (let's avoid any confusion) and could break setups without proper multicast routing if it started working (also IPv4-only) TODO: ovs-dpdk grabs ipv4 network address (w/ prefix len / submask) not supported, invalid by default because neutron_external has no address haproxy upgrade checks for slaves based on ipv4 secondaries only ml2 for xenapi rp_filter setting (? would require meddling with ip6tables, by default nothing is dropped) IPv6 internal VIP address used via FQDN in URLs needs some escaping workaround: use real FQDN ironic dnsmasq is configured IPv4-only KNOWN ISSUES (beyond us): One cannot use IPv6 address to reference the image for docker like we currently do, see: moby/moby#39033 (docker_registry; docker API 400 - invalid reference format) workaround: use hostname RabbitMQ may fail to bind to IPv6 if hostname resolves also to IPv4. IPv4 is preferred by default and may fail in the IPv6-only scenario. This should be no problem in real life as IPv6-only is indeed IPv6-only. Change-Id: Ia34e6916ea4f99e9522cd2ddde03a0a4776f7e2c Implements: blueprint ipv6-control-plane Signed-off-by: Radosław Piliszek <radoslaw.piliszek@gmail.com>
Introduce kolla_address filter. Introduce put_address_in_context filter. Add AF config to vars. Address contexts: - raw (default): <ADDR> - memcache: inet6:[<ADDR>] - url: [<ADDR>] Other changes: globals.yml - mention just IP in comment prechecks/port_checks (api_intf) - kolla_address handles validation 3x interface conditional (swift configs: replication/storage) 2x interface variable definition with hostname (haproxy listens; api intf) 1x interface variable definition with hostname with bifrost exclusion (baremetal pre-install /etc/hosts; api intf) neutron's ml2 'overlay_ip_version' set to 6 for IPv6 on tunnel network basic multinode source CI job for IPv6 prechecks for rabbitmq and qdrouterd use proper NSS database now MariaDB Galera Cluster WSREP SST mariabackup workaround (socat and IPv6) Ceph naming workaround in CI TODO: probably needs documenting RabbitMQ IPv6-only proto_dist Ceph ms switch to IPv6 mode Remove neutron-server ml2_type_vxlan/vxlan_group setting as it is not used (let's avoid any confusion) and could break setups without proper multicast routing if it started working (also IPv4-only) haproxy upgrade checks for slaves based on ipv6 addresses TODO: ovs-dpdk grabs ipv4 network address (w/ prefix len / submask) not supported, invalid by default because neutron_external has no address No idea whether ovs-dpdk works at all atm. ml2 for xenapi Xen is not supported too well. This would require working with XenAPI facts. rp_filter setting This would require meddling with ip6tables (there is no sysctl param). By default nothing is dropped. Unlikely we really need it. ironic dnsmasq is configured IPv4-only dnsmasq needs DHCPv6 options and testing in vivo. KNOWN ISSUES (beyond us): One cannot use IPv6 address to reference the image for docker like we currently do, see: moby/moby#39033 (docker_registry; docker API 400 - invalid reference format) workaround: use hostname/FQDN RabbitMQ may fail to bind to IPv6 if hostname resolves also to IPv4. This is due to old RabbitMQ versions available in images. IPv4 is preferred by default and may fail in the IPv6-only scenario. This should be no problem in real life as IPv6-only is indeed IPv6-only. Also, when new RabbitMQ (3.7.16/3.8+) makes it into images, this will no longer be relevant as we supply all the necessary config. See: rabbitmq/rabbitmq-server#1982 For reliable runs, at least Ansible 2.8 is required (2.8.5 confirmed to work well). Older Ansible versions are known to miss IPv6 addresses in interface facts. This may affect redeploys, reconfigures and upgrades which run after VIP address is assigned. See: ansible/ansible#63227 Bifrost Train does not support IPv6 deployments. See: https://storyboard.openstack.org/#!/story/2006689 Change-Id: Ia34e6916ea4f99e9522cd2ddde03a0a4776f7e2c Implements: blueprint ipv6-control-plane Signed-off-by: Radosław Piliszek <radoslaw.piliszek@gmail.com>
