kubernetes-sigs/image-builder

Ubuntu image builds fails during iptables-persistence package install

sriramandev opened this issue · 1 comments

What steps did you take and what happened:
Run azure Ubuntu 1804/2004 SIG/VHD image build. Process fails during installation of iptables-persistent package (providers role - azure.yaml in Ansible)

What did you expect to happen:
Image build process to complete successfully

Anything else you would like to add:
Looks like the latest version of iptables-persistent package uses updated version of cryptography which needs later versions of openssl. This causes issue with flag 'X509_V_FLAG_CB_ISSUER_CHECK' and causes the installation to fail. Upgrading the pyOpenSSL package to the latest resolves the issue.
Important to note here is that if we try to install iptables-persistent package directly using apt, it sails through and only issue is when trying to install using Ansible.

image

/kind bug
[One or more /area label. See https://github.com/kubernetes-sigs/cluster-api/labels?q=area for the list of labels]

/assign