500 pushing container to registry

[blancharda]

Atempting to push an image to the gitlab container registry results in a 500 error:

unexpected status from HEAD request to https://<registry>/v2/andrew/registry-test/custom-identity-config/blobs/sha256:626170f6c20e9bdf73feebb7d79eb900529fdf607bd48865a16a23e02067959e: 500 Internal Server Error

Logs indicate it may be storage related:

gitlab-registry-59675444b9-l8kpr istio-proxy [2024-06-06T14:26:42.872Z] "HEAD /v2/andrew/registry-test/custom-identity-config/blobs/sha256:c36060ef7a93677699d4a393b953b2395f68bf156d78b5346905823e15a22820 HTTP/1.1" 500 - via_upstream - "-" 0 0 6 6 "10.42.4.0" "docker/25.0.3 go/go1.21.6 git-commit/f417435e5f6216828dec57958c490c4f8bae4f98 kernel/6.6.16-linuxkit os/linux arch/arm64 containerd-client/1.7.12+unknown storage-driver/overlayfs UpstreamClient(Docker-Client/25.0.3 \(darwin\))" "45edb9e1-9cc1-4f72-b4be-a232474f8d84" "<registry>" "10.42.4.245:5000" inbound|5000|| 127.0.0.6:37909 10.42.4.245:5000 10.42.4.0:0 outbound_.5000_._.gitlab-registry.gitlab.svc.cluster.local default

[blancharda]

There is a mismatch between the configured bucket suffix and the object storage secret -- we should update this to respect the bucket name vars used elsewhere in the gitlab package.

[blancharda]

In addition to the bucket suffix mismatch -- custom CAs are not being properly loaded in the registry pod.

We believe this is due to an upstream bug (registry1 issue to follow)..