'x509: certificate signed by unknown authority' errors when using --skip-tls option

[dprince]

Trying to use the locally configured openshift image-registry route with 'opm registry add' commands today and the --skip-tls option doesn't seem to work.

opm registry add -b default-route-openshift-image-registry.apps.test.dprince/openstack/openstack-cluster-bundle:v0.0.5 --skip-tls --container-tool podman -d database/index.db

fails with 'x509: certificate signed by unknown authority' errors.

I am able to push and pull the same image with podman locally. So this works:

podman pull default-route-openshift-image-registry.apps.test.dprince/openstack/openstack-cluster-bundle:v0.0.5 --tls-verify=false

NOTE: as this is an openshift registry I am running login command ahead of these commands but I don't think it is related to the root cause of the error here.

[dprince]

I would add that the issue above isn't a blocker for us. I've gone on and configured the certs so that we don't require --skip-tls options. If its of interest perhaps double check it as I was confused why this option didn't work, where podman's --tls-verify=false did.

[stale[bot]]

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

[aemperador]

@dprince is this still an issue for you?

[stale[bot]]

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

[stale[bot]]

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.