fix checkPushPermissions by --insecure

[cn-sunletian]

Our registry is harbor by http. When I push image, error occurred on function CheckPushPermissions.
Even add "--insecure" that doesn't work, but add "--insecure-pull" it can pull well.So i find "push.go" an error here. have look at #683

[cn-sunletian]

@SamyCoenen @priyawadhwa @tejal29

[priyawadhwa]

Hey @cn-sunletian , looks like a linter error on travis:

pkg/executor/push.go:62:19: name.NewInsecureRegistry is deprecated: Use the Insecure Option with NewRegistry instead.  (megacheck)
			newReg, err := name.NewInsecureRegistry(destRef.RegistryStr(), name.WeakValidation)

[cn-sunletian]

Hey @cn-sunletian , looks like a linter error on travis:

pkg/executor/push.go:62:19: name.NewInsecureRegistry is deprecated: Use the Insecure Option with NewRegistry instead.  (megacheck)
			newReg, err := name.NewInsecureRegistry(destRef.RegistryStr(), name.WeakValidation)

ok i fixed it

[cn-sunletian]

@kokoro-team

[cn-sunletian]

https://github.com/GoogleContainerTools/kaniko/pull/683

[priyawadhwa]

I think you want to pass in the insecure option to name.NewRegistry -- found here in the go-containerregistry code

[tejal29]

Looks like the integration test is failing due to

Building images for Dockerfile Dockerfile_test_copy_bucket
Error building images: Failed to build image gcr.io/kaniko-test/docker-dockerfile_test_arg_multi with docker command "[docker build -t gcr.io/kaniko-test/docker-dockerfile_test_arg_multi -f dockerfiles/Dockerfile_test_arg_multi .]": exit status 1 Sending build context to Docker daemon  117.2kB

[drewbyp]

New to this (sorry if I'm doing it wrong) but I was looking at this last night and found that NewTag takes options and creates the registry based on these. What's the benefit of overwriting the registry with a new insecure registry rather than passing name.Insecure to NewTag()?

Thanks

[jwidauer]

As @Dina0312 mentioned: Wouldn't something like this do the same thing, be cleaner and less code?

if opts.Insecure {
	destRef, err = name.NewTag(destination, name.WeakValidation, name.Insecure)
}

[cn-sunletian]

As @Dina0312 mentioned: Wouldn't something like this do the same thing, be cleaner and less code?

if opts.Insecure {
	destRef, err = name.NewTag(destination, name.WeakValidation, name.Insecure)
}

ok,thanks

[tejal29]

shd this be && instead of ||

[priyawadhwa]

Hey @cn-sunletian, we merged #685 a few weeks ago which should fix this issue. Could you try with gcr.io/kaniko-project/executor:v0.13.0? My guess is that this should work.

[tejal29]

Closing this since #685 addresses this issue.

[pvgbabu]

@priyawadhwa , i have tried using gcr.io/kaniko-project/executor:v0.13.0 but no luck. is there any way
i can pass '--skip-tls-verify' parameter to '_generate_kaniko_spec' in https://kubeflow-pipelines.readthedocs.io/en/latest/_modules/kfp/containers/_container_builder.html
appreciate all your help.

[pvgbabu]

@priyawadhwa where does cluster builder get the docker repository url. I am getting http instead of https causing the error .

[priyawadhwa]

Hey @pvgbabu sorry to hear that. Could you open a new issue with the error you're getting?