You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Version 1.9 of the concourse/docker-image-resource image fails to retrieve images from AWS Elastic Container Registry with the following error:
selected worker: concourse-worker-77f4fc7fdf-9nqjw
time="2024-10-21T18:32:53Z" level=error msg="Error retrieving credentials" error="ecr: Failed to get authorization token: not found, ResolveEndpointV2"
failed to get ECR credentials: credentials not found in native keychain
To reiterate: this error occurs when using a version of the core aws-sdk-go-v2 module at or above v1.23.0 (essentially, released on or after 11/15/23) in combination with a service module released before that date.
The current contents of go.mod seem to meet these failure conditions, with aws-sdk-go-v2 v1.30.5 and other modules below v1.23.0:
In the Concourse UI, click the my-image-name resource, then click the check: line to expand its log output. You should see output which includes the "ecr: Failed to get authorization token: not found, ResolveEndpointV2" error above.
Expected behavior
The ECR-hosted Docker image is successfully retrieved.
Additional context
Updating the image to contain the latest aws-sdk-go-v2 modules fixed our ECR issue. We did the following:
cloned the repo
ran go get -u github.com/aws/aws-sdk-go-v2/... (
ran docker build -t docker-image-resource --build-arg base_image=paketobuildpacks/run-jammy-base:latest .
pushed the image up to a private repo
validated the private image by using it in place of concourse/docker-image-resource.
The text was updated successfully, but these errors were encountered:
Describe the bug
Version 1.9 of the
concourse/docker-image-resource
image fails to retrieve images from AWS Elastic Container Registry with the following error:This appears to be a known
aws-sdk-go-v2
isssue. From aws/aws-sdk-go-v2#2370 (comment):The current contents of
go.mod
seem to meet these failure conditions, withaws-sdk-go-v2
v1.30.5 and other modules below v1.23.0:1.8.1 (which contains
aws-sdk-go-v2
v1.18.0) works fine.Reproduction steps
concourse/docker-image-resource:1.9
to retrieve an image from an AWS ECR repository:my-image-name
resource, then click thecheck:
line to expand its log output. You should see output which includes the "ecr: Failed to get authorization token: not found, ResolveEndpointV2" error above.Expected behavior
The ECR-hosted Docker image is successfully retrieved.
Additional context
Updating the image to contain the latest
aws-sdk-go-v2
modules fixed our ECR issue. We did the following:go get -u github.com/aws/aws-sdk-go-v2/...
(docker build -t docker-image-resource --build-arg base_image=paketobuildpacks/run-jammy-base:latest .
concourse/docker-image-resource
.The text was updated successfully, but these errors were encountered: