Loading...

XML

Word

Printable

Type: Bug
Resolution: Unresolved
Priority: Normal
Fix Version/s: None
Affects Version/s: 1.1.1
Component/s: operator
Labels:
None

Activity Type:
Quality / Stability / Reliability
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Story Points:
None
Severity:
None
Regression:
None

Release Blocker:
None
Sprint:
None

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

PX Impact Score:

Release Note Status:
None
Release Note Type:
None
Release Note Text:
None

Launch Openshift cluster which uses Security Context Constraints (SCCs)
Install COO 1.1.1 and create monitoring stack
Prometheus pod failed to create

% oc get event
LAST SEEN   TYPE      REASON             OBJECT                                                        MESSAGE
67s         Normal    NoPods             poddisruptionbudget/example-app-monitoring-stack-prometheus   No matching pods found
......
44s         Normal    Started            pod/prometheus-example-app-monitoring-stack-1                 Started container thanos-sidecar 67s         Warning   FailedCreate       statefulset/prometheus-example-app-monitoring-stack           create Pod prometheus-example-app-monitoring-stack-0 in StatefulSet prometheus-example-app-monitoring-stack failed error: pods "prometheus-example-app-monitoring-stack-0" is forbidden: unable to validate against any security context constraint: [provider "anyuid": Forbidden: not usable by user or serviceaccount, provider restricted-v2: .spec.securityContext.fsGroup: Invalid value: []int64{65534}: 65534 is not an allowed group, provider restricted-v2: .initContainers[0].runAsUser: Invalid value: 65534: must be in the ranges: [1000830000, 1000839999], provider restricted-v2: .containers[0].runAsUser: Invalid value: 65534: must be in the ranges: [1000830000, 1000839999], provider restricted-v2: .containers[1].runAsUser: Invalid value: 65534: must be in the ranges: [1000830000, 1000839999], provider restricted-v2: .containers[2].runAsUser: Invalid value: 65534: must be in the ranges: [1000830000, 1000839999], provider "restricted": Forbidden: not usable by user or serviceaccount, provider "nonroot-v2": Forbidden: not usable by user or serviceaccount, provider "nonroot": Forbidden: not usable by user or serviceaccount, provider "hostmount-anyuid": Forbidden: not usable by user or serviceaccount, provider "machine-api-termination-handler": Forbidden: not usable by user or serviceaccount, provider "hostnetwork-v2": Forbidden: not usable by user or serviceaccount, provider "hostnetwork": Forbidden: not usable by user or serviceaccount, provider "hostaccess": Forbidden: not usable by user or serviceaccount, provider "node-exporter": Forbidden: not usable by user or serviceaccount, provider "privileged": Forbidden: not usable by user or serviceaccount] 67s         Normal    SuccessfulCreate   statefulset/prometheus-example-app-monitoring-stack           create Pod prometheus-example-app-monitoring-stack-0 in StatefulSet prometheus-example-app-monitoring-stack successful 67s         Normal    SuccessfulCreate   statefulset/prometheus-example-app-monitoring-stack           create Pod prometheus-example-app-monitoring-stack-1 in StatefulSet prometheus-example-app-monitoring-stack successful

is related to

MON-4243 Level0 case failure 59384 on 4.15.z/4.17.z

Closed

Assignee:: Unassigned

Reporter:: Hongyan Li

Need Info From:: None

Contributors:: None

Architect:: None

QA Contact:: None

Doc Contact:: None

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2025/05/22 3:14 AM

Updated:: 2025/07/30 5:47 AM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates

PagerDuty