-
Bug
-
Resolution: Unresolved
-
Blocker
-
None
-
security-profiles-operator.v0.9.0, security-profiles-operator-0.10.0
-
None
-
False
-
-
False
-
-
-
CMP Sprint 110
Description of problem:
The spod pods failed to start with RHCOS 10 image.For selinux-shared-policies-copier container, you can see error messages like “semodule: Could not create semanage handle” or “error parsing semanage configuration file: syntax error”: semodule: Could not create semanage handle + semodule -i /opt/spo-profiles/selinuxd.cil error parsing semanage configuration file: syntax error semodule: Could not create semanage handle + semodule -i /opt/spo-profiles/selinuxrecording.cil error parsing semanage configuration file: syntax error semodule: Could not create semanage handle ” $ oc get pod NAME READY STATUS RESTARTS AGE c-tenant-security-profiles-operator-bundle-release-release-0-10 1/1 Running 0 11m d70e1608b78dd855f71e94b626b40fa9bbaada2d5585d9ac53520b3d5565mln 0/1 Completed 0 11m security-profiles-operator-645478fbcf-jwcnk 1/1 Running 0 11m security-profiles-operator-645478fbcf-rhccb 1/1 Running 0 11m security-profiles-operator-645478fbcf-xtbc7 1/1 Running 0 11m security-profiles-operator-webhook-559cf8dc7f-lzqx5 1/1 Running 0 11m security-profiles-operator-webhook-559cf8dc7f-lzvph 1/1 Running 0 11m security-profiles-operator-webhook-559cf8dc7f-t698z 1/1 Running 0 11m spod-k7wvf 0/2 Init:CrashLoopBackOff 6 (5m6s ago) 11m spod-n45z2 0/2 Init:CrashLoopBackOff 7 (17s ago) 11m spod-slqzf 0/2 Init:CrashLoopBackOff 7 (16s ago) 11m spod-tnvrj 0/2 Init:CrashLoopBackOff 6 (5m4s ago) 11m spod-vm2gt 0/2 Init:Error 7 (5m9s ago) 11m spod-zddjd 0/2 Init:CrashLoopBackOff 6 (5m8s ago) 11m $ oc logs pod/spod-k7wvf -c selinux-shared-policies-copier + chown 65535:0 /etc/selinux.d + chmod 750 /etc/selinux.d + semodule -i /usr/share/selinuxd/templates/base_container.cil /usr/share/selinuxd/templates/config_container.cil /usr/share/selinuxd/templates/home_container.cil /usr/share/selinuxd/templates/log_container.cil /usr/share/selinuxd/templates/net_container.cil /usr/share/selinuxd/templates/tmp_container.cil /usr/share/selinuxd/templates/tty_container.cil /usr/share/selinuxd/templates/virt_container.cil /usr/share/selinuxd/templates/x_container.cil error parsing semanage configuration file: syntax error semodule: Could not create semanage handle + semodule -i /opt/spo-profiles/selinuxd.cil error parsing semanage configuration file: syntax error semodule: Could not create semanage handle + semodule -i /opt/spo-profiles/selinuxrecording.cil error parsing semanage configuration file: syntax error semodule: Could not create semanage handle
Version-Release number of selected component (if applicable):
registry.ci.openshift.org/rhcos-devel/ocp-4.21-10.1:4.21.0-ec.3-x86_64 + security-profiles-operator.v0.10.0
How reproducible:
Always
Steps to Reproduce:
- Create cluster with payload image registry.ci.openshift.org/rhcos-devel/ocp-4.21-10.1:4.21.0-ec.3-x86_64
- Install Security Profiles Operatorv0.10.0
Actual results:
The spod pods failed to start with RHCOS 10 image
The Expected result:
The spod pods should be running with RHCOS 10 image