* Update kolla-ansible from branch 'master' - Merge "Implement IPv6 support in the control plane" - Implement IPv6 support in the control plane Introduce kolla_address filter. Introduce put_address_in_context filter. Add AF config to vars. Address contexts: - raw (default): <ADDR> - memcache: inet6:[<ADDR>] - url: [<ADDR>] Other changes: globals.yml - mention just IP in comment prechecks/port_checks (api_intf) - kolla_address handles validation 3x interface conditional (swift configs: replication/storage) 2x interface variable definition with hostname (haproxy listens; api intf) 1x interface variable definition with hostname with bifrost exclusion (baremetal pre-install /etc/hosts; api intf) neutron's ml2 'overlay_ip_version' set to 6 for IPv6 on tunnel network basic multinode source CI job for IPv6 prechecks for rabbitmq and qdrouterd use proper NSS database now MariaDB Galera Cluster WSREP SST mariabackup workaround (socat and IPv6) Ceph naming workaround in CI TODO: probably needs documenting RabbitMQ IPv6-only proto_dist Ceph ms switch to IPv6 mode Remove neutron-server ml2_type_vxlan/vxlan_group setting as it is not used (let's avoid any confusion) and could break setups without proper multicast routing if it started working (also IPv4-only) haproxy upgrade checks for slaves based on ipv6 addresses TODO: ovs-dpdk grabs ipv4 network address (w/ prefix len / submask) not supported, invalid by default because neutron_external has no address No idea whether ovs-dpdk works at all atm. ml2 for xenapi Xen is not supported too well. This would require working with XenAPI facts. rp_filter setting This would require meddling with ip6tables (there is no sysctl param). By default nothing is dropped. Unlikely we really need it. ironic dnsmasq is configured IPv4-only dnsmasq needs DHCPv6 options and testing in vivo. KNOWN ISSUES (beyond us): One cannot use IPv6 address to reference the image for docker like we currently do, see: moby/moby#39033 (docker_registry; docker API 400 - invalid reference format) workaround: use hostname/FQDN RabbitMQ may fail to bind to IPv6 if hostname resolves also to IPv4. This is due to old RabbitMQ versions available in images. IPv4 is preferred by default and may fail in the IPv6-only scenario. This should be no problem in real life as IPv6-only is indeed IPv6-only. Also, when new RabbitMQ (3.7.16/3.8+) makes it into images, this will no longer be relevant as we supply all the necessary config. See: rabbitmq/rabbitmq-server#1982 For reliable runs, at least Ansible 2.8 is required (2.8.5 confirmed to work well). Older Ansible versions are known to miss IPv6 addresses in interface facts. This may affect redeploys, reconfigures and upgrades which run after VIP address is assigned. See: ansible/ansible#63227 Bifrost Train does not support IPv6 deployments. See: https://storyboard.openstack.org/#!/story/2006689 Change-Id: Ia34e6916ea4f99e9522cd2ddde03a0a4776f7e2c Implements: blueprint ipv6-control-plane Signed-off-by: Radosław Piliszek <radoslaw.piliszek@gmail.com>
bump. Any hope to get this fixed? |
Bump. Would DNS work? |
DNS should work. The problem here is in code from https://github.com/distribution/distribution, which parses the reference, and which is used as a build-time dependency . A fix for that was merged in distribution/distribution#3489, but has not been released yet. |
I think this would work now, I couldn't quite test this end to end just yet, because I used quay.io as a guinea pig and the TLS verification fails in the end (of course):
|
Yeah, I think this should work now; at least parsing the format should work; echo 'FROM busybox' | docker build -t [::1]:5000/myimage:latest -
docker push [::1]:5000/myimage:latest
The push refers to repository [[::1]:5000/myimage]
49b3a50a2039: Pushed
latest: digest: sha256:79a1955078f1b946770a44e86c517505acf9b0169078839ae3eb04e91cc26220 size: 527 |
Description
Docker push does not work when specifying the host as an escaped ipv6 address literal with port designation.
Steps to reproduce the issue:
docker push [2607:ff68:100:54:f816:3eff:fe7c:e98a]:5000/zuul/nodepool:latest
Describe the results you received:
"[2607:ff68:100:54:f816:3eff:fe7c:e98a]:5000/zuul/nodepool:latest" is not a valid repository/tag: invalid reference format
Describe the results you expected:
I expected docker to connect via ipv6 to tcp port
5000
at2607:ff68:100:54:f816:3eff:fe7c:e98a
and push the image into the registry running there.Additional information you deem important (e.g. issue happens only occasionally):
This happens because the domainRegex in docker/distribution/regexp.go doesn't allow for the wrapping
[]
's. I'm filing the bug here though as the desired end state is that ipv6 addresses will work and chances are fixing the regexp will just run into the next problem with using ipv6 addresses.Though maybe we get lucky and it just works after updating the regex.
Output of
docker version
:Output of
docker info
:Additional environment details (AWS, VirtualBox, physical, etc.):
This was running on an Ubuntu 18.04 VM host with docker installed from the docker ubuntu deb repo.
The text was updated successfully, but these errors were encountered: